JUCS - Journal of Universal Computer Science 27(8): 830-849, doi: 10.3897/jucs.72367
Cybersecurity Threat Analysis, Risk Assessment and Design Patterns for Automotive Networked Embedded Systems: A Case Study
expand article infoJürgen Dobaj, Damjan Ekert§, Jakub Stolfa|, Svatopluk Stolfa|, Georg Macher, Richard Messnarz
‡ Graz University of Technology, Graz, Austria§ ISCN GesmbH, Graz, Austria| VSB TUO, Ostrava, Czech Republic¶ ISCN GesmbH Entwicklung, Graz, Austria
Open Access

Cybersecurity has become a crucial challenge in the automotive sector. At the current stage, the framework described by the ISO/SAE 21434 is insufficient to derive concrete methods for the design of secure automotive networked embedded systems on the supplier level. This article describes a case study with actionable steps for designing secure systems and systematically eliciting traceable cybersecurity requirements to address this gap. The case study is aligned with the ISO/SAE 21434 standard and can provide the basis for integrating cybersecurity engineering into company-specific processes and practice specifications.

Cybersecurity, Threat Modeling, Risk Assessment, Verification, Validation, Design Patterns