Sven Tuchscheerer, J. Dittmann, Tobias Hoppe, J. Krems
{"title":"车辆安全预警的理论分析及虚拟环境中安全预警评估的设计挑战","authors":"Sven Tuchscheerer, J. Dittmann, Tobias Hoppe, J. Krems","doi":"10.1145/1837154.1837159","DOIUrl":null,"url":null,"abstract":"In this paper, we present an approach for designing security warnings in vehicles for software based security incidents. With this we pursue the goal of reducing safety relevant component failures, which can be caused by manipulated or malicious software. The basis of our work is a theoretical analysis of the correlation of manipulated software (including malware) in automotive systems with the safety relevant failures of system components. We describe the potential of a security warning, which can be presented in time ahead of a traditional safety warning: The latter would only indicate safety-relevant implications that potentially arise later as an implication of the preceding security incident. In this paper we suggest three exemplary icons for a combined security-safety warning. Combined warning means a warning not at the time of a safety-relevant failure but already in the detection of the security-violation (e.g. manipulated software in the vehicle). An essential precondition is a recognition algorithm for such malicious software, which has been examined in previous research like [3]. Based on theoretical analyses, we introduce an exemplary design for the testing of these warnings in a virtual environment, precisely, in a driving simulator. A couple of factors play a central role in such evaluations, such as: perception, reaction of the driver, interpretation of warnings and security awareness. The results can be interpreted in the context of the fundamental aim: the reduction of accidents by security alerts. They thus serve as a recommended course of action for implementation in future vehicles.","PeriodicalId":131720,"journal":{"name":"International Workshop on Digital Engineering","volume":"38 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2010-06-14","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"5","resultStr":"{\"title\":\"Theoretical analysis of security warnings in vehicles and design challenges for the evaluation of security warnings in virtual environments\",\"authors\":\"Sven Tuchscheerer, J. Dittmann, Tobias Hoppe, J. Krems\",\"doi\":\"10.1145/1837154.1837159\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, we present an approach for designing security warnings in vehicles for software based security incidents. With this we pursue the goal of reducing safety relevant component failures, which can be caused by manipulated or malicious software. The basis of our work is a theoretical analysis of the correlation of manipulated software (including malware) in automotive systems with the safety relevant failures of system components. We describe the potential of a security warning, which can be presented in time ahead of a traditional safety warning: The latter would only indicate safety-relevant implications that potentially arise later as an implication of the preceding security incident. In this paper we suggest three exemplary icons for a combined security-safety warning. Combined warning means a warning not at the time of a safety-relevant failure but already in the detection of the security-violation (e.g. manipulated software in the vehicle). An essential precondition is a recognition algorithm for such malicious software, which has been examined in previous research like [3]. Based on theoretical analyses, we introduce an exemplary design for the testing of these warnings in a virtual environment, precisely, in a driving simulator. A couple of factors play a central role in such evaluations, such as: perception, reaction of the driver, interpretation of warnings and security awareness. The results can be interpreted in the context of the fundamental aim: the reduction of accidents by security alerts. They thus serve as a recommended course of action for implementation in future vehicles.\",\"PeriodicalId\":131720,\"journal\":{\"name\":\"International Workshop on Digital Engineering\",\"volume\":\"38 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2010-06-14\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"5\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Workshop on Digital Engineering\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/1837154.1837159\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Workshop on Digital Engineering","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/1837154.1837159","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Theoretical analysis of security warnings in vehicles and design challenges for the evaluation of security warnings in virtual environments
In this paper, we present an approach for designing security warnings in vehicles for software based security incidents. With this we pursue the goal of reducing safety relevant component failures, which can be caused by manipulated or malicious software. The basis of our work is a theoretical analysis of the correlation of manipulated software (including malware) in automotive systems with the safety relevant failures of system components. We describe the potential of a security warning, which can be presented in time ahead of a traditional safety warning: The latter would only indicate safety-relevant implications that potentially arise later as an implication of the preceding security incident. In this paper we suggest three exemplary icons for a combined security-safety warning. Combined warning means a warning not at the time of a safety-relevant failure but already in the detection of the security-violation (e.g. manipulated software in the vehicle). An essential precondition is a recognition algorithm for such malicious software, which has been examined in previous research like [3]. Based on theoretical analyses, we introduce an exemplary design for the testing of these warnings in a virtual environment, precisely, in a driving simulator. A couple of factors play a central role in such evaluations, such as: perception, reaction of the driver, interpretation of warnings and security awareness. The results can be interpreted in the context of the fundamental aim: the reduction of accidents by security alerts. They thus serve as a recommended course of action for implementation in future vehicles.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
