Article
Version 2
This version is not peer-reviewed
Towards Security-by-design in Automotive Development Process
Version 1
: Received: 24 November 2020 / Approved: 25 November 2020 / Online: 25 November 2020 (14:00:18 CET)
Version 2 : Received: 8 December 2020 / Approved: 9 December 2020 / Online: 9 December 2020 (10:59:57 CET)
Version 2 : Received: 8 December 2020 / Approved: 9 December 2020 / Online: 9 December 2020 (10:59:57 CET)
How to cite: Jeong, S.; Kang, S.; Kim, S. Towards Security-by-design in Automotive Development Process. Preprints 2020, 2020110644 Jeong, S.; Kang, S.; Kim, S. Towards Security-by-design in Automotive Development Process. Preprints 2020, 2020110644
Abstract
Although traditional automotive development has mainly focused on functional safety, as the number of automotive hacking cases has increased due to the growing Internet connectivity of automotive control systems, security is also becoming more important. Accordingly, various international organizations are preparing cybersecurity regulations or standards to ensure security in automotive development by emphasizing the concept of security-by-design(i.e. security engineering) which emphasizes trustworthiness from the beginning of development. The problem, however, is that no specific methodology has been suggested. In this paper, we propose a specific security-by-design methodology for automotive development based on Secure System Development Life Cycle (secure SDLC) standards and evidence-based standards. Our methodology could be easily used in the actual field as it is more general and detailed than existing secure SDLC standards and research. Also, since it satisfies all requirements of United Nations Economic Commission for Europe (UNECE) regulation, automobile manufacturers could respond to the upcoming cybersecurity regulation with our methodology.
Keywords
Automotive development; Secure SDLC; Evidence-based standard; ISO/SAE 21434; UNECE cybersecurity regulation
Subject
Engineering, Automotive Engineering
Copyright: This is an open access article distributed under the Creative Commons Attribution License which permits unrestricted use, distribution, and reproduction in any medium, provided the original work is properly cited.
Comments (1)
We encourage comments and feedback from a broad range of readers. See criteria for comments and our Diversity statement.
Leave a public commentSend a private comment to the author(s)
* All users must log in before leaving a comment
Commenter: Seungyeon Jeong
Commenter's Conflict of Interests: Author