9:00 am–9:15 am
Opening Remarks and Best Paper Awards
General Chairs: Hyungsub Kim, Indiana University, and Aiping Xiong, The Pennsylvania State University
9:15 am–10:00 am
Keynote Presentation
The Trajectory of Automotive Cybersecurity and the Role of AI
André Weimerskirch, Block Harbor Cybersecurity
Automotive cybersecurity has evolved through distinct phases, moving from limited industry awareness and a period of hype to today's regulated landscape. Despite substantial technological changes in vehicle architectures and connectivity over the last decade, confirmed security incidents remain largely constrained to vehicle theft and chip tuning. As the industry matures, investment patterns are shifting toward value-based decision making to meet regulatory compliance targets. The emergence of AI introduces a critical shift. On the threat side, AI may lower the technical and economic threshold for attacks, expanding the pool of capable adversaries and targeting previously unattractive systems. Conversely, AI offers immense potential for defense: it can accelerate vulnerability reduction, enable faster attack detection at scale, and automate security tasks to help stakeholders meet compliance goals. Crucially, the introduction of AI also creates new operational challenges, such as the need to automatically update vehicle firewalls within minutes and compress software update deployment timelines from months to hours. This talk provides a structured analysis of the field's historical trajectory, its current posture, and the specific security gaps that AI can and cannot close.
Dr. André Weimerskirch is COO of Block Harbor Cybersecurity. Before that, André was Vice President for Product Integrity and Technology at Lear Corporation where he was responsible for product security, functional safety, platform software, and validation labs. André also established the transportation cybersecurity group at the University of Michigan Transportation Research Institute (UMTRI) and still holds an Adjunct Associate Research Scientist appointment. André co-founded the embedded systems security company ESCRYPT in 2004 which was sold to Bosch in 2012.
André is active in all areas of transportation and AI robots cybersecurity and privacy. He is co-founder of the American workshop on embedded security in cars (escar USA), co-chairs the CCAT cybersecurity working group at the University of Michigan and is an advisor to the University of Michigan Dearborn Computer and Information Science Department.
10:00 am–10:30 am
Coffee and Tea Break
10:30 am–11:25 am
Drone Security
Blind Spot in Sensor Fusion: Exploiting an Architectural Vulnerability to Hijack and Precisely Control UAVs
Jongsoo Han and Seulbae Kim, Pohang University of Science and Technology
SHIELD: Secure Human-Machine Interaction with Evidential Learning and Dynamic Trust for Drone Swarm Control
Dawood Wasif, Virginia Tech; Terrence J Moore, US Army Research Laboratory; Seunghyun Yoon and Hyuk Lim, Korea Institute of Energy Technology; Dan Dongseong Kim, University of Queensland; Frederica F Nelson, US Army Research Laboratory; Jin-Hee Cho, Virginia Tech
SLEIGHT: Real-time Closed-Loop Attack Analytics Framework for Holistic Intrusion Detection Systems in Unmanned Aerial Vehicles
Muneeba Asif, Florida International University; Maryna Veksler, Virginia Commonwealth University; Devrim Aras, Florida International University; Kemal Akkaya, Virginia Commonwealth University; Mohammad Ashiqur Rahman, Florida International University
11:25 am–12:00 pm
Vehicle Attacks and Defenses 1
Reversing a Brake ECU Firmware Update
Ben Gardiner, National Motor Freight Traffic Association Inc.
RVDebloater: Mode-based Adaptive Firmware Debloating for Robotic Vehicles
Mohsen Salehi and Karthik Pattabiraman, University of British Columbia
12:00 pm–1:30 pm
Symposium Luncheon
1:30 pm–2:30 pm
PO Panel
Moderator: TBA
Panelists: Dr. Selcuk Uluagac and Daniel F. Massey, National Science Foundation
2:30 pm–3:00 pm
Coffee and Tea Break
3:00 pm–4:10 pm
Vehicle Network Security
CANBERT+: An Optimized Multi-Layer BERT-Based Intrusion Detection for CAN Bus
Jun Yeon Won, Qadeer Ahmed, and Zhiqiang Lin, Ohio State University
MIRAGE: Detecting Fake Emergency Electronic Brake Light Attacks in V2X Networks via Event-Gated Behavioral Analysis
Eunhan Ka, Doguhan Yeke, Z. Berkay Celik, and Satish Ukkusuri, Purdue University
WIP: On the Real-World Applicability of Automotive CAN Intrusion Detection Systems
Kristijan Lazeski, Darmstadt University of Applied Scienes; Michael Zohner, Fulda Unversity of Applied Sciences; Jannis Hamborg, Christoph Krauß, and Alexander Wiesmaier, Darmstadt University of Applied Sciences
Short: CARdea: Two-Phase Plausibility-Based Vehicle-to-Vehicle Anomaly Detection System
Mert D. Pesé, Clemson University; Arman Tabaddor, The University of Michigan; Teja Guruvelli, Clemson University; Roland Varriale, Argonne National Laboratory; Marco De Vincenzi, IIT-CNR; Kang Geun Shin, The University of Michigan
WIP: SNFuzz: Gateway-Centric State-Oriented Fuzzing for MQTT-SN
Christian de la Pena, Samin Y. Chowdhury, Mohammad Rahman, Weidong Zhu, and Ruimin Sun, Florida International University
4:10 pm–4:25 pm
Short Break
4:25 pm–5:30 pm
Infrastructure Security
Digital Eyes on the Road: Using Street Cameras to Verify Traffic Integrity and Detect Sybil Attacks at City Scale
Jhonatan Tavori, Mehmet Kerem Turkcan, Zoran Kostic, Salvatore Stolfo, and Gil Zussman, Columbia University
Charge It to My Neighbor: A Relay Attack on ISO 15118 Plug and Charge Payment
Jakob Löw, Vishwa Vasu, Thomas Hutzelmann, and Hans-Joachim Hof, Technische Hochschule Ingolstadt
CIAPlates: Covert, Intelligent, Adversarial Attack on Automated License Plate Recognition Systems using Digital License Plates
Namo Asavisanu, Tina Khezresmaeilzadeh, Rohan Xavier Sequeira, and Konstantinos Psounis, University of Southern California
Short: Race to Charge: Concurrency Bugs and State Integrity Violations in EV Charging Infrastructure
Jaeyeong Lee, Independent Researcher; Seonhyeong Lee, SK Shieldus
6:00 pm–7:30 pm
VehicleSec '26 Demo/Poster Session and Happy Hour
Tuesday, August 11
8:00 am–9:00 am
Continental Breakfast
9:00 am–9:10 am
Opening Remarks and Demo Awards
General Chairs: Hyungsub Kim, Indiana University, and Aiping Xiong, The Pennsylvania State University
9:10 am–10:00 am
Keynote Presentation
Research Only? Understanding the Scope of Automotive Cyberattacks in the Wild
Stefan Savage, University of California, San Diego
Over the last fifteen years a steady stream of research results have identified significant cybersecurity issues in a range of automotive systems. This has included multiple remote takeover demonstrations on stock passenger vehicles - with adversarial control of drivetrain, brakes and steering systems among others. However, in spite of these results, there is little evidence of similar attacks "in the wild". In this talk, I'll explore why this discrepancy likely exists. In particular, we'll examine what makes cyberattacks attractive in some domains and not in others, and how this doctrine manifests in the automotive context in particular. We'll highlight the role that real-world adversarial "hacking" plays in the current automotive ecosystem and discuss what kinds of scenarios might change today's status quo.
Stefan Savage is a Professor in the Department of Computer Science and Engineering at the University of California, San Diego (UCSD), where he holds the Irwin and Joan Jacobs Chair in Information and Computer Science.
Savage earned his Ph.D. in Computer Science and Engineering from the University of Washington and a bachelor’s degree in Applied History from Carnegie Mellon University.
His research interests lie at the intersection of distributed systems, networking, and computer security, with a current focus on embedded security and the economics of cybercrime.
Throughout his career, Savage has received numerous accolades, including:
- ACM Prize in Computing (2015): Recognized for innovative research in network security, privacy, and reliability.
- MacArthur Fellowship (2017): Awarded for identifying and addressing the technological, economic, and social vulnerabilities underlying internet security challenges and cybercrime.
- Election to the American Academy of Arts and Sciences (2021): Honored for his contributions to the field of computer science.
- Election to the National Academy of Engineering (2022): Recognized for contributions to the security, privacy, and reliability of network systems, transforming approaches to problems in these areas.
At UC San Diego, Savage serves as the Director of UC San Diego’s Center for Networked Systems (CNS) and as Co-director of the Center for Evidence-based Security Research (CESR), a collaborative initiative between UC San Diego and the International Computer Science Institute.
10:00 am–10:30 am
Coffee and Tea Break
10:30 am–10:50 am
Lightning Talks
- When Collaboration Betrays: The Evolving Attack Surface of Collaborative Perception
Qingzhao Zhang, University of Arizona - The Law Bites Before the Code Does: Designing Vehicle Predictive-Maintenance Systems for U.S. and EU Regulatory Reality
Joseph Squillace, The Pennsylvania State University - Toward Physical-Layer Fingerprinting of Production Automotive ECUs via CAN Bus Signals
Abbas Ali and Hafiz Malik, University of Michigan-Dearborn
10:50 am–12:00 pm
Threat Analysis and Risk Assessment
A Study on Extending the TARA Methodology for Physical AI: A Case Study of ADS
Jihun Woo and Junhyeong Lee, Korea Testing & Research Institute
AutoHack: A Physically Verified Multi-Bus CAN Dataset for Intrusion Detection System Evaluation
Yuchan Song, Korea University; Sejun Ahn, Kookmin University; Seungjin Baek, Korea University; Hyeonseong Kim, Kookmin University; Huy Kang Kim, Korea University; Sanghoon Jeon, Kookmin University
Bridging Two TARAs: Integrating MITRE CTSA/CRRA Prioritization into ISO/SAE 21434 for Automotive Security
Minhyuk Park, Yejun Kim, and Seungjoo Kim, School of Cybersecurity, Korea University
WIP: A Benchmark for Security Evaluation of Adversarial Manoeuvre Attacks in Autonomous Driving
Adibeh Emamy, Marcello Maugeri, and PingChen Lin, CybPass Limited; Aryan Pasikhani, The University of Sheffield
12:00 pm–1:30 pm
Symposium Luncheon
1:30 pm–2:15 pm
Sensor Security
Perspective-Shift Attacks Against Optical Perception Sensors: A Novel Attack Vector on LiDAR and Camera
Marco Calipari, Michael Kühr, Dominik Kulmer, Maximilian Luedecke, Mohammad Hamad, and Sebastian Steinhorst, Technical University of Munich
Seeing is Deceiving: Systematic Vulnerability Analysis of LiDAR-Based Autonomous Driving to Mirror-Induced Perception Failures
Selma Yahia and Ildi Alla, Interdisciplinary Centre for Security, Reliability and Trust (SnT), University of Luxembourg; Girija B. Mohan and Daniel Rau, University of Applied Science Saarland; Mridula Singh, CISPA Helmholtz Center for Information Security; Valeria Loscri, Inria Lille - Nord Europe
Short: Investigating Stealthy Latency Attacks Against Camera-Based Object Detection Systems
Lichen Xia, Xing Gao, and Weisong Shi, University of Delaware
2:15 pm–3:00 pm
Vehicle Privacy
Beyond Classical PKI: A Quantum-Safe Authentication Framework for Automotive OTA Updates
Wei-Lun Lin, Ting-Yu Chen, and Arijit Karati, National Sun Yat-sen University
Short: VIN2VICTIM: From Vehicle Identification to Targeted Tracking via Data Broker Exploitation
Hannaneh B. Pasandi, UC Berkeley; Mohammad Sepahi, Rivian Inc
Short: Is Your ECU Really Yours?
Abbas Ali and Hafiz Malik, University of Michigan-Dearborn
3:00 pm–3:30 pm
Coffee and Tea Break
3:30 pm–4:05 pm
Vehicle Attacks and Defenses 2
RAIL: Risk-Aware Human-in-the-Loop Framework with Adaptive Intrusion Response for Autonomous Vehicles
Dawood Wasif, Virginia Tech; Terrence Moore, US DEVCOM Army Research Laboratory; Seunghyun Yoon and Hyuk Lim, Korea Institute of Energy Technology (KENTECH); Dan Dongseong Kim, The University of Queensland; Frederica F. Nelson, US DEVCOM Army Research Laboratory; Jin-Hee Cho, Virginia Tech
E-Trojans: Ransomware, Tracking, DoS, and Data Leaks on the Xiaomi E-Scooter Ecosystem
Marco Casagrande, EURECOM; Riccardo Cestaro, Mauro Conti, and Eleonora Losiouk, University of Padua; Daniele Antonioli, EURECOM
4:05 pm–4:55 pm
ESCAR Talks
- Patchlings: Enabling A/B-Equivalent OTA Updates for Deeply Embedded Automotive ECUs
Sekar Kulandaivel, Bosch - Constructive Assurance Cases for Cybersecurity
Brian Murray, STEER Tech - CAUTION: HIGH VOLTAGE, LOW SECURITY – A Familiar Tale of Cybersecurity Woes
Maggie Shipman, Southwest Research Institute
4:55 pm–5:00 pm
Closing Remarks
General Chairs: Hyungsub Kim, Indiana University, and Aiping Xiong, The Pennsylvania State University