Multiple Security Domain Model of a Vehicle in an Automated Platoon
This chapter focuses on the security of automated vehicle platoons. Specifically, it examines the vulnerabilities that occur via disruptions of the information flows among the different types of sensors, the communications network and the control unit in each vehicle of a platoon. Multiple security domain nondeducibility is employed to determine whether or not the system can detect attacks. The information flows among the various domains provide insights into the vulnerabilities that exist in the system and whether the model is nondeducible. If nondeducibility is found to be true, then an attacker can create an undetectable attack. Defeating nondeducibility requires additional information sources, including invariants pertaining to vehicle platoon operation. A platoon is examined from the control unit perspective to determine if the vulnerabilities are associated with preventing situational awareness, which could lead to vehicle crashes.
U. Kanteti and B. M. McMillin, "Multiple Security Domain Model of a Vehicle in an Automated Platoon," IFIP Advances in Information and Communication Technology, vol. 512, pp. 81-97, Springer New York LLC, Mar 2017.
The definitive version is available at https://doi.org/10.1007/978-3-319-70395-4_5
11th IFIP WG 11.10 International Conference on Critical Infrastructure Protection, ICCIP 2017 (2017: Mar. 13-15, Arlington, VA)
Keywords and Phrases
Automated Vehicle Platoons; Multiple Security Domain Nondeducibility
International Standard Book Number (ISBN)
International Standard Serial Number (ISSN)
Article - Conference proceedings
© 2017 International Federation for Information Processing (IFIP), All rights reserved.