Cybersecurity Verification and Validation Testing in Automotive

Damjan Ekert; Jürgen Dobaj; Alen Salamun

doi:10.3897/jucs.71833

Journal of Universal Computer Science (Aug 2021)

Cybersecurity Verification and Validation Testing in Automotive

Damjan Ekert,
Jürgen Dobaj,
Alen Salamun

Affiliations

Damjan Ekert: ISCN GesmbH Entwicklung
Jürgen Dobaj: TU Graz
Alen Salamun: Real Security

DOI: https://doi.org/10.3897/jucs.71833
Journal volume & issue: Vol. 27, no. 8
pp. 850 – 867

Abstract

Read online Read online Read online

The new generations of cars have a number of ECUs (Electronic Control Units) which are connected to a central gateway and need to pass cybersecurity integration tests to fulfil the homologation requirements of cars. Cars usually have a gateway server (few have additional domain servers) with Linux and a large number of ECUs which are real time control of actuators (ESP, EPS, ABS, etc. – usually they are multicore embedded controllers) connected by a real time automotive specific bus (CAN-FD) to the domain controller or gateway server. The norms (SAE J3061, ISO 21434) require cybersecurity related verification and validation. Fir the verification car manufacturers use a network test suite which runs > 2000 test cases and which have to be passed for homologation. These norms have impact on the way how car communication infrastructure is tested, and which cybersecurity attack patterns are checked before a road release of an ECU/car.This paper describes typical verification and validation approaches in modern vehicles and how such test cases are derived and developed.

Published in Journal of Universal Computer Science

ISSN: 0948-695X (Print); 0948-6968 (Online)
Publisher: Graz University of Technology
Country of publisher: Austria
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: https://lib.jucs.org/

About the journal

Abstract

Keywords