FIA MOBILITY TOURISM Gerd Preuss FIA Representative at
FIA MOBILITY & TOURISM Gerd Preuss, FIA Representative at UNECE Automobile Mobility and Tourism Task Force Cyber Security and Over the Air Updates Washington, 20 February 2018
Reference Model • The FIA Ref. Model is based on Security Functions The first reference model diagram in section 3 of the cyber security report is deemed to be the starting point which was used to align on the scope of the ecosystem and potential threat surface in order to identify potential threat vectors. It is seen as the ‘starting point’. A couple of ‘tweaks’ may be in order, however it is strongly recommended the alternate reference model in the annex should be removed to avoid confusion. (‘Tweaks’ could include highlighting the key clusters of inputs). It is appropriate to introduce, in addition, an enhanced reference model which represents the ‘objective’ of a cyber secured conceptual model. The intent is that it would show a functional architecture – and not imply what a physical solution must look like 2
Reference Model • The FIA Ref. Model is based on Security Functions 3
Lifetime • Lifetime Modified FIA Proposal after the „Huddle“ during the London Meeting in 01/2018 The lifetime of a vehicle is the period form 1 st registration of the vehicle until the scrap. The average duration of a vehicle in operation is 10 years after first registration. The vehicle manufacturer shall at least provide updates for soft- and hardware for this period. If, before the end of the lifetime, the vehicle manufacturer ceases to update the vehicle software and hardware, all relevant documentation for the production of software and hardware must be handed over to interested third parties. This is required to enable retrofit solutions over the lifetime. 4
Lifetime • Lifetime Justification The average duration of a vehicle in operation is 10 years after first registration. 40% of the car fleet in Germany is older than 10 years. A lot of cars older than 10 years are used on a daily basis but when the vehicles get older than 20 years a lot of people uses such cars as collector cars and use them only for leisure purposes. Vehicles between 20 and 30 years are defined as Youngtimer. Vehicles older than 30 years are defined as Oldtimer which are not used on a daily basis. If, at the end of the average duration of operation, the vehicle manufacturer ceases to update the vehicle software and hardware, all relevant documentation for the production of software and hardware shall be handed over to interested third parties. 5
Hard and Software Updates • Cyber Security covers Soft- and Hardware FIA Proposal Regulation on Cyber Security shall cover Hard- and Software updates, as it is possible, that software updates will not solve all cyber security issues of a vehicle over its lifetime. Justification by Real Expamples 1. FIA club ADAC showed that Keyless Entry systems are unsecure. By simply extending the range of the signals the vehicles can be opened and driven away. Only a change of soft- and hardware could solve the problem for the existing fleet. 2. VW, Fiat, Honda, Kia and Volvo had vulnerabilities in key codes of millions of vehicles. Replacing the keys (hardware), affected by the vulnerability was too costly for the vehicle manufacturer! 6
Thank you for your attention 7
- Slides: 7