A short history of the digitalization of motor vehicles<\/h2>\n
So when did this move from mechanics to digital start?<\/p>\n
Some experts in the field reckon the computerization of the auto industry began in 1955 \u2013 when Chrysler started offering a transistor radio as an optional extra on\u00a0one<\/a>\u00a0of its models. Others, perhaps thinking that a radio isn\u2019t really an automotive feature, reckon it was the introduction of electronic ignition, ABS, or electronic engine-control systems that ushered in automobile-computerization (by Pontiac, Chrysler and GM in 1963, 1971 and 1979,\u00a0respectively<\/a>).<\/p>\n No matter when it started, what followed was for sure more of the same: more electronics; then things started becoming more digital \u2013 and the line between the two blured. But I consider the start of the digital revolution in automotive technologies as February 1986, when, at the\u00a0Society of Automotive Engineers<\/a>\u00a0convention, the company Robert Bosch GmbH presented to the world its digital network protocol for communication among the electronic components of a car \u2013\u00a0CAN<\/a>\u00a0(controller area network<\/a>). And you have to give those Bosch guys their due: still today this protocol is fully relevant \u2013 used in practically every vehicle the world over!<\/p>\n The Bosch boys gave us various types of CAN buses (low-speed, high-speed, FD-CAN), while today there\u2019s\u00a0FlexRay<\/a>\u00a0(transmission), LIN (low-speed bus), optical MOST (multimedia), and finally, on-board Ethernet (today \u2013 100mbps; in the future \u2013 up to 1gbps). When cars are designed these days, various communications protocols are applied. There\u2019s\u00a0drive by wire<\/a>\u00a0(electrical systems instead of mechanical linkages), which has brought us:\u00a0electronic gas pedals<\/a>,\u00a0electronic brake pedals<\/a>\u00a0(used<\/a>\u00a0by Toyota, Ford and GM in their hybrid and electro-mobiles since 1998),\u00a0electronic handbrakes<\/a>,\u00a0electronic gearboxes<\/a>, and\u00a0electronic steering<\/a>\u00a0(first<\/a>\u00a0used by Infinity in its\u00a0Q50<\/a>\u00a0in 2014).<\/p>\n BMW buses and interfaces<\/p><\/div>\n In the year 2000, Honda introduced\u00a0electric power steering<\/em><\/a>\u00a0(on its S2000), which, given certain conditions, can turn the wheel itself.\u00a0Keyless ignition systems<\/em><\/a>\u00a0appeared around the same time, permitting control of the engine without a driver. Since 2010 some dashboard displays are completely digital, and can give you readings on just about anything. Since 2015 the electronics of the body (doors, windows, locks, etc.) of practically all new cars are connected to the central computer, which can make decisions for them itself. And all information about the world outside a car (via cameras, assistants, radars, microphones\u2026) is accessible to the internal bus \u2013 read: in the cloud.<\/p>\n Finally, I close this brief historical digression with a\u00a0document<\/a>, adopted in 2019 by the UN, which introduced standards for full digitalization of brakes. Before, electronic control of brake pedals had to be duplicated by a physical cable. No more\u2026\n<\/p><\/blockquote>\n So what operating systems do today\u2019s cars run on? No surprises here: Windows, Linux, Android \u2013 also one called QNX, which, together with Linux, is the most popular (but, as analysts point out, Android is fast catching them up). Btw \u2013 like any software, automobile-OSs need updating occasionally; but get this: some updates can be a few dozen gigabytes in size. Ouch!<\/p>\n BMW onboard-computer updates<\/p><\/div>\n Now for another short stop before the main course\u2026<\/p>\n So \u2013 if a modern car is a computer, and it is regularly updated, that must mean it\u2019s connected to the internet, right? Right. And these days it\u2019s not an option; it\u2019s mandatory on all new cars \u2013 in\u00a0Russia<\/a>\u00a0(since 2017), in\u00a0Europe<\/a>\u00a0(since 2018), and elsewhere. And today the percentage share of \u2018connected cars\u2019 (connected to the manufacturer\u2019s cloud) is\u00a0fast approaching 100%<\/a>\u00a0in the world. There are a few countries where there are restrictions on such cars, but that appears to only be due to outdated legislation, which will inevitably eventually be updated.<\/p>\n Btw, the first connected vehicle appeared back in 1996, the result of\u00a0cooperation<\/a>\u00a0between General Motors and Motorola \u2013 the\u00a0OnStar<\/a>\u00a0telematic system. This can connect with an operator automatically in case of an accident \u2013 yes, kinda like the \u2018accident\u2019 in Die Hard 4<\/a>.<\/p>\n Remote vehicle diagnostics\u00a0came along<\/a>\u00a0in 2001, and by 2003 connected cars had learned how to send the manufacturer reports on the condition of the car. Telematic data-only blocks\u00a0arrived<\/a>\u00a0in 2007.<\/p>\n In 2014 Audi was the first to offer the option of installing\u00a04G-LTE-WiFi hotspots<\/a>\u00a0in a car. In 2015 GM didn\u2019t just provide the option, it started fitting all its new cars with hotspots \u2013 and received more than a billion telematic reports from car owners! Today, manufacturers have even started monetizing telemetry \u2013 with BMW\u00a0leading the way<\/a>, and also\u00a0converging<\/a>\u00a0smartphone and automobile tech.<\/p>\n Now \u2013 a question: What is here in this screenshot below?<\/p>\n That, dear readers, is your car; at least\u00a0\u2013 how it looks to the manufacturer (in real time, all the time, to folks working at the manufacturer maybe on the other side of the world). Software that can see and tinker with all control units, the network topology, routing rules, loaders, updates \u2013 all as if in the palm of their hand. But\u2026 also in there: bugs and vulnerabilities that can make you shudder\u2026 and want to return to the 80s when a\u00a0car was a car<\/a>\u00a0\u2013 not a computer ). And it\u2019s not just me scaremongering. The\u00a0threats<\/a>\u00a0are<\/a>\u00a0real<\/a>,\u00a0folks<\/a><\/p>\n After the electro-digi-auto-build-up of the last 20-or-so years, it does feel like a revolution in the car industry is just around the corner. However!\u2026 A bright future of ultra-connected computerized cars is all very well dreaming about, but there\u2019s some harsh reality getting in the way \u2013 both legislative and technical. Here, I\u2019ll talk about the latter\u2026<\/p>\n The new automotive paradigm simply cannot be superimposed onto even the very latest auto-electronics architecture. Why? Because under the hood of a new car these days there are around 150 electronic units developed by different manufacturers at different times and according to different standards \u2013 all without taking into account the full cyberthreat landscape of this new auto-paradigm.<\/p>\n At least the car manufacturers seem to understand that building a utopian\u00a0V2X<\/a>-future upon the\u00a0mess<\/span>\u00a0hodge-podge of diverse electronics of a modern car is simply out of the question (and there are\u00a0plenty<\/a>\u00a0of\u00a0examples<\/a>\u00a0demonstrating<\/a>\u00a0this<\/a>, and\u00a0plenty<\/a>\u00a0more that never made it into the press). So, for now \u2013 the automobile manufacturing industry has come to a dead-end.<\/p>\n Dead-ends like this one are common \u2013 you may recall the long dualism of the two architectures of\u00a0Windows (9x and NT)<\/a>\u00a0that existed in parallel. Still, channeling lessons learned in that case, for an opening to appear at the dead-end the auto-industry finds itself in now, I see two possible scenarios.<\/p>\n The first: cheap, cheerful, quick, and\u00a0wrong<\/em>: to do what I\u2019ve just said really should not be done \u2013 applying the new paradigm onto today\u2019s motor vehicle as it is (with its digital soup of 150+ ingredients). It\u2019s wrong as it would delay the second scenario \u2013 but not before causing harm to life (these are cars remember, not a PC in the corner of your room), some serious reputation damage, financial losses, plus folks saying \u2018told you so\u2019.<\/p>\n The second: not cheap, not quick, and\u00a0right<\/em>: to build up a new architecture from the ground up \u2013 based on three main principles:<\/p>\n The automotive industry has plenty of experience and know-how regarding the first two principles. Regarding the third \u2013 what is needed are experts with the deepest knowledge of the cyberthreat landscape who are able to come up with a solution. The smartcars of the future will be hacked in scenarios just like those we see with computers and networks today. And who knows those scenarios inside-out better than anyone? You\u00a0K<\/em>uessed it! And so, now, onto the third and final segment of this here somewhat long blogpost: what we\u2019ve got to offer.<\/p>\n We\u2019ve had a\u00a0dedicated transportation cybersecurity<\/a>\u00a0department up and running since 2016. In\u00a02017<\/a>\u00a0we\u00a0launched<\/a>\u00a0the first prototype of our Secure Communication Unit (SCU), which, as the name hints at, secures communications between a car\u2019s digital components and the infrastructural components outside the car. And already today we have\u00a0a platform<\/a>\u00a0based on\u00a0our own secure operating system<\/a>\u00a0for the development of electronic automobile components.<\/p>\n And in June of this most\u00a0unusual<\/a>\u00a0of years, another related event took place I want to tell you about. Together with AVL Software and Functions GmbH, we\u00a0announced<\/a>\u00a0the development of an advanced driver assistance system (ADAS<\/a>), also based on KasperskyOS, which assists the driver and even lowers the risk of accidents.<\/p>\n The unit features two high-performance system-on-a-chip-processor safety controllers and provides vast connectivity capabilities \u2013 including links to cameras, lidars and other related components. It supports the new\u00a0AUTOSAR Adaptive Platform<\/a>\u00a0standard. Such a configuration on the one hand provides secure-by-design protection (details \u2013\u00a0here<\/a>), while on the other it opens up a whole array of possibilities for the installation, adjustment, and updating of automobile functions \u2013 kind of like what an app store is to a smartphone.<\/p>\n But here\u2019s the key bit: even if a vulnerability is discovered in one of the components of a car, hackers won\u2019t be able to execute dangerous commands or gain access to other components. All processes are fully isolated and their behavior is filtered by a\u00a0security subsystem<\/a>\u00a0with adjusted rules.<\/p>\n Fingers crossed \u2013 we\u2019re on to a real winner here with our automobile automation tech solutions. It\u2019s a busy market, but we\u2019ve no competition when it comes to the (crucial) cybersecurity niche section of it.<\/p>\n And being members of\u00a0GENIVI<\/a>\u00a0and\u00a0AUTOSAR<\/a>, and keeping up with forums (e.g.,\u00a0UNECE WP.29<\/a>) and industry events, we see various attempts by others at building new architecture, including Linux-based (not that you\u2019d ever see me getting into a car with Linux-based architecture<\/a>!). But not one of them provides the broad horizon of possibilities and mathematically proven \u2018security by design\u2019 formula \u2013 where fixes and bodges later on are simply never needed.<\/p>\n Our formula features: (i) written from the ground up\u00a0micro<\/span>nano-kernel architecture with compact code; (ii) granular component communication rules; (iii) complete isolation of processes; (iv) operations carried out in a protected address space; (v) default deny; (vi) optional open source code for customers; (vii)\u00a0examples of successful implementation<\/a>\u2026 \u2013 it\u2019s specifics of our operating system like these that are attracting the automobile manufacturers \u2013 the ones that want to do things\u00a0properly:<\/em>\u00a0reliably and built to last.<\/p>\n But that\u2019s not all that attracts manufacturers.<\/p>\n Besides our native in-vehicle security we\u2019ve a jaw-dropping portfolio of infrastructure solutions and services. Protecting the car of the future is only one piece in the puzzle. Further along the chain there\u2019s: protecting backend data, including endpoint nodes; cloud audits (to check there are no leaks); development of secure mobile apps; protection against online fraud; supply-chain control; pen-testing of infrastructure; and a lot more besides. Because who wants to work with a whole \u2018zoo\u2019 of different vendors to get all these things sorted out separately?<\/p>\n\n
Quick nerdy post-CAN-introduction digi-automoto backgrounder<\/h3>\n
![\"BMW](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2020\/09\/04215241\/cybersecurity-automotive-interfaces.jpg\")
<\/a>Connect or die<\/h2>\n
![\"BMW](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2020\/09\/04215250\/cybersecurity-automotive-bmw-updates.jpg\")
<\/a>![\"Your](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2020\/09\/04215302\/cybersecurity-automotive-car.jpg\")
<\/a><\/p>\nThe light at the end of the tunnel<\/h2>\n
\n
![\"Advanced](\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/37\/2020\/09\/04215316\/cybersecurity-automotive-ADAS.jpg\")
<\/a><\/p>\nEpilogue<\/h2>\n