Formalising UPTANE in CSP for Security Testing

Rhys Kirk, Hoang Nga Nguyen, Jeremy Bryans, Siraj Shaikh, David Evans, David Price

Research output: Contribution to conferencePaperpeer-review


Modern vehicles are susceptible to cybersecurity attacks due to the complexity of their electronics architecture and a progressive integration of connectivity technologies. A promising solution to resolve cybersecurity issues is Over-The-Air (OTA) updates. Recently, Uptane has been introduced and is currently considered as the de facto security standard for automotive OTA system solutions. To ensure that a system, Uptane, can deliver updates to secure a vehicle, the system itself must be secure as to not become an attack vector itself. To this end, we present a model-based security testing approach to OTA updates for automotive vehicles. This is done by modelling the OTA update system and the Dolev-Yao attackers in Communicating sequential processes (CSP). The combined models can be verified to generate security test cases and provide a comprehensive evaluation of attackers on the Uptane system.
Original languageEnglish
Number of pages9
Publication statusAccepted/In press - 1 Nov 2021
EventThe 21st IEEE International Conference on Software Quality, Reliability, and Security - International Academic Exchange Center of Hainan University, Haikou, China
Duration: 6 Dec 202110 Dec 2021
Conference number: 7


ConferenceThe 21st IEEE International Conference on Software Quality, Reliability, and Security
Abbreviated titleQRS2021
Internet address


  • Automotive Cybersecurity
  • Uptane
  • CSP
  • Automotive OTA
  • Security Testing


Dive into the research topics of 'Formalising UPTANE in CSP for Security Testing'. Together they form a unique fingerprint.

Cite this