Secure software engineering for connected vehicles: a research agenda

Martinelli F., Matteucci I., Mori P., Bertolino A., Calabrò A., Di Giandomenico F., Lami G., Lonetti F., Marchetti E.

Automotive systems  Security  Security-by-design 

The growing number of vehicles daily moving on roads makes the transportation system a critical infrastructure increasing the need for safety and security of passengers, pedestrians, and vehicle itself. On the other side, the convergence of safety and security needs is one of the main challenge of the research community. This necessity becomes more important if we consider the introduction of ICT system into vehicles. This makes vehicle potentially vulnerable from the point of view of security. This work aims to review existing methodologies, implementations and solutions addressing security issues in automotive with an eye to a well-balanced integration between safety and security aspects. In particular, one the main objective of the present paper is to identify security issues into vehicular communication technologies and possible existing gaps between methodology and their implementation in the real world. Starting from the literature and referring to the widely accepted standards as AUTOSAR and ISO 26262, we identify possible research challenges and some baselines for an holistic secure-by-design approach targeting safety and security aspects all along the dierent phases of the automotive software development process.

Source: ISTI Technical reports, 2015