On Threat Analysis and Risk Estimation of Automotive Ransomware

被引：3

作者：

Weiss, Nils ^{[1
]}

Schroetter, Markus ^{[1
]}

Hackenberg, Rudolf ^{[1
]}

机构：

[1] Univ Appl Sci Regensburg, Regensburg, Germany

来源：

ACM COMPUTER SCIENCE IN CARS SYMPOSIUM (CSCS 2019) | 2019年

关键词：

ransomware; automotive software; security;

D O I：

10.1145/3359999.3360492

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

This paper combines a theoretical model for the risk estimation of a ransomware attack on vehicles with our experiences during an implementation of a real world ransomware as proof of concept. Our gained knowledge on ransomware attacks targeting a real car is transferred into a general model for risk estimation. It provides a generic guideline for the risk estimation and allows for identifying possible weaknesses in a vehicle's design concerning the threat of automotive ransomware. Through our abstracted approach, this model is applicable on every modern car. An example to prove this model is provided as well.

引用

页数：9

共 50 条

[1] A THREAT FOR THE TRAINS: RANSOMWARE AS A NEW RISK
Vaczi, Daniel
Szadeczky, Tamas
[J]. INTERDISCIPLINARY DESCRIPTION OF COMPLEX SYSTEMS, 2019, 17 (01) : 1 - 6
[2] An Analysis Technique to Detect Ransomware Threat
Mukesh, Sharma Divya
[J]. 2018 INTERNATIONAL CONFERENCE ON COMPUTER COMMUNICATION AND INFORMATICS (ICCCI), 2018,
[3] Threat Analysis and Risk Assessment in Automotive Cyber Security
Ward, David
Ibarra, Ireri
Ruddle, Alastair
[J]. SAE INTERNATIONAL JOURNAL OF PASSENGER CARS-ELECTRONIC AND ELECTRICAL SYSTEMS, 2013, 6 (02): : 507 - 513
[4] Seven Pain Points of Threat Analysis and Risk Assessment in the Automotive Domain
Tuma, Katja
Widman, Mathias
[J]. IEEE SECURITY & PRIVACY, 2021, 19 (05) : 78 - 82
[5] A Threat-Led Approach to Mitigating Ransomware Attacks: Insights from a Comprehensive Analysis of the Ransomware Ecosystem
Lawall, Alexander
Beenken, Petra
[J]. PROCEEDINGS OF THE 2024 EUROPEAN INTERDISCIPLINARY CYBERSECURITY CONFERENCE, EICC 2024, 2024, : 210 - 216
[6] Threat and Risk Assessment Methodologies in the Automotive Domain
Macher, Georg
Armengaud, Eric
Brenner, Eugen
Kreiner, Christian
[J]. 7TH INTERNATIONAL CONFERENCE ON AMBIENT SYSTEMS, NETWORKS AND TECHNOLOGIES (ANT 2016) / THE 6TH INTERNATIONAL CONFERENCE ON SUSTAINABLE ENERGY INFORMATION TECHNOLOGY (SEIT-2016) / AFFILIATED WORKSHOPS, 2016, 83 : 1288 - 1294
[7] Ransomware threat and its impact on SCADA
Butt, Usman Javed
Abbod, Maysam
Lors, Anzor
Jahankhani, Hamid
Jamal, Arshad
Kumar, Arvind
[J]. PROCEEDINGS OF 2019 IEEE 12TH INTERNATIONAL CONFERENCE ON GLOBAL SECURITY, SAFETY AND SUSTAINABILITY (ICGS3-2019), 2019, : 166 - 173
[8] Ransomware, Threat and Detection Techniques: A Review
Kok, S. H.
Abdullah, Azween
Jhanjhi, N. Z.
Supramaniam, Mahadevan
[J]. INTERNATIONAL JOURNAL OF COMPUTER SCIENCE AND NETWORK SECURITY, 2019, 19 (02): : 136 - 146
[9] Security Threat Analysis of Automotive Infotainment Systems
Takahashi, Junko
Iwamura, Makoto
Tanaka, Masashi
[J]. 2020 IEEE 92ND VEHICULAR TECHNOLOGY CONFERENCE (VTC2020-FALL), 2020,
[10] The Ransomware Threat to Energy-Delivery Systems
Nicol, David M.
[J]. IEEE SECURITY & PRIVACY, 2021, 19 (03) : 24 - 32

← 1 2 3 4 5 →