Vehicle Control Unit Security using Open Source AUTOSAR
[Examensarbete på avancerad nivå]
Security threats against software in cars could aect the safety of the vehicle as the numbers of computers and advanced functionality in cars increase. This thesis report presents a case study where two variants of Microsoft's threat modeling technique STRIDE are applied to a limited part of the AUTOSAR platform. The two variants are performed separately and the outcomes are compared to evaluate which STRIDE variant performs better in an automotive environment by analyzing the false positives and true positives found. It was found that STRIDE-per-element was a better STRIDE variant for the purpose of the automotive domain. Moreover, the case study found that the SecOC module mitigates most of the spoong and tampering threats, and that the biggest group of remaining threats is denial of service or ooding of the CAN network.
Nyckelord: AUTOSAR, Threat modeling, STRIDE, Security
Det verkar som att din webbläsare saknar möjlighet att visa PDF. Klicka Öppna i nytt fönster för att läsa.
file:////usr/local/tomcat/webapps/chex/local/xsl/output/html/normal/body.xsl<Line 340, Column 84>: XML-22021: (Error) Error parsing external document: 'Förbindelse vägras'.