This content is not included in your SAE MOBILUS subscription, or you are not logged in.
Safe and Secure Development: Challenges and Opportunities
ISSN: 0148-7191, e-ISSN: 2688-3627
Published April 03, 2018 by SAE International in United States
Annotation ability available
The ever-increasing complexity and connectivity of driver assist functions pose challenges for both Functional Safety and Cyber Security. Several of these challenges arise not only due to the new functionalities themselves but due to numerous interdependencies between safety and security. Safety and security goals can conflict, safety mechanisms might be intentionally triggered by attackers to impact functionality negatively, or mechanisms can compete for limited resources like processing power or memory to name just some conflict potentials. But there is also the potential for synergies, both in the implementation as well as during the development. For example, both disciplines require mechanisms to check data integrity, are concerned with freedom from interference and require architecture based analyses. So far there is no consensus in the industry on how to best deal with these interdependencies in automotive development projects. SAE J3061 introduces a process framework for Cyber Security development that is intentionally very similar to that for Functional Safety as defined in ISO 26262. While these parallel frameworks help to identify interdependencies and show that aligned processes are possible, a joint process seems unreasonable due to the vastly different implementation frameworks and methods. Using concrete examples, we show problems that can arise if Functional Safety and Cyber Security processes are not properly aligned and integrated into the overall development process. Based on this we then propose steps towards coordinated safety and security processes that can prevent such problems and show how such an approach at the same time allows to benefit from synergies.
|Technical Paper||Security Mechanisms Design for In-Vehicle Network Gateway|
|Technical Paper||Vehicle Telematics Platform Using Multipath TCP|
Citationvon Wedel, J. and Arndt, P., "Safe and Secure Development: Challenges and Opportunities," SAE Technical Paper 2018-01-0020, 2018, https://doi.org/10.4271/2018-01-0020.
- SAE International Surface Vehicle Recommended Practice Jan. 2016
- Organization for Economic Co-Operation and Development (OECD) 2015 10.1787/5jlwvzdfk640-en
- Horwick , M. , Siedersberger , K. Strategy and Architecture of a Safety Concept for Fully Automatic and Autonomous Driving Assistance Systems 2010 IEEE Intelligent Vehicles Symposium June 2010 10.1109/ivs.2010.5548115
- ISO (International Organization for Standardization) 2016
- Koscher , K. , Czeskis , A. , Roesner , F. , Patel , S. et al. Experimental Security Analysis of a Modern Automobile IEEE Symposium on Security and Privacy 2010 10.1109/sp.2010.34
- Amorim , T. , Martin , H. , Ma , Z. , and Schmittner , C. Computer Safety, Reliability, and Security 329 342 2017 10.1007/978-3-319-66266-4_22
- Glas , B. , Gebauer , C. , Hänger , J. , Heyl , A. et al. Automotive Safety and Security Integration Challenges Automotive-Safety & Security 2014 13 28
- Mamdouh , E. 2017