Chu, Kai-Fung, Yuan, Haiyue, Yuan, Jinsheng, Guo, Weisi, Balta-Ozkan, Nazmiye, Li, Shujun (2024) A Survey of Artificial Intelligence-Related Cybersecurity Risks and Countermeasures in Mobility-as-a-Service. IEEE Intelligent Transportation Systems Magazine, 16 (6). pp. 37-55. ISSN 1939-1390. E-ISSN 1941-1197. (doi:10.1109/MITS.2024.3427655) (KAR id:108763)
|
PDF
Author's Accepted Manuscript
Language: English DOI for this version: 10.22024/UniKent/01.02.108763.3451548 
This work is licensed under a Creative Commons Attribution 4.0 International License.
|
|
|
Download this file (PDF/651kB) |
Preview |
| Request a format suitable for use with assistive technology e.g. a screenreader | |
| Official URL: https://doi.org/10.1109/MITS.2024.3427655 |
|
Abstract
Mobility-as-a-service (MaaS) integrates different transport modalities and can support more personalization of travelers’ journey planning based on their individual preferences, behaviors and wishes. To fully achieve the potential of MaaS, a range of artificial intelligence (AI) (including machine learning and data mining) algorithms are needed to learn personal requirements and needs to optimize the journey planning of each traveler and all travelers as a whole, to help transport service operators and relevant governmental bodies to operate and plan their services, and to detect and prevent cyberattacks from various threat actors, including dishonest and malicious travelers and transport operators. The increasing use of different AI and data processing algorithms in both centralized and distributed settings opens the MaaS ecosystem up to diverse cyber and privacy attacks at both the AI algorithm level and the connectivity surfaces. In this article, we present the first comprehensive review on the coupling between AI-driven MaaS design and the diverse cybersecurity challenges related to cyberattacks and countermeasures. In particular, we focus on how current and emerging AI-facilitated privacy risks (profiling, inference, and third-party threats) and adversarial AI attacks (evasion, extraction, and gamification) may impact the MaaS ecosystem. These risks often combine novel attacks (e.g., inverse learning) with traditional attack vectors (e.g., man-in-the-middle attacks), exacerbating the risks for the wider participation actors and the emergence of new business models.
| Item Type: | Article |
|---|---|
| DOI/Identification number: | 10.1109/MITS.2024.3427655 |
| Additional information: | For the purpose of open access, the author has applied a CC BY public copyright licence to any Author Accepted Manuscript version arising from this submission. |
| Uncontrolled keywords: | Mobility-as-a-Service, transport, machine learning, cyber security, privacy, business model, low carbon MaaS |
| Subjects: |
Q Science > QA Mathematics (inc Computing science) > QA 75 Electronic computers. Computer science T Technology > TE Highway engineering. Roads and pavements T Technology > TK Electrical engineering. Electronics. Nuclear engineering > TK5101 Telecommunications |
| Divisions: |
Divisions > Division of Computing, Engineering and Mathematical Sciences > School of Computing University-wide institutes > Institute of Cyber Security for Society |
| Funders: |
Engineering and Physical Sciences Research Council (https://ror.org/0439y7842)
UK Research and Innovation (https://ror.org/001aqnf71) |
| Depositing User: | Shujun Li |
| Date Deposited: | 15 Feb 2025 19:51 UTC |
| Last Modified: | 17 Feb 2025 12:54 UTC |
| Resource URI: | https://kar.kent.ac.uk/id/eprint/108763 (The current URI for this page, for reference purposes) |
University of Kent Author Information
Yuan, Haiyue.
| Creator's ORCID: |
 https://orcid.org/0000-0001-6084-6719
|
|---|---|
| CReDIT Contributor Roles: |
Li, Shujun.
| Creator's ORCID: |
https://orcid.org/0000-0001-5628-7328
|
|---|---|
| CReDIT Contributor Roles: |
- Link to SensusAccess
- Export to:
- RefWorks
- EPrints3 XML
- BibTeX
- CSV
- Depositors only (login required):
Altmetric
Altmetric
