Full Program
Summary:
The increasing integration of connected technologies in modern vehicles enhances user experience and performance but introduces critical cybersecurity risks. Traditional IT-centric security solutions are insufficient for addressing these dynamic, safety-critical threats. This paper introduces Vehicle Penetration Test as a Service (VPTaaS), a conceptual framework that combines AI-driven threat prediction, multimodal vulnerability analysis, real-time cyber-health monitoring, and manufacturer-agnostic penetration testing. A survey of 83 stakeholders — including vehicle owners, insurers, service providers, and industry experts — revealed strong awareness (79%–86%) of vehicular cybersecurity concerns and high support (86%–88%) for proactive assessments. The proposed framework aligns with key industry standards such as ISO 21434 and UNECE WP.29 R155/R156, ensuring regulatory compliance. Results indicate both market readiness and technical viability for VPTaaS, supporting its potential to improve vehicle cybersecurity resilience, protect sensitive data, and meet regulatory demands. Future efforts will focus on prototype implementation, pilot testing, and application to autonomous and V2X systems.Author(s):
Sze Wei Tan
University of Wolverhampton
United Kingdom
Md Arafatur Rahman
University of Wolverhampton
United Kingdom
Nadia Refat
University of Wolverhampton
United Kingdom
Prashant Pillai
University of Wolverhampton
United Kingdom