Show simple item record

Date of
Available in OPARU
Year of
Date of first
AbstractNewer technologies like connectivity and autonomy in the automotive sector increases the need for stronger security and for its evaluation penetration tests. In order to focus the tests first on the most critical possible vulnerabilities, threat modeling with a ranking of the risk level is mandatory. Because lives depend on the security of the vehicle, both safety and security aspects should be included into this threat model. Furthermore, the usage of a tool is required, which helps and automates some parts of the process, so the time effort is reduced and the acceptance of the methodology increased. Up to our knowledge no such holistic methodology exists, therefore we have created the CVSIL threat methodology. It combines the outcome of a Hazard Analysis and Risk Assessment (HARA) with results from using Microsofts’ Threat Modeling Tool 2016 and our own application, the TMTe4PT. With our proposed novel solution, after the faults have been mapped to the threats, the Collateral Damage Potential metric can be derived from the HARA, and so the CVSS overall score can be calculated and used as risk level. Additionally, we have introduced another score for the ranking, the Security-ASIL, which consists of elements from the security and safety analysis. For the evaluation, we have illustrated a hypothetical Adaptive Cruise Control (ACC) system and analyzed it with our model and tool. These findings were compared to those from expert interviews and the problems discussed. Based on our results, the CVSIL methodology in its current state does not provide a better distinction and therefore a better ranking between the threats violating the safety. The contribution of this thesis is the evaluation of existing threat methodologies, public threat modeling tools and our own CVSIL methodology. Furthermore we provide a hypothetical ACC system with system architecture and component definitions. For this system, the results of a shortened HARA and threat analysis are released. Additionally, our tool the TMTe4PT will be made open source.dc.description.abstract
PublisherUniversität Ulmdc.publisher
LicenseCC BY 4.0 Internationaldc.rights
Link to license text
KeywordThreat Modelingdc.subject
Dewey Decimal GroupDDC 004 / Data processing & computer sciencedc.subject.ddc
LCSHPenetration testing (Computer security)dc.subject.lcsh
TitleCombining safety and security threat modeling to improve automotive penetration testingdc.title
Resource typeAbschlussarbeit (Master; Diplom)dc.type
Date of acceptance2018dcterms.dateAccepted
RefereeKargl, Frankdc.contributor.referee
RefereeKriesten, Reinerdc.contributor.referee
FacultyFakultät für Ingenieurwissenschaften, Informatik und Psychologieuulm.affiliationGeneral
InstitutionUniversität Ulmuulm.affiliationSpecific
InstitutionInstitut für Verteilte Systemeuulm.affiliationSpecific
DCMI TypeTextuulm.typeDCMI
In cooperation withSCHUTZWERK GmbHuulm.cooperation
Is Supplemented By
FundingSecForCARs / BMBFuulm.funding
University Bibliographyjauulm.unibibliographie

Files in this item


This item appears in the following Collection(s)

Show simple item record

CC BY 4.0 International
Except where otherwise noted, this item's license is described as CC BY 4.0 International