Nowadays, Cyber Security is essential for individuals as well as businesses. Cyber attacks are growing on vehicle networks.
According to the National Highway Traffic Safety Administration (NHTSA), Cybersecurity, within the context of road vehicles, is the protection of automotive electronic systems, communication networks, control algorithms, software, users, and underlying data from malicious attacks, damage, unauthorized access, or manipulation.
Applied to vehicles, cybersecurity takes on an even more important role: systems and components that govern safety must be protected from harmful attacks, unauthorized access, damage, or anything else that might interfere with safety functions. Authenticity, integrity and confidentiality of information must be assured. In addition to internal vehicle data, vehicle’s connection to outside world needs protection against unauthorized access. If vehicle data is not secured, hackers can steal the data, access your location and can even force your car to obey instructions of hacker, hackers can damage your car.
From 2018 to 2019, there was a 99% increase in automative cyber security incidents.
Today vehicles are having functions such as forward collision warning, automatic emergency braking, and vehicle safety communications.
Following areas must be considered when thinking about vehicle security/automative cyber security:
· Security engineering methods
· Hardware trust anchors (SHE, HSM, TPM)
· Cryptographic processes
· Management of crypto material (keys, certificates)
· Secure boot
· Intrusion detection and intrusion prevention systems
· Secure on-board and off-board communication
Automative Cyber Security has three areas:
1. Authentication and Access Control
2. Protection from External Attacks
3. Detection & Incident Response
A connected vehicle’s embedded firewall protects it from external attacks.
References:
https://www.vector.com/in/en/products/solutions/safety-security/automotive-cybersecurity/
https://www.nhtsa.gov/technology-innovation/vehicle-cybersecurity