| fullrecord |
[{"key": "dc.contributor.advisor", "value": "Siponen, Mikko", "language": "", "element": "contributor", "qualifier": "advisor", "schema": "dc"}, {"key": "dc.contributor.advisor", "value": "H\u00e4m\u00e4l\u00e4inen, Timo", "language": "", "element": "contributor", "qualifier": "advisor", "schema": "dc"}, {"key": "dc.contributor.author", "value": "Loskin, Ilona", "language": "", "element": "contributor", "qualifier": "author", "schema": "dc"}, {"key": "dc.date.accessioned", "value": "2023-06-19T06:04:07Z", "language": null, "element": "date", "qualifier": "accessioned", "schema": "dc"}, {"key": "dc.date.available", "value": "2023-06-19T06:04:07Z", "language": null, "element": "date", "qualifier": "available", "schema": "dc"}, {"key": "dc.date.issued", "value": "2023", "language": "", "element": "date", "qualifier": "issued", "schema": "dc"}, {"key": "dc.identifier.uri", "value": "https://jyx.jyu.fi/handle/123456789/87888", "language": null, "element": "identifier", "qualifier": "uri", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Cybersecurity of road vehicles has become a genuine matter as vehicles are not manufactured anymore as plain mechanical devices but containing numerous amounts of computers and millions of lines of code. The intelligent and safety-critical vehicular systems are prone to cyberattacks just like any other information system. It is evident that the vehicles need to be protected. A joint global working group prepared a new, international standard to cover the cybersecurity engineering in the automotive industry. The standard is called ISO/SAE JWG 21434 Road vehicles - Cybersecurity engineering. The new cybersecurity engineering standard defines the minimum criteria for cybersecurity of road vehicles which is also a demand by the United Nations Economic Commission for Europe (UNECE). The cybersecurity engineering standard gives requirements and recommendations what a security risk analysis of road vehicles should contain. The standard does not provide instructions how to perform the analysis. This research study targeted to find a threat analysis and risk assessment method which covers the requirements and recommendations of the cybersecurity engineering standard. Such singular method did not exist, thus a new analysis framework named TARA+AD (Threat Analysis and Risk Assessment for Automated Driving) was derived from the best features of two existing security risk analysis methods. The research method used was design science which aims to produce an artifact to resolve real-life problems. The artifact, TARA+AD, and the study was evaluated by using a Design Science Research Method (DSRM) process model. The new framework was tested by executing a use case related to vehicular communication which is the easiest interface to be attacked. The results were satisfactory as the new TARA+AD analysis framework solved the issue with performing a cybersecurity engineering standard compliant security risk analysis.", "language": "fi", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.abstract", "value": "Maantieajoneuvojen kyberturvallisuudesta on tullut todellinen asia, sill\u00e4 ajoneuvoja ei valmisteta en\u00e4\u00e4 pelkkin\u00e4 mekaanisina laitteina, vaan ne sis\u00e4lt\u00e4v\u00e4t lukuisia m\u00e4\u00e4ri\u00e4 tietokoneita ja miljoonia koodirivej\u00e4. \u00c4lykk\u00e4\u00e4t ja turvallisuuskriittiset ajoneuvoj\u00e4rjestelm\u00e4t ovat alttiita kyberhy\u00f6kk\u00e4yksille kuten kaikki muutkin tietoj\u00e4rjestelm\u00e4t. On selv\u00e4\u00e4, ett\u00e4 ajoneuvoja on suojeltava. Yhteinen globaali ty\u00f6ryhm\u00e4 valmisteli uuden kansainv\u00e4lisen standardin kattamaan autoteollisuuden kyberturvallisuustekniikan. Standardin nimi on ISO/SAE JWG 21434 Road vehicles - Cybersecurity engineering (suomeksi: ISO/SAE JWG 21434 Maantieajoneuvot - Kyberturvallisuustekniikka). Uusi kyberturvallisuustekniikkastandardi m\u00e4\u00e4rittelee maantieajoneuvojen kyberturvallisuuden v\u00e4himm\u00e4iskriteerit, jota my\u00f6s Yhdistyneiden kansakuntien Euroopan talouskomissio UNECE vaatii. Kyberturvallisuustekniikan standardi antaa vaatimuksia ja suosituksia, mit\u00e4 tieliikenteen ajoneuvojen turvallisuusriskianalyysin tulee sis\u00e4lt\u00e4\u00e4. Standardi ei anna ohjeita analyysin suorittamiseen. T\u00e4m\u00e4n tutkimuksen tavoitteena oli l\u00f6yt\u00e4\u00e4 uhkien analysointi- ja riskien arviointimenetelm\u00e4, joka kattaa kyberturvallisuustekniikan standardin vaatimukset ja suositukset. T\u00e4llaista yksitt\u00e4ist\u00e4 menetelm\u00e4\u00e4 ei ollut saatavilla, joten uusi analyysikehys nimelt\u00e4 TARA+AD (Threat Analysis and Risk Assessment for Automated Driving) (suomeksi: uhkien analysointi ja riskien arviointi autonomisessa ajossa) johdettiin kahden olemassa olevan turvallisuusriskianalyysimenetelm\u00e4n parhaista ominaisuuksista. Tutkimusmenetelm\u00e4n\u00e4 oli suunnittelutiede, jonka tavoitteena on tuottaa artefakti, eli jokin tuotos ratkaisemaan tosiel\u00e4m\u00e4n ongelmia. Artefakti, TARA+AD, ja tutkimus arvioitiin Design Science Research Method (DSRM) -prosessimallilla (suomeksi: suunnittelutieteellinen tutkimusmenetelm\u00e4). Uutta viitekehyst\u00e4 testattiin suorittamalla ajoneuvoviestint\u00e4\u00e4n liittyv\u00e4 k\u00e4ytt\u00f6tapaus, sill\u00e4 ajoneuvoviestint\u00e4 on helpoin k\u00e4ytt\u00f6liittym\u00e4 hy\u00f6kk\u00e4yksille. Tulokset olivat vakuuttavia, sill\u00e4 uusi TARA+AD -analyysikehys ratkaisi ongelman tarjoamalla kyberturvallisuustekniikan standardin mukaisen turvallisuusriskianalyysin.", "language": "en", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Submitted by Paivi Vuorio (paelvuor@jyu.fi) on 2023-06-19T06:04:07Z\nNo. of bitstreams: 0", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Made available in DSpace on 2023-06-19T06:04:07Z (GMT). No. of bitstreams: 0\n Previous issue date: 2023", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.format.extent", "value": "154", "language": "", "element": "format", "qualifier": "extent", "schema": "dc"}, {"key": "dc.language.iso", "value": "eng", "language": null, "element": "language", "qualifier": "iso", "schema": "dc"}, {"key": "dc.rights", "value": "In Copyright", "language": null, "element": "rights", "qualifier": null, "schema": "dc"}, {"key": "dc.subject.other", "value": "cybersecurity of road vehicles", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "automated driving", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "threat analysis and risk assessment", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "ISO/SAE JWG 21434", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "design science research", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "intelligent vehicle", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "vehicular communication", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "maantieajoneuvojen kyberturvallisuus", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "autonominen ajo", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "uhkien analysointi ja riskien arviointi", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "suunnittelutieteellinen tutkimus", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "\u00e4lyk\u00e4s ajoneuvo", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.subject.other", "value": "ajoneuvoviestint\u00e4", "language": "", "element": "subject", "qualifier": "other", "schema": "dc"}, {"key": "dc.title", "value": "TARA+AD: Threat Analysis and Risk Assessment for Automated Driving : cybersecurity of road vehicles", "language": "", "element": "title", "qualifier": null, "schema": "dc"}, {"key": "dc.type", "value": "master thesis", "language": null, "element": "type", "qualifier": null, "schema": "dc"}, {"key": "dc.identifier.urn", "value": "URN:NBN:fi:jyu-202306193943", "language": "", "element": "identifier", "qualifier": "urn", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Master\u2019s thesis", "language": "en", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Pro gradu -tutkielma", "language": "fi", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Informaatioteknologian tiedekunta", "language": "fi", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Faculty of Information Technology", "language": "en", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Informaatioteknologia", "language": "fi", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Information Technology", "language": "en", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "Jyv\u00e4skyl\u00e4n yliopisto", "language": "fi", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "University of Jyv\u00e4skyl\u00e4", "language": "en", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Tietoj\u00e4rjestelm\u00e4tiede", "language": "fi", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Information Systems Science", "language": "en", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "yvv.contractresearch.collaborator", "value": "business", "language": "", "element": "contractresearch", "qualifier": "collaborator", "schema": "yvv"}, {"key": "yvv.contractresearch.funding", "value": "0", "language": "", "element": "contractresearch", "qualifier": "funding", "schema": "yvv"}, {"key": "yvv.contractresearch.initiative", "value": "business", "language": "", "element": "contractresearch", "qualifier": "initiative", "schema": "yvv"}, {"key": "dc.type.coar", "value": "http://purl.org/coar/resource_type/c_bdcc", "language": null, "element": "type", "qualifier": "coar", "schema": "dc"}, {"key": "dc.rights.copyright", "value": "\u00a9 The Author(s)", "language": null, "element": "rights", "qualifier": "copyright", "schema": "dc"}, {"key": "dc.rights.accesslevel", "value": "openAccess", "language": null, "element": "rights", "qualifier": "accesslevel", "schema": "dc"}, {"key": "dc.type.publication", "value": "masterThesis", "language": null, "element": "type", "qualifier": "publication", "schema": "dc"}, {"key": "dc.subject.oppiainekoodi", "value": "601", "language": "", "element": "subject", "qualifier": "oppiainekoodi", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietoturva", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "kyberturvallisuus", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "automaatio", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "turvallisuus", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "ajoneuvot", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "turvallisuusanalyysi", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "riskianalyysi", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "riskienhallinta", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "autotekniikka", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "riskit", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "data security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "cyber security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "automation", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "safety and security", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "vehicles", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "security analysis", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "risk analysis", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "risk management", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "automotive engineering", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "risks", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.rights.url", "value": "https://rightsstatements.org/page/InC/1.0/", "language": null, "element": "rights", "qualifier": "url", "schema": "dc"}]
|