TY - GEN
T1 - Modeling Data Security and Privacy Threats for VANET using STRIDE and LINDDUN
AU - Agustina, Esti Rahmawati
AU - Hakim, Arif Rahman
AU - Ramli, Kalamullah
N1 - Publisher Copyright:
© 2024 IEEE.
PY - 2024
Y1 - 2024
N2 - Vehicular Ad Hoc Networks (VANETs) represent an innovative technology with the potential to revolutionize road safety, traffic management, and vehicular communication. Nevertheless, addressing substantial security concerns to ensure privacy and data integrity within the network is imperative for successfully deploying VANETs. This study conducts a comprehensive analysis of assets/threats target identification, threat modeling, and the development of mitigation strategies for the VANET environment using qualitative methods. We initiate the process by meticulously identifying and categorizing the assets vital to the operations of VANETs. These assets encompass various components based on the Data Flow Diagram (DFD) elements. A thorough understanding of these assets is crucial for assessing the security landscape in VANETs. Subsequently, we employ the STRIDE and LINDDUN threat modeling methodology to identify potential data security and privacy threats. We have identified 11 assets/threat targets and 34 distinct threats and then proposed 11 customized mitigation strategies for VANETs.
AB - Vehicular Ad Hoc Networks (VANETs) represent an innovative technology with the potential to revolutionize road safety, traffic management, and vehicular communication. Nevertheless, addressing substantial security concerns to ensure privacy and data integrity within the network is imperative for successfully deploying VANETs. This study conducts a comprehensive analysis of assets/threats target identification, threat modeling, and the development of mitigation strategies for the VANET environment using qualitative methods. We initiate the process by meticulously identifying and categorizing the assets vital to the operations of VANETs. These assets encompass various components based on the Data Flow Diagram (DFD) elements. A thorough understanding of these assets is crucial for assessing the security landscape in VANETs. Subsequently, we employ the STRIDE and LINDDUN threat modeling methodology to identify potential data security and privacy threats. We have identified 11 assets/threat targets and 34 distinct threats and then proposed 11 customized mitigation strategies for VANETs.
KW - data security and privacy
KW - LINDDUN
KW - STRIDE
KW - threat model
KW - VANET
UR - http://www.scopus.com/inward/record.url?scp=85191413869&partnerID=8YFLogxK
U2 - 10.1109/ICoSEIT60086.2024.10497513
DO - 10.1109/ICoSEIT60086.2024.10497513
M3 - Conference contribution
AN - SCOPUS:85191413869
T3 - 2024 2nd International Conference on Software Engineering and Information Technology, ICoSEIT 2024
SP - 114
EP - 119
BT - 2024 2nd International Conference on Software Engineering and Information Technology, ICoSEIT 2024
PB - Institute of Electrical and Electronics Engineers Inc.
T2 - 2nd International Conference on Software Engineering and Information Technology, ICoSEIT 2024
Y2 - 28 February 2024 through 29 February 2024
ER -