A Formal Model to Facilitate Security Testing in Modern Automotive Systems
Eduardo dos Santos (Centre for Doctoral Training in Cyber Security,, Department of Computer Science, University of Oxford, Oxford, United, Kingdom), Andrew Simpson (Department of Computer Science, University of, Oxford, Oxford, United Kingdom)
TL;DR
This paper introduces a formal CSP-based modeling framework to support security testing of modern automotive systems, aiming to identify vulnerabilities and facilitate automated testing.
Contribution
It presents an initial CSP model of vehicle bus systems and attack scenarios, laying groundwork for automated security testing in automotive engineering.
Findings
Developed CSP models of vehicle bus architectures
Created initial attack models for security testing
Outlined integration pathways with engineering tools
Abstract
Ensuring a car's internal systems are free from security vulnerabilities is of utmost importance, especially due to the relationship between security and other properties, such as safety and reliability. We provide the starting point for a model-based framework designed to support the security testing of modern cars. We use Communicating Sequential Processes (CSP) to create architectural models of the vehicle bus systems, as well as an initial set of attacks against these systems. While this contribution represents initial steps, we are mindful of the ultimate objective of generating test code to exercise the security of vehicle bus systems. We present the way forward from the models created and consider their potential integration with commercial engineering tools
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.