Research into automotive cyber security: server and digital key are the ports vulnerable to attacks, for which OEMs have stepped up efforts in cyber security.
With advances in the CASE (Connected, Autonomous, Shared, and Electrified) trend, cars are going smarter ever with functional enrichment. Statistically, the installation rate of telematics feature to new cars in China is over 50% from January to October of 2020, a figure projected to rise to 75% or so in 2025. In terms of functionality, intelligent cockpit and advanced automated driving become trending, and the features such as multi-modal interaction, multi-display interaction, 5G connectivity, V2X, OTA and digital key finds ever broader application alongside the soaring number of vehicle control codes and more port vulnerabilities to safety threat.
Currently, the automotive cyber security events arise mainly from attacks on server, digital key, mobile APP, OBD port among others.
Server acts as the most important port for cyber security, which is exposed to the attack by hackers on operating system, database, TSP server, OTA server and the like, thus issuing in data tampering, damage and vehicle safety accidents. Most tools of assault on servers are remotely accessible with lower costs, while the data storage over servers is of paramount importance, all of which lead to often a rather high share of attacks on servers.
Digital key, as the second port that matters most to cyber security, is a common media subject to vehicle intrusion and theft. In 2020, there will be 300,000 Bluetooth digital key installs in China, coupled with an installation rate at about 4%, with such more functionalities besides lock/unlock & start as account log-in, key sharing, vehicle trajectory record, and parcel delivery to cars, which has ever more implications on vehicle safety.
![B 信息安全 1_副本.png](/UpLoads/Article/2020/B%20信息安全%201_副本.png)
Different auto brands are subject to varied attack on vehicle security.
The smarter a car is, the more vulnerable to security attacks will be. Amid the intelligence trend, all OEMs, whatever Mercedes-Benz, BMW, Audi, VW, Toyota, Honda or Hyundai, have varied exposure to security attacks.
![B 信息安全 2_副本.png](/UpLoads/Article/2020/B%20信息安全%202_副本.png)
In March 2020, key encryption approaches of OEMs like Toyota, Hyundai and KIA were reported to have limitations with a possibility of intrusions and thefts largely due to the vulnerabilities of TI’s DST80 encryption system employed by them. A hacker just stands near the car that packs DST80 remote control key, using the inexpensive Proxmark RFID reader/transmitter for the ‘identity theft’ of the key and thus getting the encrypted information.
![B 信息安全 3.png](/UpLoads/Article/2020/B%20信息安全%203.png)
OEM quicken their presence in cyber security
To address serious challenges in automotive cyber security, the OEMs are sparing no efforts in security improvement in many aspects: a) information management inside the company and optimization of R&D process; 2) to build a team intended for cyber security; 3) cyber security protection of telematics.
> European and American OEMs: Diversified deployments of cyber security protection
The automakers from Europe and America are pushing ahead with cyber security construction roundly with technical superiorities, with a tightened control on information security management inside the company apart from improvements in cyber security protection of telematics. As concerns team construction, the majority of European and American OEMs as usual set up either an independent cyber security division or a subsidiary to ensure information security during a vehicle lifespan.
Mercedes-Benz, for instance, has such actions for cyber security in the three below:
Cloud computing: vehicle data protection enabled by a cloud platform through which the car owner takes control of data openness to the outside while driving, and at the same time relevant information will be eliminated automatically after the car owner leaves his/her car;
Factory: partnership with telecom carriers and equipment vendors to set up intelligent vehicle manufacturing factories with production data safety enabled by 5G mobile network;
Vulnerability protection: joins forces with third-party cybersecurity providers to test and repair the potential vulnerabilities of intelligent connected vehicle.
> Japanese and Korean OEMs: with a more focus on cyber security protection and management inside the company
Nissan Motor, for example, proceeds with intro-company management on information security and perfects the regulations concerned. Over the recent years, Nissan has been improving its R&D management system and cyber security platform, with its Tel Aviv-based joint innovation laboratory and collaborations with Israeli start-ups on cyber security testing and study. As yet, Nissan has more than ten cooperative joint prototype projects.
> Chinese OEMs: the emerging forces go ahead of the rest
The emerging carmakers are commendable in cyber security protection. Cases include XPENG Motors that boast concurrent deployments over cloud, vehicle and mobile phone by building a security team on its own and the partnerships with Aliyun, Irdeto, and Keen Security Lab of Tencent in order for a proactive protection system; and NIO that has built a X-Dragon multi-dimensional protection system through a self-owned security team and multi-party cooperation.
Also, the time-honored Chinese automakers follow suit, such as Dongfeng Motor, SAIC, GAC and BAIC that all prioritize the security stewardship during their life cycle. As concerns its overall deployment, SAIC, for example, incorporates its subordinates into the group’s cyber security protection and management system and applies the data encryption software (GS-EDS system) with one accord for data safety as a whole; secondly, SAIC builds a cloud platform independently and a proprietary cloud computing center delivering cloud-based security services; last, SAIC founded SAIC Lingshu Software Co., Ltd in charge of developing basic technology platform and sharpening software R&D competence.
![B 信息安全 4_副本.png](/UpLoads/Article/2020/B%20信息安全%204_副本.png)
OEMs have ever broader cooperation in cyber security.
In addition to security enhancement, OEMs are vigorously seeking for external collaborations on vehicle, communication, platform, data, and application, to name a few.
![B 信息安全 5_副本.png](/UpLoads/Article/2020/B%20信息安全%205_副本.png)
Ecological Domain and Automotive Hardware Expansion Research Report, 2024
Automotive Ecological Domain Research: How Will OEM Ecology and Peripheral Hardware Develop? Ecological Domain and Automotive Hardware Expansion Research Report, 2024 released by ResearchInChina ...
C-V2X and CVIS Industry Research Report, 2024
C-V2X and CVIS Research: In 2023, the OEM scale will exceed 270,000 units, and large-scale verification will start.The pilot application of "vehicle-road-cloud integration” commenced, and C-V2X entere...
Automotive Intelligent Cockpit Platform Configuration Strategy and Industry Research Report, 2024
According to the evolution trends and functions, the cockpit platform has gradually evolved into technical paths such as cockpit-only, cockpit integrated with other domains, cockpit-parking integratio...
Analysis on Huawei's Electrification, Connectivity, Intelligence and Sharing,2023-2024
Analysis on Huawei's Electrification, Connectivity, Intelligence and Sharing: Comprehensive layout in eight major fields and upgrade of Huawei Smart Selection
The “Huawei Intelligent Driving Business...
Li Auto’s Layout in Electrification, Connectivity, Intelligence and Sharing and Strategy Analysis Report, 2023-2024
Li Auto overestimates the BEV market trend and returns to intensive cultivation.
In the MPV market, Denza D9 DM-i with the highest sales (8,030 units) in January 2024 is a hybrid electric vehicle (H...
Analysis on NIO’s Layout in Electrification, Connectivity, Intelligence and Sharing, 2023
Analysis on NIO’s Layout in Electrification, Connectivity, Intelligence and Sharing, 2023
Because of burning money and suffering a huge loss, many people thought NIO would soon go out of business. NI...
Monthly Monitoring Report on China Automotive Sensor Technology and Data Trends (Issue 3, 2024)
Insight into intelligent driving sensors: “Chip-based” reduces costs, and the pace of installing 3-LiDAR solutions in cars quickens. LiDARs were installed in 173,000 passenger cars in China in Q1 2024...
Autonomous Driving Simulation Industry Report, 2024
Autonomous Driving Simulation Research: Three Trends of Simulation Favoring the Implementation of High-level Intelligent Driving.
On November 17, 2023, the Ministry of Industry and Information Techno...
Mobile Charging Robot Research Report, 2024
Research on mobile charging robot: more than 20 companies have come in and have implemented in three major scenarios.
Mobile Charging Robot Research Report, 2024 released by ResearchInChina highlight...
End-to-end Autonomous Driving (E2E AD) Research Report, 2024
End-to-end Autonomous Driving Research: status quo of End-to-end (E2E) autonomous driving
1. Status quo of end-to-end solutions in ChinaAn end-to-end autonomous driving system refers to direct mappi...
Monthly Monitoring Report on China Automotive Intelligent Driving Technology and Data Trends (Issue 2, 2024)
Insight into intelligent driving: ECARX self-develops intelligent driving chips, and L2.5 installation soared by 175% year on year.
Based on the 2023 version, the 2024 version of Monthly...
Monthly Monitoring Report on China Automotive Intelligent Cockpit Technology and Data Trends (Issue 2, 2024)
Insight into intelligent cockpit: the trend towards large screens is obvious, with >10" center console screens sweeping over 80%.
Based on the 2023 Edition, the 2024 Edition of Monthly Monitoring...
China Intelligent Driving Fusion Algorithm Research Report, 2024
Intelligent Driving Fusion Algorithm Research: sparse algorithms, temporal fusion and enhanced planning and control become the trend.
China Intelligent Driving Fusion Algorithm Research Report, 2024 ...
Automotive Electronics OEM/ODM/EMS Industry Report, 2024
Automotive electronics OEM/ODM/EMS research: top players’ revenue has exceeded RMB10 billion, and new entrants have been coming in.
At present, OEMs in the Chinese automotive electronics indus...
Analysis on Xpeng’s Layout in Electrification, Connectivity, Intelligence and Sharing, 2023
Research on Xpeng’s layout in electrification, connectivity, intelligence and sharing: in the innovation-driven rapid development, secured orders for 100 flying cars.
NIO, Xp...
Automotive Cockpit SoC Research Report, 2024
Automotive Cockpit SoC Research: Automakers quicken their pace of buying SoCs, and the penetration of domestic cockpit SoCs will soar
Mass production of local cockpit SoCs is accelerating, and the l...
Automotive Integrated Die Casting Industry Report, 2024
Integrated Die Casting Research: adopted by nearly 20 OEMs, integrated die casting gains popularity.
Automotive Integrated Die Casting Industry Report, 2024 released by ResearchInChina summari...
China Passenger Car Cockpit Multi/Dual Display Research Report, 2023-2024
In intelligent cockpit era, cockpit displays head in the direction of more screens, larger size, better looking, more convenient interaction and better experience. Simultaneously, the conventional “on...