Software-Defined Vehicles: Navigating the Challenges of Cybersecurity

Consumer CompactElectrical and ElectronicsJuly 03, 2024

Software is at the heart of the modern automotive industry. Vehicles rely on software for everything from engine management to infotainment, ensuring the driving experience is smooth, safe and efficient. However, this dependence on software also makes modern vehicles susceptible to cyberattacks.

We expect connectivity in our homes, at work, and even in our pockets, so why not in our vehicles? The modern vehicle is now more than simply a means of transport; it is an integral part of our digital world.

What is an SDV?

Software-defined vehicles (SDVs) are the latest evolution in automotive history. The term encompasses any vehicle where software is crucial for operability, turning it into a platform for the collection and organization of data. This data is then used for several purposes:

Driver assistance systems
Autonomous driving
Sensors
Voice control systems
Internet connection
Inter-vehicle connection
Over-the-air (OTA) remote updates to vehicle systems

SDVs constantly interact with the environment around them, learning and supporting service-based models while onboard electronics become high-performance computers that enable a level of autonomous functionality in the vehicle.

A key strength of this approach is that hardware and software are separated, thereby making it easier to update and upgrade the systems that control our vehicles.

Cybersecurity risks

Wherever connected technologies are employed, cyberattacks are a concern. This is particularly pertinent when the impact of a system failure could be catastrophic. For example, if the software in an SDV fails to function properly because it is not adequately protected, there could be a range of outcomes. At one end of the risk scale, the engine could misfire, or an onboard navigation system could stop working. At the other end however, the driver could lose control, making the vehicle a danger to everyone on the road.

The only way to guard against cyberattacks is to stop hackers from accessing the system. However, SDVs are not closed-loop systems and there are many entry points to exploit – Wi-Fi, Bluetooth, OTA, etc.

Responses

Growing awareness of the vulnerabilities of hardware to cyberattacks has resulted in a sharper focus on the security of chips. Several legislative initiatives are being introduced to emphasize security through methodologies that focus on the complete product life cycle. For example, the EU’s Cyber Resilience Act (CRA) and the US Cybersecurity and Infrastructure Security Agency’s (CISA) hardware bill of materials (HBOM) framework.

These bills seek to force change, making adequate cybersecurity provision a central part of every product. For example, under the CRA, companies found to be in non-compliance risk a fine of EUR 15 million or 2.5% of global turnover.

The automotive sector advocates a ‘security by design’ approach, as exemplified by standards such as ISO/SAE 21434 – Road Vehicles — Cybersecurity Engineering. The traditional method of testing finished hardware and software is simply not sufficient to respond to modern threats. Instead, designers and manufacturers need to facilitate and strengthen a mindset where security is considered at all stages of the lifecycle by working with verification teams and cybersecurity experts throughout development.

One risk in terms of cybersecurity is a system-wide breakdown where the complete computer architecture of the vehicle fails. The SDV approach can be an advantage in stopping this possibility because hardware and software are separated. Since each system is isolated, for example, the engine management system does not directly interact with the infotainment system, and so if one is attacked, the problem cannot automatically spread to the rest of the vehicle.

Ensuring security in SDVs

While there is always an element of risk versus cost when considering cybersecurity, effective mitigation requires both hardware and software to be, at a minimum, compliant with recognized standards.

Hardware components (microcontrollers, sensors, communications modules, etc.) should be evaluated against industry-specific standards and guidelines to ensure the necessary security features and resistance to tampering while still enabling operability in all conditions. Software components (operating systems, middleware and applications) benefit from evaluation and certification that covers code reviews, vulnerability assessments, and testing against security benchmarks. This will identify potential vulnerabilities and/or demonstrate compliance with industry standards.

The finished SDV should also undergo integrated system certification to ensure the overall security and integrity of the full platform. Evaluating the interaction and interoperability of the different components within the SDV provides an overall assessment of the platform’s resistance to cyberattacks.

However, each evaluation is a moment-in-time assessment of the SDV’s cybersecurity and it cannot consider unknown future threats. Therefore, certification should be a continuous process that ensures compliance throughout the life cycle of the SDV. Manufacturers and developers must establish mechanisms for continuous monitoring, vulnerability management, and compliance auditing to identify and address emerging cybersecurity risks and maintain certification requirements.

Compliance with standards such as ISO/SAE 21434 and ISO 26262 for functional safety is essential for demonstrating the safety and security of the SDV. It is also partly a regulatory requirement in some territories.

Incorporating hardware and software component certification into the development and deployment of SDVs essentially enhances cybersecurity resilience; mitigating vulnerabilities and ensuring regulatory compliance while building trust among consumers.

SGS solutions

SGS Brightsight offers a range of automotive cybersecurity testing and certification solutions, covering everything from complete vehicles to hardware, software and integrated systems. We support manufacturers and developers at every stage of the SDV life cycle, from pre-evaluation, including IATF 16949 pre-audits and technical system development life cycle (SDLC) advice, to post-evaluation, with testing and certification solutions that ensure continued compliance.

We offer comprehensive security evaluation services against all relevant standards:

IATF 16949 – automotive quality management systems
Trusted Information Security Assessment Exchange (TISAX^®)
ISO 9001 – quality management systems
IATF 16949 – automotive quality management systems
ISO/IEC 27001 – information security, cybersecurity and privacy protection
ISO 26262 – road vehicles functional safety
ISO/SAE 21434 – road vehicles cybersecurity engineering
ISO/IEC 42001 – artificial intelligence (AI) management system
Car Connectivity Consortium (CCC) – digital key
Global Systems for Mobile Communications (GSMA) – embedded universal integrated circuit card (EUICC) security assurance (ESA)

In addition, we can provide test reports for UNECE Regulation 155 and 156.

The total global market for SDVs is expected to see exceptional growth in the next few years, rising from USD 35.8 billion in 2022 to USD 249.8 billion in 2032, a CAGR of 22.1%.¹ To maintain market access and ensure the safety of road-users, manufacturers and developers of SDV must ensure their products conform to the highest standards for cybersecurity or there is a very real risk of noncompliance and consumer dissatisfaction.