Tech News
Back to home
Technology

AUTOSAR-Aligned Analysis Of 180 SoC Vulnerabilities In Auto Architecture (Chalmers, Univ. of Gothenburg)

Source

SemiEngineering

Published

TL;DR

AI Generated

Researchers from Chalmers University of Technology and University of Gothenburg published a technical paper titled “An AUTOSAR-Aligned Architectural Study of Vulnerabilities in Automotive SoC Software.” The paper focuses on analyzing 180 publicly reported automotive SoC vulnerabilities within an AUTOSAR-aligned architecture model. It identifies 16 root causes, 56 affected software modules, and examines mitigation delays across Common Weakness Enumeration (CWE) categories and architectural layers. The study reveals dominant vulnerability patterns and critical modules with prolonged patch delays, providing insights for securing automotive CPS platforms.

Read Full Article

Similar Articles

Opto Devices Extend to Fulfill Automotive, Harsh-Environment Apps

Opto Devices Extend to Fulfill Automotive, Harsh-Environment Apps

Toshiba's optoelectronic devices, like the TLX9920 photovoltaic-output photocoupler, are now more rugged, making them suitable for automotive applications. The TLX9920, compliant with AEC-Q101 standards, features a thin package with a high isolation voltage, ideal for automotive battery-management systems and industrial energy storage. Additionally, Toshiba introduced four voltage-driven photorelays with a normally open arrangement, offering high-temperature operation and built-in resistors for space-saving applications. These devices cater to automotive semiconductor testers and probe cards, where reliable high-temperature operation is crucial.

ElectronicDesign
More Extended-Range EVs Soon to Hit the Road

More Extended-Range EVs Soon to Hit the Road

Renault and Volkswagen are collaborating with Chinese firms to introduce Extended-Range Electric Vehicles (EREVs) that combine EV batteries with gas-powered generators to address range anxiety. EREVs use a small internal combustion engine to generate electricity for the battery, offering high-range capability without the need for large batteries. Renault's RGEV medium 2.0 platform and VW's ID. Era 9X SUV with range-extending gasoline engine are part of this initiative, aiming to enhance electric mobility markets globally. These EREVs are expected to hit the market by 2028-2030, with up to 15 models anticipated in the U.S. by 2028.

ElectronicDesign
Anthropic's Claude Mythos AI has discovered thousands of vulnerabilities in every OS and browser

Anthropic's Claude Mythos AI has discovered thousands of vulnerabilities in every OS and browser

Anthropic's Claude Mythos AI, a powerful unreleased model, has identified thousands of high-severity vulnerabilities in major operating systems and browsers, surpassing human capabilities in finding and exploiting these flaws. The AI poses a significant cybersecurity threat, prompting concerns about potential misuse by malicious actors. While Claude Mythos won't be publicly released, it is being used in the Project Glasswing initiative to secure critical software, with partners like Amazon Web Services, Microsoft, and Google utilizing its capabilities. Anthropic plans to share its findings with the security industry, emphasizing the importance of responsible AI deployment and potential regulation to mitigate risks.

TweakTown
Anthropic's latest AI model identifies 'thousands of zero-day vulnerabilities' in 'every major operating system and every major web browser' — Claude Mythos Preview sparks race to fix critical bugs, some unpatched for decades

Anthropic's latest AI model identifies 'thousands of zero-day vulnerabilities' in 'every major operating system and every major web browser' — Claude Mythos Preview sparks race to fix critical bugs, some unpatched for decades

Anthropic's latest AI model, Claude Mythos Preview, has uncovered "thousands of zero-day vulnerabilities" in major operating systems and web browsers, sparking a rush to fix these critical bugs, some of which have remained unpatched for decades. The lab is collaborating with industry giants and government entities under "Project Glasswing" to proactively address these vulnerabilities before they can be exploited. Mythos' ability to identify and exploit vulnerabilities poses significant security risks, prompting responsible disclosure practices from Anthropic. While the model won't be widely available, the lab aims to prepare partners for a future where such advanced AI models become more common.

Tom's Hardware

We use cookies

We use cookies to ensure you get the best experience on our website. For more information on how we use cookies, please see our cookie policy.