Cybersecurity experts confess their greatest worries

  • 12-Apr-2016 10:56 EDT
article_14730.jpg

Doug Britton of Kaprica Security makes a point during the Cybersecurity panel at the SAE 2016 World Congress. Other panelists shown include Gloria D’Anna of General Telecom Systems (at left background), Dan Massey, and DoT’s Kevin Harnett. (Paul Weissler)

What keeps you up at night? Cybersecurity experts at the SAE 2016 World Congress were asked about their deepest worries during a panel session on the levels and nature of cyber challenges. Their responses:

"Identity theft, compromised commercial vehicles that affect domestic logistics systems, and a horrific event that affects our first responders' ability” to deliver aid, said panel moderator Gloria D’Anna, President of General Telecom Systems.  

“Patient, understated attackers” were cited first by Doug Britton, CEO of Kaprica Security. They’re not in it for headlines, he said, and “you’ll never know they were there” until perhaps 10 years later, if then. Will you become good enough to see them, he asked, because “they’re already here.”

Such attackers aren’t looking for a few social security numbers; they want an opportunity to get them all. Britton added there is a no uniform understanding of attack methods or distribution of secure coding capabilities in the world of cybersecurity.

The need for available mature security solutions that can be immediately deployed was cited by Brian Murray, Global Director, Safety and Security Excellence at ZF TRW. An overarching concern, he said, is getting the level of design focus to provide both the functional requirements of componentry along with reasonable safety as well as security.

Worry about nation-state-sponsored attackers causes insomnia for Dr. Andre Weimerskeich, a University of Michigan researcher. And he raised the issue of efficiently testing many possible new solutions in erecting defenses.

Dr. Weimerskeich currently has projects in automotive intrusion detection, providing secure CAN/on-board communications, management of the many issues associated with vehicle keyfob systems ) and V2X (vehicle to infrastructure). He also has a project to develop a resilient reference electronic architecture for cybersecurity systems development.

Vulnerability of the U.S. government's vehicle fleets is a logical worry for Dan Massey, Program Manager in the Dept. of Homeland Security's cybersecurity division. And he also sees this issue: “As cyber physical systems and the Internet of Things add new features to devices on which we all depend, are security design issues being overlooked?"

What about the motivation of cyber-criminals to perform zero-day (no warning) attacks? That gives nighttime jitters to the Dept. of Transportation's Kevin Harnett, Program Manager at the Volpe National Transportation Systems Center. He tosses and turns thinking about how to implement interim countermeasures to provide security for government vehicles, including application of best practices and industry standards—and use of aftermarket devices when appropriate.

A cyber-attack on U.S. aviation from a nation-state makes Faye Francy, Executive Director of Aviation-ISAC (Information Sharing and Analysis Center), a poor sleeper.

Share
HTML for Linking to Page
Page URL
Grade
Rate It
5.00 Avg. Rating

Read More Articles On

2016-06-28
Start of production for the plug-in hybrid Chrysler Pacifica minivan begins in late 2016, marking a milestone as Fiat Chrysler Automobiles (FCA)'s first mass-produced PHEV.
2016-06-30
As new vehicles become more connected to the internet, to other cars, and to the road infrastructure, the number of potential intrusion points for hackers is growing fast.
2016-06-17
Southeast Michigan - not Silicon Valley - is fast becoming the North American center for advanced vehicle technologies.
2016-07-01
HELLA’s electrically driven vacuum pump for vehicle brake systems is designed to provide on-demand brake-system vacuum for high-efficiency gasoline engines, diesels and turbo- and super-charged engines, as well as hybrid or full electric powertrains.

Related Items

Technical Paper / Journal Article
2004-01-16
Training / Education
2007-03-01
Article
2016-07-01
Technical Paper / Journal Article
2004-03-08
Training / Education
2010-03-15
Technical Paper / Journal Article
2004-11-16
Training / Education
2017-06-15
Technical Paper / Journal Article
2004-03-08