In recent years cyber threats in automotive have become one of the popular topics and most of the companies are researching the various threats and risks which are associated with modern vehicles. In today’s date, automotive cyber-attacks could impact to the industry and can reach to the loss of billions of dollars.
For instance, the hackers are mostly targeting the physical systems of the cars, to car theft, data breaches, and fraud. Moreover, all these attacks vary in size and consequences and can have a distinct effect on the automobile industry. By evaluating all the data, it is found that 27.6 percent of incidents involve unauthorized control over car systems in automotive cyber-attacks. Additionally, researchers have also shown that how could they disable the car airbags by exploiting a zero-day vulnerability.
Clearly, the risks of cyberattacks on smart mobility are far greater than IT network security. The companies would be worried about the network cyber-risks, affecting their servers and data, but the consequences are far less severe.
The worst scenario would be the loss of earning, theft, data privacy or property damage. However, the loss of human lives is nothing less than any other stake in automotive cyber-attacks. The below figure gives a snapshot of the top smart mobility attacks vendors.
Taking all this into consideration there is a need for multi-layered security which could offer cybersecurity solutions to the automotive players. Moreover, the amount of cyber-attacks is increasing, and it is growing vulnerable over the time period. Therefore, the key players are heavily investing in cybersecurity companies for improving their perimeter security.
For this various stakeholder are developing the number of choices for automotive security which would protect them from different attacks.
Among these choices, in-vehicle security protects the individual components of the vehicle and can avoid proximity attacks as well as some remote attacks. In addition to this in-vehicle security, network security keeps a fortress at the IT network and backend. Furthermore, cloud security in automotive is used to detect and resolve cyber-security attacks or misuse of smart mobility services.
Moreover, cloud security also handles single and multi-vehicle attacks as well as attacks on telematics and mobility services. The companies like Argus Cyber Security, Upstream Security, Karamba Security, Guardknox, Arilou Technologies, SafeRide Technologies, Trillium, Enigmatos, C2A Security are providing in-vehicle, cloud and network security.
Additionally, if the number of connected vehicles hit the roads, software vulnerabilities are becoming accessible to a malicious hacker using the cellular network, Wi-Fi, and physical connection to exploit them. Henceforth, the companies are also developing software protection systems for car manufacturers from defending these attacks.
As per our research, automotive cloud security works better with the complementary solution and it has a clear approach in defense and depth, with multi-layer security. Moreover, when considering the time for implementation the automotive cloud security is deployed in the cloud environment where the data is sent, and therefore it requires less time for implementation. While in-vehicle security is deployed physically inside the cars and thus is more likely to take the longest time to implement. It is also clear that automotive cloud protection and in-vehicle security could play crucial role in defending a large amount of risk for smart mobility.
The automotive industry is growing rapidly and so the cybersecurity protocols that are used to protect the vehicle from the cyberattacks. As per VP of Marketing, leading cybersecurity company, it is said that hackers can cost car manufacturers $1.1 billion loss on average and it could reach $23 billion by 2023.
Besides, in the year 2018, car manufacturers like Tesla, Porsche, BMW and Honda as heavily affected due to the cyber-attacks. Therefore, for assuring the security of the vehicle from hackers the car manufacturers are partnering with the key industry players to attain a prominent place in this market.
Moreover, the connected vehicles are likely to be most affected by the cyber threats and the connected vehicle market is growing at a CAGR of 24.6 percent between 2019 to 2021. Hence, the car manufacturer needs to focus on improving their defending security from these threats, thus OEMs are partnering with the key players in these ecosystems.
For instance, Volkswagen has collaborated with Trillium whereas Upstream and SafeRide Technologies has collaborated with Renault Nissan Alliance. Moreover, for securing the connected vehicles the companies like FCA and Hyundai has partnered with HARMAN and CISCO.
In addition to car manufacturers, the autonomous shuttle companies are also strategically collaborating with cyber security players. For example, SafeRide Technologies has partnered with ISFM and ST Engineering for deploying cybersecurity solutions for the autonomous bus. Similarly, Ohmio Automation has partnered with Arilou Technologies for the development of cybersecurity solutions in their new generation autonomous buses. However, for developing the robust solution for car manufacturers the cybersecurity companies need to overcome the challenge of timely delivery of the security packages. For this, automotive cybersecurity players are developing nw ways to reduce the time lag for updates and it would help them to take a competitive edge among the players in the ecosystem.
RF technologies, telematics, and self-driving (autonomous) vehicles are expected to have greatest risk. As per the research of SAE International and Synopsys the autonomous driving cars have a unique susceptibility, which lies in their LiDAR and radar systems. Therefore, hackers can manipulate the cars physical controls without gaining control over car actual systems. And this can be done through LiDAR and other vision sensor systems.
Furthermore, this helps the hackers to misguide the sensor to identify obstacles. Researchers from the Korea Advanced Institute of Science and Technology has demonstrated two kinds of attack against LiDAR a spoofing and saturation attack. Similarly, the GNSS receiver also requires detection and protection against spoofing attacks. Therefore, the Israel startup Regulus Cyber is developing Pyramid GNSS technology that provides tools to defend against GNSS spoofing attacks. Equally to the autonomous driving, RF Technologies and Telematics consist of high susceptibility.
The companies like Argus Cyber security, GuardKnox, Secure, Fortinet, Verizon Enterprise, Intellimec, and Mix Telematics are providing telematics solution to the car manufacturer.
Other than telematics, infotainment security is also concerned and companies like Karamba security, Arilou Technologies, GuardKonx and others are developing infotainment security solutions for the car manufacturer and automotive supplier.
Most of the cybersecurity startups are based in Israel, for instance, Argus Cyber Security, Upstream Security, C2A Security, Enigmatos, GuardKnox, Arilou Technologies, SafeRide Technologies, Cybellum, and Regulus Cyber. Among these startups, Argus Cyber Security appears to be dominating this market. In November 2017, Continental has acquired Argus Cyber Security at estimated of $450 million. Thus, Argus Cyber Security has become part of Continental’s subsidiary Elektrobit. Moreover, Argus has also partnered with Telekom, Singtel, NXP, NVIDIA, Phantom Auto, Ecrisson, STMicroelectronics, Renesas, Renevo, Qualcomm, Infineon, and Magna International. Following table gives the details analysis of each player partnership portfolio. Similarly, companies like, Karamba Security, Arxan Technologies, Trillium, Palo Alto Networks, NRI Technologies are based in the U.S. and partnered with key players in the automotive ecosystems for gaining the strategic position. The rising safety concern and increasing demand for reliable transportation systems also anticipate the demand for cybersecurity solutions, which will help this market to grow.