Connected cars are slowly becoming mainstream with the software and electronic component market for these vehicles projected to grow from $238 billion to $469 billion between 2020 and 2030, as per a report by McKinsey & Company. These vehicles are vulnerable and need cyber resilience standards as much as any other computer. The vulnerability includes the physical vehicles, technologies and services they connect to and communicate with.
With the addition of so many intricacies, potential threats are higher. Hackers, for instance, could remotely interfere with a connected vehicle and disrupt critical safety systems and functions including the engine, brakes and steering wheel, causing the driver to lose control. On a larger scale, a hacker could enter a single vehicle and access an entire fleet, as a fleet is only secure as its least-secure vehicle.
According to Tracxn, globally there are 38 Automotive Cybersecurity companies and some interesting ones include Argus Cyber Security that provides intrusion prevention system (IPS) and alerting solutions preventing a vehicle’s critical components from being hacked. Threats are identified using deep packet inspection (DPI) algorithms which scans all traffic in a vehicle’s network, identifies abnormal transmissions and enables real-time response to threats. It also generates reports and alerts based on monitoring of a vehicle’s cyber health.
Similarly, Upstream Security focuses on automobile and OT networks. The solution is a cloud-based platform which secures the connected vehicles fleet by leveraging big data analytics & machine learning algorithms to monitor and identify threats in advance. Upstream monitors usage and could tell for instance if a person were using a rental car for ride-sharing in violation of the rental agreement.
Mocana provides IoT security solution to mitigate IoT vulnerabilities like authorization, secure boot, firmware validation and data leak prevention during cloud connectivity. Others like, GuardKnox offer cybersecurity hardware solutions for automotive manufacturers. VDOO is a provider of vulnerability assessment solutions for IoT. The product offers IoT security detection and vulnerability assessment solution to organizations.
RegulusX is an early-stage cybersecurity company which is developing an IoT security solution for protecting drones, field robots and autonomous machines from cyber-attacks. Modules include GPS spoofing detection, data encryption, firewall and antivirus. The solution protects against hackers or any interference targeting the machines’ systems, including communication channels, digital and analog video channels, sensors, GPS and navigation systems and the on-board computers.
Although, a multitude of cybersecurity solutions are being built for connected vehicles for addressing these risks, regulated standards are needed for current and future vehicles. The regulations should mandate requirements for connected vehicles with cybersecurity controls, testing and technological measures.
Credits : Akhil Handa