scholarly journals Research on cyber security risk of telematics box in intelligent connected vehicle

2022 ◽  
Vol 355 ◽  
pp. 03030
Author(s):  
Chao Ma ◽  
Hao Zhao ◽  
Tong Wang
Keyword(s):  
Cyber Security ◽  
Control Function ◽  
Rapid Development ◽  
Connected Vehicle ◽  
Security Risk ◽  
T Box ◽  
Multiple Dimensions ◽  
5G Network ◽  
Security Problem ◽  
Protection Strategies

With the rapid development of the automotive industry and the wide application of 5G network technology, there are more and more Telematics Box (T-Box) equipped with intelligent operating systems in vehicles and they are becoming more and more complex. Because it is connected to the on-board CAN bus internally and interconnects with mobile phone /PC through the cloud platform externally, the security of T-Box must be fully guaranteed, to make the automotive more secure. T-Box can realize remote control function, so the T-Box information security problem has been paid more and more attention. In this paper, the T-Box were tested from multiple dimensions by using various methods, and the results were statistically analyzed, and the corresponding protection strategies were proposed for the corresponding security risks.

scholarly journals Application of Bayesian network in risk assessment for website deployment scenarios

2022 ◽  
Vol 2 (14) ◽  
pp. 3-16
Author(s):  
Vu Thi Huong Giang ◽  
Nguyen Manh Tuan
Keyword(s):  
Risk Assessment ◽  
Bayesian Network ◽  
Cyber Security ◽  
Rapid Development ◽  
Cyber Attacks ◽  
Security Risk ◽  
Security Testing ◽  
Security Risks ◽  
Web Based ◽  
Assessment Results

Abstract—The rapid development of web-based systems in the digital transformation era has led to a dramatic increase in the number and the severity of cyber-attacks. Current attack prevention solutions such as system monitoring, security testing and assessment are installed after the system has been deployed, thus requiring more cost and manpower. In that context, the need to assess cyber security risks before the deployment of web-based systems becomes increasingly urgent. This paper introduces a cyber security risk assessment mechanism for web-based systems before deployment. We use the Bayesian network to analyze and quantify the cyber security risks posed by threats to the deployment components of a website. First, the deployment components of potential website deployment scenarios are considered assets, so that their properties are mapped to specific vulnerabilities or threats. Next, the vulnerabilities or threats of each deployment component will be assessed according to the considered risk criteria in specific steps of a deployment process. The risk assessment results for deployment components are aggregated into the risk assessment results for their composed deployment scenario. Based on these results, administrators can compare and choose the least risky deployment scenario. Tóm tắt—Sự phát triển mạnh mẽ của các hệ thống trên nền tảng web trong công cuộc chuyển đổi số kéo theo sự gia tăng nhanh chóng về số lượng và mức độ nguy hiểm của các cuộc tấn công mạng. Các giải pháp phòng chống tấn công hiện nay như theo dõi hoạt động hệ thống, kiểm tra và đánh giá an toàn thông tin mạng được thực hiện khi hệ thống đã được triển khai, do đó đòi hỏi chi phí và nhân lực thực hiện lớn. Trong bối cảnh đó, nhu cầu đánh giá rủi ro an toàn thông tin mạng cho các hệ thống website trước khi triển khai thực tế trở nên cấp thiết. Bài báo này giới thiệu một cơ chế đánh giá rủi ro an toàn thông tin mạng cho các hệ thống website trước khi triển khai thực tế. Chúng tôi sử dụng mạng Bayes để phân tích và định lượng rủi ro về an toàn thông tin do các nguồn đe dọa khác nhau gây ra trên các thành phần triển khai của một website. Đầu tiên, các thành phần triển khai của các kịch bản triển khai website tiềm năng được mô hình hoá dưới dạng các tài sản, sao cho các thuộc tính của chúng đều được ánh xạ với các điểm yếu hoặc nguy cơ cụ thể. Tiếp đó, các điểm yếu, nguy cơ của từng thành phần triển khai sẽ được đánh giá theo các tiêu chí rủi ro đang xét tại mỗi thời điểm cụ thể trong quy trình triển khai. Kết quả đánh giá của các thành phần triển khai được tập hợp lại thành kết quả đánh giá hệ thống trong một kịch bản cụ thể. Căn cứ vào kết quả đánh giá rủi ro, người quản trị có thể so sánh các kịch bản triển khai tiềm năng với nhau để lựa chọn kịch bản triển khai ít rủi ro nhất.

scholarly journals Optimization and Evaluation of Platooning Car-Following Models in a Connected Vehicle Environment

2021 ◽  
Vol 13 (6) ◽  
pp. 3474
Author(s):  
Guang Yu ◽  
Shuo Liu ◽  
Qiangqiang Shangguan
Keyword(s):  
Communication Technology ◽  
Intelligent Transportation Systems ◽  
Rapid Development ◽  
Safety Margin ◽  
Practical Method ◽  
Transportation Systems ◽  
Systematic Evaluation ◽  
Connected Vehicle ◽  
Car Following ◽  
Cooperative Driving

With the rapid development of information and communication technology, future intelligent transportation systems will exhibit a trend of cooperative driving of connected vehicles. Platooning is an important application technique for cooperative driving. Herein, optimized car-following models for platoon control based on intervehicle communication technology are proposed. On the basis of existing indicators, a series of evaluation methods for platoon safety, stability, and energy consumption is constructed. Numerical simulations are used to compare the effects of three traditional models and their optimized counterparts on the car-following process. Moreover, the influence of homogenous and heterogeneous attributes on the platoon is analyzed. The optimized model proposed in this paper can improve the stability and safety of vehicle following and reduce the total fuel consumption. The simulation results show that a homogenous platoon can enhance the overall stability of the platoon and that the desired safety margin (DSM) model is better suited for heterogeneous platoon control than the other two models. This paper provides a practical method for the design and systematic evaluation of a platoon control strategy, which is one of the key focuses in the connected and autonomous vehicle industry.

scholarly journals IoT Cloud Security Review

2021 ◽  
Vol 54 (4) ◽  
pp. 1-36
Author(s):  
Fei Chen ◽  
Duming Luo ◽  
Tao Xiang ◽  
Ping Chen ◽  
Junfeng Fan ◽  
...  
Keyword(s):  
Case Studies ◽  
Service Providers ◽  
Risk Mitigation ◽  
Rapid Development ◽  
Security Analysis ◽  
Cloud Security ◽  
Future Research ◽  
Security Risk ◽  
Research Attention ◽  
Cloud Systems

Recent years have seen the rapid development and integration of the Internet of Things (IoT) and cloud computing. The market is providing various consumer-oriented smart IoT devices; the mainstream cloud service providers are building their software stacks to support IoT services. With this emerging trend even growing, the security of such smart IoT cloud systems has drawn much research attention in recent years. To better understand the emerging consumer-oriented smart IoT cloud systems for practical engineers and new researchers, this article presents a review of the most recent research efforts on existing, real, already deployed consumer-oriented IoT cloud applications in the past five years using typical case studies. Specifically, we first present a general model for the IoT cloud ecosystem. Then, using the model, we review and summarize recent, representative research works on emerging smart IoT cloud system security using 10 detailed case studies, with the aim that the case studies together provide insights into the insecurity of current emerging IoT cloud systems. We further present a systematic approach to conduct a security analysis for IoT cloud systems. Based on the proposed security analysis approach, we review and suggest potential security risk mitigation methods to protect IoT cloud systems. We also discuss future research challenges for the IoT cloud security area.

Research on Electronic Cash Security Technology in Electronic Commerce

2013 ◽  
Vol 846-847 ◽  
pp. 1628-1631
Author(s):  
Song Jie Gong ◽  
Lin Di Jin
Keyword(s):  
Electronic Commerce ◽  
Rapid Development ◽  
Group Signature ◽  
Electronic Payment ◽  
Electronic Cash ◽  
Security Technology ◽  
Security Issues ◽  
Information Safety ◽  
Security Problem ◽  
Precautionary Measures

With the rapid development of electronic commerce, payment is becoming the focus problem of electronic commerce. Electronic cash has become the ideal method of electronic payment for it is able to realize fair, secure, effect electronic transacts. Along with electronic commerce development, electronic cash payment systems are also gradually developing. However, most electronic cashes are facing the security issues. Moreover, the amount of money each electronic cash card contains is fixed at issuance and is available only within a specified system. The key technology is digital signature technology, including blind signature, group signature, and ring signature. The paper researches the security problems of electronic cash in information safety and e-commerce, and discusses the electronic payment and the security problem, which is regarded as the foundation of electronic commerce. The main factors are given that causes security problems of electronic payment, and suggests corresponding precautionary measures.

Sign in / Sign up

Export Citation Format

Share Document