Thomas Rosenstatter

Thomas Rosenstatter

PhD candidate at Chalmers University of Technology, Sweden

Sitemap

A list of all the posts and pages found on the site. For you robots out there is an XML version available for digesting as well.

Pages

Posts

portfolio

publications

Applicability of IEC 61499 for event based Smart Grid applications

Published in International Symposium on Smart Electric Distribution Systems and Technologies (EDST), 2015

Abstract: IEC 61499 is an open standard based on function blocks applied for distributed automation solutions. In this paper we discuss the application of IEC 61499 for designing and implementing event-based Smart Grid applications. We show that IEC 61499 is well suited in the context of Smart Grids at the example of the concrete use case of power exchange between several peers of the Smart Grid. The feasibility of IEC 61499 in the context of this use case is assessed on the basis of a prototypical implementation using the open source framework 4DIAC. We conclude that IEC 61499 is a powerful tool for engineering event-based Smart Grid applications.

Recommended citation: T. Rosenstatter, R. Wanger, S. Huber, T. Heistracher and D. Engel, "Applicability of IEC 61499 for event based Smart Grid applications," 2015 International Symposium on Smart Electric Distribution Systems and Technologies (EDST), Vienna, 2015, pp. 278-283. https://doi.org/10.1109/SEDST.2015.7315221

Modelling the Level of Trust in a Cooperative Automated Vehicle Control System

Published in IEEE Transactions on Intelligent Transportation Systems (Volume: 19, Issue: 4, April 2018), 2017

Vehicle-to-vehicle communication is a key technology for achieving increased perception for automated vehicles, where the communication enables virtual sensing by means of sensors in other vehicles. This paper presents a trust system that allows a cooperative and automated vehicle that uses V2V communication to make more reliable and safe decisions. Read more.

Recommended citation: T. Rosenstatter and C. Englund, "Modelling the Level of Trust in a Cooperative Automated Vehicle Control System," in IEEE Transactions on Intelligent Transportation Systems, vol. 19, no. 4, pp. 1237-1247, April 2018. https://doi.org/10.1109/TITS.2017.2749962

Team Halmstad Approach to Cooperative Driving in the Grand Cooperative Driving Challenge 2016

Published in IEEE Transactions on Intelligent Transportation Systems (Volume: 19, Issue: 4, April 2018), 2018

This paper is an experience report of team Halmstad from the participation in a competition organised by the i-GAME project, the Grand Cooperative Driving Challenge 2016. The competition was held in Helmond, The Netherlands, during the last weekend of May 2016. We give an overview of our car’s control and communication system that was developed for the competition following the requirements and specifications of the i-GAME project. Read more.

Recommended citation: M. Aramrattana et al., "Team Halmstad Approach to Cooperative Driving in the Grand Cooperative Driving Challenge 2016," in IEEE Transactions on Intelligent Transportation Systems, vol. 19, no. 4, pp. 1248-1261, April 2018. https://doi.org/10.1109/TITS.2017.2752359

Open Problems when Mapping Automotive Security Levels to System Requirements

Published in 4th International Conference on Vehicle Technology and Intelligent Transport Systems, VEHITS, 2018

We describe open problems that need to be addressed in a prospective security framework for the automotive domain. Based on a study of several safety and security standards from other areas as well as suggested automotive security models, we propose an appropriate representation of security levels which is similar to, and will work in parallel with traditional safety, and a method to perform the mapping to a set of predefined system requirements, design rules and security mechanisms. Read more.

Recommended citation: T. Rosenstatter and T. Olovsson, "Open Problems when Mapping Automotive Security Levels to System Requirements," 4th International Conference on Vehicle Technology and Intelligent Transport Systems (VEHITS), Funchal, 2018, pp. 251-260. https://dx.doi.org/10.5220/0006665302510260

Towards a Standardized Mapping from Automotive Security Levels to Security Mechanisms

Published in 21st International Conference on Intelligent Transportation Systems (ITSC), 2018

We first suggest that the risk assessment process should result in five security levels. Further, we identify suitable security mechanisms and design rules for automotive system design and associate them with appropriate security levels. Our proposed methodology is as much as possible aligned with ISO 26262 and we believe that it should therefore be realistic to deploy in existing organizations. Read more.

Recommended citation: T. Rosenstatter and T. Olovsson, "Towards a Standardized Mapping from Automotive Security Levels to Security Mechanisms," 2018 21st International Conference on Intelligent Transportation Systems (ITSC), Maui, HI, USA, 2018, pp. 1501-1507. https://doi.org/10.1109/ITSC.2018.8569679

HoliSec Deliverable 3.2 – Secure Communication

Published in Project Deliverable of HoliSec HOLIstic Approach to Improve Data SECurity, 2019

This document presents a summary of our achievements in the area of security mechanisms for connected vehicles. We contribute to different areas, such as internal communication, requirements engineering, software development, and V2X communication. Read more.

Download here

Licentiate Thesis – Towards a Standardised Framework for Securing Connected Vehicles

Published in Technical report L - Department of Computer Science and Engineering, Chalmers University of Technology and Göteborg University: 198 , 2019

In this thesis we study various safety and security standards and proposed frameworks from different industrial domains with respect to their way of classifying demands in the form of levels and their methods to derive requirements. In our proposed framework, we suggest security levels appropriate for automotive systems and continue with a mapping between these security levels and identified security mechanisms and design rules to provide basic security. We further study in detail a mechanism which provides freshness to authenticated messages, namely AUTOSAR SecOC Profile 3, and present a novel extension that offers a faster synchronisation between ECUs and reduces the number of required messages for synchronisation. Read more.

Recommended citation: T. Rosenstatter, "Towards a Standardised Framework for Securing Connected Vehicles," Licentiate Thesis, Chalmers University of Technology, Sweden, 2019. https://research.chalmers.se/publication/511915

Extending AUTOSARs Counter-based Solution for Freshness of Authenticated Messages in Vehicles

Published in 24th Pacific Rim International Symposium on Dependable Computing (PRDC), 2020

We analyse AUTOSAR SecOC Profile 3, a solution to provide freshness for authenticated messages, and further propose an extension of this security profile that copes with the limitations identified in our analysis. The extended profile provides a faster resynchronisation of the freshness value and consumes less bandwidth due to the reduction of the number of synchronisation messages needed. We evaluated our solution based on two demonstrators, one communicating via CAN bus and one communicating over Ethernet. Read more.

Recommended citation: T. Rosenstatter, C. Sandberg and T. Olovsson, "Extending AUTOSAR's Counter-Based Solution for Freshness of Authenticated Messages in Vehicles," 2019 IEEE 24th Pacific Rim International Symposium on Dependable Computing (PRDC), Kyoto, Japan, 2019, pp. 1-109. https://doi.org/10.1109/PRDC47002.2019.00012

REMIND: A Framework for the Resilient Design of Automotive Systems

Published in IEEE Secure Development Conference, 2020

In this paper, we contribute to supporting the design of resilient automotive systems. We review and analyze scientific literature on resilience techniques, fault tolerance, and dependability. As a result, we present the REMIND resilience framework providing techniques for attack detection, mitigation, recovery, and resilience endurance. Moreover, we provide guidelines on how the REMIND framework can be used against common security threats and attacks and further discuss the trade-offs when applying these guidelines. Read more.

Recommended citation: T. Rosenstatter, K. Strandberg, R. Jolak, R. Scandariato, T. Olovsson, "REMIND: A Framework for the Resilient Design of Automotive Systems," 2020 IEEE Secure Development Conference (SecDev), In Print

talks

Towards a Standardised Framework for Securing Connected Vehicles

Published:

Vehicular security was long limited to physical security - to prevent theft. However, the trend of adding more comfort functions and delegating advanced driving tasks back to the vehicle increased the magnitude of attacks, making cybersecurity inevitable. Attackers only need to find one vulnerability in the myriad of electronic control units (ECUs) and communication technologies used in a vehicle to compromise its functions. Vehicles might also be attacked by the owners, who want to modify or even disable certain vehicle functions.

Bringing Automotive Security and Safety Closer Together

Published:

We already have best practices and mechanisms for functional safety in place, however, a structured or standardised approach for identifying specific security mechanisms mandatory to be implemented are missing for the automotive domain. Our proposed approach covers basic security demands and enables a closer cooperation between safety and security work.

teaching