Abstract
Vehicle systems engineering experiences new challenges with vehicle electrification, advanced driving systems, and connected vehicles. Modern architectural designs cope with an increasing number of functionalities integrated into complex Electric/Electronic (E/E) systems. Such complexity is extended, adding V2X (Vehicle-to-everything) communication systems, which provide remote communication services that collect, store, and manipulate confidential data. The impact on Safety, Security, and Privacy (SSP) of these new advanced technological systems requires the implementation of new processes during their development phase. Therefore, new product development strategies need to be implemented to integrate SSP mechanism across the entire product development lifecycle. The European H2020 ECSEL project SECREDAS proposes an innovative solution for Safety, Security and Privacy specifically for automated systems. The project outlines the shortcomings of existing SSP approaches and proposes its own approach to implementing SSP mechanism for the emerging technologies. This approach includes a reference architecture with SSP features implemented by a set of reusable Design Patterns (DPs) along with their associated technology elements. This guideline proposes rules for developing new architectural Safety, Security, and Privacy implementations in a product under development using Design Patterns.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
References
Halder, S., Ghosal, A., Conti, M.: Secure over-the-air software updates in connected vehicles: a survey. Comput. Netw. 178, 107343 (2020)
Coppola, R., Morisio, M.: Connected car: technologies, issues, future trends. ACM Comput. Surv. - Article 46, 36 (2016)
Statista: Automotive electronics cost as a percentage of total car cost worldwide from 1970 to 2030. Statista, April 2019. https://www.statista.com/statistics/277931/automotive-electronics-cost-as-a-share-of-total-car-cost-worldwide/. Accessed 12 Apr 2021
Antinyan, V.: Revealing the complexity of automotive software. ResearchGate, July 2020
Alnasser, A., Sun, H., Jiang, J.: Cyber security challenges and solutions for V2XCommunications: a survey. Comput. Netw. 151, 52–67 (2019)
Mujahid, M., Ghazanfar, A.S.: Survey on existing authentication issues for cellular-assisted V2X communication. Veh. Commun. 12, 50–65 (2018)
Å ljivoa, I., Juez Uriagereka, G., Puri, S., Gallina, B.: Guiding assurance of architectural design patterns for critical applications. J. Syst. Archit. 110, 101765 (2020)
Marko, N., Vasenev, A., Striecks, C.: Collecting and classifying security and privacy design patterns for connected vehicles: SECREDAS approach. In: Casimiro, A., Ortmeier, F., Schoitsch, E., Bitsch, F., Ferreira, P. (eds.) SAFECOMP 2020. LNCS, vol. 12235, pp. 36–53. Springer, Cham (2020). https://doi.org/10.1007/978-3-030-55583-2_3
ISO 26262: Road vehicles – functional safety. International Organization for Standardization (2018)
ISO/SAE DIS 21434: Road vehicles – cybersecurity engineering. International Organization for Standardization (2020)
CC: Common criteria - part 3: security assurance requirements. Common Criteria (2017)
SECREDAS: D3.6 design patterns description v2, February 2021. https://secredas-project.eu/. Accessed June 2021
ISO/TC 262: ISO 31000, risk management. ISO (2018)
SAE: Cybersecurity guidebook for cyber-physical vehicle systems (J3061 ground vehicle standard). SAE International (2016)
Schostack, A.: Threat Modeling: Designing for Security. Wiley, Indianapolis (2014)
Young, W., Leveson, N.G.: An integrated approach to safety and security based on systems theory. Commun. ACM 57(2), 31–35 (2014)
Marksteiner, S., et al.: A process to facilitate automated automotive cybersecurity testing. IEEE (2021)
Marksteiner, S., Ma, Z.: Approaching the automation of cyber security testing of connected vehicles. In: The Third Central European Cybersecurity, New York (2019)
Acknowledgements
This work has been partially funded by EU ECSEL Project SECREDAS. This project has received funding from the European Unions Horizon 2020 research and innovation programme under grant agreement No 783119. The publication was written at VIRTUAL VEHICLE in Graz and partially funded by the COMET K2 Competence Centers for Excellent Technologies Programme of the Federal Ministry for Transport, Innovation and Technology (bmvit), the Federal Ministry for Digital, Business and Enterprise (bmdw), the Austrian Research Promotion Agency (FFG), the Province of Styria and the Styrian Business Promotion Agency (SFG). We are also grateful to Netherlands Organization for Applied Scientic Research TNO for supporting this research.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2021 Springer Nature Switzerland AG
About this paper
Cite this paper
Marko, N. et al. (2021). Guideline for Architectural Safety, Security and Privacy Implementations Using Design Patterns: SECREDAS Approach. In: Habli, I., Sujan, M., Gerasimou, S., Schoitsch, E., Bitsch, F. (eds) Computer Safety, Reliability, and Security. SAFECOMP 2021 Workshops. SAFECOMP 2021. Lecture Notes in Computer Science(), vol 12853. Springer, Cham. https://doi.org/10.1007/978-3-030-83906-2_3
Download citation
DOI: https://doi.org/10.1007/978-3-030-83906-2_3
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-83905-5
Online ISBN: 978-3-030-83906-2
eBook Packages: Computer ScienceComputer Science (R0)