Feb 22, 2019 - TechnologyExpert Voices

Detecting unexpected behavior could be key to securing AV systems

Illustration: Aïda Amer/Axios

Recent hacks of connected vehicles can teach AV developers how to design cybersecurity measures that are cued by anomalies in vehicle behavior.

Why it matters: Today's connected vehicles lack adequate security systems, and autonomous vehicles will have far more vulnerabilities, raising the stakes even higher.

Background: Some current vehicles have anti-malware systems adapted from the IT world, but those are not in wide use and are not robust enough to fully protect connected vehicles, let alone AVs.

  • Hackers have compromised a vehicle's onboard computer using its tire pressure monitor sensor and via SMS messages sent over 4G networks.
  • They have assumed varying degrees of control over connected vehicles using Wi-Fi connections as well, including steering and braking systems, and via over-the-air updates and onboard diagnostic ports.

AV systems are more multifaceted, creating new vulnerabilities, particularly with vehicle-to-everything connectivity in place. They also have more sensors; when sensor data is uploaded to servers, that creates another point of vulnerability.

What's needed: So far, manufacturers have responded by issuing security updates for vehicles — but a proactive system that can anticipate and prevent attacks will be imperative for AV safety. One strategy — being explored by companies like SafeRide Technologies, Vectra, PerimeterX, and ExtraHop — is to examine malware behavior.

  • A behavior-based security system could be triggered by behavior anomalies, rather than detecting a malware's signature. Triggers could include an upload to a sensor server with fewer or more bytes than typically expected or superfluous computer activity registered by the engine control unit.
  • This system could work regardless of the attack type or vulnerability targeted, which is critical given that hackers can mutate code endlessly.

What to watch: Behavior-based security systems must have the capability to learn vehicle behavior independently, without dependency on every software or hardware vendor, and regardless of data formats. Since that would require computing power that only advanced, high-end vehicles have onboard, most cars would need to rely on network bandwidth to run the detection program on the cloud.

Yossi Vardi is the CEO of SafeRide Technologies, an automotive cybersecurity startup.

Go deeper

Axios
Updated 5 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Sarah Grillo/Axios

  1. Global: Total confirmed cases as of 10 p.m. ET: 32,471,119 — Total deaths: 987,593 — Total recoveries: 22,374,557Map.
  2. U.S.: Total confirmed cases as of 10 p.m. ET: 7,032,524 — Total deaths: 203,657 — Total recoveries: 2,727,335 — Total tests: 99,483,712Map.
  3. States: "We’re not closing anything going forward": Florida fully lifts COVID restaurant restrictions — Virginia Gov. Ralph Northam tests positive for coronavirus.
  4. Health: Young people accounted for 20% of cases this summer.
  5. Business: Coronavirus has made airports happier places The expiration of Pandemic Unemployment Assistance looms.
  6. Education: Where bringing students back to school is most risky.
Go deeper (<1 min. read)Arrow
Mike Allen, author of AM
7 hours ago - Politics & Policy

Biden pushes unity message in new TV wave

A fresh Joe Biden ad, "New Start," signals an effort by his campaign to make unity a central theme, underscoring a new passage in his stump speech that says he won't be a president just for Democrats but for all Americans.

What he's saying: The ad — which began Friday night, and is a follow-up to "Fresh Start" — draws from a Biden speech earlier in the week in Manitowoc, Wisconsin:

Go deeper (1 min. read)Arrow
Jonathan SwanAlayna TreeneSam Baker
8 hours ago - Politics & Policy

Trump prepares to announce Amy Coney Barrett as Supreme Court replacement

Judge Amy Coney Barrett. Photo: Matt Cashore/Notre Dame University via Reuters

President Trump is preparing to nominate federal appeals court Judge Amy Coney Barrett of Indiana, a favorite of both the social conservative base and Republican elected officials, to succeed Justice Ruth Bader Ginsburg, Republican sources tell Axios.

Why it matters: Barrett would push the already conservative court further and harder to the right, for decades to come, on the most important issues in American politics — from abortion to the limits of presidential power. If confirmed, she would give conservatives a 6-3 majority on the high court.

Go deeper (1 min. read)Arrow