Notice: This site is being updated as of March, 2021. We look forward to updating you on all of the exciting initiatives we have, so please check back soon! – Joby
As vehicles become increasingly connected and software-powered, GENIVI recognizes an emerging need for a comprehensive, end-to-end security model. The GENIVI Security Team looks at automotive cybersecurity holistically and delivers guidelines, research, and education that help build, deliver and manage more secure vehicles in the future.
Security Team Charter
The Charter of the GENIVI Security Team is to:
- Assemble emerging automotive cybersecurity challenges/solutions/standards and inform stakeholders through published guidelines, briefs, webinars and event presentations
- Equip stakeholders to understand and use methods and models for identifying and mitigating cybersecurity attacks on a vehicle
- Deliver education that equips software developers and architects with an understanding of typical approaches for attacking a vehicle and with methods of mitigating those attacks with sound software development methods and testing
- Advise GENIVI software development activities to deliver more secure solutions for the connected vehicle.
Getting Involved
Security Team Chair: Joby Jester
Marketing: michael nunnery
Team Meetings occur every other Thursday at 10:00am US Eastern Time
Next Meeting: March 18th, 2021, 1600 CEST, 1000 EST, 0700 PDT.
One-Page Slide To Promote Security Team:
Current Project Initiatives & Discussions
- Data Classification
- Vehicle Spoofing
- UNECE Wp 29
- Description Language
Recent Activities, Reports & Deliverables
- MoRA Presentation for GENIVI Sec Team
- Planning the creation of Security Evaluation Framework based on MoRA methodologies
- 2019 All Member Meeting – (see multiple security-related topics on 5/16 and 5/17 schedule)
- 2018 All Member Meeting – (see multiple security-related topics on 4/19 schedule)
- Technical Brief: Certificate Pinning (with Cloakware/Irdeto)
- White Paper: Man in the Middle Attacks and Secured Communications
- Webinar: How to Secure the Connected Vehicle Ecosystem (Presentations by Uber and Irdeto)
- An Exchange zero day vulnerability.pdf (discussed on March 4, 2021 security team call)
SPECIAL ADVISORY: https://threatpost.com/microsoft-exchange-zero-day-attackers-spy/164438/
FASTR Outputs
- “Automotive Cybersecurity Literature Review,” a report illuminating crucial research gaps
- “Automotive Industry Guidelines for Secure Over-the-Air Updates,” a document for assisting automotive manufacturers and others involved in evaluating platforms for secure updates
Past Activities & Deliverables
Meeting Minutes
Recent space activity