Tag Archive for: vehicles

Elektrobit and Argus Cyber Security announce an industry-first solution for automotive cyber threat detection and prevention in vehicles

/in


Elektrobit, a visionary global vendor of software products for the automotive industry, and Argus Cyber Security, a world leader in cyber security products and services for mobility platforms, announced the launch of EB zoneo SwithCore Shield, an industry-first solution offering embedded intrusion detection and prevention (IDP) functionality within advanced network management systems for next-generation vehicles.

The joint solution is an automotive-grade switch firmware for E/E architectures that pre-integrates Argus Ethernet IDPS, a cyber security protection layer for automotive Ethernet networks, as an embedded module. This production-ready solution reduces carmakers’ integration costs and risks while accelerating new vehicles’ time to market. Building upon decades of automotive expertise from Elektrobit and Argus, this breakthrough solution allows carmakers to evaluate data detected and quickly determine actions required to confront an attempted cyber-attack.

Adding a layer of intelligence and cyber protection to automotive Ethernet switches facilitates the management of the growing number of network functions required to enhance the scalability, safety, and security of vehicles. By offloading network and cyber-related tasks to the switch firmware, it optimizes the microcontroller unit’s computational resource consumption.

EB zoneo SwitchCore Shield also enables carmakers to comply with emerging cyber security regulations, such as UN R155 and Chinese GB/T, and also takes security a step further, providing an additional layer of threat prevention via Argus Ethernet IDPS for increased interoperability with Classic AUTOSAR systems.

“We developed EB zoneo SwitchCore Shield to fill the gap between the cyber security domain and the advanced networking needed for next-gen, software-defined vehicles,” said Mike Robertson, head of product and strategy management, Elektrobit. “We’re helping carmakers to save time and money by providing a pre-integrated solution built to meet the highest levels of safety and security regulations.”

Source…

HSB Cyber Survey Finds Electric Vehicles Drive Data Security Fears

/in


HARTFORD, Conn.–(BUSINESS WIRE)–Mar 2, 2022–

Small business owners are adding electric vehicles to their service fleets, a survey released today by HSB reports, but they worry about cyber security when connecting them to public charging stations.

The HSB poll conducted by Zogby Analytics found 15 percent of small and medium-size businesses had leased or purchased electric vehicles (EVs) for commercial use.

Three-quarters (76 percent) of those business owners and managers were concerned EV charging stations could be a target for hackers, ransomware, and other cyber-attacks.

“The technology is advancing swiftly and there is a growing need to focus on the cyber security of electric vehicles,” said Timothy Zeilman, vice president for HSB, part of Munich Re. “With the rush to make the switch to electric cars and trucks, owners and the EV industry should step up their efforts to protect vehicles and charging infrastructure from cyber-attacks.”

EV Chargers Could Add to Cyber Risks

The plug-in electric chargers communicate with vehicles through an internet connection and security experts warn the systems could be hacked.

These potential threats add to the concerns of small business owners, who were already worried about the cyber security of their commercial vehicles.

The HSB survey found almost half (46 percent) were somewhat or very concerned about the cyber exposures and safety of internet connected and automated vehicles.

Commercial Vehicles Vulnerable to Attacks

When asked about their own experience, 13 percent of the business owners and managers said that at some point, a computer virus, hacking incident, or other cyber-attack had damaged or otherwise affected their commercial vehicles.

Overall, 44 percent of those responding to the poll said they fear that malware, or another cyber-attack will damage or destroy their vehicles’ data, software, or operating systems.

Most of them (56 percent) are somewhat or very concerned their vehicles could be immobilized or made inoperable, their safety compromised (54 percent), and that a hacker could communicate and confront them over their audio system (43 percent).

Survey Methodology

Zogby Analytics surveyed 504 decision makers at small and…

Source…

Securing Connected And Autonomous Vehicles

/in


Vehicles are on track to become highly sophisticated Internet of Things (IoT) devices. With the added functionality that connects vehicles to other vehicles, the infrastructure, and even pedestrians, the opportunity for hacking expands. Challenges like complexity and the burden of legacy systems further complicate the situation. The future of connected and autonomous vehicles (CAV) demands levels of safety and security that are currently unobtainable.

Fortunately, some of the brightest minds are working on solutions. One example is the Innovate UK-sponsored Secure-CAV consortium, which is developing hardware-based security technology that will propel the automotive industry forward. Hardware-based security can tackle the threats of today and the near future and create a strong cybersecurity posture for the as-yet unknown threats.

Secure-CAV consortium is made up of four main players:

  • Siemens Digital Industries Software, which developed intellectual property (IP) and anomaly detection software that monitors and collects data from automotive devices in real time. This is the Tessent Embedded Analytics group of products.
  • Copper Horse, which provides security expertise covering the real-world threat environment and hacking equipment in cars, provided standards and threat modelling theory expertise and oversight of third-party security testing along with a ‘whitebox’ security code review.
  • Coventry University, which provided academic car network expertise.
  • The University of Southampton, which provided artificial intelligence (AI) and machine learning (ML) algorithmic expertise as well as analyzing real-world data collected from vehicles.

Together they created an interactive car hacking demonstration rig (figure 1) that shows the impact of security attacks on real automotive hardware and how the combined hardware/software solution implemented as part of the project can mitigate these attacks.


Fig. 1: The Secure-CAV demonstration rig.

The challenges of legacy systems

The main drivers for in-car network innovation for CAVs are speed and bandwidth – the ability to push high volumes of video and data for analysis. The addition of Ethernet technology alongside Controller Area…

Source…

Most of auto industry, including vehicles themselves, vulnerable to hacking

/in


As cyber threats increase, automakers and regulators are scrambling to safeguard an automotive industry as interconnected as the vehicles being produced.

A wave of thefts of luxury vehicles in Ontario shows that hackers are finding openings. In Ottawa, nearly one of every four stolen vehicles is a Lexus or high-end Toyota, taken by thieves who hack the vehicles and then drive those vehicles to Montreal for shipment across the world, say police. The thefts have prompted increases in security.

But while those thefts get attention, security experts warn that much of the industry’s exposure lies below the surface.

“People need to be aware that it’s possible to hack a vehicle, to hack the infrastructure, to hack manufacturers and their supply chains — that’s all possible to do right now, today,” said François Couderc, a Quebec City based cybersecurity specialist with the defence contractor Thales Group.

Companies are reluctant to say they’ve been hacked, fearing repeat attacks and customer and shareholder anxiety, Couderc said.

However, nearly one-third of suppliers responding to a survey by KPMG and the Automotive Parts Manufacturers’ Association (APMA) reported suffering a cyber breach in the past year. Phishing attacks — in which an employee clicks on an email link that spreads malware throughout a poorly secured network — are an easy way in.

“Given the move to people working remotely, given the move to working in the cloud, this didn’t surprise me,” John Heaton, a partner in KPMG’s cybersecurity practice, told Automotive News Canada.

More concerning, Heaton said, was a finding that just 32 per cent of respondents have an enterprise-wide cyber strategy. In an intertwined industry with its vast range of entry points, trouble can spread fast.

‘A LOT OF PLACES TO ATTACK’

“It’s a global market,” Heaton said. “You source globally, and you’ve got a supply chain that is quite transparent. The [automaker] shares with the Tier 1, who shares with the Tier 2 … but that sharing of data and that [vehicle] product, which is ultimately a moving computer, creates a lot of places to attack.”

A “Closing the Cybergap” plan issued in February by…

Source…