Upstream’s Centralized Connected Car Cybersecurity Platform

DAN SAHAR

VP of Products

[Transcript]

When we looked at the problem of how to secure a connected car, we had three goals in mind in building our solution. The first goal was that the solution had to be able to protect against remote attacks that are generated over the internet. The second goal was that we wanted to protect both the single vehicle as well as the entire vehicle fleet, expanding across multiple make models at the same time. And the third and final goal was that we wanted to be able to protect vehicles that are on the road today, not vehicles that are gonna leave the factory in two to five years’ time. So how do we go about solving this problem?

What we realized was that the only way to address all three of these requirements is by using the cloud. In the cloud, what we’re doing is we’re leveraging data that is already being collected by the OEMs and connected vehicles. The cloud also allows us to rapidly upgrade our software and make sure that we’re always two steps ahead of the hackers without having to rely on the upgrade cycles of the existing vehicles. Once installed, our platform collects data from all three of these sources. We start with data coming off of the TCU from the connected vehicles. We add typically the telematics server that’s hosted in the automotive cloud. And finally, we introduce the data coming off of the mobile application server.

This is the point where the Upstream cloud platform actually goes to work. What we do with all this data is we analyze it using advanced machine learning and big data analytics capabilities, and we model the entire connected car service. The platform understands what’s the normal behavior of both the application servers, mobile, telematics, any additional service, as well as the behavior of any given car within the connected car service. Once we understand what the normal behavior is, we’re now able to detect any violations, anything that’s outside of the norm. We define what normal is starting from the protocols that the automotive cloud uses, all the way up to the behavior of the app servers and the vehicles themselves.

Once we define what the norm is, we’re able to detect what is outside of the norm and use that information to create incidents. The incidents are then being consumed by the security operations center and the various security analysts that operate that. At the end of the day, our product is being used by the SOC team, the various security analysts. It gives them a new visibility that they never had before and the ability to detect incidents in real time and perform triage and root cause analysis, and actually get to the bottom of things that are happening in the connected car service.

Newsletter Icon

Subscribe
to our newsletter

Stay up-to-date on the latest trends, emerging risks, and updates

Don’t wait for warranty claims to pile up

Don’t wait for warranty claims to pile up. Using your connected vehicle data, repair order trends, and DTC analytics you can detect patterns before they…

More Details

Too many claims, not enough time

Too many claims, not enough time. Upstream helps you cut through the noise with AI-powered prioritization: ranking issues by impact, predicted cost, and severity so…

More Details

Speed matters when quality claims hit

Speed matters when quality claims hit. With Upstream’s proactive quality detection, you can accelerate root cause analysis by seeing every vehicle in full context: claims,…

More Details

Turn complex vehicle data into instant answers

Turn complex vehicle data into instant answers with Upstream’s Ocean AI. See how “talking to your data” makes analysis simple. Ask questions, spot issues, set…

More Details

프랑스어 요약 – 모빌리티와 IoT의 미래 보안 및 강화

업스트림은 커넥티드 카, IoT, 스마트 모빌리티 데이터의 잠재력을 극대화합니다. 업스트림의 데이터 관리 플랫폼은 진화하는 사이버 위험으로부터 모�

More Details

모빌리티 분야의 사이버 위협에 대한 정보

실행 가능한 수정 권장 사항에 뒷받침된 실행 가능한 장치별 분석을 통해 모빌리티 위협 환경에 대한 탁월한 가시성을 확보하세요.

More Details
Skip to content