Е-Публикации
Технически университет - София

Abstract: Due to their intrinsic features - connectivity and automation, CA V s are vulnerable to cyber-attacks which can lead to serious consequences such as death, bodily injury, damage to property, etc. Effective tackling cybersecurity threats needs both positive and criminal law regulation. The paper studies the legislation adopted on international, EU and national level to find out whether the Bulgarian law is prepared for the cybersecurity challenges in the field.

References

1. R. Dimitrova, “Legal Framework of Automated Vehicles: Comparative Analysis and Proposals for Regulation in Bulgaria”, International Scientific Conference ET2024, 2024
2. R. Dimitrova, “Data Protection in the Field of Automated and Connected Vehicles”, International Scientific Conference ET24, 2024
3. BBC, “Hacked Jeep USB update criticized”, 2015, https://www.bbc.com/news/technology-34156598
4. BBC, Nissan Leaf electric cars hack vulnerability disclosed”, 2016, https://www.bbc.com/news/technology-35642749
5. F.W. Alsaade, M.H. Al-Adhaileh, “Cyber Attack Detection for Self-Driving Vehicle Networks Using Deep Autoencoder Algorithms”, Sensors 2023, 23, 4086.
6. Ch. Katrakazas, A. Theofilatos, G. Papastefanatos, J. Härri, C. Antoniou, Chapter Three - Cyber security and its impact on CAV safety: Overview, policy needs and challenges, Advances in Transport Policy and Planning, Volume 5, 2020, Pages 73-94.
7. A. Giannaros, A. Karras, L. Theodorakopoulos, P. Kranias, N. Schizas, G. Kalogeratos, Ch. Karras, and D. Tsolis, “Autonomous Vehicles: Sophisticated Attacks, Safety Issues, Challenges, Open Topics, Blockchain, and Future Directions,” Journal of Cybersecurity and Privacy, 2023, 3, 493–543.
8. Shah Khalid Khan, N. Shiwakoti, P. Stasinopoulos, M. Warren, “Cybersecurity regulatory challenges for connected and automated vehicles – State-of-the-art and future directions”, Transport Policy 143 (2023) 58–71.
9. S. Parkinson, P. Ward, K.M. Wilson, and J. Miller, “Cyber Threats Facing Autonomous and Connected Vehicles: Future Challenges”,. IEEE Transactions on Intelligent Transportation Systems,2017, 18 (11). pp. 2898-2915
10. A. Brown, S. D. Johnson and N. Tuptuk, “A scoping study: crime and connected and autonomous vehicles”, Crime Science, Volume 14, article number 2, (2025)
11. Shah Khalid Khan and M. Warren, “The impact of perceived cyber-risks on automated vehicle acceptance: Insights from a survey of participants from the United States, the United Kingdom, New Zealand, and Australia”,Transport Policy 152 (2024) 87–101
12. I. Durlik, T. Miller, E. Kostecka, Z. Zwierzewicz and A. Łobodzińska, “Cybersecurity in autonomous vehicles – are we ready for the challenge?”, Electronics No. 13, 2024, 2654
13. M. Channon, J. Marson, “The liability for cybersecurity breaches of connected and autonomous vehicles”, Computer Law & Security Review, Volume 43, November 2021, 105628
14. N.P. Seetharaman, V. Jadhav, A. S. Saravanan and D. Sangeeth, “Impact of Factors Influencing Cyber Threats on Autonomous Vehicles”, Applied Artificial Intelligence, Vol. 35 No.2, 2021, 105-132,
15. M. Benyahya, A. Collen, N. A. Nijdam, “Analyses on standards and regulations for connected and automated vehicles: Identifying the certifications roadmap”, Transportation Engineering 14(2023) 100205
16. Shah Khalid Khan, N.Shiwakoti, P. Stasinopoulos, Y. Chen, and M. Warren, “Cybersecurity framework for connected and automated vehicles: A modelling perspective,” Transport Policy 162 (2025) 47–64
17. UN Regulation 155 Cyber security and cyber security management system
18. UN Regulation 156 Software update and software update management system
19. Regulation (EU) 2019/2144 of the European Parliament and of the Council of 27 November 2019 on type-approval requirements for motor vehicles and their trailers, and systems, components and separate technical units intended for such vehicles, as regards their general safety and the protection of vehicle occupants and vulnerable road users, OJ L 325, 16.12.2019, p. 1–40 (
20. UNECE, UN Regulations on Cybersecurity and Software Updates to pave the way for mass roll out of connected vehicles, https://unece.org/sustainable-development/press/unregulations-cybersecurity-and-software-updates-pave-way-mass-roll
21. Regulation (EU) 2018/858 of the European Parliament and of the Council of 30 May 2018 on the approval and market surveillance of motor vehicles and their trailers, and of systems, components and separate technical units intended for such vehicles, amending Regulations (EC) No 715/2007 and (EC) No 595/2009 and repealing Directive 2007/46/EC, OJ L 151, 14.6.2018, p. 1–218
22. EC, PRESS RELEASE Jul 6, 2022 Brussels, “New rules to improve road safety and enable fully driverless vehicles in the EU”, https://ec.europa.eu/commission/presscorner/detail/en/ip_22_ 4312).
23. Directive (EU) 2022/2555 of the European Parliament and of the Council of 14 December 2022 on measures for a high common level of cybersecurity across the Union, amending Regulation (EU) No 910/2014 and Directive (EU) 2018/1972, and repealing Directive (EU) 2016/1148 (NIS 2 Directive)
24. Regulation (EU) 2019/881 of the European Parliament and of the Council of 17 April 2019 on ENISA (the European Union Agency for Cybersecurity) and on information and communications technology cybersecurity certification and repealing Regulation (EU) No 526/2013 (Cybersecurity Act) OJ L 151, 7.6.2019, p. 15–69
25. Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) OJ L 119, 4.5.2016, p. 1–88
26. S. Ballingall, M. Sarvi, P. Sweatman, “Standards relevant to automated driving system safety: A systematic assessment”, Transportation Engineering 13 (2023) 100202
27. Al. Stoynov, Criminal Law. General Part, Sofia: Ciela, 1999
28. N. Dolapchiev, Criminal Law. General Part. 6thed., Sofia, 1945

Issue