(c)iStock.com/gaspr13

Connected cars are on their way, and one of the main concerns is how to keep them secured so that hackers cannot gain access and control. It is estimated that within five to 10 years, a quarter of a billion cars worldwide will be connected cars.

Put simply, a connected automobile is one which contains the equipment for internet access and a wireless local area network. This creates an area in the car and directly around it where internet access can be shared between devices which are outside or inside the vehicle. Examples of devices which might interact with the car include smartwatches, smartphones, and smart home systems.

Before you worry too much, you should know that issues about car security have existed since 2010. This was the year that University of Washington and University of California researchers proved they could breach vehicle software systems to gain control of the vehicle. Currently, there are 112 million vehicles connected around the world.  Some car makers are attempting to use software to counter these attacks on connected cars. This still leaves a large gap in terms of cyber security, which the auto industry is striving to address.

The government is also taking a closer and more serious look at the issue of keeping cars hack-proof. The Government Accountability Office released a study last April recommending the Department of Transportation decide policy and plan responses to cyber-attacks on cars. The concern is that connected cars can be controlled by a hacker located anywhere if security is allowed to be breached. By control, this means the very driving abilities, the navigation system, and more.

One proactive car manufacturer is stepping security up a bit. With newer Toyota Camry cars their Entune suite of apps, games, music, internet connections will offer higher security encryption and of course regular updates. Toyota was once among the top five most easily and often connected cars to be hacked. Most car makers prefer to be circumspect about current and future connected car wireless security, and for good reason.

The connected car leaves itself open. That is why many governmental agencies and big name security firms are recommending a standardised level of protection against hacking for each connected car system. Researchers can identify which automobile makers need to improve their security, and where the security breaches can take place.

System-wide attacks will be harder to protect against. The DOT has started creating a new cybersecurity policy. The Federal Automated Vehicles Policy released by the DOT talks about cyber security in automated vehicles. It recommends specific actions be taken somewhat like a computer's antivirus program. First, detection should be 'real time' whenever the network is enabled. Second, response and recovery options should be initiated promptly. How that would work is something unknown today.

The Automotive Information Sharing and Analysis Center (Auto-ISAC) which has been active since January is a collective of car suppliers and representatives of the big name auto manufacturers. They recorded and charted cyber attacks on connected cars, and shared how they were handled. In July the collective brought out a report of what it considers to be the best practices for car manufacturers in identifying and dealing with connected car attacks. The NHTSA was supportive of the document and its ideas. The overall consensus among agencies, however, is that making a car cyber attack proof on a permanent level, with no risk of attack, would be unrealistic. 

Connected car owners can be more aware of the vulnerabilities with their systems, too. Just as with computers, knowing what should be running and what should not be running within your car can sometimes alert you to another user accessing your system. The remote entry fob which does not require a button press to unlock the car can be circumvented in a number of ways. One way makes the car signal amplified so that the key fob sitting in your house thinks you are at your car wanting it unlocked. A quick workaround for that is storing your key fob in the refrigerator. This works because the metal casing acts as a Faraday cage, not letting any signals in or out.

While the future of connected cars is essentially here, in the long term it is like any other technology. The longer you wait, the better it will work.

Leave a comment

Display name * Email address * Password * Password confirmation *

Job title * Company * Company size * 1 - 4 5 - 9 10 - 19 20 - 49 50 - 99 100 - 249 250 - 499 500 - 999 1000+ Country * United Kingdom Afghanistan Aland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Congo, The Democratic Republic of the Cook Islands Costa Rica Cote d'Ivoire Croatia Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands (Malvinas) Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran, Islamic Republic of Iraq Ireland Isle of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati Korea, Democratic People's Republic of Korea, Republic of Kuwait Kyrgyzstan Lao People's Democratic Republic Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia, The Former Yugoslav Republic of Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia, Federated States of Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory, Occupied Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Reunion Romania Russian Federation Rwanda Saint Barthelemy Saint Helena Saint Kitts and Nevis Saint Lucia Saint Martin Saint Pierre and Miquelon Saint Vincent and the Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and the South Sandwich Islands Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania, United Republic of Thailand Timor-Leste Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United States United States Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Viet Nam Virgin Islands, British Virgin Islands, U.S. Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe

I agree to the Terms and Conditions I would like to receive the newsletter Submit comment

log in

Alternatively

This will only be used to quickly provide signup information and will not allow us to post to your account or appear on your timeline.

Harry Maddox
27 Oct 2016, 2:58 p.m.

As much as I love technology, I still want to drive my Corvette or my Mustang 5.0. Consumers buy cars like this because they love to drive. I don't want to imagine a day when I hop into my sports car and it does all the driving for me. :(

Reply

Display name * Email address * Password * Password confirmation *

Job title * Company * Company size * 1 - 4 5 - 9 10 - 19 20 - 49 50 - 99 100 - 249 250 - 499 500 - 999 1000+ Country * United Kingdom Afghanistan Aland Islands Albania Algeria American Samoa Andorra Angola Anguilla Antarctica Antigua and Barbuda Argentina Armenia Aruba Australia Austria Azerbaijan Bahamas Bahrain Bangladesh Barbados Belarus Belgium Belize Benin Bermuda Bhutan Bolivia Bosnia and Herzegovina Botswana Bouvet Island Brazil British Indian Ocean Territory Brunei Darussalam Bulgaria Burkina Faso Burundi Cambodia Cameroon Canada Cape Verde Cayman Islands Central African Republic Chad Chile China Christmas Island Cocos (Keeling) Islands Colombia Comoros Congo Congo, The Democratic Republic of the Cook Islands Costa Rica Cote d'Ivoire Croatia Cuba Cyprus Czech Republic Denmark Djibouti Dominica Dominican Republic Ecuador Egypt El Salvador Equatorial Guinea Eritrea Estonia Ethiopia Falkland Islands (Malvinas) Faroe Islands Fiji Finland France French Guiana French Polynesia French Southern Territories Gabon Gambia Georgia Germany Ghana Gibraltar Greece Greenland Grenada Guadeloupe Guam Guatemala Guernsey Guinea Guinea-Bissau Guyana Haiti Heard Island and McDonald Islands Holy See (Vatican City State) Honduras Hong Kong Hungary Iceland India Indonesia Iran, Islamic Republic of Iraq Ireland Isle of Man Israel Italy Jamaica Japan Jersey Jordan Kazakhstan Kenya Kiribati Korea, Democratic People's Republic of Korea, Republic of Kuwait Kyrgyzstan Lao People's Democratic Republic Latvia Lebanon Lesotho Liberia Libyan Arab Jamahiriya Liechtenstein Lithuania Luxembourg Macao Macedonia, The Former Yugoslav Republic of Madagascar Malawi Malaysia Maldives Mali Malta Marshall Islands Martinique Mauritania Mauritius Mayotte Mexico Micronesia, Federated States of Moldova Monaco Mongolia Montenegro Montserrat Morocco Mozambique Myanmar Namibia Nauru Nepal Netherlands Netherlands Antilles New Caledonia New Zealand Nicaragua Niger Nigeria Niue Norfolk Island Northern Mariana Islands Norway Oman Pakistan Palau Palestinian Territory, Occupied Panama Papua New Guinea Paraguay Peru Philippines Pitcairn Poland Portugal Puerto Rico Qatar Reunion Romania Russian Federation Rwanda Saint Barthelemy Saint Helena Saint Kitts and Nevis Saint Lucia Saint Martin Saint Pierre and Miquelon Saint Vincent and the Grenadines Samoa San Marino Sao Tome and Principe Saudi Arabia Senegal Serbia Seychelles Sierra Leone Singapore Slovakia Slovenia Solomon Islands Somalia South Africa South Georgia and the South Sandwich Islands Spain Sri Lanka Sudan Suriname Svalbard and Jan Mayen Swaziland Sweden Switzerland Syrian Arab Republic Taiwan Tajikistan Tanzania, United Republic of Thailand Timor-Leste Togo Tokelau Tonga Trinidad and Tobago Tunisia Turkey Turkmenistan Turks and Caicos Islands Tuvalu Uganda Ukraine United Arab Emirates United States United States Minor Outlying Islands Uruguay Uzbekistan Vanuatu Venezuela Viet Nam Virgin Islands, British Virgin Islands, U.S. Wallis and Futuna Western Sahara Yemen Zambia Zimbabwe

I agree to the Terms and Conditions I would like to receive the newsletter Submit comment