The search functionality is under construction.
The search functionality is under construction.

A Study of The Risk Quantification Method of Cyber-Physical Systems focusing on Direct-Access Attacks to In-Vehicle Networks

Yasuyuki KAWANISHI, Hideaki NISHIHARA, Hideki YAMAMOTO, Hirotaka YOSHIDA, Hiroyuki INOUE

  • Full Text Views

    0

  • Cite this

Summary :

Cyber-physical systems, in which ICT systems and field devices are interconnected and interlocked, have become widespread. More threats need to be taken into consideration when designing the security of cyber-physical systems. Attackers may cause damage to the physical world by attacks which exploit vulnerabilities of ICT systems, while other attackers may use the weaknesses of physical boundaries to exploit ICT systems. Therefore, it is necessary to assess such risks of attacks properly. A direct-access attack in the field of automobiles is the latter type of attacks where an attacker connects unauthorized equipment to an in-vehicle network directly and attempts unauthorized access. But it has been considered as less realistic and evaluated less risky than other threats via network entry points by conventional risk assessment methods. We focused on reassessing threats via direct access attacks in proposing effective security design procedures for cyber-physical systems based on a guideline for automobiles, JASO TP15002. In this paper, we focus on “fitting to a specific area or viewpoint” of such a cyber-physical system, and devise a new risk quantification method, RSS-CWSS_CPS based on CWSS, which is also a vulnerability evaluation standard for ICT systems. It can quantify the characteristics of the physical boundaries in cyber-physical systems.

Publication
IEICE TRANSACTIONS on Fundamentals Vol.E106-A No.3 pp.341-349
Publication Date
2023/03/01
Publicized
2022/11/09
Online ISSN
1745-1337
DOI
10.1587/transfun.2022CIP0004
Type of Manuscript
Special Section PAPER (Special Section on Cryptography and Information Security)
Category

Authors

Yasuyuki KAWANISHI
  Sumitomo Electric Industries, Ltd.,AIST,Kyoto Sangyo University
Hideaki NISHIHARA
  AIST
Hideki YAMAMOTO
  Sumitomo Electric Industries, Ltd.,AIST
Hirotaka YOSHIDA
  AIST
Hiroyuki INOUE
  AIST,Kyoto Sangyo University

Keyword