Automotive Sweden - Security risks in automotive electronic systems

Automotive Sweden is an independent non-profit organization. We spread knowledge of the Swedish automotive industry to national and international players to encourage co-operation and stimulate growth in the automotive industry.

ABOUT THE INDUSTRY

AUTOMOTIVE SWEDEN

Activities

2012-05-30
Automotive Forum 2012

All activites >>

Company Database
Search among more than one hundred suppliers and consultants >>

NEWSLETTER

To all newsletters

Security risks in automotive electronic systems

A new report from the IT security company McAfee analyzes the security risks in automotive electronic systems.

"There are electronic systems in most modern cars and vehicles. Electronic components include everything from airbags, anti-lock braking systems, electronic stability systems and cruise control to maintenance and communications systems. But even if electrical systems are great aids, they also have inherent risks."

A report concerning these risks has been prepared by the security technology company McAfee in collaboration with Wind River and ESCRYPT (companies that both work with so-called embedded systems). The report describes how research scientists at several universities demonstrate ways in which important automotive electronic systems can be hacked if the perpetrator has physical access to a vehicle´s electronic components.

"As more functions are embedded in automotive digital systems the risk of an attack or some other kind of harmful system manipulation also increases. The hacking attempts carried out for the purposes of research illustrate the prevailing threats and the ways in which consumers are exposed to them. It's bad enough having a computer or email hacked, but if a car is exposed to the same thing it can involve a more immediate danger for the individual," says Christoffer Callender, Computer & Network Security Engineer at McAfee.

Consumers want to stay connected — even in their cars. This development affects manufacturers who create integration capabilities between automobiles and connected mobile electronics such as smartphones and tablets. But the safety issues are not keeping pace with technological advances and McAfee's report gives examples of the ways in which internet criminals might be able to exploit the current situation:

• Unlocking and starting vehicles remotely via cell phone
• Disabling vehicles — remotely
• Tracking vehicle locations, activities and routines
• Theft of personal information via Bluetooth communications
• Disrupting navigation systems
• Disabling emergency communications systems

According to Wind River the automotive industry is witnessing the convergence of consumer and automotive electronics. The company believes that consumers expect the same experience in the car as they do when they use connected mobile electronics. But as this trend looms larger so does the risk of security vulnerabilities.

"The report provides concrete examples of security headaches that many in the automotive industry are already actively developing solutions for. Considering how long it takes to develop a vehicle it´s important that the automotive industry begin work on these issues now, and that it seeks the help of collaborative partners with expertise in the areas concerned," says Georg Doll, Senior Director of Automotive Solutions at Wind River.

For the full report "Caution: Malware Ahead, an analysis of emerging risks in automotive system security" please visit: www.mcafee.com/autoreport

okt 06 2011

Share!

Transport

Branch

Automotive Sweden
Box 111 19
404 23 Göteborg

Telefon.	+46 (0)31 61 24 02
Fax.	+46 (0)31 61 24 01
E-post.	info@automotivesweden.se