Conference

2. VDI Conference - IT Security for Vehicles

International Conference IT Security in Vehicles

Innovative technologies, connected and autonomous cars are changing the tasks and services of the automotive industry. Traditionally, car makers had to make sure that drivers, car passengers and vehicles are safe by integrating tangible protection devices in the cars. However, recently it has been shown that hackers can access a vehicle’s IT and take over control from outside. At this international conference on IT security for vehicles possibilities on how to protect the IT of cars as well as the current state of the industry will be discussed.

Carmakers need to handle current in-vehicle cyber security threats, weaknesses and risk

Only a few weeks ago, Charlie Miller and Chris Valasek (speaker at our conference IT Security for Vehicles 2015) showed that they are able to hack into a jeep and send commands through the car’s entertainment system to its steering, transmission and brakes – all from their laptop. Thus, attackers can get wireless control over cars – a carmaker’s nightmare. Therefore, it is essential that the automotive and the IT industry discuss how to prevent such manipulations via a car’s IT system. Moreover, other sensitive areas such as the collection and abuse of driver’s data need to be addressed. Privacy and data protection have high priority for car makers and their customers. Talk about key questions with international experts at our event.

Your benefits

  • Meet international experts of the automotive and IT industry
  • Hear about challenges and existing solutions
  • Learn more about cryptography developments
  • Discuss data protection and privacy implications
  • Prepare for future requirements

Topics of the Conference

The 2nd International VDI Conference IT Security for Vehicles 2016 will deal with the following topics:

  • Security weaknesses in connected and automated cars
  • Software- and hardware attacks and responses to threats
  • Cryptography and ethernet technologies
  • Standards for automotive IT security
  • Information sharing for increased safety vs. privacy and data protection

The Conference Chair is Dr.-Ing H. Gregor Molter, Head of Automotive Security and Privacy Research, Continental AG.

Download Program PDF

Wednesday, June 29

08:30

Registration & welcome coffee

09:30

Opening Speech ConCarExpo at the ConCar Forum Stage
The new Era of the Automotive Industry – Digital Revolution and
fully Automated Driving

  • Changes in the automotive industry over the next years
  • The way to fully automated driving
  • Common challenges for the automotive, CE and IT industry

Dipl.-Inf. Elmar Frickenstein, Senior Vice President Electrics/Electronics
and Driver Environment, BMW Group, Munich, Germany

10:00

Chair´s welcome and opening address

Dr.-Ing. H. Gregor Molter, Head of Automotive Security and Privacy
Research, Continental AG, Frankfurt, Germany

10:10

ISO Standardization of Automotive Security Engineering (tbd)

  • Goals of the Standardization Initiative
  • Scope and provisional structure
  • Challenges and options

Dr. Gido Scharfenberger-Fabian, Development Engineer, Research &
Development, Carmeq GmbH, Berlin, Germany

10:50

Secure SOTA – A Comprehensive Cyber Security Framework

Dr. André Weimerskirch, Associate Research Scientist, Mobility
Transformation Center (MTC), Transportation Research Institute (UMTRI),
University of Michigan, Ann Arbor, MI USA

11:00

OTA Updates – Lessons Learned

Roger Ordman, Director, Marketing, HARMAN International, Tel Aviv,
Israel, co-author: Rudolf von Stokar, HARMAN, Redbend, Munich, Germany

11:10

The Commercial Impact of OTA

Dipl. Inform. (FH) Jürgen Daunis, Sales Director Automotive, Ericsson
GmbH, Dusseldorf, Germany

11:20

Panel Discussion: Demystifying Software
Updates – Myth, Fact, and Lessons in Success

Moderator: Beau Woods, Cyber Safety Advocate,
I Am The Cavalry, Atlanta, Georgia, USA

Panelists: Dr. André Weimerskirch, Roger Ordman,
Dipl. Inform. (FH) Jürgen Daunis

12:10

Lunch & visit of the accompanying trade exhibition ConCarExpo

14:10

Security of Connected Cars from
a Hacker´s Perspective

  • Think like a hacker
  • Attack vectors in connected cars and attacker methodologies
  • Common vulnerabilities we have seen
  • Defenses and looking into the future

Corey Thuen, Senior Security Consultant, Hackers, IOActive, Seattle, WA, USA

14:50

New Directions of Hardware Based Cryptographic Modules
for Modern Cars

  • Changes in the world of cryptography for cars
  • Ideas for freely available Hardware Security Modules (HSMs)
  • Open source/open hardware

Prof. Dr. Steffen Reith, Professor, Institute Theoretical Computer Sciences,
Hochschule Rhein Main, Wiesbaden, Germany

15:30

Hardware Security Modules in Automotive Software Projects

  • Technical basics
  • HSMs as a secured environment
  • Software concepts and performance considerations

André Himmighofen, M.Sc., Project Manager, Software Development,
Easycore GmbH, Erlangen, Germany

16:10

Networking & coffee break

16:40

TPM 2.0 for Securing Automotive Electronic Control Units

  • Requirements for hardware-security-modules and software-stacks for
    securing vehicles
  • Addressing these requirements with TPM 2.0 and TPM software stack
  • Functional profiles and implementation choices
  • Example use cases: Remote firmware up-date, piracy- and privacy-protection

Prof. Dr. Christoph Krauß, Head of Department Cyberphysical Systems
Security, Fraunhofer Institute for Secure Information Technology SIT,
Darmstadt, Germany

17:20

Automotive Security – An Update on Standardization
in AUTOSAR

  • New market trends forcing the automotive industry to progressively
    consider security aspects in their products
  • Motivation for standardization
  • Overview on supported security features and functions in the standard
  • Outlook to future security activities in AUTOSAR

Dipl.-Ing. Adrian Baruta, Senior Control Engineer, Vehicle Control Group
Electronics Engineering, Toyota Motor Europe, Zaventem, Belgium

18:00

Privacy Preservation in Driverless Cars

  • Demand for privacy and driverless complications
  • Potential solutions to complicated demand
  • Example on privacy preserving systems
  • Future Outlook

Davi Ottenheimer M.Sc., President, flyingpenguin, San Francisco,
California, USA

18:40

Chair´s remarks

18:50

End of conference day one and Get-together

At the end of the first conference day we kindly invite you to use the
relaxed and informal atmosphere for in-depth conversations with
other participants and Speakers.

Thursday, June 30

08:40

Privacy and Data Protection

  • Legal up-date on privacy and data protection issues
  • How will the EU Commission promote a European data economy
  • Data-related business aspects for connected cars and automated driving

Dr. Florent Frederix, Principal Administrator, Trust and Security Unit,
Directorate-General for Communications Networks, Content and Technology,
European Commission, Brussels, Belgium

09:20

Ring Signatures and Anonymous Credentials aimed to
Privacy Preserving Authentication in Car2X Communication

  • Anonymous credential systems
  • Application-specific authorization tickets
  • Vehicular ad-hoc networks and ring signatures
  • Anonymous Car2X communication protocol:
    Experimental validation results

Prof. Dr.-Ing. Sorin Alexander Huss, Professor Computer Science i.R.,
TU Darmstadt, co-author: Dipl.-Inform. Carsten Büttner, Adam Opel AG,
Rüsselsheim, Germany

10:00

Networking & coffee break

10:20

Secure Integration and Operation of a Vehicle
Communication Gateway

  • Attacks on connected vehicles
  • Intrusion detection and intrusion response mechanisms
  • Trusted software and secure over-the-air updates
  • Secure in-vehicle communication

Dr.-Ing. Norbert Bißmeyer, Security Engineer, Research and Development,
ESCRYPT GmbH, Bochum, Germany

11:00

Wireless Link – The weakest Link in the Chain?

  • What are out-of-bound attacks?
  • The challenge to connected car security
  • Security life cycle and the role of detection
  • Wireless intrusion – detection and mitigation

Yuval Weissglas, Co-Founder & CTO, TowerSec, Ann Arbor, Michigan, USA

11:40

Lunch & visit of the accompanying trade exhibition ConCarExpo

13:30

Anonymity and Security in a Scalable Cloud Environment

  • Service to ensure anonymity
  • New Services that demand to know the driver
  • The effect of DevOps on software quality and security
  • Securing the clout IT campus

Dipl.-Ing. (FH) Thomas Fleischmann, Head of Department, Connected Car,
Elektrobit Automotive GmbH, Erlangen, Germany

14:10

Cloud as an Enabler for Elasticity in Telematics Services –
Comes with Challenges from the Cyber Security Perspective

  • Monitoring
  • Identity and Access Management (IAM)
  • Legal issues: Compliance, data protection and SLAs
  • Incident response and forensics
  • Auditing

Jonas Halldin, Information Security Architect, co-author: Ola Dawidson,
Ph.D., M.Sc., Volvo Group Telematics, Gothenburg, Sweden

14:50

Networking & coffee break

15:20

Applying Lessons Learned in Cyber Security to Vehicles

  • Cyber security
  • Attacks and countermeasures
  • Risk mitigation

Marc Hammond, Senior Manager, IOE Security Services, Cisco, Chicago, IL, USA

16:00

Automotive Cyber Security Testing and Validation

  • Security testing and validation as part of the automotive
    cyber security lifecycle
  • How is security test different from other kinds of testing?
  • What testing activities are appropriate?
  • Security validation and assurance

Paul Wooderson, Senior Functional Safety/Cyber Security Engineer, Systems
and Safety, HORIBA MIRA Ltd., Warwickshire, United Kingdom

16:40

Future Automotive Security

  • Authentication and authorization with convenience:
    From NFC to biometrics
  • Real end-to-end view on integrated safety & security
  • Cyber security within the vehicle

Dipl.-Oek. Mark Großer, Managing Consultant – Leader Risk, Security &
Compliance, Cluster Industry, Detecon International GmbH, Germany
Ari Teman, CEO, Friend or Fraud, USA

17:20

Chair´s closing remarks

17:30

End of conference

Who should attend the 2nd International VDI Conference IT Security for Vehicles?

This international event provides a professional forum for experts from all over the world who work in the field of automotive security. It is directed at:

  • Industry-leading Engineers, Technologists, Developers and Specialists from car makers and suppliers of the automotive industry
  • Automotive IT Managers, Specialists, Researchers and Consultants from Engineering IT, Cyber Security, Electric/Electronic and Telematics

Visit three other interesting conferences and the ConCarExpo

You will have the chance to visit the international conferences Safety SystemsAutomated Driving and HMI & Connectivity as well as the new international trade fair ConCarExpo which are taking place at the same time. Benefit by meeting experts and participants of the other conferences during our networking breaks and evening reception.

Media partners

Logo Bitkom
Bitkom
Logo VDI e.V.
VDI e.V.
Logo CVTA
CVTA
Logo ITS Deutschland
ITS Deutschland