Telemetries and Data | ISO/SAE 21434 and WP.29 CSMS

TEAM UPSTREAM

Collecting vehicle telemetries and vehicle data is super-important for securing the vehicle in post-production. The reason is that in post-production, we need to protect the vehicle against attacks that were known at the time of the vehicle development, but also against new attacks that were unknown while the vehicle was developed. And these new attacks are result of new attack techniques and new services that are being introduced to the market.

This is why CSMS actually requires the OEM to detect cyber attacks based on vehicle logs. And if you look specifically
at the requirement, in CSMS, it’s required to have detection, a centralized detection system that is based on vehicle logs, detects cyber attacks, and provides a response within a reasonable timeframe to these attacks.

In the Vehicle Type requirements, it’s required to secure critical elements in the vehicle, but also to emit meaningful telemetry that will enable this type of post-production detection for vehicles while they’re on the road.

And when you combine these two requirements, you get a very powerful way to detect attacks in a centralized manner as
part of the management system.

So, such a detection system really enables a very broad coverage of the threats listed in Annex 5 of the WP.29, but also because you collect telemetries from millions of vehicles, you really can create a very strong baseline that describes the normal
behavior of the vehicle and have an effective anomaly detection system that can also help detect unknown attacks.

Lastly, when you collect lots of telemetries, you can not only detect the attack, but you can apply forensics and really detect the root cause of the attack.

Newsletter Icon

Subscribe
to our newsletter

Sign up to receive updates delivered to your inbox

Upstream 2023 グローバルモビリティ サイバーセキュリティ報告書

弊社のサイバーセキュリティ研究者とアナリストは、2010年の時点で1,173件以上のインシデントを調査しており、それ以来、何百ものディープウェブ

More Details

Meet the Expert: Enhancing Investigations with AutoThreat®

Daniel Blum, Product Manager at Upstream Security, shows the integration between AutoThreat® and the Upstream Platform and how this connection empowers investigation teams by providing…

More Details

Automotive cybersecurity: A pre-requisite for connected and software-defined vehicles

The automotive industry is increasingly adopting mobility and cloud technologies, which enable seamless on-the-go experiences such as improved navigation, connectivity, and safety. There is also&helli

More Details

ASRG @ Upstream’s vSOC: IT SOC vs. Vehicle SOC

ASRG’s John Heldreth challenges Upstream’s Giuseppe Serio to explain the difference between the IT SOCs and emerging Vehicle SOCs.

More Details

ASRG @ Upstream’s vSOC: Upstream’s Cloud Approach to Protecting the Connected Vehicle Ecosystem

This is the second video in this exciting series shot in Upstream’s vSOC. In this video, ASRG’s John Heldreth deep dives into Upstream’s cloud-based and…

More Details

ASRG @ Upstream’s vSOC: The Role & Impact of vSOCs

This is the first video in this exciting series shot in Upstream’s vSOC. In this video, Upstream’s Yaniv Maimon and ASRG’s John Heldreth get together…

More Details