Identifying security objectives
A common way to analyze the security of a system is to evaluate if it has achieved its security objectives. These objectives can be grouped into five classes: integrity, authenticity, confidentiality, accountability, and availability. A typical automotive system will aim to achieve a subset of these objective classes. In the following subsections, we will explore each class of security objectives and give examples of how they apply to automotive systems.
Integrity
If you have worked in functional safety, then integrity is a familiar concept that ensures data is protected from corruption due to random or systematic faults in a system. In the context of cybersecurity, integrity has a more general meaning as it is concerned with protecting data not only from accidental corruption but also from malicious tampering. At a high level, a vehicle aims to protect the integrity of its data and safeguard its ability to correctly control its functions within...
