Cybersecurity challenges of systems-of-systems for fully-autonomous road vehicles

2017 13th International Conference and Expo on Emerging Technologies for a Smarter World (CEWIT) Pub Date : 2017-11-01 DOI:10.1109/CEWIT.2017.8263141

C. Axelrod

{"title":"Cybersecurity challenges of systems-of-systems for fully-autonomous road vehicles","authors":"C. Axelrod","doi":"10.1109/CEWIT.2017.8263141","DOIUrl":null,"url":null,"abstract":"We are seeing rapid development of in-vehicle, vehicleto- vehicle, intelligent roadway, infrastructure and ride-hailing systems. However, progress in some areas is much faster than in others. For example, in-vehicle self-driving systems are evolving rapidly, but development of intelligent road systems is relatively sluggish. These systems are beginning to interconnect and interoperate to become complex systems-of-systems for which attack surfaces and vulnerabilities are expanding exponentially. Many of these systems are standalone and proprietary and do not interoperate. However, systems must be seamlessly integrated if we are to arrive at safe and secure fully-autonomous road vehicles. If we do not create broad standards early on, we can expect vulnerabilities to grow so much that they could overwhelm potential benefits from improved safety and fuel economies. Warnings about cybersecurity consequences of such complexities appear from time to time in academic publications and the popular press, but few companies and government agencies do not seem to heed these admonitions and suggestions. Meanwhile, the self-driving juggernaut ploughs ahead. Here, we identify likely cybersecurity consequences that will arise because current efforts reflect uncoordinated design and development, particularly of supporting infrastructure systems. We describe how such risks might be mitigated proactively by introducing cybersecurity requirements early in the design, development and deployment processes. We also discuss how we might establish universal automotive and transportation security and safety standards that are enforceable and can be enforced globally across in-vehicle and ex-vehicle systems. While we see impressive near-term advances, particularly with in-vehicle systems and vehicle-to-vehicle systems, such innovations will eventually hit a roadblock if infrastructure systems, both physical and cyber, do not receive the attention required to achieve acceptable levels of cybersecurity and safety.","PeriodicalId":129601,"journal":{"name":"2017 13th International Conference and Expo on Emerging Technologies for a Smarter World (CEWIT)","volume":"1 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-11-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2017 13th International Conference and Expo on Emerging Technologies for a Smarter World (CEWIT)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/CEWIT.2017.8263141","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 5

Abstract

We are seeing rapid development of in-vehicle, vehicleto- vehicle, intelligent roadway, infrastructure and ride-hailing systems. However, progress in some areas is much faster than in others. For example, in-vehicle self-driving systems are evolving rapidly, but development of intelligent road systems is relatively sluggish. These systems are beginning to interconnect and interoperate to become complex systems-of-systems for which attack surfaces and vulnerabilities are expanding exponentially. Many of these systems are standalone and proprietary and do not interoperate. However, systems must be seamlessly integrated if we are to arrive at safe and secure fully-autonomous road vehicles. If we do not create broad standards early on, we can expect vulnerabilities to grow so much that they could overwhelm potential benefits from improved safety and fuel economies. Warnings about cybersecurity consequences of such complexities appear from time to time in academic publications and the popular press, but few companies and government agencies do not seem to heed these admonitions and suggestions. Meanwhile, the self-driving juggernaut ploughs ahead. Here, we identify likely cybersecurity consequences that will arise because current efforts reflect uncoordinated design and development, particularly of supporting infrastructure systems. We describe how such risks might be mitigated proactively by introducing cybersecurity requirements early in the design, development and deployment processes. We also discuss how we might establish universal automotive and transportation security and safety standards that are enforceable and can be enforced globally across in-vehicle and ex-vehicle systems. While we see impressive near-term advances, particularly with in-vehicle systems and vehicle-to-vehicle systems, such innovations will eventually hit a roadblock if infrastructure systems, both physical and cyber, do not receive the attention required to achieve acceptable levels of cybersecurity and safety.

查看原文本刊更多论文

全自动道路车辆系统的网络安全挑战

我们看到了车载、车对车、智能道路、基础设施和叫车系统的快速发展。然而，一些领域的进展要比其他领域快得多。例如，车载自动驾驶系统发展迅速，但智能道路系统的发展相对缓慢。这些系统开始相互连接和互操作，成为复杂的系统的系统，其攻击面和漏洞呈指数级增长。这些系统中有许多是独立的、专有的，不能互操作。然而，如果我们要实现安全可靠的全自动道路车辆，系统必须无缝集成。如果我们不尽早制定广泛的标准，我们可以预见，脆弱性会大幅增加，以至于可能会抵消提高安全性和燃油经济性所带来的潜在好处。学术出版物和大众媒体不时出现有关网络安全复杂性后果的警告，但似乎很少有公司和政府机构不理会这些警告和建议。与此同时，自动驾驶汽车仍在向前发展。在这里，我们确定了可能出现的网络安全后果，因为目前的努力反映了不协调的设计和开发，特别是支持基础设施系统。我们描述了如何通过在设计、开发和部署过程的早期引入网络安全需求来主动降低此类风险。我们还讨论了如何建立通用的汽车和运输安全和安全标准，这些标准是可执行的，并且可以在全球范围内在车内和车前系统中强制执行。虽然我们看到了令人印象深刻的近期进展，特别是在车载系统和车对车系统方面，但如果基础设施系统(物理和网络)没有得到必要的关注，以达到可接受的网络安全和安全水平，这些创新最终将遇到障碍。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

2017 13th International Conference and Expo on Emerging Technologies for a Smarter World (CEWIT)

自引率

0.00%

发文量