Cybersecurity in Automotive Ethernet: Risks and Developments

The emergence of Automotive Ethernet has significantly increased the connectivity and communication of vehicles with the outside world. While this offers many benefits, it also brings new risks, especially in the field of cybersecurity. The danger of potential cyber attacks and unauthorized access to vehicle networks is taken seriously in the automotive industry. In response to this, an international standard has even been introduced: ISO/SAE 21434, which specifically focuses on Automotive Cyber Security.

Risks of connectivity in Automotive Ethernet: Hacking danger is lurking

Cybersecurity is becoming increasingly relevant to diagnostic specialists as vehicles are increasingly targeted by cyberattacks. For example, to get a better idea of current automotive cybersecurity technologies, we can take a closer look at Garrett's Intrusion Detection System (IDS).

Garrett's IDS takes advantage of in-vehicle networking, where all data sent over the internal networks is known (for now). The system continuously scans the data and checks for unknown messages. The big advantage is that it is known at any time which parts are allowed to communicate with each other about certain matters. As a result, messages that are sent 'randomly' stand out among the other data, which can indicate a potential attack.

Active Detection Systems: The Future of Automotive Cybersecurity

Garrett heeft een eigen IDS-control unit ontwikkeld die deze onregelmatigheden kan detecteren. Deze control unit maakt gebruik van een Data Acquisition Engine, die data verzamelt vanuit een switch of gateway. Vervolgens controleert de Anomaly Detection Engine aan de hand van een ruleset of er corrupte of onbekende data aanwezig is. Deze informatie wordt via de Anomaly Reporting Engine doorgestuurd naar analysesoftware buiten het voertuig, bijvoorbeeld naar de computer van een fleet manager.

The IDS currently acts as a pure detection system and cannot perform any actions, such as deleting suspicious data or stopping the vehicle. However, given the continuous evolution of automotive cybersecurity, it is expected that active detection systems will be developed in the near future. Many IT-related companies are currently focusing on the field of automotive cybersecurity. The knowledge and experience they have gained from hacking computer networks can come in handy in the development of new software and hardware for the automotive industry.

Developments in automotive cybersecurity are expected to continue to evolve to keep pace with increasingly sophisticated cyber threats. The security standards, technologies and best practices will self-evaluate to ensure the security of in-vehicle Ethernet networks and protect their customers from potential cyber-attacks.