Connected Vehicle Security

Automotive original equipment manufacturers (OEM) and their suppliers rely on Entrust nShield® HSMs for our expertise and experience in building data protection strategies. Our technology enables the root of trust needed to advance connected vehicle security and scale to meet the industry’s evolving demands.

Challenges

Attacks Via Connected Components

The addition of more connectivity to support vehicle infotainment systems, maintenance monitoring, and much more, opens up new potential attack vectors. And a vulnerability in one area could expose the whole system, as advanced attackers seek out pivot points to exploit.

Compromised Telemetry Transmissions

Telemetry data, which can be used for maintenance tracking or consumer devices plugged into the on-board diagnostics (OBD II) port, must be protected – in motion or at rest – in accordance with regional privacy mandates. Data transmitted by connected components needs to be authenticated to be sure it’s from a trusted source.

Unsecured Software and Firmware Updates

Like other connected devices, today's connected cars comprise components that may require software or firmware updates. Whether delivered over-the-air or at a service center, code updates sent to connected components present the potential for malicious behavior, as well as unintended errors or violations of organizational policies.

Soluciones

Connected Component Authentication

To prevent against unsecured components interacting with vehicle systems and introducing malware or providing a pathway for an advanced attack, components need to be authenticated. Entrust nShield HSMs, along with supporting security software, enable manufacturers to give each connected component a unique identification that provides a root of trust along with the foundation for an effective public key infrastructure.

Protected Data-In-Transit

Encrypting telemetry and other data transmitted to/from the vehicle to support vehicle maintenance tracking or a vehicle-to-vehicle/infrastructure ecosystem, provides protection against data theft and other compromises. Entrust nShield HSM products enable the authentication of connected components and provide encryption of data-in-transit to ensure data can be trusted.

Strong Code Signing

To ensure the integrity of software and firmware updates, and defend against the risks associated with code tampering or code that deviates from organizational policies, the code must be signed using a strong methodology. The recognized best practice entails using private keys protected by hardware security modules.

Beneficios

Defense Against Malware and Brand Damage

Establishing cryptographically-based digital identities for connected vehicle components and securing code updates against tampering help to protect against malware and code tampering, thus safeguarding against unwanted sophisticated attacks, unauthorized modifications to vehicle performance and reputational damage.

Protection of Sensitive Data

Securing the transmission of telemetry data and other information broadcast to/from the vehicle helps to protect against data loss and the compromise of vehicle and driver safety. Protecting data in transit also helps fleet operators safeguard sensitive information about their vehicles and cargo.

Opportunities for Improved Customer Service and Revenues

With strong authentication in place, components can receive over the air (OTA) software and firmware updates, presenting a significant opportunity for manufacturers, who could open up new revenue streams and enhance driver satisfaction with the introduction of new features, while reducing the cost of issuing updates.

Recursos

Solution Briefs: Connected Vehicle Security Solution Brief

New vehicles offer advanced features and functionality - along with vulnerabilities. Learn how Entrust nShield HSMs deliver solutions that help secure the connected vehicle....

Seguridad del medio conectado

HSM

ZF Friedrichshafen AG secures wireless manufacturing with nShield HSMs

ZF Friedrichshafen AG Secures Wireless Manufacturing with nCipher HSMs to protect mission-critical processes and meet regulatory requirements....

Más información

HSM

nShield HSMs enable Secunet’s automotive industry solutions

Secunet's Automotive Division supports OEMs and suppliers in developing and implementing innovative security solutions in such areas as onboard security, eMobility security and security for connected vehicles, as well as for research and pre-development areas.

Más información

Secure IoT Device Credentialing

Más información

nShield Hardware Security Modules

Hardened, tamper-resistant environments for secure cryptographic processing and key management.

Certificados digitales

Certificados digitales

Estándar TLS/SSL

Ventaja TLS/SSL

TLS/SSL de varios dominios (UC)

TLS/SSL de varios dominios (EV)

TLS/SSL comodín

TLS/SSL privado

Certificados de sello electrónico cualificados

Certificados QWAC eIDAS

Certificados QWAC PSD2

Servicios Platinum

Servicios de certificados de Entrust

Plan de suscripción

Firma digital

Firma digital

Servidores de firma digital TrustedX

TrustedX eIDAS

Firmas electrónicas TrustedX

Certificados de firma de documentos

Certificados de correo electrónico seguro

Certificados de dispositivos

Certificados de firma de código

Entrust Timestamping Authority

Infraestructura de clave pública (PKI)

Infraestructura de clave pública (PKI)

Centro de certificados

Administrador de seguridad

Proveedor de seguridad Entelligence

Pasaporte electrónico

Autoridad de validación

Servicio de PKI administrado de Entrust

Criptografía como servicio

PKI de Microsoft administrado

Autoridad de certificados raíz fuera de línea administrados

Centro criptográfico de excelencia

Seguridad de la internet de las cosas (IoT)

Traiga su propio dispositivo para la gestión de dispositivos móviles

Productos

Identidad como servicio

Identity Enterprise

Identity Essentials

Soluciones

Segunda Directiva Europea de Servicios de Pago (PSD2)

PIV

Acceso físico y lógico

Protegiendo su VPN

Usuarios con acceso a información privilegiada

Inicio de sesión en la estación de trabajo

Seguridad y acceso para contratistas

Bancos de consumidores

Portales de clientes

Ciudadano digital

Integración digital

Integración con CIAM

Filtración de datos

Mejorar la experiencia del usuario

Admitir diversos grupos de usuarios

Simplificando la TI

Verificación de transacciónes

Capacidades de la plataforma

Prueba de identificación

Reputación del dispositivo

Aprovisionamiento seguro de dispositivos

restablecimiento de contraseña

Emisión de credenciales

Autenticadores

Autenticación móvil

Inicio de sesión sin contraseña

Autenticación flexible

Single Sign-On

API/SDK

Detección de fraude

Productos

nShield Connect

nShield Edge

nShield Solo

nShield as a Service

HSM de emisión de nShield

CodeSafe