DSpace Repository

STRIDE-Based Cybersecurity Threat Modeling, Risk Assessment and Treatment of an In-Vehicle Infotainment System

Show simple item record

dc.contributor.author Das, Popy
dc.contributor.author Al Asif, Md. Rashid
dc.contributor.author Jahan, Sohely
dc.contributor.author Ahmed, Kawsar
dc.contributor.author Bui, Francis M.
dc.contributor.author Khondoker, Rahamatullah
dc.date.accessioned 2024-12-03T08:01:55Z
dc.date.available 2024-12-03T08:01:55Z
dc.date.issued 2024-06-30
dc.identifier.issn 2624-8921
dc.identifier.uri http://dspace.daffodilvarsity.edu.bd:8080/handle/123456789/13583
dc.description.abstract In modern automobiles, the infotainment system is crucial for enhancing driver and passenger capabilities, offering advanced features such as music, navigation, communication, and entertainment. Leveraging Wi-Fi, cellular networks, NFC, and Bluetooth, the system ensures continuous internet connectivity, providing seamless access to information. However, the increasing complexity of IT connectivity in vehicles raises significant cybersecurity concerns, including potential data breaches and exposure of sensitive information. To enhance security in infotainment systems, this study applied component-level threat modeling to a proposed infotainment system using the Microsoft STRIDE model. This approach illustrates potential component-level security issues impacting privacy and security concerns. The study also assessed these impacts using SAHARA and DREAD risk assessment methodologies. The threat modeling process identified 34 potential security threats, each accompanied by detailed information. Moreover, a comparative analysis is performed to compute risk values for prioritizing treatment, followed by recommending mitigation strategies for each identified threat. These identified threats and associated risks require careful consideration to prevent potential cyberattacks before deploying the infotainment system in automotive vehicles. en_US
dc.language.iso en_US en_US
dc.publisher MDPI en_US
dc.subject Cybersecurity en_US
dc.subject Infotainment en_US
dc.subject Risk assessment en_US
dc.title STRIDE-Based Cybersecurity Threat Modeling, Risk Assessment and Treatment of an In-Vehicle Infotainment System en_US
dc.type Article en_US


Files in this item

This item appears in the following Collection(s)

Show simple item record

Search DSpace


Browse

My Account