MAIN CONFERENCE DAY TWO
8:00 am - 9:00 am Breakfast & Conference Registration
9:00 am - 9:15 am Chairperson’s Welcome And Opening Remarks
9:15 am - 10:00 am Securing Embedded Systems in the Rapidly Evolving Connected Car Threat Landscape
The ever-increasing wireless connected automotive landscape presents a new wave of challenges for car manufacturers globally. Improved connectivity in the automotive industry provides the means for multiple new business models, and improved customer satisfaction. However, it also expands the attack vector for potential cybersecurity incidents, and makes the effort to secure embedded systems all the more challenging.This session will provide insight on the challenges of advancing automotive cybersecurity practices in increasingly complex and connected environments.
- Addressing the increase in connectivity requirements
- Developing embedded security capabilities in design process and device production
- Identifying strategies to combat rapidly evolving threats with an ever-growing connected car ecosystem
10:00 am - 10:45 am Security Architecture Considerations for Automotive Products and SoftwareAlan Tatourian - Security Architect, P.E. – Autonomous Driving Division, Intel
Security Architecture Considerations for Automotive Products and Software
As cars increasingly transition from hardware driven products to software driven electronic devices, organizations must take careful notice to secure both hardware and software as we move towards the future of connected cars.
- Defining next-gen security architectures in automotive products for both hardware and software
- Ensuring OEM and Tier 1 software and hardware needs are met
- Autonomous architecture ECU security trends
Alan TatourianSecurity Architect, P.E. – Autonomous Driving Division
10:45 am - 11:15 am Networking & Refreshment Break
11:15 am - 12:00 pm Track 1: Vulnerability Management and Sharing
Vulnerability sharing and building trust across the automotive ecosystem is paramount to delivering efficient responses and ensuring safety for consumers across the community.
- Improving means to identify, remediate, track and response to automotive cyber threats
- Developing coordinated disclosure means to advance remediation capabilities
11:15 am - 12:00 pm Track 2: Conducting Self-Auditing and Risk Assessments for Improved AccountabilityDave Bares - Product Cybersecurity Senior Engineer, Lear Corporation
In addition to developing intuitive cybersecurity measures for vehicle protection, the automotive industry should document the details related to the cyber processes for improved auditing and accountability of incidents.
- Conducting risk-based approaches to assessing vulnerabilities and potential impacts
- Establishing procedures for internal review and documentation of cyber-related initiatives
- Considerations on BSIMM9, MS SDL, CIS Controls v7, CySAEv2.x
Dave BaresProduct Cybersecurity Senior Engineer
12:00 pm - 1:00 pm Networking Lunch
1:00 pm - 1:45 pm Developing Cyber Secure Strategies for Over the Air (OTA) Updates
Over the air updates provide increased flexibility to manufacturers and car owners to manage embedded systems across the life cycle of the vehicle. OTA updates are a critical aspect of the automotive cybersecurity ecosystem, but with increased connectivity, brings increased risk.
- Developing secure OTAs for vehicle lifecycle maintenance and management
- Safeguarding against data breach and leak
- Improving OTA authentication to defer unauthorized entry
1:45 pm - 2:30 pm Driving OBD Port Security Level of CapabilityBob Gruszczynski - OBD Communication Expert, Volkswagen Group of America
OBD security is an integral function for any connected car, and one that is highly vulnerable to cyber attack due to its connectivity to a multitude of safety-critical automotive components. This session will address critical OBD cyber measures and strategies.
- Minimizing attack vector size for safety-critical, OBD connected components
- Preventing unauthorized access to the in-vehicle E/E system
- Updated SAE standards for OBD port security
Bob GruszczynskiOBD Communication Expert
Volkswagen Group of America
2:30 pm - 3:00 pm Afternoon Tea and Networking Break
3:00 pm - 3:45 pm Understanding the Unique Security Challenges for Electric and Hybrid Vehicles
The modern, connected vehicle is filled with electronic devices that that expose them to the constant threat of cyberattacks. In addition to this, the amount of electric vehicles and hybrids moving onto the roads represents a magnified cyber threat, due to risks associated with electric vehicle battery packs. This session will provide critical insight as to the unique security challenges for electric and hybrid vehicles.
- Overview of safety requirements for electric and hybrid vehicles for safety critical and high-voltage systems
- Security challenges associated with charging stations and infrastructure
- Understanding the EV and HV environment for emerging vulnerabilities
3:45 pm - 4:30 pm Interactive Discussion Groups / RoundtablesUki Lucas - System Architect and HMI Functional Owner, FCA Group Programs, Connected Car R&D, Harman International
Joseph Kristofik - Director Functional Safety and Cybersecurity Management, Veoneer
IDG 1: Enhancing Component Security of Critical Safety Features - Joseph Kristofik, Director, Functional Safety and Cybersecurity Management, Veoneer
IDG 2: Understanding the Cybersecurity Challenges for the Trucking Sector
IDG 3: Considerations on the Use Case for AI & Machine Learning for Automotive Defense - Uki D. Lucas, System Architect and HMI Functional Owner, FCA Group Programs, Connected Car R&D, Harman International
IDG 4: Defining the Promise of Blockchain for the Automotive Industry
Uki LucasSystem Architect and HMI Functional Owner, FCA Group Programs, Connected Car R&D
Joseph KristofikDirector Functional Safety and Cybersecurity Management