The main problem of the research was to find out a prediction model that could predict new cyber risks in the emerging area of connected autonomous vehicles. The movement towards smart vehicles in the vehicle industry has changed the traditional transportation environment risks. Regarding the hardware and software embedded in connected and smart vehicles, they can face any cyber risks in the cybersecurity domain. For example, the Android/iOS entertainment systems in the new smart cars mean that any cyber risk predicted for these operating systems is now a cyber risk for connected and smart vehicles. In this regard, we can consider that a general cyber risk prediction system can also predict the cyber risks of smart vehicles. There are also some cyber risks that are specially for smart vehicles. Considering this, the cyber risk prediction models should be examined to see if they can be trained to gain higher performance regarding the connected and autonomous vehicles cyber risks. In our MSCA-IF research project, we addressed the problem of finding both general cyber risk classification and prediction models and also connected and autonomous vehicles cyber risk prediction models.
Our presented models facilitate the entry of self-driving cars into the market by predicting their cyber risks. It is clear that no car can enter the transportation cycle without insurance. Insurers will not be able to insure new vehicles without recognizing the risks these vehicles may face. In one of the models we have presented and published in a reputable peer-reviewed journal, we identify cyber risks and quantify them. This helps the insurer to be able to insure the car and pave the way for it to enter the transportation cycle. Ultimately, self-driving cars will contribute to the sustainable development of societies by facilitating easier and cheaper transportation for all and reducing the number of accidents, as well as by helping to optimize time and fuel consumption in travels by creating intelligent public fleets. Our project is in line with the United Nations Sustainable Development Plan.
The overall objective of the research done was to develop cyber risk prediction models using machine learning algorithms. In the research path, the first objective was to detect hazards, threats, top events, and consequences. Then another objective was to classify different risks and quantify them so they could be used in insurance underwriting. The second objective was to build a full data-driven machine learning prediction model. After achieving these objectives and by investigating the predicted cyber risks, we concentrated on Phishing attacks, and another objective was defined to build a machine learning based model to discover phishing attacks.