Q: How well do connected vehicle manufacturers understand the threat of cybersecurity?
Vehicle manufacturing companies are well aware of the cybersecurity component of connected trucks and have the skills and resources needed for it. But there is a tremendous amount of effort that still needs to be channeled toward cybersecurity in the context of connected vehicles.
The threat landscape is ever-changing, with new vulnerabilities accompanying every new feature as we connect more components and build new infrastructure. The risks connected trucks are exposed to are critical, and high in number.
An exploited vulnerability can give hackers insight into sensitive data – from the kind of goods in the truck to the details of the person driving the truck. In extreme cases, hackers could turn the truck on or off and create incidents.
So, while connected truck manufacturers understand the complexity of the threat landscape, stronger, advanced cybersecurity measures remain to be built.
Q: What are the implications of the security threats faced by connected vehicles?
Just like in every other industry, new vulnerabilities are emerging every day in the connected truck landscape.
An implication of a cyber threat in connected trucks can be data theft – where hackers steal sensitive information regarding goods and personnel – or in the worst case, loss of human lives. For example, a truck carrying dangerous chemicals, if hacked, can pose a huge risk – the truck could be made to turn or speed without driver control. This can cause damage to the goods, vehicles and drivers, and also pose a risk to the surroundings. Loss of personal data is also a major implication.
Consider a hypothetical scenario of a truck transporting fruits and vegetables. Due to the nature of the goods, the truck would come equipped with a freezer or cooler. A vulnerability in the system would let a hacker fluctuate the temperatures, spoiling the food. There are many similar examples.
Q: What are the key security concerns of connected vehicle manufacturers in the Nordics?
The major concerns that plague connected truck manufacturers are plenty. A connected truck is essentially a server room on wheels. It can have hundreds of components represented by small CPUs that do everything from analyzing the quantity of gas frequently to measuring the speed of the truck.
One of the major requirements of connected trucks is that the truck should be available almost all the time. This begs the question, “When do you perform an upgrade?” The complexity involved in this question is massive – a remote upgrade of the vehicle can unearth a vulnerability that hackers can exploit. As the truck can connect to remote devices, various parts of the truck must be protected based on the criticality of its function.