The automotive industry is constantly evolving, with car manufacturers exploring the possibilities of autonomous vehicles and self-driving cars. Driverless technology is designed to last for several decades while relying on the same hardware components, equipment, and software technologies connected to the internet. Yet, this interconnectedness exposes them to inherent cybersecurity risks and vulnerabilities through a lack of control.

Cybersecurity threats include hackers remotely seizing control of the vehicle and data theft. In October 2019, a group of hackers learned to hack vehicle key systems by watching YouTube video tutorials[1]. Similar instances of car threats around the world, such as safety threats (airbag disablement) and privacy threats (car location can be disclosed), prove the failures of current automotive cybersecurity measures. As a result, “consumer skepticism over self-driving cars is still rampant as 75% of U.S. drivers would consider themselves wary of riding in an autonomous vehicle” [2].

According to the Wall Street Journal, in response to recent United Nation’s regulations, cybersecurity spending by the auto industry is forecasted to nearly double from $4.9 billion this year to $9.7 billion in 2030[3]. Vehicles will include built-in cybersecurity measures and forensic technology, pending approval from manufacturers, suppliers, and national authorities on each car. The Wall Street Journal cites that United Nations’ regulations have caused the industry and consumers to “guarantee their suppliers also implement cybersecurity measures, and will be required to have forensic technology in place to analyze attempted cyberattacks.”  

The Solution: Cryptography– the heart of cybersecurity

Cryptography is an area of cybersecurity which aims to maintain confidentiality, integrity and authenticity of information within our connected world. This is the foundation to maintain data privacy and driver’s safety within connected vehicles. Cryptography is aging and must be periodically updated to maintain an appropriate level of compliance and security.  During its lifespan, a connected vehicle must ensure that its cryptographic capabilities can seamlessly evolve in parallel to upcoming threats (e.g. quantum computers or new sovereign cryptographic regulations). By adopting cryptographic agility principles, driver privacy, safety and compliance with regulations will be maintained for the long term.

How can InfoSec Global help you?

InfoSec Global specializes in cryptographic solutions, delivering products and services that secure data while helping governments and enterprises achieve trust through compliance to cryptographic regulations worldwide.

InfoSec Global has unique capabilities in the field of cryptographic agility and enabling long-life systems to adapt their cryptographic foundation to upcoming threats and regulatory changes. ISG’s technologies empower connected vehicles with cryptographic agility from the software to the hardware level without impacting performances neither user’s experience. ISG is composed of leading experts in the field of post-quantum cryptography (part of NIST PQC round 3*) that are shaping the global transition to future-proof, agile and quantum resistant connected vehicles.

For more information about automotive cybersecurity and encrypted solutions, visit our website to schedule a demo and follow us on LinkedIn.


[1] https://cybersecuritymag.com/cybersecurity-automotive-industry/

[2] https://blog.aertech.com/cybersecurity-and-autonomous-vehicle-technology

[3]https://www.wsj.com/articles/u-n-rules-require-cybersecurity-guarantees-for-connected-cars-11594287001

Crypto-Agility. Why Now?