HASUMS is a Secure SUMS systematically developed following strict security engineering process.
- As software installed in a vehicle increases, the importance of a Software Update Management System(SUMS) for automotive is increasing.
- In particular, as studies were announced that exploiting vulnerabilities in the software update management system could threaten the lives of passengers, UNECE announced regulations to ensure security for SUMS.
- However, there is a limitation that the requirements specified in the regulation are too abstract to follow.
- (Threat modeling) We identify threats that can occur in SUMS through STRIDE Methodology and derive security requirements to mitigate the threats.
- (Design in UML) We design Secure SUMS by adding security functions corresponding to the security requirements.
- (Formal modeling) Through Event-B, Secure SUMS is formally specified and verified that it operates normally without conflict between security functions.
- (Code generation) Through Atelier B, formally specified designs are created in source code.
- Jaewan Seo, Jiwon Kwak, and Seungjoo Kim, "Formally Verified Software Update Management System in Automotive", Inaugural Symposium on Vehicle Security and Privacy(VehicleSec), February, 2023.
- Jaewan Seo, "HASUMS: High-Assurance Software Update Management System" in Youtube(Channel: "Skim TV")