Cyber-attacks in the next-generation cars, mitigation techniques, anticipated readiness and future directions

Shah Khalid Khan; Nirajan Shiwakoti; Peter Stasinopoulos; Yilun Chen

doi:10.1016/j.aap.2020.105837

Cyber-attacks in the next-generation cars, mitigation techniques, anticipated readiness and future directions

Accid Anal Prev. 2020 Dec:148:105837. doi: 10.1016/j.aap.2020.105837. Epub 2020 Oct 26.

Authors

Shah Khalid Khan¹, Nirajan Shiwakoti², Peter Stasinopoulos², Yilun Chen²

Affiliations

¹ School of Engineering, RMIT University, Carlton, Victoria 3053, Australia. Electronic address: s3680269@student.rmit.edu.au.
² School of Engineering, RMIT University, Carlton, Victoria 3053, Australia.

PMID: 33120180
DOI: 10.1016/j.aap.2020.105837

Abstract

Modern-day Connected and Autonomous Vehicles (CAVs) with more than 100 million code lines, running up-to a hundred Electronic Control Units (ECUs) will create and exchange digital information with other vehicles and intelligent transport networks. Consequently, ubiquitous internal and external communication (controls, commands, and data) within all CAV-related nodes is inevitably the gatekeeper for the smooth operation. Therefore, it is a primary vulnerable area for cyber-attacks that entails stringent and efficient measures in the form of "cybersecurity". There is a lack of systematic and comprehensive review of the literature on cyber-attacks on the CAVs, respective mitigation strategies, anticipated readiness, and research directions for the future. This study aims to analyse, synthesise, and interpret critical areas for the roll-out and progression of CAVs in combating cyber-attacks. Specifically, we described in a structured way a holistic view of potentially critical avenues, which lies at the heart of CAV cybersecurity research. We synthesise their scope with a particular focus on ensuring effective CAVs deployment and reducing the probability of cyber-attack failures. We present the CAVs communication framework in an integrated form, i.e., from In-Vehicle (IV) communication to Vehicle-to-Vehicle (V2X) communication with a visual flowchart to provide a transparent picture of all the interfaces for potential cyber-attacks. The vulnerability of CAVs by proximity (or physical) access to cyber-attacks is outlined with future recommendations. There is a detailed description of why the orthodox cybersecurity approaches in Cyber-Physical System (CPS) are not adequate to counter cyber-attacks on the CAVs. Further, we synthesised a table with consolidated details of the cyber-attacks on the CAVs, the respective CAV communication system, its impact, and the corresponding mitigation strategies. It is believed that the literature discussed, and the findings reached in this paper are of great value to CAV researchers, technology developers, and decision-makers in shaping and developing a robust CAV-cybersecurity framework.

Keywords: CAVs communication framework; Connected and autonomous vehicles (CAVs); Cybersecurity; Driverless cars; Electronic control units (ECUs).

Publication types

Review

MeSH terms

Accidents, Traffic / prevention & control*
Accidents, Traffic / statistics & numerical data*
Adult
Aged
Aged, 80 and over
Automobile Driving / psychology*
Automobile Driving / standards*
Automobile Driving / statistics & numerical data
Automobiles / standards*
Automobiles / statistics & numerical data
Computer Security / standards*
Computer Security / statistics & numerical data
Computer Security / trends*
Female
Forecasting
Guidelines as Topic
Humans
Male
Middle Aged
Young Adult