Glossary

Glossary

Introduction

Welcome to the Glossary, here you will find definitions and details of common automotive security words and acronyms.

General Terms

Architectural Design

Representation that allows for identification of components, their boundaries, interfaces, and interactions

Asset

Object that has value, or contributes to value

Attack feasibility

Attribute of an attack path describing the ease of successfully carrying out the corresponding set of actions

Attack path

Set of deliberate actions to realize a threat scenario

Attacker

Person, group, or organization that carries out an attack path.

Audit

Examination of a process to determine the extent to which the process objectives are achieved.

Component

Part that is logically and technically separable.

Customer

Person or organization that receives a service or product.

Cybersecurity

Condition in which assets are sufficiently protected against threat scenarios to items of road vehicles, their functions and their electrical or electronic components.

Cybersecurity assessment

Judgement of cybersecurity.

Cybersecurity case

Structured argument supported by evidence to state that risks are not unreasonable.

Cybersecurity claim

Statement about a risk that can include a justification for retaining or sharing the risk.

Cybersecurity concept

Cybersecurity requirements of the item and requirements on the operational environment, with associated information on cybersecurity controls.

Cybersecurity control

Measure that is modifying risk.

Cybersecurity event

Cybersecurity information that is relevant for an item or component.

Cybersecurity goal

Concept-level cybersecurity requirement associated with one or more threat scenarios.

Cybersecurity incident

Situation in the field that can involve vulnerability exploitation.

Cybersecurity information

Information with regard to cybersecurity for which relevance is not yet determined.

Cybersecurity interface agreement

Agreement between customer and supplier concerning distributed cybersecurity activities.

Cybersecurity property

Attribute that can be worth protecting.

Cybersecurity specification

Cybersecurity requirements and corresponding architectural design.

Damage scenario

Adverse consequence involving a vehicle or vehicle function and affecting a road user.

Distributed cybersecurity activities

Cybersecurity activities for the item or component whose responsibilities are distributed between customer and supplier.

Impact

Estimate of magnitude of damage or physical harm from a damage scenario.

Item

Component or set of components that implements a function at the vehicle level.

Operational environment

Context considering interactions in operational use.

Out-of-context

Not developed in the context of a specific item.

Penetration testing

Cybersecurity testing in which real-world attacks are mimicked to identify ways to compromise cybersecurity goals. Also called penetration test or pentest.

Risk

Effect of uncertainty on road vehicle cybersecurity expressed in terms of attack feasibility and impact.

Risk management

Coordinated activities to direct and control and organization with regard to risk.

Road user

Person who uses a road.

Tailor

To omit or perform an activity in a different manner compared to its description in this document.

Threat scenario

Potential cause of compromise of cybersecurity properties of one or more assets in order to realize a damage scenario.

Triage

Analysis to determine the relevance of a cybersecurity information to an item or component.

Trigger

Criterion for triage.

Validation

Confirmation, through the provision of objective evidence, that the cybersecurity goals of the item are adequate and are achieved.

Vehicle Type

Vehicles which do not differ in at least the following essential respects: (a) The manufacturer’s designation of the vehicle type; (b) Essential aspects of the electric/electronic architecture and external interfaces with respect to cyber security.

Verification

Confirmation, through the provision of objective evidence, that specified requirements have been fulfilled.

Vulnerability

Weakness that can be exploited as part of an attack path.

Vulnerability analysis

Systematic identification and evaluation of vulnerabilities.

Weakness

Defect or characteristic that can lead to undesirable behaviour.

Basic Protocols

There is usually an initial exchange when two people strike up a conversation. Perhaps the interaction starts with a greeting, and if the two parties don’t know each other, they exchange names and begin talking about a common interest to get to know each other. It would be unusual to walk up to a stranger and ask, “Where is your house” or “Let me look into your eyes.” One might expect these questions if the proper sequence of events had happened beforehand, like after inviting someone to a barbeque or walking into an optometrist’s office. Information can easily be misinterpreted without a formal structure or sequence, and conforming to the rules helps people communicate clearly and effectively.

Similarly, computers communicate using a set of rules known as protocols. The protocol is a ruleset that contains information about the data format, what types of information will be shared, and when each device is allowed to speak. Some protocols must communicate wirelessly, handling noise from devices that aren’t involved. Other times, the devices are plugged directly into each other, and the communication rules they follow need to prioritize data transmission speed and reliability.

Here are a few protocols implemented in cars and how they might be used.

Automotive Ethernet

Automotive Ethernet is a communication protocol used in vehicles for high-speed networking between ECUs and other devices. It is based on the standard Ethernet protocol and is designed for use in harsh automotive environments. Automotive Ethernet can support data rates well over 1000 Mbit/s and uses a twisted pair of wires for communication. It is commonly used in the automotive industry for in-vehicle networking, particularly for applications requiring high data rates or transmitting large amounts of data.

CAN

CAN (Controller Area Network) is a communication protocol used in vehicles to allow microcontrollers and devices to communicate with each other in applications without a host computer. It is a message-based protocol designed specifically for automotive networking. CAN uses a two-wire bus to transmit data between devices, and each message on the bus has a unique identifier (ID) used to identify the message. ECUs will listen for specific defined CAN IDs to process. CAN is widely used in the automotive industry for in-vehicle communication due to its high reliability, low cost, and ease of implementation. There are multiple implementations and versions of CAN, such as CAN-FD and CAN-XL.

CAN-FD

CAN-FD stands for Controller Area Network Flexible Data-Rate and is a communication protocol for vehicle networking. It is a successor to the original Controller Area Network (CAN) and offers faster data transmission rates and larger data payloads. CAN-FD uses a bit-stuffing method and a different message format, enabling it to transmit data at much higher speeds while maintaining backward compatibility with the original CAN.

FlexRay

FlexRay is a communication protocol used in vehicles for high-speed, high-reliability communication between electronic control units (ECUs). It is a deterministic protocol, meaning that it guarantees the delivery of messages within a specified time frame. FlexRay uses a two-wire bus for communication and supports data rates up to 10 Mbit/s. It is designed for safety-critical applications and is commonly used in the automotive industry for communication between ECUs in advanced driver assistance systems (ADAS) and other high-reliability applications.

GMLAN

GMLAN (General Motor Local Area Network) is a communication protocol used in vehicles to allow microcontrollers and devices to communicate in applications without a host computer. It is a message-based protocol similar to CAN but specifically designed for General Motors vehicles. GMLAN uses a single wire for communication and supports data rates up to 33.3 kbit/s. It is used in General Motors vehicles for in-vehicle communication between microcontrollers and devices.

KWP2000

KWP2000 (Keyword Protocol 2000) is a communication protocol used in vehicles for diagnostic communication between a vehicle and a diagnostic tool. It is a standard protocol used in the automotive industry for diagnostic communication. KWP2000 is a message-based protocol that uses a single wire for transmission and supports data rates up to 10.4 kbit/s. It is commonly used in the automotive industry for diagnostic communication between a vehicle and a diagnostic tool, such as when reading and clearing diagnostic trouble codes (DTCs).

LIN

LIN (Local Interconnect Network) is a serial communication protocol used in vehicles to allow devices on a single wiring network to communicate. It is a low-cost, simple protocol used for communication up to 19.2 Kbit/s between sensors and actuators in a vehicle. LIN uses a single wire for communication, and each device on the network is assigned a unique identifier (ID) used to identify the source and destination of each message. LIN is commonly used for communication between low-cost devices that do not require the bandwidth or reliability of higher-level protocols such as CAN.

MOST

MOST (Media Oriented Systems Transport) is a communication protocol used in vehicles to transfer audio, video, and other multimedia content. It is a multimedia networking technology specifically designed for use in cars. MOST can use a fiber optic, unshielded twisted pair, or coax cable network for communication and supports data rates up to 150 Mbit/s. It is commonly used in the automotive industry to transmit multimedia content such as audio and video in infotainment systems.

Abbreviations

CAL

Cybersecurity Assurance Level

CSMS

Cyber Security Management System: A systematic risk-based approach defining organizational processes, responsibilities and governance to treat risk associated with cyber threats to vehicles and protect them from cyber-attacks.

CVE

Common Vulnerabilities and Exposures: A catalog of publicly disclosed cybersecurity vulnerabilities. See https://www.cve.org/

CVSS

Common vulnerability scoring system

E/E

Electrical and electronic

ECU

Electronic control unit

EV

Electric Vehicle - Describes vehicles that operate with electric motors and batteries.

ICE

Internal Combustion Engine - Used to describe vehicles that run with a traditional motor and fuel tank.

ISO

International Organization for Standardization - iso.org

NIST

National Institute of Standards and Technology - www.nist.gov

OBD

On-board diagnostic

OEM

Original equipment manufacturer

OTA

Over-The-Air: Short for Over-The-Air Software Updates, which is the feature to push software updates to the vehicle over a wireless internet connection, removing the need to go to the dealership. Also called FOTA (Firmware Over-The-Air) or SOTA (Software Over-The-Air).

PM

Permission

RASIC

Responsible, accountable, supporting, informed, consulted

RC

Recommendation

RQ

Requirement

SAE

Society of Automotive Engineers - sae.org

SOTA

SOTA, or Software Over The Air refers to the ability to update software components in production vehicles remotely. This is useful for adding new features to vehicles, and patching vulnerabilities found post-production.

TARA

Threat analysis and risk assessment

UNECE

United Nations Economic Commission for Europe

WP

Work Product

WP.29

World Forum for the harmonization of vehicle regulations

Last updated on