As vehicles become increasingly connected and software-powered, GENIVI recognizes an emerging need for a comprehensive, end-to-end security model. The GENIVI Security Team looks at automotive cybersecurity holistically and delivers guidelines, research, and education that help build, deliver and manage more secure vehicles in the future.
The GENIVI Security Team has added experts from FASTR (The Future of Automotive Security Technology Research), a nonprofit research consortium dedicated to automotive cybersecurity. The expanded GENIVI Security Team will leverage FASTR’s foundational research and build upon the foundations both organizations have already established in the areas of threat modeling, secure software over-the-air updates and developing secure software. For more information about the FASTR integration into the GENIVI Security Team, visit the FASTR FAQ page.
Security Team Charter
The Charter of the GENIVI Security Team is to:
- Assemble emerging automotive cybersecurity challenges/solutions/standards and inform stakeholders through published guidelines, briefs, webinars and event presentations
- Equip stakeholders to understand and use methods and models for identifying and mitigating cybersecurity attacks on a vehicle
- Deliver education that equips software developers and architects with an understanding of typical approaches for attacking a vehicle and with methods of mitigating those attacks with sound software development methods and testing
- Advise GENIVI software development activities to deliver more secure solutions for the connected vehicle.
Getting Involved
Security Team Chair: Joby Jester
Team Meetings occur on every other Thursday at 10:00am US Eastern Time
Next Meeting: April 2, 2020, 1600 CEST, 1000 EDT, 0700 PDT.
To join Zoom Meeting (https://irdeto.zoom.us/j/353959866)
Recent Activities & Deliverables
- MoRA Presentation for GENIVI Sec Team
- Planning the creation of Security Evaluation Framework based on MoRA methodologies
- 2019 All Member Meeting – (see multiple security-related topics on 5/16 and 5/17 schedule)
- 2018 All Member Meeting – (see multiple security-related topics on 4/19 schedule)
- Technical Brief: Certificate Pinning (with Cloakware/Irdeto)
- White Paper: Man in the Middle Attacks and Secured Communications
- Webinar: How to Secure the Connected Vehicle Ecosystem (Presentations by Uber and Irdeto)
FASTR Outputs
- “Automotive Cybersecurity Literature Review,” a report illuminating crucial research gaps
- “Automotive Industry Guidelines for Secure Over-the-Air Updates,” a document for assisting automotive manufacturers and others involved in evaluating platforms for secure updates
Past Activities & Deliverables
Recent space activity