SAE-PP-00186: Vulnerability Management - Practical Challenges and Solutions for Cybersecurity Engineering - Pre-Print Article

Authors

HORIBA MIRA Limited

HORIBA MIRA Limited

Abstract

Content: Integrating cybersecurity development, testing and operations activities around a common risk and vulnerability management framework is key to implementing an effective and efficient cybersecurity engineering process. We describe a case study to investigate the practical implementation of vulnerability management within an automotive cybersecurity engineering process. The case study is based on applying a combination of Cybellum's Product Security Assessment tool for identifying software vulnerabilities with HORIBA MIRA's vulnerability management method. We illustrate how effective vulnerability management requires a combination of people, processes and tools, explore the challenges of scaling this activity and identify opportunities for further development of a scalable solution.

Meta Tags

Topics: Data privacy
Supply chain management
Driver assistance systems
Cybersecurity
Infotainment systems
Architecture
Connectivity
Control systems
Risk management
Product development

Affiliated or Co-Author: Cybellum
HORIBA MIRA Limited

Details

DOI: https://doi.org/10.47953/SAE-PP-00186

Citation: Lazebnik, E., Traitel, E., Wooderson, P., and Ruddle, D., "Vulnerability Management - Practical Challenges and Solutions for Cybersecurity Engineering," SAE MobilityRxiv™ Preprint, submitted September 29, 2021, https://doi.org/10.47953/SAE-PP-00186.

Additional Details

Publisher: SAE International

Published: Sep 29, 2021

Product Code: SAE-PP-00186

Content Type: Pre-Print Article

Language: English