Konferenzen und Rahmenprogramm
Safety-Security Co-Analysis with STPA: A Case Study on Connected Cars
While modern vehicles are increasingly digitized and networked, security attacks may lead to malfunctions of vehicles on a massive scale. For instance, a cyber-attack through over-the-air (OTA) update may install malicious software on electronic control units (ECUs) in numerous vehicles, possibly resulting in severe accidents. To reveal security threats and their potential impact on safety, security analysis is conducted in the early stage of automotive engineering. In ECSEL Joint Undertaking project SECREDAS we investigate a new approach to automotive safety-security co-analysis. This paper reports a co-analysis method which extends Systems Theoretic Process Analysis (STPA) and a case study of analysing an OTA update system. The case study shows that the STPA-based method enables a close integration of safety and security analysis, as the entire socio-technical system is considered as a whole in achieving security and safety.
--- Datum: 27.02.2020 Uhrzeit: 15:30 - 16:00 Uhr Ort: Conference Counter NCC Ost