⃞ Purpose of Autonomous Vehicle Security Model
Self-driving cars are growing rapidly with the development of connectivity technology and sensor technology. Global vehicle manufacturers such as Google, GM, and Ford are actively developing self-driving cars, and Hyundai Motor Company also introduced self-driving cars at CES. has become.
Accordingly, service models utilizing self-driving vehicles such as unmanned shuttle, parking, and delivery are being actively developed. However, due to this convergence, cyber attacks that occurred in the existing ICT environment are being transferred to the automotive environment. Since the safety of a car is directly related to the safety of the driver and passengers as well as all objects on the road, it is necessary to be fully prepared to defend against cyber attacks on cars.
Currently, self-driving car services are not yet in a mature stage and focus on technology development, so preparation for cyber security is insufficient. Therefore, this study intends to present an autonomous vehicle security model based on the results of self-driving service surveys and vehicle/infrastructure vulnerability analysis.
This autonomous vehicle security model considers the following items.
• Scheme of security threats, attack routes, and damaged assets according to the composition of autonomous vehicles and related services
• Suggest security technologies and solutions needed to strengthen security based on the results of autonomous vehicle security threat analysis
⃞ Scope of Autonomous Vehicle Security Model
A total of 9 types of services were identified through the self-driving car service status survey, and the attack surface was identified through the Data Flow Diagram (DFD) for each service. However, since the detailed configuration of each service cannot be known through open data, and each service provider takes a different configuration, there is no common data flow. Therefore, among the identified services, except for the following two cases where security consulting was conducted, the remaining services identified simple DFDs and their threats.
• Self-driving shuttle
• Telematics service to provide autonomous driving service
For threats and mitigation measures for services other than the two cases, refer to “Chapter 4 Security Threats to Self-Driving Vehicles”.
⃞ Composition of Autonomous Vehicle Security Model
In this document, an ID is assigned to each item when deriving security requirements, security threats, and countermeasures. As shown in the figure below, Security Requirements were derived according to Security Threats, and a countermeasure (Security Concept) was developed. Therefore, an ID is assigned to each item in each chapter, and related IDs are marked on the right side of the table so that related items can be easily found.
 |
| Order of Items Referring to Autonomous Vehicles |
ᐆ vehicle security threats : Security Threats Vehicle
ᐆ Backend Infrastructure Security Threats : Security Threats Server, Security Threats Network, Security Threats DB
ᐆ Vehicle security requirements : Security Requirements Vehicle
ᐆ Backend Infrastructure Security Requirements : Security Requirements Server, Security Requirements Network, Security Requirements DB
ᐆ Vehicle countermeasures : Security Concept Vehicle
ᐆ Back-end infrastructure countermeasures : Security Concept Server, Security Concept Network, Security Concept DB
Source : Ministry of Science and ICT Korea Internet & Security Agency
