A new cybersecurity software package developed at Oak Ridge National Laboratory is available for licensing. The Vehicle Attack Analysis Framework can emulate attacks on a vehicle’s controller area network, the digital backbone that connects a vehicle’s separate computers.
“The framework is available for those who don’t know how to craft a complex cyberattack but still want data on how a vehicle functions or what happens during an attack,” said Sam Hollifield, an ORNL cybersecurity research scientist. Hollifield uses this data to understand vulnerabilities in vehicles shipping valuable materials or radioactive sources for medical treatments, but the framework applies to any vehicle with computer-based electronics.
The easy-to-use web application was originally designed for users who lack prior knowledge of cybertesting to generate data.
“We’re looking into adding a grading component to create a security score for each assessed vehicle,” said Kevin Spakes, ORNL’s lead software engineer for the tool. “Grades could help inform fleet purchases for security-conscious businesses and consumers.”
For more information on licensing opportunities, contact Andreana Leskovjan at leskovjanac@ornl.gov. — Liz Neunsinger
This Oak Ridge National Laboratory news article "Framework available to study vehicle cyberattacks" was originally found on https://www.ornl.gov/news
