Evaluation Framework for Electric Vehicle Security Risk Assessment

Electric Vehicles (EVs) seem promising for future transportation to solve environmental concerns and energy management problems. According to Reuters, global car makers plan to invest over half a billion in more efficient and intelligent EVs and batteries. However, there are several challenges in EV mass production, including cybersecurity. Due to the cyber-physical nature of EVs and charging stations, their security and trustworthiness are ongoing challenges. In this study, the authors identify gaps in the security profiling of EVs and categorize them into five components: 1) charging station security, 2) information privacy, 3) software security, 4) connected vehicle security, and 5) autonomous driving security. Their study provides a comprehensive analysis of identified vulnerabilities, threats, challenges and attacks for different EV security aspects, along with their possible surface/subsurface and countermeasures. They develop a comprehensive security risk assessment framework by first using EV security profiles and mapping identified vulnerabilities to a well-known threat model, STRIDE. Then, they classify the risk levels associated with each vulnerability by setting ground criteria for the impact and likelihood of the threats. Finally, they validate their risk assessment framework by applying the same criteria to eight real-world EV attack scenarios. As a result, researchers can adapt the proposed risk assessment framework to discover threats and assess their risks in EVs and charging station ecosystems.

• Record URL:
  http://dx.doi.org/10.1109/TITS.2023.3307660
• Availability:
  • Find a library where document is available. Order URL: http://worldcat.org/oclc/41297384
• Supplemental Notes:
  • Copyright © 2023, IEEE.
• Authors:
  • Shirvani, Soheil
  • Baseri, Yaser
  • Ghorbani, Ali
• Publication Date: 2024-1

Language

• English

Media Info

• Media Type: Web
• Features: References;
• Pagination: pp 33-56
• Serial:
  • IEEE Transactions on Intelligent Transportation Systems
  • Volume: 25
  • Issue Number: 1
  • Publisher: Institute of Electrical and Electronics Engineers (IEEE)
  • ISSN: 1524-9050
  • Serial URL: http://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6979

Subject/Index Terms

• TRT Terms: Autonomous vehicles; Computer security; Connected vehicles; Electric vehicle charging; Risk analysis
• Subject Areas: Data and Information Technology; Highways; Vehicles and Equipment;

Filing Info

• Accession Number: 01916054
• Record Type: Publication
• Files: TRIS
• Created Date: Apr 19 2024 9:48AM