book

Automotive Cybersecurity Engineering Handbook

Name: Automotive Cybersecurity Engineering Handbook
Author: Dr. Ahmad MK Nasser
ISBN: 9781801076531

by Dr. Ahmad MK Nasser

October 2023

Intermediate to advanced

392 pages

12h 58m

English

Packt Publishing

Read now

Unlock full access

Automotive Cybersecurity Engineering Handbook
ContributorsAbout the authorAbout the reviewers
Preface
Who this book is forWhat this book coversTo get the most out of this bookDownload the example code filesConventions usedGet in touchShare Your ThoughtsDownload a free PDF copy of this book
Part 1:Understanding the Cybersecurity Relevance of the Vehicle Electrical Architecture
Chapter 1: Introducing the Vehicle Electrical/Electronic Architecture
Overview of the basic building blocks of the E/E architectureElectronic control unitsLooking at MCU-based ECUsLooking at SoC-based ECUsLooking inside the MCU and SoC software layersECU domainsFuel-based powertrain domainElectric drive powertrain domainChassis safety control domainInterior cabin domainInfotainment and connectivity domainCross-domainExploring the in-vehicle networkCANFlexRayLINUARTSENTGMSLI2CEthernetJ1939Sensors and actuatorsSensor typesActuatorsExploring the vehicle architecture typesHighly distributed E/E architectureDomain-centralized E/E architectureZone architectureCommercial truck architecture typesSummaryAnswers to discussion pointsFurther reading
Chapter 2: Cybersecurity Basics for Automotive Use Cases
Exploring the attack classesPassive attacksActive attacksIdentifying security objectivesIntegrityAuthenticityConfidentialityAccountabilityAvailabilityCryptography applied to automotive use casesBuilding blocksOne-way hash functionsMessage authentication code algorithmsRandom number generatorsPublic key cryptographyKey managementNIST defined security strengthChinese cryptographyPQC algorithmsSecurity principlesDefense in depthDomain separationLeast privilegeLeast sharingMediated accessProtective defaultsAnomaly detectionDistributed privilegeHierarchical protection and zero trustMinimal trusted elementsLeast persistenceProtective failureContinuous protectionRedundancyUse of standardized cryptographySummaryFurther reading
Chapter 3: Threat Landscape against Vehicle Components
Threats against external vehicle interfacesBackend-related threatsConnectivity threatsThreats against the E/E topologyHighly distributed E/E architectureDomain-centralized E/E architectureCentral vehicle computer architectureThreats against in-vehicle networksCANFlexRayEthernetThe Unified Diagnostic Services (UDS) protocolSAE J1939 protocolsSAE J2497 (PLC4TRUCKS)Threats against sensorsCommon ECU threatsDebug portsFlash programmingPower and mode manipulationTampering with machine learning algorithmsSoftware attacksDisclosure and tampering of cryptographic keysSummaryReferences
Part 2: Understanding the Secure Engineering Development Process
Chapter 4: Exploring the Landscape of Automotive Cybersecurity Standards
Primary standardsUNECE WP.29Chinese regulation and standardizationSecondary standardsIATF 16949:2016Automotive SPICE (ASPICE)Trusted Information Security Assessment Exchange (TISAX)SAE J3101 – hardware-protected security for ground vehiclesCoding and software standardsNIST cryptographic standardsSupporting standards and resourcesMITRE Common Weakness Enumeration (CWE)US DoT NHTSA Cybersecurity Best Practices for the Safety of Modern VehiclesENISA good practices for the security of smart carsSAE J3061 – cybersecurity guidebook for cyber-physical vehicle systemsISO/IEC 27001NIST SP 800-160UptaneSummaryReferences
Chapter 5: Taking a Deep Dive into ISO/SAE21434
NotationsAt a glance – the ISO 21434 standardOrganizational cybersecurity managementManagement systemsIntersection of cybersecurity with other disciplinesTool managementPlanningAcquisition and integration of supplier componentsSupplier capability assessment and the role of the CSIAThe concept phaseItem-level conceptCybersecurity conceptImplications to component-level developmentDesign and implementationPost-development requirementsConfiguration and calibrationWeakness analysisUnit implementationVerification testingValidation testingProduct releaseCybersecurity caseCybersecurity assessmentProduction planningOperations and maintenanceMonitoringVulnerability analysisVulnerability managementUpdatesEnd of lifeSummary
Chapter 6: Interactions Between Functional Safety and Cybersecurity
A tale of two standardsA unified versus integrated approachEstablishing a foundational understanding of functional safety and cybersecurityUnderstanding the unique aspects and interdependencies between the two domainsDifferences between safety and security scopeDifferences in the level of interdependence between safety and security requirementsConflict resolutionExtending the safety and quality supporting processesPlanningSupplier managementConceptDesignImplementationTesting and validationReleaseProductionEnd of lifeCreating synergies in the concept phaseItem functionsItem boundaries and operational environmentsDamage scenarios and hazardsSafety and security goalsSafety and security requirementsFinding synergies and conflicts in the design phaseLeveraging safety and security mechanismsSelf-tests across safety and securityLeveraging error detection safety mechanismsEliminating inconsistencies in the error responseParallels in design principlesSecure coding practices versus safe coding techniquesSynergies and differences in the testing phaseSummaryReferences

Part 3: Executing the Process to Engineer a Secure Automotive Product
Chapter 7: A Practical Threat Modeling Approach for Automotive Systems
The fundamentals of performing an effective TARAAssetsDamage scenariosThreat scenariosAttacker model and threat typesAttack pathsRisk assessment methodsRisk treatmentCommon pitfalls when preparing a TARADefining the appropriate TARA scopeThe practical approachKnow your systemMake your assumptions knownUse case-driven analysisPrepare context and data flow diagramsDamages versus assets – where to startIdentifying assets with the help of asset categoriesBuilding threat catalogsCreating attack paths using a system flow diagramRisk prioritizationDefining cybersecurity goalsChoosing security controls and operational environment (OE) requirementsTracking shared and accepted risksReview and signoffCase study using a digital video recorder (DVR)AssumptionsContext diagramIdentifying the assetsDamage scenariosCybersecurity requirements and controlsSummaryReferences
Chapter 8: Vehicle-Level Security Controls
Choosing cybersecurity controlsChallenging areasVehicle-level versus ECU-level controlsPolicy controlsSecure manufacturingChallengesSecure off-board network communicationWi-FiBluetoothCellularHost-based intrusion detectionNetwork intrusion detection and prevention (NIDP)Domain separation and filteringSensor authenticationSecure software updatesIn-vehicle network protectionCAN message authenticationEthernetSecuring diagnostic abilitiesSecurity access control via UDS service 0x27Role-based access control via UDS service 0x29Securing flash programming servicesSecure decommissioningSummaryFurther reading
Chapter 9: ECU-Level Security Controls
Understanding control actions and layersExploring policy controlsExploring hardware controlsRoTOTP memoryHardware-protected keystoreSecure Universal Flash StorageCryptographic acceleratorsLockable hardware configurationCPU securityIsolation through MMUs and MPUsEncrypted volatile memoriesDebug access managementExploring software security controlsSoftware debug and configuration managementSecure manufacturingKey management policiesMulti-stage secure bootTrusted runtime configurationTEEsSecure updateSpatial isolationTemporal isolationEncrypted and authenticated filesystemsRuntime execution hardeningSecurity monitorsExploring physical security controlsTamper detection and preventionPrinted circuit board layout pin and trace hidingConcealment and shieldingSummaryFurther reading
Index
Why subscribe?
Other Books You May EnjoyPackt is searching for authors like youShare Your ThoughtsDownload a free PDF copy of this book

Overview

The Automotive Cybersecurity Engineering Handbook provides a comprehensive guide to mastering cybersecurity for automotive systems. Readers learn to navigate standards like ISO 21434 and UNECE REG 155-156 and apply practical techniques to safeguard vehicle systems from cyber threats. This book serves as an essential resource for engineers looking to create cyber-resilient vehicles.

What this Book will help me do

Understand ISO 21434 and UNECE cybersecurity standards and apply them in practice.
Perform threat modeling and risk assessment to identify and mitigate vulnerabilities in automotive systems.
Integrate cybersecurity seamlessly into the automotive product development lifecycle.
Design and implement secure architectures for ECUs and vehicle networks.
Deploy and manage cybersecurity measures across different layers of vehicle architecture.

Author(s)

Dr. Ahmad MK Nasser, a respected expert in automotive engineering and cybersecurity, brings years of experience in designing secure vehicle systems. With a strong academic and industry background, he has contributed to numerous projects in automotive safety and security. His practical approach to teaching complex subjects makes this book an invaluable guide for engineers.

Who is it for?

This book is ideal for automotive engineers seeking to enhance cybersecurity knowledge, functional safety engineers expanding into vehicle cybersecurity, and newcomers to the automotive sector looking to understand cybersecurity integration. Prior engineering or software development experience will enable readers to fully utilize the information in this book.

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781801076531

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills