Cybersecurity Testing for Automotive Domain: A Survey
Modern vehicles are more complex and interconnected than ever before, which also means that attack surfaces for vehicles have increased significantly. Malicious cyberattacks will not only exploit personal privacy and property, but also affect the functional safety of electrical/electronic (E/E) safe...
| Main Authors: | , , , , , , |
|---|---|
| Format: | Article |
| Language: | English |
| Published: |
MDPI AG
2022-11-01
|
| Series: | Sensors |
| Subjects: | |
| Online Access: | https://www.mdpi.com/1424-8220/22/23/9211 |
| _version_ | 1797462210699591680 |
|---|---|
| author | Feng Luo Xuan Zhang Zhenyu Yang Yifan Jiang Jiajia Wang Mingzhi Wu Wanqiang Feng |
| author_facet | Feng Luo Xuan Zhang Zhenyu Yang Yifan Jiang Jiajia Wang Mingzhi Wu Wanqiang Feng |
| author_sort | Feng Luo |
| collection | DOAJ |
| description | Modern vehicles are more complex and interconnected than ever before, which also means that attack surfaces for vehicles have increased significantly. Malicious cyberattacks will not only exploit personal privacy and property, but also affect the functional safety of electrical/electronic (E/E) safety-critical systems by controlling the driving functionality, which is life-threatening. Therefore, it is necessary to conduct cybersecurity testing on vehicles to reveal and address relevant security threats and vulnerabilities. Cybersecurity standards and regulations issued in recent years, such as ISO/SAE 21434 and UNECE WP.29 regulations (R155 and R156), also emphasize the indispensability of cybersecurity verification and validation in the development lifecycle but lack specific technical details. Thus, this paper conducts a systematic and comprehensive review of the research and practice in the field of automotive cybersecurity testing, which can provide reference and advice for automotive security researchers and testers. We classify and discuss the security testing methods and testbeds in automotive engineering. Furthermore, we identify gaps and limitations in existing research and point out future challenges. |
| first_indexed | 2024-03-09T17:33:17Z |
| format | Article |
| id | doaj.art-d7b5d872066646a7baea3ec2c0ef4877 |
| institution | Directory Open Access Journal |
| issn | 1424-8220 |
| language | English |
| last_indexed | 2024-03-09T17:33:17Z |
| publishDate | 2022-11-01 |
| publisher | MDPI AG |
| record_format | Article |
| series | Sensors |
| spelling | doaj.art-d7b5d872066646a7baea3ec2c0ef48772023-11-24T12:10:23ZengMDPI AGSensors1424-82202022-11-012223921110.3390/s22239211Cybersecurity Testing for Automotive Domain: A SurveyFeng Luo0Xuan Zhang1Zhenyu Yang2Yifan Jiang3Jiajia Wang4Mingzhi Wu5Wanqiang Feng6School of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaSchool of Automotive Studies, Tongji University, Shanghai 201804, ChinaNanchang Automotive Institute of Intelligence and New Energy, Tongji University (NAIT), Nanchang 330052, ChinaNanchang Automotive Institute of Intelligence and New Energy, Tongji University (NAIT), Nanchang 330052, ChinaModern vehicles are more complex and interconnected than ever before, which also means that attack surfaces for vehicles have increased significantly. Malicious cyberattacks will not only exploit personal privacy and property, but also affect the functional safety of electrical/electronic (E/E) safety-critical systems by controlling the driving functionality, which is life-threatening. Therefore, it is necessary to conduct cybersecurity testing on vehicles to reveal and address relevant security threats and vulnerabilities. Cybersecurity standards and regulations issued in recent years, such as ISO/SAE 21434 and UNECE WP.29 regulations (R155 and R156), also emphasize the indispensability of cybersecurity verification and validation in the development lifecycle but lack specific technical details. Thus, this paper conducts a systematic and comprehensive review of the research and practice in the field of automotive cybersecurity testing, which can provide reference and advice for automotive security researchers and testers. We classify and discuss the security testing methods and testbeds in automotive engineering. Furthermore, we identify gaps and limitations in existing research and point out future challenges.https://www.mdpi.com/1424-8220/22/23/9211automotivecybersecurity testingpenetration testingfuzzingmodel-based testing |
| spellingShingle | Feng Luo Xuan Zhang Zhenyu Yang Yifan Jiang Jiajia Wang Mingzhi Wu Wanqiang Feng Cybersecurity Testing for Automotive Domain: A Survey Sensors automotive cybersecurity testing penetration testing fuzzing model-based testing |
| title | Cybersecurity Testing for Automotive Domain: A Survey |
| title_full | Cybersecurity Testing for Automotive Domain: A Survey |
| title_fullStr | Cybersecurity Testing for Automotive Domain: A Survey |
| title_full_unstemmed | Cybersecurity Testing for Automotive Domain: A Survey |
| title_short | Cybersecurity Testing for Automotive Domain: A Survey |
| title_sort | cybersecurity testing for automotive domain a survey |
| topic | automotive cybersecurity testing penetration testing fuzzing model-based testing |
| url | https://www.mdpi.com/1424-8220/22/23/9211 |
| work_keys_str_mv | AT fengluo cybersecuritytestingforautomotivedomainasurvey AT xuanzhang cybersecuritytestingforautomotivedomainasurvey AT zhenyuyang cybersecuritytestingforautomotivedomainasurvey AT yifanjiang cybersecuritytestingforautomotivedomainasurvey AT jiajiawang cybersecuritytestingforautomotivedomainasurvey AT mingzhiwu cybersecuritytestingforautomotivedomainasurvey AT wanqiangfeng cybersecuritytestingforautomotivedomainasurvey |