Smarter Security for Smart Cars
Cars are changing. Smart cars, cars that adopted ICT for an easier and safer driving, are now being commercialized. Now, a car becomes a wheeled data center and the car manufacturer becomes a software developer. However, as more and more components of cars become connected to the Internet, risk will greatly widen. Hackers can remotely access and manipulate functions in the car including in-vehicle information systems, automatic braking systems, or even cutting off the engine while the vehicle is in transit.
The Need For a Solution
Threat to these networks pose a very real threat to human life. As car manufacturers roll out new features and update the code, they need to keep security at the forefront. This presents challenges for developers as the development lifecycle for cars takes long to complete. Vehicle programming also contains some of the most complicated coding in all computer technology.
At Penta Security, we saw the dangers and began work on researching security for exposed areas. Considering all gateways or points of access for the car and developing methods of securing the channels of communication via encryption, we also delved into public key infrastructure (PKI) to authenticate the many different endpoints . This comprehensive connected car security solution resulted in AutoCrypt.
Electronic equipment controls all areas of a vehicle, including driving, brakes, steering, and various sensors. The vehicles manufactured these days are mounted with more than 100 Electronic Control Units (ECUs). An automotive company uses information collected from the ECUs to manufacture a safer and more convenient vehicle, and a driver can be provided with automated value-added services based on the vehicle driving information.
However, unencrypted information is transferred to the internal network of the vehicle. The impossibility of ensuring data integrity means that someone other than the driver may manipulate the vehicle remotely. If someone threatens a driver’s life by malfunctioning the steering device or stopping the engine while the driver is driving a car, it may lead to a disaster affecting other vehicles, pedestrians, and surrounding infrastructure.
The security accident of a company is just the loss of information; however, the security accident of a smart car can threaten people’s lives. For vehicle security, security should always come before connectivity.
Download our free infographic to find out more about the different channels vulnerable to hacking, and how AutoCrypt can prevent these attacks.