Automobile intelligent driving systems and communication services bring the widespread application of information technology and network technology. Meanwhile, there are increasing number of exploitable security vulnerabilities and risks in modern vehicles. These risks may cause serious consequences such as casualties and property losses for drivers. Risk assessment is an important activity in the life cycle of automobile cybersecurity and can provide a guarantee for the formation of correct cybersecurity requirements of products. Considering the current wide recognition standard for threat analysis and risk assessment, this paper proposes a systematic risk assessment method for automotive cybersecurity combined with risk assessment use cases. Finally, a typical use case of security-related component IVI is applied to illustrate the proposed risk assessment method and analysis process of cybersecurity assessment results.

CICTP