Case Study Scania

Proactively Securing Connected Vehicles

In order to provide modern services to drivers and other
stakeholders todays vehicles contain an increasing amount of IT. While
vehicles are modernizing into the digital connected future the number of
attacks and vulnerabilities also increases.

When engineering a vehicle, much functionality and design is modeled and tested in CAD (Computer-Aided Design) tools. For instance, crash testing and aerodynamics simulation. This has been state-of-the-art in this industry for decades. However, cybersecurity threats to vehicles are typically not analyzed using the same (or similar) tools as the rest of the vehicle.

World-leading truck and bus manufacturer Scania is now modernizing their way of working with security and IT design. They are doing it by evaluating securiCAD for threat modeling and attack simulations. With securiCAD Scania aims to model both the internal IT infrastructure of their vehicles and the connection to external services such as cloud solutions. With securiCADs models you can run automatic, data-driven, and quantitative attack simulations.They could also run in a similar fashion as with aerodynamic simulations. Scanias results show where potential design flaws are. As well as to structural vulnerabilities are likely to occur and what risk these pose. securiCAD also suggests mitigation strategies and alternative designs can be compared for optimal decision-making.

securiCAD provides a new approach for security design and analysis, but at the same time it is a similar way of thinking as in other engineering disciplines. This is a real benefit for our analysts and designers and has the potential to help excel our security work.
Niklas Wiberg
Cybersecurity architect

About Scania:

Scania is a world leading provider of transport solutions. Together with Scanias partners and customers they are driving the shift towards a sustainable transport system.

For more information please visit: https://www.scania.com