xT-STRIDE threat model for unmanned air vehicle security

In recent years, substantial progress has been made in the design and development of unmanned aerial vehicles (UAVs) with diverse functional capabilities for avionic applications. Beyond addressing performance bottlenecks, the growing threat of cybersecurity attacks introduces additional complexity to the UAV design process. Developing a high-performance UAV system involves navigating technical security challenges that must be addressed pragmatically. Implementing excessive security measures can increase costs and degrade system performance, while insufficient protection of vulnerable components may expose the UAV to potential exploitation. This study introduces a multi-layered drone system, thoroughly examines threats to its components, and outlines corresponding safeguards in trusted layers. The security requirements for UAV systems were defined using the Common Criteria framework. To strengthen UAV security under real-world operational conditions, a novel threat modeling approach, xT-STRIDE, has been developed. This method incorporates the UAV's communication and embedded system architecture, modeled with realistic security elements. The xT-STRIDE framework was evaluated theoretically in conjunction with traditional threat modeling techniques.