3. International VDI Conference - IT Security for Vehicles 2017

Registration & welcome coffee

Opening Speech ConCarExpo at the ConCar Forum Stage:

Autonomous Driving, Digital Infrastructure & Mobility Solutions as Key Drivers for the Automotive Industry

Johannes Jungwirth, Chief Digital Officer, Volkswagen AG, Germany

Chair´s welcome and opening address

Dr.-Ing. H. Gregor Molter

I. Safety, Security & Privacy

No Need to fight the Cyber War alone! Auto-ISAC  an Information sharing for Vehicles Cyber Security

• Auto-ISAC and its five important cornerstones
• Collaboration instead of competition: Unique benefits for members
• The glance into the crystal ball: Auto-ISAC and the future of cyber security

Faye Francy, Executive Director, Automotive ISAC, USA

Pay or Stay! Ransomware against modern Vehicles

• Why are large-scale vehicle security attacks (still) seldom in real life?
• What is ransomware? Can it become a serious threat to modern vehicles?
• How can vehicles effectively protect against ransomware attacks?

Dr.-Ing. Marko Wolf, Head of Consulting & Engineering, co-author: Robert Lambert, both: ESCRYPT GmbH – Embedded Security, Germany

Development Department as a Hacker Space

• Only real automotive hacks should drive product development
• Vulnerabilities in the light of unintended and overlooked behavior
• Procedures and guidelines are mandatory but insufficient
• Hacker and “hacker” tools for vehicles are not available off the shelf 
• The benefit of security in development departments is Speed

Dipl.-Ing. Jürgen Belz, Senior Consultant Safety & Security, PROMETO GmbH, Germany

Networking & coffee break

Panel Discussion – The Triangle of Safety,  Security and Privacy and the Tensions between them:

How do we know that they exist and how can we simultaneously optimize the three of them?

Panelists:

Dr.-Ing. Marko Wolf, ESCRYPT GmbH – Embedded Security
Rasmus Robrahn, Independent Centre for Privacy Protection Schleswig-Holstein Daimler (invited)

Lunch & visit of the accompanying trade fair ConCarExpo

II. Vehicle Connectivity

Features of automotive Ethernet: A Security Perspective

• Automotive ethernet physics
• Features of modern automotive switches
• Secure network design

Dr. Olaf Krieger, Development Engineer for Ethernet- and IP-based in-vehicle Networks, Volkswagen AG, Germany

OTA Updates – What can go wrong?

• Concept and examples
• Threats and challenges
• Recommendation and best practices

Roger Ordman, Director Marketing, HARMAN Connected Services, Israel

Networking & coffee break

Message Authentication – Challenges and Attack Surface

• How message authentication is used to secure in-vehicle Networks
• Challenges for deploying message authentication on production vehicles
• Practical attacks which can be used to circumvent the protection offered by message authentication

Yuval Weisglass, Sr. Director, R&D, Automotive Cybersecurity – TowerSec, HARMAN Connected Car, Israel

III. On-Board Security Challenges

Performance of Cryptography in AUTOSAR based ECUs

• Performance of cryptography on state of the art MCUs
• Integration of modern crypto systems in AUTOSAR
• Incorporation of HSMs into automotive ECUs

André Himmighofen M.Sc., Project Manager, easycore GmbH, Germany

Chair´s remarks

Evening Keynote on the ConCar Forum Stage:

Volvo Cars Development of Autonomous Electrified Vehicles in Cooperation with Uber

Kent Melin, Senior Technical Leader, Electrical System Design, Volvo, Sweden

End of conference day one

Get-together with Participants of all parallel Conferences

At the end of the first conference day we kindly invite you to use the relaxed and informal atmosphere for in-depth conversations with other participants and Speakers.

III. On-Board Security Challenges

Example of Security Integration with E/E Architecture

• Cyber security requires some overhead and OEM needs to have solution
• Standardization would be an important aspect to reduce complexity
• E/E architecture level approach to mitigate security risk could be important
• Software oriented architecture will be important for future including security aspect
• New business model in software would require more security features

Kenji Hontani, Technical General Manager, Toyota Motor Europe NV/SA, Belgium

Usage of a Trusted Platform Module (TPM) to secure the central Gateway

• Role and requested functionality of the central gateway in a generic vehicle security architecture
• Suggestions regarding a potential security system partitioning (EVITA Hardware Security Module HSM & Trusted Platform Module TPM)
• Possible application of a TPM in the central gateway for on-board key generation & management, protected authentication of code updates as well as authorization of diagnosis access
• Summary of the benefits of the proposed system partitioning

Dr.-Ing. Florian Schreiner, Dipl.-Phys. Martin Klimke, Dipl.-Ing. Björn Steurich, all: Infineon Technologies AG, Germany
 

IV. The Security Perspective on major automotive Trends

Blockchain – The Technology the automotive Industry has been waiting for?

• Most influential blockchains
• Properties of blockchain technology
• Automotive blockchain use cases

Dr. Mathias Dehm, Head of Security & Privacy Research for Digital Services, co-author: David Noack, both: Continental Teves AG & Co. oHG, Germany

Networking & coffee break

Cyber Security in the Era of automotive Technology Disruption

• Present the impact associated with cyber security  
• Discuss the advent of disruption and how it contributes or helps the Problem
• Discuss collaboration efforts and status

Henry Bzeih BSEE/MBA, Managing Director, Connected & Mobility, KIA MOTORS AMERICA, USA

Roundtables: The IT Security Perspective on major automotive Trends

Organizational Information: All conference attendees find  their roundtable numbers on their conference ticket: Please only  visit the tables with your personal numbers so that all tables will be frequented equally.

Lunch & visit of the accompanying trade fair ConCarExp

Electric Vehicles, Artificial Intelligence and huge  Amounts of Data: What happens at Faraday Future in  regard to IT Security?

Michael Brouwer, Director & Chief Security Architect, Faraday Future, USA

V. Towards a more secure Automobile: Learning from other Industries

Cyber Security from a global Players‘ Perspective

• Threat intelligence for safety critical customers
• Customer threats and requirements
• The manufacturer perspective in the security process of Airbus

Michael Gerhards, Head of CyberSecurity, Airbus, Cassidian CyberSecurity GmbH, Germany

Cyber Insurance for industrial Control Systems: A comparative Examination of Market Development

• Understanding cyber risk for insurers
• The cyber insurance market and policy development in Germany
• International state of play in the US, UK and Switzerland

Dr. Tim Stuchtey, Executive Director, Brandenburg Institute for Society  and Security, Tyson Barker, Program Director and Fellow, Aspen Institute,  both: Germany

A Survey of Healthcare Cyber Security Practices: What can be learned from one of the most targeted Industries?

• Understanding the new world order of cyber security
• Challenges to securing complex systems and organizations
• Applying healthcare lessons learned to autonomous vehicle cyber security
• Developing a path Forward

John Gomez, CEO, Sensato Cybersecurity Solutions, USA

Farewell coffee in the accompanying trade fair ConCarExpo

End of conference