The US Alliance for Telecommunication Industry Solutions (ATIS) has published a report on connected vehicle security, explaining how the ICT industry’s cybersecurity expertise could be applied to connected vehicles.
The report, Improving Vehicle Cybersecurity: ICT Industry Experience and Perspectives, is “a starting point for an industry-to-industry discussion to jointly identify next steps that the ICT and vehicle OEM industries can take together and independently to advance cybersecurity efforts,” ATIS says.
The report aims to “translate the ICT industry’s extensive experience in continually improving security in networks and devices to enhance security in the connected vehicle ecosystem.”
ATIS president and CEO Susan Miller, said: “This new report positions both the ICT industry and vehicle OEMs to work collaboratively to secure the network and block cyber attacks or malware events. ATIS believes that the connected vehicle’s potential will be maximised through this industry-to-industry collaboration.”
The report has been produced by ATIS’s Connected Car Cybersecurity Ad Hoc Group, chaired by Tom Gage, CEO and managing director of Marconi Pacific. Participating companies included AT&T, Bell Canada, Blackberry, CenturyLink, Cisco, Cox, Ericsson, Huawei, Marconi-Pacific, Nokia, Oracle, Sprint, Telus and Viavi Solutions.
ATIS is a member-driven industry organisation that claims to represent all aspects of the ICT ecosystem. It is accredited by the American National Standards Institute (ANSI) and is the North American Organisational Partner for the 3rd Generation Partnership Project (3GPP) – the body developing 5G standards, a founding Partner of the oneM2M global initiative, and a member of and major US contributor to the International Telecommunication Union (ITU).
The connected vehicle white paper is ATIS’s third publication on cyber security in less than a month. In July it announced publication of “two major industry resources to secure critical network infrastructure against growing and evolving cyber threats,” Cybersecurity Architectural Risk Analysis Process and Securing Internet of Things (IoT) Services Involving Network Operators.
The latter report focuses on the security concerns associated with the rapid growth in IoT services. ATIS says its work is geared toward protecting IoT services and preventing IoT equipment from becoming a source of attacks against other service users.
“The white paper characterises the different levels of partnering possible between network operators and IoT service providers. Practices to proactively address security implications in each are provided,” the organisation says.
The dangers of connected car security breaches have been highlighted by several high profile public hacking demonstrations in which control of car functions were taken over remotely.
In 2015, US Senator Edward J Markey, a member of the Commerce, Science and Transportation Committee, released a report Tracking & Hacking: Security & Privacy Gaps Put American Drivers, which showed huge vulnerabilities from the communications technologies in today’s automobile and calling for standards to plug security and privacy gaps. Markey had earlier written to 20 US auto manufacturers requesting information about how consumers are protected from cyber attack or unwarranted violations of privacy – and was not satisfied with their response.