Component-Level Security Testing and Analysis

Duration: Full time - 3 years 6 months Fixed Term

Application deadline: This opportunity will only remain open until a suitable candidate is identified- early application is therefore advised. Standard University research application closing dates apply http://www.coventry.ac.uk/research/research-students/application-dates/

Informal enquiries are essential before application; contact Dr. Jeremy Bryans (https://pureportal.coventry.ac.uk/en/persons/jeremy-bryans) to discuss this opportunity.

Congratulations on taking your first steps toward a Research Degree with Coventry’s Faculty of Engineering, Environment and Computing. As an ambitious and innovative University, we’re investing an initial £100m into our new research strategy, ‘Excellence with Impact’ (http://www.coventry.ac.uk/research/about-research-at-coventry/). Through original approaches from world-leading experts, we’re aiming for our research to make a tangible difference to the way we live. As a research student you are an integral part of Coventry’s lively and diverse research community and contribute to our reputation for excellence. With our exceptional facilities and superb support mechanisms (http://www.coventry.ac.uk/research/research-students/research-studentships/research-studentships-the-benefits/?id=98267) you are afforded every opportunity for academic success.

THE PROJECT
The aim of this PhD is to develop a method (or set of methods) that can be employed to identify attack scenarios on ECU/sensor/network combinations, and a library of security solutions that can be employed to mitigate the identified attacks.

The central research question addressed here is: how do we identify security vulnerabilities in new combinations of ECUs, networks and sensors? Can we identify any general principles or methods to aid the developer? This has various sub-problems including

(1) How can we make use of simulation in security testing? What are the limits of its accuracy?

(2) Is there a systematic approach to identifying what constitutes an attack? (3) What tests can be carried out to isolate these attacks?

(4) Can we develop a security concept, consisting of an optimum set of solutions to mitigate the identified attacks?

The contributions will include:

(1) Development of a suite of analysis methods capable of establishing the susceptibility or otherwise of ECU/network/sensor combinations to a variety of attack scenarios.

(2) Development of a corresponding library of security solutions to mitigate identified attacks.

(3) Development of guidelines aimed at a security tester, to assist them in the task of testing vehicle configurations for security vulnerabilities and recommending mitigations.

The candidate will be part of the CCAAR project: ECU/Component-level Security Testing and Analysis. The will have access to CCAAR security laboratory equipment with an in-kind value of approximately £100k. This will allow them to rapidly change ECU/network and sensor configurations. They will also have the services of two HORIBA MIRA engineers, one in hardware and one in software, and shared with related HORIBA MIRA projects. The contribution is valued at approximately £150k.

The candidate will also have access to a less sophisticated vehicle simulator from Vector, available within the cybersecurity group. This allows us to simulate a vehicle network including several software-based ECUs and one hardware-based ECU (which allows for actual actuation in a real network).

They will also have access to HORIBA MIRA test facilities and vehicles.

ABOUT THE CENTRE/DEPARTMENT
Our research in Mobility & Transport works across our faculties and focuses on the design and engineering of future transport systems, including the growing influence of the internet and connectivity. The focus is on inclusive, sustainable and safe transport integrating the strongest research elements in design and engineering. The Centre currently has around 50 staff and 40 PhD students.

SUCCESSFUL APPLICANTS
Successful applicants will have:

- A minimum of a 2:1 first degree in a relevant discipline/subject area with a minimum 60% mark in the Project element or equivalent with a minimum 60% overall module average, or
- A Masters Degree in a relevant subject area will be considered as an equivalent. The Masters must have been attained with overall marks at merit level (60%). In addition, the dissertation or equivalent element in the Masters must also have been attained with a mark at merit level (60%).
- The potential to engage in innovative research and to complete the PhD within a prescribed period of study
- Language proficiency (IELTS overall minimum score of 7.0 with a minimum of 6.5 in each component).

Additionally:

- knowledge and/or experience in the subject of hardware or software testing
- a good knowledge of vehicle security
- experimental, modelling or analytical experience
- experience of (or a willingness to quickly learn) about vehicle systems.

ELIGIBILITY & APPLICATION PROCEDURE
Application Procedure:

Application information can be found in our how to apply section. Before completing the application please contact Dr. Jeremy Bryans (cc'ing [Email Address Removed] when you do) for an initial informal discussion about the opportunity.

Eligibility:

All UK/EU/International students are eligible to apply that meet the academic requirements, the eligibility criteria can be found making an application page (http://www.coventry.ac.uk/research/research-students/making-an-application/).