Connectivity in an automotive makes it easier for the driver but also creates certain risks as well.
Connected vehicles hold tremendous potential for improving road safety while simultaneously reducing energy consumption and road congestion through data sharing over the next 10–15 years.
Unfortunately, that potential may never be realized unless there is a dramatic change in the way automakers and suppliers handle cyber security. The recently revealed security vulnerability in Fiat Chrysler Automobiles (FCA) products with Uconnect telematics systems demonstrates some of the flaws in the current landscape.
Wired.com recently ran a report highlighting a flaw in the Uconnect telematics system discovered by noted white hat security researchers Charlie Miller and Chris Valasek. The pair worked out how to remotely connect to the vehicle’s cellular modem, a key component of Uconnect and all other telematics systems. From there, they were able to access a port in the vehicle network that provided entry to vehicle control systems, including steering, braking, and other functions. The article noted that Miller and Valasek notified FCA and waited until a fix was developed before publicly disclosing the flaw. So far, so good.