ITU Automated Vehicle Communications Working Group Talks Software Vulnerability Concerns, Standards

automated vehicles. Attendees also discussed a report from the Society of Automotive Engineers (SAE), which attempts to provide a taxonomy for the various levels of motor vehicle automation. Barbara Wendling, Volkswagen of America safety regulatory policy manager, said SAE is pushing for widely recognized standards in the ITS space, because “it doesn’t serve the community well to have competing standards.” Representatives of Japan’s National Institute of Information and Communications Technology (NICT) introduced a draft recommendation to increase security measures for remote software updates of ITS devices. Masashi Eto, an NICT researcher, said the remote updating of automated vehicle software poses many security risks, and proposed a structure to limit potential breaches. The structure would include increasing the amount of message filtering and adding additional security protocols and notification measures to ensure tampering can be detected. Russell Shields, Ygomi chairman and ITS World Congress board member, echoed Eto's concerns of software vulnerabilities in connected vehicles, saying it's “one of the most critical security risks” in ITS, and it can be hard to limit the introduction of malware into a car, since it's not difficult to physically access a vehicle. “This is a major, open issue that we are trying to solve," he said. Eto said the draft recommendation is under consideration by the Collaboration on ITS Communication Standards committee.