{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,3,28]],"date-time":"2025-03-28T03:40:57Z","timestamp":1743133257045,"version":"3.40.3"},"publisher-location":"Cham","reference-count":41,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031423062"},{"type":"electronic","value":"9783031423079"}],"license":[{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2023,1,1]],"date-time":"2023-01-01T00:00:00Z","timestamp":1672531200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2023]]},"DOI":"10.1007\/978-3-031-42307-9_24","type":"book-chapter","created":{"date-parts":[[2023,8,29]],"date-time":"2023-08-29T04:03:15Z","timestamp":1693281795000},"page":"343-355","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":2,"title":["Consistency of Cybersecurity Process and Product Assessments in the Automotive Domain"],"prefix":"10.1007","author":[{"given":"Christian","family":"Schlager","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Richard","family":"Messnarz","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Damjan","family":"Ekert","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tobias","family":"Danmayr","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Laura","family":"Aschbacher","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Almin","family":"Iriskic","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Georg","family":"Macher","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Eugen","family":"Brenner","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2023,8,30]]},"reference":[{"key":"24_CR1","doi-asserted-by":"publisher","unstructured":"Ahmad, F., Adnane, A., Franqueira, V., Kurugollu, F., Liu, L.: Man-in-the-middle attacks in vehicular ad-hoc networks: evaluating the impact of attackers strategies. Sensors 18 (2018). https:\/\/doi.org\/10.3390\/s18114040","DOI":"10.3390\/s18114040"},{"key":"24_CR2","unstructured":"Biro, M., Messnarz, R.: Key success factors for business based improvement. In: Proceedings of the EuroSPI 1999 Conference, Pori (1999). (Pori School of Technology and Economics. Ser. A., 25.)"},{"key":"24_CR3","doi-asserted-by":"crossref","unstructured":"Brennich, T., Moser, M.: Automotive Security auf dem Pruefstand. ATZelectronics, 48\u201353 (2020)","DOI":"10.1007\/s35658-019-0155-9"},{"key":"24_CR4","doi-asserted-by":"publisher","unstructured":"Cheng, B., Doherty, B., Polanco, N., Pasco, M.: Security patterns for connected and automated automotive systems. Autom. Softw. Eng. 1(1), 51\u201377 (2021). https:\/\/doi.org\/10.2991\/jase.d.200826.001","DOI":"10.2991\/jase.d.200826.001"},{"key":"24_CR5","doi-asserted-by":"crossref","unstructured":"Dobaj, J., Ekert, D., Stolfa, J., Stolfa, S., Macher, G., Messnarz, R.: Cybersecurity threat analysis and risk assessment and design patterns for automotive networked embedded systems: a case study. JUCS \u2013 Univ. Comput. Sci. 27(8), 830\u2013849 (2021)","DOI":"10.3897\/jucs.72367"},{"key":"24_CR6","doi-asserted-by":"publisher","unstructured":"Dobaj, J., Macher, G., Ekert, D., Riel, A., Messnarz, R.: Towards a security-driven automotive development lifecycle. J. Softw. Evol. Process 24 (2021). https:\/\/doi.org\/10.1002\/smr.2407","DOI":"10.1002\/smr.2407"},{"key":"24_CR7","doi-asserted-by":"crossref","unstructured":"Ebert, C.: Efficient implementation of standards for security, safety and UNECE. ATZelectronics Worldwide 9, 40\u201343 (2020)","DOI":"10.1007\/s38314-020-0250-y"},{"key":"24_CR8","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"629","DOI":"10.1007\/978-3-030-56441-4_47","volume-title":"Systems, Software and Services Process Improvement","author":"D Ekert","year":"2020","unstructured":"Ekert, D., Messnarz, R., Norimatsu, S., Zehetner, T., Aschbacher, L.: Experience with the performance of online distributed assessments \u2013 using advanced infrastructure. In: Yilmaz, M., Niemann, J., Clarke, P., Messnarz, R. (eds.) EuroSPI 2020. CCIS, vol. 1251, pp. 629\u2013638. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-56441-4_47"},{"key":"24_CR9","doi-asserted-by":"publisher","unstructured":"Groza, B., Murvay, P.: Identity-based key exchange on in-vehicle networks: CAN- FD and FlexRay. Sensors 19 (2019). https:\/\/doi.org\/10.3390\/s19224919","DOI":"10.3390\/s19224919"},{"key":"24_CR10","unstructured":"IATF: IATF 16949 Anforderungen an Qualit\u00e4tsmanagementsysteme f\u00fcr die Serien- und Ersatzteilproduktion in der Automobilindustrie (2016)"},{"key":"24_CR11","unstructured":"intacs: HW Spice, intacs Working Group HW Engineering Processes (2019)"},{"key":"24_CR12","unstructured":"intacs: Process Assessment Model SPICE for Mechanical Engineering, intacs Working Group MECH Engineering Processes (2020)"},{"key":"24_CR13","unstructured":"ISO: ISO 24089 Road vehicles - Software update engineering (2023)"},{"key":"24_CR14","unstructured":"ISO: ISO 33020 Information technology - Process assessment - Process measurement framework for assessment of process capability (2019)"},{"key":"24_CR15","unstructured":"ISO\/SAE: ISO\/SAE 21434: Strassenfahrzeuge, Cybersecurity Engineering (2021)"},{"key":"24_CR16","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"684","DOI":"10.1007\/978-3-030-56441-4_51","volume-title":"Systems, Software and Services Process Improvement","author":"J Ivan\u010di\u010d","year":"2020","unstructured":"Ivan\u010di\u010d, J., Riel, A., Ekert, D.: An interpretation and implementation of automotive hardware SPICE. In: Yilmaz, M., Niemann, J., Clarke, P., Messnarz, R. (eds.) EuroSPI 2020. CCIS, vol. 1251, pp. 684\u2013695. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-56441-4_51"},{"key":"24_CR17","series-title":"EAI\/Springer Innovations in Communication and Computing","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1007\/978-3-030-59897-6_6","volume-title":"Automotive Embedded Systems","author":"A Jadhav","year":"2021","unstructured":"Jadhav, A.: Automotive cybersecurity. In: Kathiresh, M., Neelaveni, R. (eds.) Automotive Embedded Systems. EICC, pp. 101\u2013114. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-59897-6_6"},{"key":"24_CR18","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/978-981-15-8053-6_1","volume-title":"Automotive Cyber Security","author":"S Kim","year":"2020","unstructured":"Kim, S., Shrestha, R.: Introduction to automotive cybersecurity. In: Automotive Cyber Security, pp. 1\u201313. Springer, Singapore (2020). https:\/\/doi.org\/10.1007\/978-981-15-8053-6_1"},{"key":"24_CR19","doi-asserted-by":"publisher","unstructured":"Laborde, R., Bulusu, S., Wazan, A., Oglaza, A., Benzekri, A.: A methodological approach to evaluate security requirements engineering methodologies: application to the IREHDO2 project context. Cybersecur. Privacy 1(3), 422\u2013452 (2021). https:\/\/doi.org\/10.3390\/jcp1030022","DOI":"10.3390\/jcp1030022"},{"key":"24_CR20","unstructured":"Nancy, L.: Engineering a Safer and More Secure World (2016)"},{"key":"24_CR21","doi-asserted-by":"publisher","unstructured":"Macher, G., Schmittner, C., Dobaj, J., Armengaud, E.: An integrated view on automotive SPICE and functional safety and cyber-security. In: SAE Technical Paper (2020). https:\/\/doi.org\/10.4271\/2020-01-0145","DOI":"10.4271\/2020-01-0145"},{"key":"24_CR22","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"123","DOI":"10.1007\/978-3-030-55583-2_9","volume-title":"Computer Safety, Reliability, and Security. SAFECOMP 2020 Workshops","author":"G Macher","year":"2020","unstructured":"Macher, G., Schmittner, C., Veledar, O., Brenner, E.: ISO\/SAE DIS 21434 automotive cybersecurity standard - in a nutshell. In: Casimiro, A., Ortmeier, F., Schoitsch, E., Bitsch, F., Ferreira, P. (eds.) SAFECOMP 2020. LNCS, vol. 12235, pp. 123\u2013135. Springer, Cham (2020). https:\/\/doi.org\/10.1007\/978-3-030-55583-2_9"},{"key":"24_CR23","doi-asserted-by":"publisher","unstructured":"Macher, G., Armengaud, E., Messnarz, R., Brenner, E., Kreiner, C., Riel, A.: Integrated safety and security development in the automotive domain (2017). https:\/\/doi.org\/10.4271\/2017-01-1661","DOI":"10.4271\/2017-01-1661"},{"key":"24_CR24","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"273","DOI":"10.1007\/978-3-319-66284-8_23","volume-title":"Computer Safety, Reliability, and Security","author":"G Macher","year":"2017","unstructured":"Macher, G., Much, A., Riel, A., Messnarz, R., Kreiner, C.: Automotive SPICE, safety and cybersecurity integration. In: Tonetta, S., Schoitsch, E., Bitsch, F. (eds.) SAFECOMP 2017. LNCS, vol. 10489, pp. 273\u2013285. Springer, Cham (2017). https:\/\/doi.org\/10.1007\/978-3-319-66284-8_23"},{"key":"24_CR25","doi-asserted-by":"publisher","first-page":"252","DOI":"10.1007\/978-3-319-99229-7_22","volume-title":"Computer Safety, Reliability, and Security","author":"J MacGregor","year":"2018","unstructured":"MacGregor, J., Burton, S.: Challenges in assuring highly complex, high volume safety-critical software. In: Gallina, B., Skavhaug, A., Schoitsch, E., Bitsch, F. (eds.) SAFECOMP 2018, pp. 252\u2013264. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-99229-7_22"},{"key":"24_CR26","doi-asserted-by":"publisher","unstructured":"Messnarz, R., Ekert, D., Macher, G., Stolfa, S., Stolfa, J., Much, A.: Automotive SPICE for cybersecurity - MAN.7 cybersecurity risk management and TARA. In: Yilmaz, M., Clarke, P., Messnarz, R., Woeran, B. (eds.) Systems, Software and Services Process Improvement. EuroSPI 2022. Communications in Computer and Information Science, vol. 1646. Springer, Cham (2022). https:\/\/doi.org\/10.1007\/978-3-031-15559-8_23","DOI":"10.1007\/978-3-031-15559-8_23"},{"key":"24_CR27","doi-asserted-by":"publisher","unstructured":"Messnarz, R., Ekert, D., Macher, G., Much, A., Zehetner, T., Aschbacher, L.: Experiences with the automotive SPICE for cybersecurity assessment model and tools. J. Softw. Evol. Process (2022). https:\/\/doi.org\/10.1002\/smr.2519","DOI":"10.1002\/smr.2519"},{"key":"24_CR28","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"549","DOI":"10.1007\/978-3-030-28005-5_42","volume-title":"Systems, Software and Services Process Improvement","author":"R Messnarz","year":"2019","unstructured":"Messnarz, R., Ekert, D., Zehetner, T., Aschbacher, L.: Experiences with ASPICE 3.1 and the VDA automotive SPICE guidelines \u2013 using advanced assessment systems. In: Walker, A., O\u2019Connor, R.V., Messnarz, R. (eds.) EuroSPI 2019. CCIS, vol. 1060, pp. 549\u2013562. Springer, Cham (2019). https:\/\/doi.org\/10.1007\/978-3-030-28005-5_42"},{"key":"24_CR29","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"531","DOI":"10.1007\/978-3-030-85521-5_35","volume-title":"Systems, Software and Services Process Improvement","author":"R Messnarz","year":"2021","unstructured":"Messnarz, R., et al.: First experiences with the automotive SPICE for cybersecurity assessment model. In: Yilmaz, M., Clarke, P., Messnarz, R., Reiner, M. (eds.) EuroSPI 2021. CCIS, vol. 1442, pp. 531\u2013547. Springer, Cham (2021). https:\/\/doi.org\/10.1007\/978-3-030-85521-5_35"},{"key":"24_CR30","doi-asserted-by":"publisher","unstructured":"Petho, Z., Intiyaz, K., Torok, A., Pasco, M.: Analysis of security vulnerability levels of in-vehicle network topologies applying graph representations. Electron. Test. 37, 613\u2013621 (2021). https:\/\/doi.org\/10.1007\/s10836-021-05973-x","DOI":"10.1007\/s10836-021-05973-x"},{"key":"24_CR31","unstructured":"Pries-Heje, J., Johanson, J.: SPI Manifesto, European system and software improvement and innovation (2010). https:\/\/conference.eurospi.net\/images\/eurospi\/spi_manifesto.pdf"},{"key":"24_CR32","series-title":"Communications in Computer and Information Science","doi-asserted-by":"publisher","first-page":"480","DOI":"10.1007\/978-3-319-97925-0_41","volume-title":"Systems, Software and Services Process Improvement","author":"C Schlager","year":"2018","unstructured":"Schlager, C., Messnarz, R., Sporer, H., Riess, A., Mayer, R., Bernhardt, S.: Hardware SPICE extension for automotive SPICE 3.1. In: Larrucea, X., Santamaria, I., O\u2019Connor, R.V., Messnarz, R. (eds.) EuroSPI 2018. CCIS, vol. 896, pp. 480\u2013491. Springer, Cham (2018). https:\/\/doi.org\/10.1007\/978-3-319-97925-0_41"},{"key":"24_CR33","series-title":"Studies in Computational Intelligence","doi-asserted-by":"publisher","first-page":"29","DOI":"10.1007\/978-981-16-2217-5_3","volume-title":"Information Security of Intelligent Vehicles Communication","author":"M Singh","year":"2021","unstructured":"Singh, M.: Cybersecurity in automotive technology. In: Information Security of Intelligent Vehicles Communication. SCI, vol. 978, pp. 29\u201350. Springer, Singapore (2021). https:\/\/doi.org\/10.1007\/978-981-16-2217-5_3"},{"key":"24_CR34","unstructured":"SOQRATES: Task Forces Developing Integration of Automotive SPICE, ISO 26262, ISO21434 and SAE J3061. http:\/\/soqrates.eurospi.net\/"},{"key":"24_CR35","doi-asserted-by":"crossref","unstructured":"Stolfa, J., et al.: DRIVES-EU blueprint project for the automotive sector-a literature review of drivers of change in automotive industry. J. Softw. Evol. Process 32(3) (2020). Special Issue: Addressing Evolving Requirements Faced by the Software Industry","DOI":"10.1002\/smr.2222"},{"key":"24_CR36","unstructured":"UN: UN Regulation No. 155 - Cyber security and cyber security management system (2021)"},{"key":"24_CR37","unstructured":"UN: UN Regulation No. 156 - Software update and software update management system (2021)"},{"key":"24_CR38","unstructured":"VDA QMC: Automotive Cybersecurity Management system Audit (2020)"},{"key":"24_CR39","unstructured":"VDA QMC: Automotive SPICE Process Reference Model\/Process Assessment Model (2015)"},{"key":"24_CR40","unstructured":"VDA QMC: Automotive Spice Guidelines 2nd Edition (2017)"},{"key":"24_CR41","unstructured":"VDA QMC: Automotive SPICE for Cybersecurity Process Reference and Assessment Model (2021)"}],"container-title":["Communications in Computer and Information Science","Systems, Software and Services Process Improvement"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-42307-9_24","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2023,8,29]],"date-time":"2023-08-29T04:07:27Z","timestamp":1693282047000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-42307-9_24"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023]]},"ISBN":["9783031423062","9783031423079"],"references-count":41,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-42307-9_24","relation":{},"ISSN":["1865-0929","1865-0937"],"issn-type":[{"type":"print","value":"1865-0929"},{"type":"electronic","value":"1865-0937"}],"subject":[],"published":{"date-parts":[[2023]]},"assertion":[{"value":"30 August 2023","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"EuroSPI","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"European Conference on Software Process Improvement","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Grenoble","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2023","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30 August 2023","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"1 September 2023","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"30","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"eurospi2023","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/conference.eurospi.net\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Open","order":1,"name":"type","label":"Type","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"conference website","order":2,"name":"conference_management_system","label":"Conference Management System","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"100","order":3,"name":"number_of_submissions_sent_for_review","label":"Number of Submissions Sent for Review","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"47","order":4,"name":"number_of_full_papers_accepted","label":"Number of Full Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"0","order":5,"name":"number_of_short_papers_accepted","label":"Number of Short Papers Accepted","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"47% - The value is computed by the equation \"Number of Full Papers Accepted \/ Number of Submissions Sent for Review * 100\" and then rounded to a whole number.","order":6,"name":"acceptance_rate_of_full_papers","label":"Acceptance Rate of Full Papers","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"3","order":7,"name":"average_number_of_reviews_per_paper","label":"Average Number of Reviews per Paper","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}},{"value":"No","order":9,"name":"external_reviewers_involved","label":"External Reviewers Involved","group":{"name":"ConfEventPeerReviewInformation","label":"Peer Review Information (provided by the conference organizers)"}}]}}