Automakers Push Back as Research Shows Car Hacking

Automakers Push Back as Research Shows Car Hacking

To manufacturers, the increased technology in vehicles leads to a world of networked cars that have fewer deadly crashes, reduced traffic and new revenue systems. But to data security researchers, a world of networked cars could only lead to possible vectors of attack – high velocity weapons and roving data-reapers – posing as enticing targets for hackers.

As part of a series of Congressional hearings focused on tech issues, representatives of Tesla, General Motors and Toyota were asked to appear in front of an oversight subcommittee in the House of Representatives in late November. After lawmakers voiced concerns over consumer privacy, data collection and network security, the automakers responded with a unified message: Premature regulation can deter or block safety innovations.

Toyota vice president of connected services, Sandy Lobenstein, said that the auto industry has tried to tackle this fear together. The automakers developed privacy principles together for the new networked cars and believed they were at the forefront of protecting consumer data in the emerging Internet of Things.

Of particular interest to the members of Congress is the possibility of advancing industry-wide standards for cybersecurity and consumer privacy. Several lawmakers mentioned a widely-read article in which security researchers were able to hack at Jeep Cherokee and remotely tamper with its brakes, steering and engine.

While the government wants initiate a one-year government study to recommend regulations for automotive software, safety, cybersecurity, and privacy, the automotive representatives pressed that the industry was not going to be able to wait that long. Harry Lightsey, executive director for consumer experience at General Motors, mentioned that the company was already hard at work developing technologies intended to limit collisions and protect connected cars from being hacked.

When asked by Rep. John Mica, a republican from Florida, if an industry-wide cyber security standard exists, all automakers were not able to indicate if a set group of principles were set.

Location data, credit card numbers and text messages are all things that may be stored in a car now. And, according to Khaliah Barnes, associate director for the Electronic Privacy Information Center, carmakers are not doing a good job telling consumers how that data is used.

Barnes supports a Senate bill that would establish baseline federal standards for automobile cybersecurity, instituting federal penalties for car hacking. The same proposal limits how car data can be shared with marketers and other third parties.

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

New Products

  • 4K Video Decoder

    3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.

  • Camden CM-221 Series Switches

    Camden CM-221 Series Switches

    Camden Door Controls is pleased to announce that, in response to soaring customer demand, it has expanded its range of ValueWave™ no-touch switches to include a narrow (slimline) version with manual override. This override button is designed to provide additional assurance that the request to exit switch will open a door, even if the no-touch sensor fails to operate. This new slimline switch also features a heavy gauge stainless steel faceplate, a red/green illuminated light ring, and is IP65 rated, making it ideal for indoor or outdoor use as part of an automatic door or access control system. ValueWave™ no-touch switches are designed for easy installation and trouble-free service in high traffic applications. In addition to this narrow version, the CM-221 & CM-222 Series switches are available in a range of other models with single and double gang heavy-gauge stainless steel faceplates and include illuminated light rings.

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area.