Safety-Driven Cyber Security Engineering Approach Applied to OTA

Automotive ECUs rely on the convenience of flashing new software updates both during the development and the post production phases, when updates are needed to fix bugs or add functionality. As vehicles become connected to the Internet and to smart devices, more capabilities for delivering the flash update to the vehicle are possible at the added cost of increased security threats. In this paper we present a safety driven security engineering approach to close the gap between safety and security as it applies to cyber physical systems. We then apply it to the software update over-theair (OTA) use case. The approach presented aims to fill the gap of applying traditional IT security techniques to Cyber Physical Systems where safety is a critical factor. We compare the results of our approach to other work that aims to secure the OTA process to determine the efficacy of our approach.