TY - GEN
T1 - Investigating security vulnerabilities in modern vehicle systems
AU - Zheng, Xi
AU - Pan, Lei
AU - Chen, Hongxu
AU - Wang, Peiyin
PY - 2016
Y1 - 2016
N2 - Modern vehicle systems have evolved from an isolated control system into an interconnected architecture combining software, hardware, and data. Such architecture is specialized into vehicle infotainment system (e.g., SYNC of Ford, iDrive of BMW and MMI of Audi), Vehicle to Vehicle (V2V), Vehicle to Infrastructure (V2I), and vehicle social system which connects to social media networks. These systems hold private and sensitive information such as travel plans, social network messages, login credentials to bank accounts, and so on, which is a lucrative target for malicious attackers. Unfortunately, existing research overlooks the security issues with respect to this highly integrated system. This paper presents security issues across various systems related to modern vehicles through a a holistic and systematic view. We analyze each system components with respect to published attacks in details and present a synthesized body of knowledge. We identify the growing trend where security attacks are launched from the cyber space to vehicle control system via smartphones and vehicle networks. In the foreseeable future, we expect more security attacks both in numbers and in complexity. Knowing this will arise the awareness of vehicle system security and help engineers to build security solutions.
AB - Modern vehicle systems have evolved from an isolated control system into an interconnected architecture combining software, hardware, and data. Such architecture is specialized into vehicle infotainment system (e.g., SYNC of Ford, iDrive of BMW and MMI of Audi), Vehicle to Vehicle (V2V), Vehicle to Infrastructure (V2I), and vehicle social system which connects to social media networks. These systems hold private and sensitive information such as travel plans, social network messages, login credentials to bank accounts, and so on, which is a lucrative target for malicious attackers. Unfortunately, existing research overlooks the security issues with respect to this highly integrated system. This paper presents security issues across various systems related to modern vehicles through a a holistic and systematic view. We analyze each system components with respect to published attacks in details and present a synthesized body of knowledge. We identify the growing trend where security attacks are launched from the cyber space to vehicle control system via smartphones and vehicle networks. In the foreseeable future, we expect more security attacks both in numbers and in complexity. Knowing this will arise the awareness of vehicle system security and help engineers to build security solutions.
KW - Evaluation of security
KW - Authentication and authorization
KW - Distributed systems security
KW - Privacy protection
KW - Smartphone security
KW - Modern vehicle system
KW - Security
KW - Privacy
KW - Reliability
UR - http://www.scopus.com/inward/record.url?scp=84989828185&partnerID=8YFLogxK
U2 - 10.1007/978-981-10-2741-3_3
DO - 10.1007/978-981-10-2741-3_3
M3 - Conference proceeding contribution
SN - 9789811027406
T3 - Communications in Computer and Information Science
SP - 29
EP - 40
BT - Applications and techniques in information security
A2 - Batten, Lynn
A2 - Li, Gang
PB - Springer, Springer Nature
T2 - 6th International Conference on Applications and Techniques in Information Security, ATIS 2016
Y2 - 26 October 2016 through 28 October 2016
ER -