RP 1225A - General Guidelines For Security Risk Analysis Of Electronic Driver Log Systems
- RP 1225A - General Guidelines For Security Risk Analysis Of Electronic Driver Log Systems
- VMRS
- Preface
- Purpose And Scope
- Introduction
- System Characterization Of Electronic Driver Log Systems
- System Assets And Stakeholders
- Risk Analysis Approach
- Cataloged Security Risks
- Summary Of Security Risks
- Catalog Of Identified Security Risks For Electronic Driver Log Systems
- False Driver Id
- Impersonated Driver Id
- Unassigned Driving
- Device Disablement
- Vehicle System Data Modified Through Unauthorized Access
- False Recording Of Non-Driving Events
- Unauthorized Software Or Applications On Vehicle System
- Internal Clock Alteration
- Vehicle System Security Assets Compromised
- Vehicle System Installation And Field Support Ineffectiveness
- Unauthorized Vehicle System Access
- Exposed System Design And Security Controls For Vehicle System
- Ineffective Management Of Access Controls
- Errors And Falsifications With Edits
- Ineffective Exceptions Management
- Support System Failure
- Prolonged Outage Of Support System
- Encryption System Compromise On Support System
- Access Control Failure With Support System
- Unauthorized Access To Driver Portal
- Unauthorized Software On Support System
- Cyber Attack On Support System
- Technical Support Ineffectiveness
- Exposed System Design And Security Controls
- Log Submittal Is Altered
- No Or False Log Transfer
- Faulty Data Transfers
- Physical Media/External Device Failure
- Data Transmission Compromise
- Unauthorized Access Via Peer-To-Peer Communication
- Counterfeit Hardware
- Counterfeit Printouts
- Hidden Eld Or AOBRD
- Hidden Or Destroyed Carrier Log Records
- Counterfeiting Of Log Data Or Printouts
- 7.Glossary And References
- Revision