If you like to know more about ASRG, look at our quick introduction at • Intro to ASRG , visit our webpage at www.asrg.io or contact us directly.
PRESENTATION:
Industrial-grade cybersecurity testing in the automotive development process is heavily needed. It also needs to be stretched over the full life cycle of an automotive system to keep the risk assessment current. Currently, the automotive cybersecurity testing procedures are not specified or automated enough to be able to deliver tests in the amount and thoroughness needed. This presentation demonstrates an automotive security life cycle governance approach, that provides a means to automatically generate test cases at early development stages. These tests can also be used in later phases to verify and validate the implementations of developed systems. These formalized concepts increase both the completeness and efficiency of automotive cybersecurity testing over vehicles’ complete life cycles.
PRESENTERS:
Stefan Marksteiner is a Technology Scout for Cyber Security with the Integrated and Advanced Software Solutions department at AVL List GmbH, an automotive development company with around 11k employees worldwide. Having both an operational and research background in network security, security architectures, and modeling, he is responsible for researching methods for automated security testing in automotive systems. He has more than 15 years of experience in ICT security and earned a master's degree with an excellent with thesis on Quantum Key Distribution in IPsec. He has worked in security-related standardization and leads and leads several security-related research projects in various domains such as smart homes, smart energy, (Industrial) Internet of Things and automotive security. His current research interests are methods for security testing, including model derivation, wireless security, and security testing systems. Apart from that he is a part-time lecturer for computer networks at the Campus02 University of Applied Sciences in Graz, Austria and has been a contributor, program committee member, and reviewer for a couple of scientific conferences and journals. Currently, he is pursuing a Ph.D. study on learning-based cybersecurity testing at the Mälardalen University in Västerås, Sweden.
Christoph Schmittner is a System and Software Engineer with expertise in safety and security co-engineering, safety and security analysis methods, and fault & and intrusion-tolerant system architectures. He holds an M.Sc. degree from the University of Applied Sciences Regensburg and has extensive experience in multiple European and Austrian projects, focusing on safety, and security co-analysis, co-design, and co-assurance. Mr. Schmittner actively participates in various standardization committees related to road vehicles, dependability, and industrial-process automation, contributing to the development of essential safety and cybersecurity standards.