检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:徐辉 XU Hui(Jiangling Motors Co.,Ltd.,Nanchang 330000,China)
出 处:《移动信息》2025年第2期157-159,共3页Mobile Information
摘 要:随着智能汽车产业的发展,其网络安全问题愈发凸显.据统计,智能网联汽车中涉及车辆操控、车载通信以及数据存储的核心漏洞已超3700个,2023年至2024年9月间,国内发生20余起车企相关数据泄露事件,暴露出行业在安全防护方面的严峻挑战.在这一背景下,威胁建模技术以其对潜在风险的系统化分析和评估能力,成为网络安全防护的关键工具.目前,STRIDE模型、攻击树等经典建模方法在风险识别和分析中表现出一定优势,但其对智能汽车特定场景的适配性有限,难以涵盖复杂的车联网交互及数据流动场景,且与后续的防护设计缺乏有机衔接.因此,文中探讨了基于威胁建模的智能汽车网络安全风险防护设计问题,以期提升智能汽车网络安全风险防护水平.With the development of the intelligent automobile industry,its network security issues have become increasingly prominent.According to statistics,there are over 3700 core vulnerabilities related to vehicle control,in vehicle communication,and data storage in intelligent connected vehicles.Between 2023 and September 2024,there were more than 20 data breaches related to car companies in China,exposing severe challenges in the industry̓s security protection.In this context,threat modeling technology has become a key tool for network security protection due to its ability to systematically analyze and evaluate potential risks.At present,classic modeling methods such as STRIDE model and attack tree have shown certain advantages in risk identification and analysis,but their adaptability to specific scenarios of intelligent vehicles is limited,making it difficult to cover complex scenarios of vehicle networking interaction and data flow,and lacking organic connection with subsequent protection design.Therefore,the paper explores the design of intelligent vehicle network security risk protection based on threat modeling,in order to improve the level of intelligent vehicle network security risk protection.
分 类 号:TP309[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.62