RESEARCH GROUPS

Area Architecture

Area Engineering

DEPARTMENTS

Vulnerability Assessment of Automotive Systems

 Thesis in external company    

keywords AUTOMOTIVE, CYBERSECURITY, VULNERABILITY ANALYSIS

Reference persons RICCARDO SISTO

Research Groups COMPUTER NETWORKS GROUP - NETGROUP, DAUIN - GR-03 - COMPUTER NETWORKS GROUP - NETGROUP, GR-03 - COMPUTER NETWORKS GROUP - NETGROUP, NETGROUP

Thesis type EXPERIMENTAL

Description This thesis focuses on Automotive Cyber Security, an aspect that has been overlooked in the past, as vehicles did not have security issues, given their limited components and lack of external connectivity, but that must be considered nowadays because modern vehicles are as vulnerable as internet-connected computers.
The thesis can have one of the following specific goals:

1. Vulnerability assessment of automotive infotainment systems
The work will start with the analysis of potential vulnerabilities available in both network connections (such as Bluetooth, Wi-Fi, GSM, CAN, USB, etc.) and applications installed in the automotive infotainment systems. Specific attention will be given to the characteristics of Android Auto and Apple CarPlay systems, with the aim of highlighting any security issues and evaluating the collection of personal information about the owner, or as an alternative try to exploit the infotainment system as an infection vector towards associated devices. Depending on the obtained results, it will be evaluated the possibility to develop and integrate a Proof of Concept with the aim of demonstrating such exposures.

2. Vulnerability assessment of automotive systems
Simulation of real-world cyberattacks with the aim of identifying vulnerabilities and assessing the level of risk within the automotive industry. This assessment encompasses both privacy and road safety aspects. The research seeks to conduct a detailed analysis of various systems and potential attack surfaces, involving all components present in the latest generation of vehicles. The primary objective is to gather information about vehicle vulnerabilities to demonstrate the capability of interacting with the automobile, communicating with the network/ECU, and consequently exchanging data.

The thesis will be developed in the XXXLab company (undisclosed company) which is located in Turin, close to the Porta Nuova railway station, and specialized in cybersecurity.

Required skills cybersecurity and networking

Deadline 09/01/2025      PROPONI LA TUA CANDIDATURA