Presentation is loading. Please wait.

Presentation is loading. Please wait.

Software Security WP29 IWG ITS/AD 3-11-2015 Document No. ITS/AD-06-09 (6th ITS/AD, 3 November 2015, agenda item 3-3)

Published byJody Osborne Modified over 8 years ago

Similar presentations

Presentation on theme: "Software Security WP29 IWG ITS/AD 3-11-2015 Document No. ITS/AD-06-09 (6th ITS/AD, 3 November 2015, agenda item 3-3)"— Presentation transcript:

1 Software Security WP29 IWG ITS/AD 3-11-2015 Document No. ITS/AD-06-09 (6th ITS/AD, 3 November 2015, agenda item 3-3)

2 Dangerous? Kristina Svechinskaya, creator Zeusbot, stolen 35 million euro

3 Definition Security Security = certain level of - confidentiality - integrity - availability

4 Approval system principles Software Security is not yet included in testing/certification for type approval ?

5 Impact software security Security affects safety, environment and functionality Proper security serves Liability and Privacy

6 Security threat increases More internet connected cars (and infra) More wireless More networks within vehicle More connection with Nomadic Devices Better tools for breaking codes Faster communication of hacking methods THERE IS AN INCREASING BUSINESS CASE

7 Aspects for security Architecture (hardware & software) Security level components (chips e.a) Software Process (SDLC) Software Updates (OTA? While driving?)) Memory capacity hardware Response time Quality level components and data

8 Proposal to proceed Decide that software security should be part of Type Approval requirements Develop a seperate (modular) Regulation for Software security Determine Security requirements, preferably based on existing standards Define a flexible process to support future developments/requirements

9 Considerations Find the right balance Distinguish between software function: - safety: high - environment: medium - other (e.g. infotainment): non If software combines functions, the highest level should be realized Practical useSecurity level

10 Considerations (2) Importance of data analysis (surveillance) will increase as part of approval How about “self-learning software”

11 Thoses who surrender freedom for security will not have, nor do they deserve, either one (Benjamin Franklin, 1706-1790) Thank you for your attention Peter Striekwold

Download ppt "Software Security WP29 IWG ITS/AD 3-11-2015 Document No. ITS/AD-06-09 (6th ITS/AD, 3 November 2015, agenda item 3-3)"

Similar presentations

IHRA-ITS UN-ECE WP.29 ITS Informal Group Geneva, March, 2013 Overview of International Activities to Limit Distraction Document No. ITS-21-06 (21st ITS,

IHRA-ITS UN-ECE WP.29 ITS Informal Group Geneva, March, 2013 Overview of International Activities to Limit Distraction Document No. ITS (21st ITS,
ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.

ICS 417: The ethics of ICT 4.2 The Ethics of Information and Communication Technologies (ICT) in Business by Simon Rogerson IMIS Journal May 1998.
FIA Protection Against Mileage Fraud by Common Criteria UNECE 2015-05-05 Informal document GRSG-108-37 (108th GRSG, 4-8 May 2015, agenda item 3)

FIA Protection Against Mileage Fraud by Common Criteria UNECE Informal document GRSG (108th GRSG, 4-8 May 2015, agenda item 3)
Submitted by the experts from the informal working group on R-55 Informal document GRRF-79-03 (79th GRRF, 16 – 20 February 2015, agenda item 4) R55: Performance.

Submitted by the experts from the informal working group on R-55 Informal document GRRF (79th GRRF, 16 – 20 February 2015, agenda item 4) R55: Performance.
SELECTING TABLETS FOR ENTERPRISE USE TABLET COMPUTER SELECTION.

SELECTING TABLETS FOR ENTERPRISE USE TABLET COMPUTER SELECTION.
IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany IHP Im Technologiepark 25 15236 Frankfurt (Oder) Germany www.ihp-microelectronics.com © 2013 -

IHP Im Technologiepark Frankfurt (Oder) Germany IHP Im Technologiepark Frankfurt (Oder) Germany ©
Principles of Information Security, 2nd Edition1 Introduction.

Principles of Information Security, 2nd Edition1 Introduction.
Mobile Computing in Society Jared Sutherland CIS 497

Mobile Computing in Society Jared Sutherland CIS 497
Innovation and Technology Transfer Diogo Mendonça João Sousa M. Sc. Programme – “ Enginnering Policy and Management of Technology”, 2001 Lesson 6 - Lecture.

Innovation and Technology Transfer Diogo Mendonça João Sousa M. Sc. Programme – “ Enginnering Policy and Management of Technology”, 2001 Lesson 6 - Lecture.
Information Systems Security Computer System Life Cycle Security.

Information Systems Security Computer System Life Cycle Security.
Version 4.0. Objectives Describe how networks impact our daily lives. Describe the role of data networking in the human network. Identify the key components.

Version 4.0. Objectives Describe how networks impact our daily lives. Describe the role of data networking in the human network. Identify the key components.
Brussels, 1 June 2005 WP2005-2006 Strategic Objective 2.5.3 Embedded Systems Tom Bo Clausen.

Brussels, 1 June 2005 WP Strategic Objective Embedded Systems Tom Bo Clausen.
Computer Networks S3 Prepared by May Lau

Computer Networks S3 Prepared by May Lau
Component 6 - Health Management Information Systems Unit 2-2 -Hardware and Software Supporting Health Information Systems.

Component 6 - Health Management Information Systems Unit 2-2 -Hardware and Software Supporting Health Information Systems.
OBJECT ORIENTED SYSTEM ANALYSIS AND DESIGN. COURSE OUTLINE The world of the Information Systems Analyst Approaches to System Development The Analyst as.

OBJECT ORIENTED SYSTEM ANALYSIS AND DESIGN. COURSE OUTLINE The world of the Information Systems Analyst Approaches to System Development The Analyst as.
Chapter 01: Introduction to Network Security. Network  A Network is the inter-connection of communications media, connectivity equipment, and electronic.

Chapter 01: Introduction to Network Security. Network  A Network is the inter-connection of communications media, connectivity equipment, and electronic.
history, hardware, software, safety, and computer ethics

history, hardware, software, safety, and computer ethics
1 ISA&D29-Oct-13. 2 ISA&D29-Oct-13 Systems Analyst: problem solver IT and Strategic Planning.

1 ISA&D29-Oct ISA&D29-Oct-13 Systems Analyst: problem solver IT and Strategic Planning.
Office of Campus Information Security Driving a Security Architecture by Assessing Risk Stefan Wahe Sr. Information Security Analyst.

Office of Campus Information Security Driving a Security Architecture by Assessing Risk Stefan Wahe Sr. Information Security Analyst.
Project Scope Management Information Technology Project Management, Fifth Edition Note: some slides have been removed from the author’s original presentation.

Project Scope Management Information Technology Project Management, Fifth Edition Note: some slides have been removed from the author’s original presentation.

Similar presentations

Ads by Google