Building secure cars : assuring the automotive software development lifecycle /
Dennis Kengo Oka.
- First edition.
- 1 online resource
Includes bibliographical references and index.
Overview of the Current State of Cybersecurity in the Automotive Industry -- Introduction to Security in the Automotive Software Development Lifecycle -- Automotive-Grade Secure Hardware -- Need for Automated Security Solutions in the Automotive Software Development Lifecycle -- Static Code Analysis for Automotive Software -- Software Composition Analysis in the Automotive Industry -- Overview of Automotive Security Testing Approaches -- Automating Fuzz Testing of In-Vehicle Systems by Integrating with Automotive Test Tools -- Improving Fuzz Testing Coverage by Using Agent Instrumentation -- Automating File Fuzzing over USB for Automotive Systems -- Automation and Traceability by Integrating Application Security Testing Tools into ALM Systems -- Continuous Cybersecurity Monitoring, Vulnerability Management, Incident Response, and Secure OTA Updates -- Summary and Next Steps.
"Connectivity and software-based automotive components are now the norm in motor manufacturing, and there can be more than 100 million lines of code in a modern car, making the vehicle highly vulnerable to hacking and other cybersecurity attacks. In response, the automotive industry is investing heavily in security software, effectively creating secure cars. Written by a seasoned automotive expert with international industry expertise, this book introduces readers to the different types of security solutions, with the aim of helping software development and test teams identify vulnerabilities quickly and efficiently. Common problems and pitfalls, based on real-world experiences, are discussed and solutions provided. The aim of the book is to assist auto industry insiders overcome cybersecurity challenges by incorporating security into their software lifecycle to help build more secure and safe cars"--