Automotive & Vehicle Security
The automotive industry has officially entered the 21st century – but is it ready for 21st century threats?
Today’s average car has 100 microprocessors, 50 electronic control units, 5 miles of wiring, 100 million lines of code, and is connected to the internet. Yet, the security of automobiles is of highest priority because there is real potential for harm if it is not done right.
Although VDA Labs serves a variety of clients from across the globe, VDA was founded in Michigan – and Detroit (and the auto industry) is in our backyard. VDA’s team of experts is passionate about finding weaknesses in complex systems, and has the experience to pull it off.
Interested in automotive cyber security testing services?
Why does automotive information security matter?
Cars and trucks are becoming almost as reliant on code as they are on gasoline (or electricity), which means that the attack surface area that can be exploited is growing rapidly. Looking at a vehicle as a complete system, there may be as many as 6 different wireless interfaces alone which could lead to compromise: Cellular, WiFi, Bluetooth, Remote Key, Passive Key, and TPMS.
But that’s not all: the car is in someways like an endpoint (laptop, etc) in a coporate network. It has apps, is connected to corporate infastructure, and could be monitored and exploited in unexpected ways. Here’s a VDA prediction that may surprise you: the next big Auto breach we hear about is likely to come from connected infastructure, rather than CAN bus messages.
Hardware and Firmware Inspection
In automotive electronics, the electronic control unit (ECU) is any embedded system that controls one or more of the electrical system or subsystems in a vehicle. Each of these computers is on the CAN bus, and needs to be secure in design, implementation, and robust against attacks of all kinds.
Operating System and Application Security
API and Web Server Security
Network Penetration Testing
Because automotive is really an ecosystem of networked vehicles, web services, authenticated diagnostics, and more – it is important to have a penetration testing team that understands every part of today’s connected world. Very few firms offer a complete skill set: everything from penetesting, app review, reverse engineering, isolation escapes, to CAN testing – VDA has the skills to conduct a complete automotive penetration test.
Don't Be Shy
We would love to hear from you - send us an email from our contact page!