Incident Management Process Model for Automotive CyberSafety Systems Using the Business Process Model and Notation

The rise of vehicle connectivity and autonomy is predicted to amplify the impact of emerging cybersecurity risks during the entire product life cycle in the automotive sector. To address all aspects of vehicle safety, including functional safety, safety of intended functionality (SOTIF), and cybersecurity, efforts must be made to collaborate across these areas during the maintenance period for incidents handling as well. Currently, much emphasis is being placed on the Incident Monitoring Process, which focuses on cybersecurity concerns. To round out the picture, safety incidents should be also considered. As a result, the research intends to examine SOTIF -related incidents in addition to cybersecurity issues. Following that, the paper gives a full model of the CyberSafety Incident Monitoring Process, which includes all industry requirements for cybersecurity monitoring as well as SOTIF-related concerns. The paper presents the proposal of using Business Process Model and Notation (BPMN) to create a complete process model. The probable practical implementation of the CyberSafety Incident Monitoring Process Model is evaluated in the last part of the study based on the phantom attack scenario to test the idea with a real-world example. As a consequence, the strategy is accurate and fits the industry goal of merging safety and cybersecurity during the maintenance phase, which reduces the time and effort necessary for faster response to various vehicle risks when time is crucial. In future research, more emphasis should be made on combining numerous incident fields, which may have an impact on vehicle safety.