Analysis of Automotive Cybersecurity - Attack surfaces and users’ privacy concerns

Modern automobiles are no longer just mechanical tools. The electronics and computing services they are shipping with are making them not less than a computer. They are massive kinetic devices with sophisticated computing power. Most of the modern vehicles are made with the added connectivity in mind which may be vulnerable to outside attack. Researchers have shown that it is possible to infiltrate into a vehicle’s internal system remotely and control the physical entities such as steering and brakes. It is quite possible to experience such attacks on a moving vehicle and unable to use the controls. These massive connected computers can be life threatening as they are related to everyday lifestyle. First part of this research studied the attack surfaces in the automotive cybersecurity domain. It also illustrated the attack methods and capabilities of the damages. Online survey has been deployed as data collection tool to learn about the consumers’ usage of such vulnerable automotive services. The second part of the research portrayed the consumers’ privacy in automotive world. It has been found that almost hundred percent of modern vehicles has the capabilities to send vehicle diagnostic data as well as user generated data to their manufacturers, and almost thirty five percent automotive companies are collecting them already. Internet privacy has been studies before in many related domain but no privacy scale were matched for automotive consumers. It created the research gap and motivation for this thesis. A study has been performed to use well established consumers privacy scale – IUIPC to match with the automotive consumers’ privacy situation. Hypotheses were developed based on the IUIPC model for internet consumers’ privacy and they were studied by the finding from the data collection methods. Based on the key findings of the research, all the hypotheses were accepted and hence it is found that automotive consumers’ privacy did follow the IUIPC model under certain conditions. It is also found that a majority of automotive consumers use the services and devices that are vulnerable and prone to cyber-attacks. It is also established that there is a market for automotive cybersecurity services and consumers are willing to pay certain fees to avail that.

Puupolttoaineen varastonhallinta- ja hankintamalli

Työssä luodaan energiapuun varastonhallintamalli ja hankintamalli energiantuotantolaitoksen näkökulmasta sekä kuvataan kustannustehokkaita ja toimitusvarmoja vaihtoehtoja puupolttoaineen varastoinnille ja haketukselle. Varastonhallintamallissa keskitytään varastotason hallintamenetelmiin toimintaympäristössään. Hankintamalli määrittää oman varaston ja suoran laitostoimituksen suhteen sekä auttaa pohtimaan strategisen hankinnan merkitystä hankinnan toteuttamiseen ja hankintakanavien valintaan. Työ antaa vastauksia koko hankintatoiminnan toteutukseen ja hallitsemiseen. Varastonhallintamallin skenaariotarkastelussa selvisi, että yrityksen oma varasto vaatii 18 – 37 % varmuusvaraston suhteessa käyttövarastoon. Hankintamallin mukaan oman varaston kannattavimman puupolttoainejakeen hankintaetäisyys voisi olla keskimäärin korkeintaan 96 km. Tarpeen, saatavuuden, jakeiden kustannustasojen ja toimintaympäristön mahdollisuuksien ollessa selvillä, on mahdollista tehdä päätöksiä hankintakanavista ja varmuusvarastoista kustannustehokkuuden perusteella. Yrityksen polttoainemäärien ohjauksen toteutukseen vaaditaan kehittämistoimia. Oman toimintaympäristön vakiointi ja toimintamallien dokumentointi on tärkeää tiedonjaon, toimitussopimusten mitoittamisen ja toiminnan kehittämisen kannalta. Toiminnan pullonkaulojen vähentäminen ja puupolttoaineen ohjaaminen kustannustehokkaimpien haketusketjujen kautta mahdollisimman tehokkaasti synnyttävät kustannussäästöjä toimitusketjussa.