DEx Other initiatives, ongoing projects and applications within the strategic program Automotive Security and Privacy Lars Moberger Research Institutes of Sweden BUILT ENVIRONMENT ENERGY AND CIRCULAR ECONOMY
Content Reminder The mission of the program Scope of the program Status regarding applications How to get more applications within Processes and Technology Management How to melt together different intiatives 2
Build knowledge Vehicles are becoming increasingly automated, connected and personalized, and finally a system connected to (all?) other societal systems Cyber crimes will be an endless real threat to the industry Cyber security is not crisis management We have a common responsibility!
Mission for the FFI-Program Automotive Security and Privacy The mission is to improve product quality and safety as well as to contribute to sustainable transport systems and society by adopting security-by-design and privacy-by-design approaches. Collaboration across OEMs, industrial partners, academia and research institutes along with other relevant stakeholders is expected to be established as a result of this program. This along with dissemination and exploitation of research results would allow for development of a critical mass of awareness, knowledge and competence in Sweden and minimization of vehicle related security risks. 4
Scope of the FFI-Program Automotive Security and Privacy Security Engineering Estimating impact of security and privacy breaches Security requirements and mechanisms Key management Development of novel technologies Adapting existing technologies from other industrial domains Methods and tools Security testing, verification and validation (V&V) E/E system architecture and ECU platform Software platform and software security Intrusion detection and tolerance Processes and Technology Management Societal aspects, human and organization factors Incident management Processes to support end-to-end vehicle security Development and organization processes Interplay among security, privacy and safety Automation, Connected and Autonomous Vehicles Needs from higher automation (cyber physical capabilities) Needs from exposure from communication technologies Security for wireless vehicle interface and wireless communication technologies Security for physical vehicle interface and wired communication technologies Security for vehicle-to-x (V2X) communication Impact of security on function performance IT architecture supporting ITS and connected vehicles Privacy and data protection Laws and regulations Exploitation, Dissemination and Standardization Exploitation of and alignment with on-going national and international research initiatives Activities to increase awareness and information exchange Training seminars, conferences and events Exploitation of and alignment with on-going European and international standardization initiatives and activities 5
Ongoing projects and? Security Engineering Processes and Technology Management Automation, Connected and Autonomous Vehicles Exploitation, Dissemination and Standardization Cyber Security and Privacy HoliSec HoliSec DEx? 6
Granted applications BAuD 2, Big Automotive Data 7
Processes and Technology Management Societal aspects Human and organizational factors Incident management Processes to support end to end vehicular security Development and organizational processes Interplay and trade-offs among security, privacy and safety 8
Societal Aspects, Trust and Security Societal aspects Human and organizational factors Incident management Processes to support end to end vehicular security Development and organizational processes Interplay and trade-offs among security, privacy and safety 9
How to get more applications within Societal Aspects, Trust and Security Spread the word Lift the challenges to the right level within the industry and involve relevant stakeholders as hostages Encourage inter-disciplinary initiatives See beyond the mobility area Define needs and common interest areas between SME and large cooperations Get support from international organizations when prioritizing 10
System Innovation and Transition Design Explore and impact root causes of complex problems Societal Aspects, Trust and Security Societal aspects, human and organization factors Incident management Processes to support end-to-end vehicle security Development and organization processes Interplay among security, privacy and safety INSIGHTS vision interventions /change root cause system dynamics people
Needs defined in EARPAs position paper Key research needs 1. Vehicle as a cyber-physical entity 2. Secure vehicle in unsecure environment 3. Secured operations in an unsecure environment 4. Secured ownership in an unsecure environment 12
How to melt together different initiatives FFI program Other Swedish initiatives EARPA Position paper ARTEMIS/ECSEL ECSO Road map? Security Engineering Automation, Connected and Autonomous Vehicles Process and Technology Management Exploitation, Dissemination and Standardization Security Engineering Automation, Connected and Autonomous Vehicles Process and Technology Management Exploitation, Dissemination and Standardization Key Research Needs Key Research Needs 13
14 Thank you for listening!