Navigating the Data Privacy Landscape for Autonomous and Connected Vehicles: Implementing Effective Data Security
Wednesday, May 18, 2022
Implementing Cyberattack Prevention Plans for Autonomous Cars
Print Mail Download i

Autonomous vehicles can be vulnerable to cyber attacks, including those with malicious intent. Identifying an appropriate framework with policies and procedures will help mitigate the risk of a potential attack.

The National Highway Traffic Safety Administration (NHTSA) recommends a layered approach to reduce the likelihood of an attack’s success and mitigate ramifications if one does occur. NHTSA’s Cybersecurity Framework is structured around the five principles of identify, protect, detect, respond and recover, and can be used as a basis for developing comprehensive data security policies.

NHTSA goes on to describe how this approach “at the vehicle level” includes:

  • Protective/Preventive Measures and Techniques: These measures, such as isolation of safety-critical control systems networks or encryption, implement hardware and software solutions that lower the likelihood of a successful hack and diminish the potential impact of a successful hack.

  • Real-time Intrusion (Hacking) Detection Measures: These measures continually monitor signatures of potential intrusions in the electronic system architecture.

  • Real-time Response Methods: These measures mitigate the potential adverse effects of a successful hack, preserving the driver’s ability to control the vehicle.

  • Assessment of Solutions: This [analysis] involves methods such as information sharing and analysis of a hack by affected parties, development of a fix, and dissemination of the fix to all relevant stakeholders (such as through an ISAC). This layer ensures that once a potential vulnerability or a hacking technique is identified, information about the issue and potential solutions are quickly shared with other stakeholders.

Other industry associations are also weighing in on best practices, including the Automotive Information Sharing and Analysis Center’s (Auto-ISAC) seven Key Cybersecurity Functions and, from a technology development perspective, SAE International’s J3061, a Cybersecurity Guidebook for Cyber-Physical Vehicle Systems to help AV companies “[minimize] the exploitation of vulnerabilities that can lead to losses, such as financial, operational, privacy, and safety.”

© 2024 Varnum LLP

Current Legal Analysis

More from Varnum LLP

Effective July 1, DOL Increases the Salary Threshold Required for Most White-Collar Exemptions
by: Luis E. Avila , Maureen Rouse-Ayoub
New FTC Rule Bans Most Non-Compete Agreements
by: Seth W. Ashby , Maureen Rouse-Ayoub
U.S. EPA Designates PFAS Chemicals as CERCLA Hazardous Substances
by: Matthew B. Eugster , Kyle P. Konwinski
Student Loans and Educational Benefits
by: Charles M. Russman , Carolyn M. H. Sullivan
EPA PFAS Rule Imposes New Requirements on Public Water Systems
by: Matthew B. Eugster , Christopher J. Biggs
Preparing for Michigan Liquor License Renewal 2024-2025
by: Christopher P. Baker , Jailah D. Emerson
Department of Justice Ramps Up Investigations of Private Clubs that Received PPP Loans
by: Ronald G. DeWaard , Regan A. Gibson
Bridge Collapses and Contractual Uncertainty: Navigating Force Majeure
by: Scott J. Hill
IC3 Internet Crime Report Reveals Intensifying Cyberthreats in 2023
by: Joshua B. Feinberg
Tips to Avoid Common Retirement Plan Errors
by: Charles M. Russman , Carolyn M. H. Sullivan

Upcoming Legal Education Events

 

NLR Logo

We collaborate with the world's leading lawyers to deliver news tailored for you. Sign Up to receive our free e-Newsbulletins

 

Sign Up for e-NewsBulletins