The increasing equipment of cars with smart
systems and their networking with other devices is leading to
a growing network of connected vehicles. Connected cars are
Internet of Things (IoT) devices that communicate bidirectionally
with other systems, enabling internet access and data exchange.
Artificial Intelligence (AI) offers benefits such as autonomous
driving, driver assistance programs, and monitoring. The
increasing connectivity of cars also brings new risks to users’
privacy. Our study focuses on privacy threats in connected cars
from a user perspective. Our study provides a comprehensive
threat model analysis based on a combination of STRIDE and
LINDDUN. We analyze the various threats and vulnerabilities
that arise from connecting cars to the internet and other
devices, including Vehicle-to-Vehicle (V2V), Vehicle-to-Vloud
(V2C), and Vehicle-to-Device (V2D). We conduct our study
based on a theoretical model of a modern-day connected
vehicle of another study. Our study shows that several types
of threats can negatively impact the privacy of connected
car users. This encapsulates the potential risks, such as the
inadvertent disclosure of personal data due to the vehicle’s
interconnectedness with other devices, including smartphones,
and the subsequent susceptibility to unauthorized access, while
also highlighting the need for robust security measures indicated
by our comprehensive threat modeling, to safeguard against a
wide array of identified cybersecurity threats.
| Period | 16 Nov 2023 |
|---|
| Event title | The 21st IEEE International Conference on Dependable, Autonomic & Secure Computing
(DASC 2023) |
|---|
| Event type | Conference |
|---|
| Location | Abu Dhabi, United Arab EmiratesShow on map |
|---|
| Degree of Recognition | International |
|---|
- 102001 Artificial intelligence
- 102016 IT security
- 102034 Cyber-physical systems
- Security
- Privacy
- Threat modeling
- Connected Vehicles
- STRIDE
- Linddun