2022-01-7123: Enhanced Penetration Testing for Automotive Cybersecurity - Technical Paper

Event: SAE 2022 International Automotive Safety, Security and Testing Congress

Authors

Vector Consulting Services

Vector Consulting Services

Vector Consulting Services

Abstract

Content: Automotive electronics and enterprise IT are converging and thus open the doors for advanced hacking. With their immediate safety impact, cyberattacks on such systems will endanger passengers. Today, there are various methods of security verification and validation in the automotive industry. However, we realize that vulnerability detection is incomplete and inefficient with classic security testing. In this article, we show how an enhanced Grey-Box Penetration Test (GBPT) needs less test cases while being more effective in terms of coverage and indicating less false positives.

Meta Tags

Topics: Cybersecurity
Electronic equipment
Test procedures
Connectivity
Electrical systems
Risk management
Safety critical systems
Architecture
Computer software and hardware

Affiliated or Co-Author: Vector Consulting Services
Vector China

Details

DOI: https://doi.org/10.4271/2022-01-7123

Pages: 9

Citation: Ebert, C., Ray, R., John, J., and Wang, Z., "Enhanced Penetration Testing for Automotive Cybersecurity," SAE Technical Paper 2022-01-7123, 2022, https://doi.org/10.4271/2022-01-7123.

Additional Details

Publisher: SAE International

Published: Dec 16, 2022

Product Code: 2022-01-7123

Content Type: Technical Paper

Language: English