New rules for connected cars manufactures
Car manufacturers in Japan, South Korea and the European Union will be required in the near future to secure connected vehicles against cyber attacks under a new regulation set by the United Nations.
The regulation has been adopted by 53 countries last month and will go into force in January 2021, excluding the United States. It demands national governments and authorities responsible for approving car models before going into the market, to make sure that vehicles are built with cyber security protections.
“If consumers get their car hacked, the manufacturers will be ready to take action and respond,” said François Guichard, Secretary of the UN World Forum’s Working Party on Automated/Autonomous and Connected Vehicles.
The UN regulation listed few specified attacks that manufacturers should be prepared to prevent. Some of them include attacks like malware on servers and attempts to lure drivers into downloading malicious software.
Some of the required measures by manufacturers are:
- Managing vehicle cyber risks,
- Securing vehicles by design to mitigate risks along the value chain,
- Detecting and responding to security incidents across vehicle fleet,
- Providing safe and secure software updates and ensuring vehicle safety is not compromised, introducing a legal basis for so-called “Over-the-Air” (O.T.A.) updates to on-board vehicle software.
The regulations requires manufacturers to document how they will prevent the incidents. At least once per year manufacturers must inform authorities whether their security measures are effective or not and also report relevant information on cyber attacks. Forensic technology is also requested to keep in place to detect and analyse attempted cyber attacks.
“It is a rather stringent requirement on vehicle manufacturers, the new rules are changing the relationship in a way because vehicle manufacturers’ responsibility and expectations will be higher.” said Jocelyn Delatre, Smart Mobility Manager at the European Automobile Manufacturers’ Association.
To read the full article, click here.