{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,10,11]],"date-time":"2025-10-11T02:11:35Z","timestamp":1760148695005,"version":"build-2065373602"},"reference-count":38,"publisher":"MDPI AG","issue":"10","license":[{"start":{"date-parts":[[2023,5,22]],"date-time":"2023-05-22T00:00:00Z","timestamp":1684713600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0\/"}],"funder":[{"name":"Shanghai Pudong New Area Science and Technology Development Fund Industry-University-Research Special Project (Future Vehicle)","award":["PKX2022-W01"],"award-info":[{"award-number":["PKX2022-W01"]}]}],"content-domain":{"domain":[],"crossmark-restriction":false},"short-container-title":["Sensors"],"abstract":"<jats:p>The rapid development of intelligent connected vehicles has increased the attack surface of vehicles and made the complexity of vehicle systems unprecedented. Original equipment manufacturers (OEMs) need to accurately represent and identify threats and match corresponding security requirements. Meanwhile, the fast iteration cycle of modern vehicles requires development engineers to quickly obtain cybersecurity requirements for new features in their developed systems in order to develop system code that meets cybersecurity requirements. However, existing threat identification and cybersecurity requirement methods in the automotive domain cannot accurately describe and identify threats for a new feature while also quickly matching appropriate cybersecurity requirements. This article proposes a cybersecurity requirements management system (CRMS) framework to assist OEM security experts in conducting comprehensive automated threat analysis and risk assessment and to help development engineers identify security requirements prior to software development. The proposed CRMS framework enables development engineers to quickly model their systems using the UML-based (i.e., capable of describing systems using UML) Eclipse Modeling Framework and security experts to integrate their security experience into a threat library and security requirement library expressed in Alloy formal language. In order to ensure accurate matching between the two, a middleware communication framework called the component channel messaging and interface (CCMI) framework, specifically designed for the automotive domain, is proposed. The CCMI communication framework enables the fast model of development engineers to match with the formal model of security experts for threat and security requirement matching, achieving accurate and automated threat and risk identification and security requirement matching. To validate our work, we conducted experiments on the proposed framework and compared the results with the HEAVENS approach. The results showed that the proposed framework is superior in terms of threat detection rates and coverage rates of security requirements. Moreover, it also saves analysis time for large and complex systems, and the cost-saving effect becomes more pronounced with increasing system complexity.<\/jats:p>","DOI":"10.3390\/s23104979","type":"journal-article","created":{"date-parts":[[2023,5,23]],"date-time":"2023-05-23T02:02:27Z","timestamp":1684807347000},"page":"4979","update-policy":"https:\/\/doi.org\/10.3390\/mdpi_crossmark_policy","source":"Crossref","is-referenced-by-count":4,"title":["A Framework for Cybersecurity Requirements Management in the Automotive Domain"],"prefix":"10.3390","volume":"23","author":[{"given":"Feng","family":"Luo","sequence":"first","affiliation":[{"name":"School of Automotive Studies, Tongji University, Shanghai 201804, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9888-1501","authenticated-orcid":false,"given":"Yifan","family":"Jiang","sequence":"additional","affiliation":[{"name":"School of Automotive Studies, Tongji University, Shanghai 201804, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Jiajia","family":"Wang","sequence":"additional","affiliation":[{"name":"School of Automotive Studies, Tongji University, Shanghai 201804, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Zhihao","family":"Li","sequence":"additional","affiliation":[{"name":"School of Automotive Studies, Tongji University, Shanghai 201804, China"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiaoxian","family":"Zhang","sequence":"additional","affiliation":[{"name":"iSOFT Infrastructure Software Co., Ltd., Shanghai 200125, China"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"1968","published-online":{"date-parts":[[2023,5,22]]},"reference":[{"key":"ref_1","doi-asserted-by":"crossref","unstructured":"Skavhaug, A., Guiochet, J., and Bitsch, F. (2019). Computer Safety, Reliability, and Security, Proceedings of the 35th International Conference, SAFECOMP 2016, Trondheim, Norway, 21\u201323 September 2016, Springer. Proceedings 35.","DOI":"10.1007\/978-3-319-45477-1"},{"key":"ref_2","doi-asserted-by":"crossref","first-page":"42","DOI":"10.1109\/MC.2009.118","article-title":"Embedded software: Facts, figures, and future","volume":"42","author":"Ebert","year":"2009","journal-title":"Computer"},{"key":"ref_3","doi-asserted-by":"crossref","unstructured":"Askarov, A., Hansen, R., and Rafnsson, W. (2019). Secure IT Systems, Proceedings of the 24th Nordic Conference, NordSec 2019, Aalborg, Denmark, 18\u201320 November 2019, Springer. Proceedings 24.","DOI":"10.1007\/978-3-030-35055-0"},{"key":"ref_4","doi-asserted-by":"crossref","unstructured":"Filipovikj, P., Jagerfield, T., Nyberg, M., Rodriguez-Navas, G., and Seceleanu, C. (2016, January 10\u201314). Integrating pattern-based formal requirements specification in an industrial tool-chain. Proceedings of the 2016 IEEE 40th Annual Computer Software and Applications Conference (COMPSAC), Atlanta, GA, USA.","DOI":"10.1109\/COMPSAC.2016.140"},{"key":"ref_5","unstructured":"Tucci-Piergiovanni, S., Chen, D., Mraidha, C., L\u00f6nn, H., Mahmud, N., Reiser, M.-O., Kolagari, R.T., Yakymets, N., Librino, R., and Torchiaro, S. (2014). Handbook of Research on Embedded Systems Design, IGI Global."},{"key":"ref_6","doi-asserted-by":"crossref","first-page":"1467","DOI":"10.1002\/spe.1143","article-title":"Flex-eWare: A flexible model driven solution for designing and implementing embedded distributed systems","volume":"42","author":"Jan","year":"2012","journal-title":"Softw. Pract. Exp."},{"key":"ref_7","doi-asserted-by":"crossref","first-page":"1263820","DOI":"10.1155\/2021\/1263820","article-title":"Threat analysis and risk assessment for connected vehicles: A survey","volume":"2021","author":"Luo","year":"2021","journal-title":"Secur. Commun. Netw."},{"key":"ref_8","unstructured":"Henniger, O., Ruddle, A., Seudi\u00e9, H., Weyl, B., Wolf, M., and Wollinger, T. (2009, January 19). Securing vehicular on-board it systems: The evita project. Proceedings of the VDI\/VW Automotive Security Conference, Ingolstadt, Germany."},{"key":"ref_9","doi-asserted-by":"crossref","unstructured":"Lautenbach, A., Almgren, M., and Olovsson, T. (2021, January 30). Proposing HEAVENS 2.0\u2013an automotive risk assessment model. Proceedings of the 5th ACM Computer Science in Cars Symposium, Ingolstadt, Germany.","DOI":"10.1145\/3488904.3493378"},{"key":"ref_10","doi-asserted-by":"crossref","unstructured":"Skavhaug, A., Guiochet, J., Schoitsch, E., and Bitsch, F. (2016). Computer Safety, Reliability, and Security, Springer.","DOI":"10.1007\/978-3-319-45480-1"},{"key":"ref_11","doi-asserted-by":"crossref","unstructured":"Tonetta, S., Schoitsch, E., and Bitsch, F. (2017). Computer Safety, Reliability, and Security, Proceedings of the 36th International Conference, SAFECOMP 2017, Trento, Italy, 13\u201315 September 2017, Springer. Proceedings 36.","DOI":"10.1007\/978-3-319-66284-8"},{"key":"ref_12","doi-asserted-by":"crossref","unstructured":"Haidar, F., Kaiser, A., Lonc, B., and Urien, P. (2019, January 24\u201326). Risk Analysis on C-ITS pseudonymity aspects. Proceedings of the 2019 10th IFIP International Conference on New Technologies, Mobility and Security (NTMS), Canary Islands, Spain.","DOI":"10.1109\/NTMS.2019.8763826"},{"key":"ref_13","doi-asserted-by":"crossref","unstructured":"Macher, G., Sporer, H., Berlach, R., Armengaud, E., and Kreiner, C. (2015, January 9\u201313). SAHARA: A security-aware hazard and risk analysis method. Proceedings of the 2015 Design, Automation & Test in Europe Conference & Exhibition (DATE), Grenoble, France.","DOI":"10.7873\/DATE.2015.0622"},{"key":"ref_14","doi-asserted-by":"crossref","unstructured":"Bondavalli, A., Ceccarelli, A., and Ortmeier, F. (2014). Computer Safety, Reliability, and Security, Proceedings of the SAFECOMP 2014 Workshops: ASCoMS, DECSoS, DEVVARTS, ISSE, ReSA4CI, SASSUR, Florence, Italy, 8\u20139 September 2014, Springer. Proceedings 33.","DOI":"10.1007\/978-3-319-10557-4"},{"key":"ref_15","unstructured":"Schmittner, C., Ma, Z., Schoitsch, E., and Gruber, T. (March, January 14). A case study of fmvea and chassis as safety and security co-analysis method for automotive cyber-physical systems. Proceedings of the 1st ACM Workshop on Cyber-Physical System Security, Singapore."},{"key":"ref_16","unstructured":"Troubitsyna, E., Gashi, I., Schoitsch, E., and Bitsch, F. (2019). Computer Safety, Reliability, and Security, Proceedings of the SAFECOMP 2019 Workshops, ASSURE, DECSoS, SASSUR, STRIVE, and WAISE, Turku, Finland, 10 September 2019, Springer. Proceedings 38."},{"key":"ref_17","unstructured":"Monteuuis, J.-P., Boudguiga, A., Zhang, J., Labiod, H., Servel, A., and Urien, P. (2018, January 4). Sara: Security automotive risk analysis method. Proceedings of the 4th ACM Workshop on Cyber-Physical System Security, Incheon, Republic of Korea."},{"key":"ref_18","doi-asserted-by":"crossref","unstructured":"Hamid, B., Gallina, B., Shabtai, A., Elovici, Y., and Garcia-Alfaro, J. (2019). Security and Safety Interplay of Intelligent Software Systems, Proceedings of the ESORICS 2018 International Workshops, ISSA 2018 and CSITS 2018, Barcelona, Spain, 6\u20137 September 2018, Springer. Revised Selected Papers.","DOI":"10.1007\/978-3-030-16874-2"},{"key":"ref_19","doi-asserted-by":"crossref","first-page":"970","DOI":"10.1109\/TR.2020.3046688","article-title":"Protecting the Internet of vehicles against advanced persistent threats: A bayesian Stackelberg game","volume":"70","author":"Halabi","year":"2021","journal-title":"IEEE Trans. Reliab."},{"key":"ref_20","doi-asserted-by":"crossref","first-page":"102073","DOI":"10.1016\/j.sysarc.2021.102073","article-title":"Specification, detection, and treatment of STRIDE threats for software components: Modeling, formal methods, and tool support","volume":"117","author":"Rouland","year":"2021","journal-title":"J. Syst. Archit."},{"key":"ref_21","doi-asserted-by":"crossref","unstructured":"Kim, S., Shrestha, R., Kim, S., and Shrestha, R. (2020). Automotive Cyber Security: Introduction, Challenges, and Standardization, Springer.","DOI":"10.1007\/978-981-15-8053-6"},{"key":"ref_22","doi-asserted-by":"crossref","unstructured":"Zhong, J., Du, S., Zhou, L., Zhu, H., Cheng, F., Chen, C., and Xue, Q. (2017, January 24\u201327). Security modeling and analysis on intra vehicular network. Proceedings of the 2017 IEEE 86th Vehicular Technology Conference (VTC-Fall), Toronto, ON, Canada.","DOI":"10.1109\/VTCFall.2017.8288289"},{"key":"ref_23","doi-asserted-by":"crossref","unstructured":"Katsikas, S., Cuppens, F., Cuppens, N., Lambrinoudakis, C., Kalloniatis, C., Mylopoulos, J., Ant\u00f3n, A., Gritzalis, S., Meng, W., and Furnell, S. (2020). Computer Security, proceedings of the ESORICS 2020 International Workshops, CyberICPS, SECPRE, and ADIoT, Guildford, UK, 14\u201318 September 2020, Springer. Revised Selected Papers 6.","DOI":"10.1007\/978-3-030-64330-0"},{"key":"ref_24","doi-asserted-by":"crossref","unstructured":"Mundhenk, P., Steinhorst, S., Lukasiewycz, M., Fahmy, S.A., and Chakraborty, S. (2015, January 7\u201311). Security analysis of automotive architectures using probabilistic model checking. Proceedings of the 52nd Annual Design Automation Conference, San Francisco, CA, USA.","DOI":"10.1145\/2744769.2744906"},{"key":"ref_25","doi-asserted-by":"crossref","unstructured":"Luo, F., Hou, S., Zhang, X., Yang, Z., and Pan, W. (2020). Security Risk Analysis Approach for Safety-Critical Systems of Connected Vehicles. Electronics, 9.","DOI":"10.3390\/electronics9081242"},{"key":"ref_26","doi-asserted-by":"crossref","first-page":"5494","DOI":"10.1109\/ACCESS.2017.2696031","article-title":"IoTRiskAnalyzer: A probabilistic model checking based framework for formal risk analytics of the Internet of Things","volume":"5","author":"Mohsin","year":"2017","journal-title":"IEEE Access"},{"key":"ref_27","unstructured":"Karray, K., Danger, J.-L., Guilley, S., and Abdelaziz Elaabid, M. (2018). Cyber-Physical Systems Security, Springer."},{"key":"ref_28","doi-asserted-by":"crossref","unstructured":"Best, B., Jurjens, J., and Nuseibeh, B. (2007, January 20\u201326). Model-based security engineering of distributed information systems using UMLsec. Proceedings of the 29th International Conference on Software Engineering (ICSE\u201907), Minneapolis, MN, USA.","DOI":"10.1109\/ICSE.2007.55"},{"key":"ref_29","doi-asserted-by":"crossref","unstructured":"Garcia-Alfaro, J., Leneutre, J., Cuppens, N., and Yaich, R. (2021). Risks and Security of Internet and Systems, Proceedings of the 15th International Conference, CRiSIS 2020, Paris, France, 4\u20136 November 2020, Springer. Revised Selected Papers 15.","DOI":"10.1007\/978-3-030-68887-5"},{"key":"ref_30","doi-asserted-by":"crossref","unstructured":"Shah, S.M., Anastasakis, K., and Bordbar, B. (2009, January 5). From UML to Alloy and back again. Proceedings of the 6th International Workshop on Model-Driven Engineering, Verification and Validation, Denver, CO, USA.","DOI":"10.1145\/1656485.1656489"},{"key":"ref_31","doi-asserted-by":"crossref","unstructured":"Walker, A., O\u2019Connor, R., and Messnarz, R. (2019). Systems, Software and Services Process Improvement, Proceedings of the 26th European Conference, EuroSPI 2019, Edinburgh, UK, 18\u201320 September 2019, Springer. Proceedings 26.","DOI":"10.1007\/978-3-030-28005-5"},{"key":"ref_32","doi-asserted-by":"crossref","unstructured":"Skavhaug, A., Guiochet, J., Schoitsch, E., and Bitsch, F. (2016). Computer Safety, Reliability, and Security, Proceedings of the SAFECOMP 2016 Workshops, ASSURE, DECSoS, SASSUR, and TIPS, Trondheim, Norway, 20 September 2016, Springer. Proceedings 35.","DOI":"10.1007\/978-3-319-45480-1"},{"key":"ref_33","first-page":"183","article-title":"STPA-SafeSec: Safety and security analysis for cyber-physical systems","volume":"34","author":"Friedberg","year":"2017","journal-title":"J. Inf. Secur. Appl."},{"key":"ref_34","first-page":"191","article-title":"STORE: Security threat oriented requirements engineering methodology","volume":"34","author":"Ansari","year":"2022","journal-title":"J. King Saud Univ. -Comput. Inf. Sci."},{"key":"ref_35","doi-asserted-by":"crossref","first-page":"165966","DOI":"10.1109\/ACCESS.2021.3133020","article-title":"Reusable Security Requirements Repository Implementation Based on Application\/System Components","volume":"9","year":"2021","journal-title":"IEEE Access"},{"key":"ref_36","doi-asserted-by":"crossref","first-page":"271","DOI":"10.1007\/s10270-019-00747-8","article-title":"A security requirements modelling language for cloud computing environments","volume":"19","author":"Mouratidis","year":"2020","journal-title":"Softw. Syst. Model."},{"key":"ref_37","doi-asserted-by":"crossref","first-page":"1","DOI":"10.1007\/s00766-021-00359-z","article-title":"Formal requirements modeling for cyber-physical systems engineering: An integrated solution based on FORM-L and Modelica","volume":"27","author":"Bouskela","year":"2022","journal-title":"Requir. Eng."},{"key":"ref_38","unstructured":"Kumar, M.S., Harika, A., Sushama, C., and Neelima, P. (2022). Handbook of Intelligent Computing and Optimization for Sustainable Development, Scrivener Publishing LLC."}],"container-title":["Sensors"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/10\/4979\/pdf","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,10,10]],"date-time":"2025-10-10T19:40:10Z","timestamp":1760125210000},"score":1,"resource":{"primary":{"URL":"https:\/\/www.mdpi.com\/1424-8220\/23\/10\/4979"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2023,5,22]]},"references-count":38,"journal-issue":{"issue":"10","published-online":{"date-parts":[[2023,5]]}},"alternative-id":["s23104979"],"URL":"https:\/\/doi.org\/10.3390\/s23104979","relation":{},"ISSN":["1424-8220"],"issn-type":[{"type":"electronic","value":"1424-8220"}],"subject":[],"published":{"date-parts":[[2023,5,22]]}}}