This content is not included in your SAE MOBILUS subscription, or you are not logged in.
Safe and Secure Development: Challenges and Opportunities
ISSN: 0148-7191, e-ISSN: 2688-3627
Published April 03, 2018 by SAE International in United States
Annotation ability available
The ever-increasing complexity and connectivity of driver assist functions pose challenges for both Functional Safety and Cyber Security. Several of these challenges arise not only due to the new functionalities themselves but due to numerous interdependencies between safety and security. Safety and security goals can conflict, safety mechanisms might be intentionally triggered by attackers to impact functionality negatively, or mechanisms can compete for limited resources like processing power or memory to name just some conflict potentials. But there is also the potential for synergies, both in the implementation as well as during the development. For example, both disciplines require mechanisms to check data integrity, are concerned with freedom from interference and require architecture based analyses. So far there is no consensus in the industry on how to best deal with these interdependencies in automotive development projects. SAE J3061 introduces a process framework for Cyber Security development that is intentionally very similar to that for Functional Safety as defined in ISO 26262. While these parallel frameworks help to identify interdependencies and show that aligned processes are possible, a joint process seems unreasonable due to the vastly different implementation frameworks and methods. Using concrete examples, we show problems that can arise if Functional Safety and Cyber Security processes are not properly aligned and integrated into the overall development process. Based on this we then propose steps towards coordinated safety and security processes that can prevent such problems and show how such an approach at the same time allows to benefit from synergies.
|Technical Paper||Security Mechanisms Design for In-Vehicle Network Gateway|
|Technical Paper||Vehicle Telematics Platform Using Multipath TCP|
|Technical Paper||Integrated Safety and Security Development in the Automotive Domain|
Citationvon Wedel, J. and Arndt, P., "Safe and Secure Development: Challenges and Opportunities," SAE Technical Paper 2018-01-0020, 2018, https://doi.org/10.4271/2018-01-0020.
- SAE International Surface Vehicle Recommended Practice, “Cybersecurity Guidebook for Cyber-Physical Vehicle Systems,” SAE Standard J3061, Rev. Jan. 2016.
- Organization for Economic Co-Operation and Development (OECD), “Automated and Autonomous Driving.” International Transport Forum Policy Papers (April 1, 2015). doi:10.1787/5jlwvzdfk640-en.
- Horwick, M.,Siedersberger, K., “Strategy and Architecture of a Safety Concept for Fully Automatic and Autonomous Driving Assistance Systems.” 2010 IEEE Intelligent Vehicles Symposium (June 2010). doi:10.1109/ivs.2010.5548115.
- ISO (International Organization for Standardization), “Road Vehicles - Functional Safety”, DIS/ISO 26262, Rev. 2016.
- Koscher, K.,Czeskis, A.,Roesner, F.,Patel, S. et al., “Experimental Security Analysis of a Modern Automobile,” IEEE Symposium on Security and Privacy, 2010, doi:10.1109/sp.2010.34.
- Amorim, T.,Martin, H.,Ma, Z., andSchmittner, C., “Systematic Pattern Approach for Safety and Security Co-Engineering in the Automotive Domain,” Computer Safety, Reliability, and Security329-342, 2017, doi:10.1007/978-3-319-66266-4_22.
- Glas, B.,Gebauer, C.,Hänger, J.,Heyl, A. et al., “Automotive Safety and Security Integration Challenges,” . In: Automotive-Safety & Security. (2014), 13-28.
- Mamdouh, E., “Vulnerability Tree Analysis Versus Fault Tree Analysis - Combined Security\Safety Analysis Approach”, Presented at EUROFORUM ISO 26262 2017, USA, October 9-11, 2017.