Nowadays, with the introduction of network connectivity both inside and outside modern vehicles, researchers have identified that the system is actually fragile if an attacker could locate any security vulnerabilities of the system. Although security analysis techniques prospered in the industry, still a general, compatible, and effective one remains uncertain. This paper aims to transplant the safety analysis technique HAZard and OPerability studies (HAZOP) into an appropriate security analysis technique. By conducting a case study of security analysis for Open Source Immobilizer Protocol Stack, we demonstrate the usability of the proposed technique and discusses results of the analysis.
[1]
Thomas A. Longstaff,et al.
A common language for computer security incidents
,
1998
.
[2]
Peter Neumann,et al.
Safeware: System Safety and Computers
,
1995,
SOEN.
[3]
David John Pumfrey,et al.
The principled design of computer system safety analyses
,
1999
.
[4]
Matti Valovirta,et al.
Experimental Security Analysis of a Modern Automobile
,
2011
.
[5]
Marcin Wójcik,et al.
Security Analysis of an Open Car Immobilizer Protocol Stack
,
2012,
INTRUST.
[6]
Peter Kulchyski.
and
,
2015
.