Treffer: Securing the EV Charging Ecosystem: Protocol‐Level Vulnerabilities, Defenses, and a Research Roadmap.

Electric mobility offers promising benefits in sustainability and efficiency but also presents significant cybersecurity challenges that threaten the integrity of electric vehicles (EVs), charging infrastructure, and their communication systems. This article reviews the main threats, vulnerabilities, and existing mitigation strategies, identifying critical weaknesses in communication protocols, insufficient protection of charging stations, and limited onboard security. Notably, protocols such as CAN bus, OCPP, and ISO 15118 dominate current implementations; however, many of these protocols lack comprehensive protection mechanisms. Among the most frequent attacks are tampering, denial‐of‐service (DoS), and man‐in‐the‐middle attacks, which often target communication systems and charging points—the most vulnerable elements in the ecosystem. The review also highlights underexplored but critical issues, including the low adoption of protocols such as ISO 26262 and IEC 61850, the security of V2X communications, and the protection of personal data generated by EVs. The article makes a main contribution by proposing a cybersecurity reference architecture and a strategic research roadmap to enhance resilience in electric mobility systems. These tools aim to address current gaps, promote the development of secure and adaptive communication frameworks, and support both academic research and industrial implementation in the transition to intelligent and connected mobility. [ABSTRACT FROM AUTHOR]