Security News > 2021 > October > Today’s cars are mobile data centers, and that data needs to be protected
The integration of mobile communications, infotainment, geo-location, and emergency monitoring systems render cars as a connected device within a distributed mesh of different data services.
As manufacturers increase levels of system automation on the journey to fully autonomous vehicles, the volume of data generated and consumed by our vehicles will grow exponentially, as will the complexity of the code base on which the car depends.
Independent of our own data demand, our vehicles will also be communicating and receiving sensor and telemetry data with other vehicles to avoid collisions, with our smart cities to ensure an efficient journey time, and with the manufacturer to schedule maintenance and contribute to the next generation of car design.
To ensure the physical safety and data privacy of road users, a micro-segmentation approach to network design must be combined with hardware-based security that supports a zero trust approach to identity and access management, and isolation of critical data if the vehicle network is compromised, or the physical asset is stolen, sold, or recycled.
Confidential computing is already available today in the cloud and on-premises infrastructures that are used to securely process our private data and sensitive enterprise applications, including the type of AI workloads common to the control systems governing safe AV operation.
While securing data in use on-board the vehicle, the use of mutual attestation between AVs and data services in the cloud can also be used to establish segmentation boundaries and privacy of data used by external service providers.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/aNSNeeBTFqY/