Salvato in:
Dettagli Bibliografici
Autori principali: Figge, Julius, Knuplesch, David, Maletti, Andreas, Zuvic, Dragan
Natura: Preprint
Pubblicazione: 2026
Soggetti:
Accesso online:https://arxiv.org/abs/2604.21606
Tags: Aggiungi Tag
Nessun Tag, puoi essere il primo ad aggiungerne!!
_version_ 1866915980667518976
author Figge, Julius
Knuplesch, David
Maletti, Andreas
Zuvic, Dragan
author_facet Figge, Julius
Knuplesch, David
Maletti, Andreas
Zuvic, Dragan
contents The automotive domain is transitioning: vehicles act as rolling servers, persistently connected to numerous external entities. This connectivity, combined with rising on-board computing power for advanced driver assistance systems and similar use cases, creates escalating challenges for securing automotive network architectures. This work advances the security analysis of internet-connected automotive network architectures and their protocols. We introduce a strong, active adversary model tailored to the automotive domain. We substantially extend security protocol verification possible based on Attack Resilience Hyperproperties (ARHs) by introducing a verification-orchestration algorithm. Furthermore, we provide methods for comparative attribution of security property invalidations to specific, ne-grained component compromises. We present a novel integration of formal verification and process mining. By utilizing ARH counterexample traces for process mining, we systematically identify and aggregate attacker behavior that causes security property invalidations. This pipeline enables in-depth understanding of root causes and attack paths leading to protocol-security invalidations. We demonstrate real-world applicability through a prototype and case study on the secure transmission of battery management system data within an automotive network architecture.
format Preprint
id arxiv_https___arxiv_org_abs_2604_21606
institution arXiv
publishDate 2026
record_format arxiv
spellingShingle Process-Mining of Hypertraces: Enabling Scalable Formal Security Verification of (Automotive) Network Architectures
Figge, Julius
Knuplesch, David
Maletti, Andreas
Zuvic, Dragan
Cryptography and Security
The automotive domain is transitioning: vehicles act as rolling servers, persistently connected to numerous external entities. This connectivity, combined with rising on-board computing power for advanced driver assistance systems and similar use cases, creates escalating challenges for securing automotive network architectures. This work advances the security analysis of internet-connected automotive network architectures and their protocols. We introduce a strong, active adversary model tailored to the automotive domain. We substantially extend security protocol verification possible based on Attack Resilience Hyperproperties (ARHs) by introducing a verification-orchestration algorithm. Furthermore, we provide methods for comparative attribution of security property invalidations to specific, ne-grained component compromises. We present a novel integration of formal verification and process mining. By utilizing ARH counterexample traces for process mining, we systematically identify and aggregate attacker behavior that causes security property invalidations. This pipeline enables in-depth understanding of root causes and attack paths leading to protocol-security invalidations. We demonstrate real-world applicability through a prototype and case study on the secure transmission of battery management system data within an automotive network architecture.
title Process-Mining of Hypertraces: Enabling Scalable Formal Security Verification of (Automotive) Network Architectures
topic Cryptography and Security
url https://arxiv.org/abs/2604.21606