• Home
  • Automotive Cybersecurity Symposium
벡터 이벤트

2021-10-06 - 2021-10-07

virtual

Automotive Cybersecurity Symposium 2021

Since 2016, Vector's Automotive Cybersecurity Symposium has established itself as an industry meeting for experts from vehicle manufacturers, suppliers and research. In numerous presentations, the speakers explain current projects and present new solutions.

Looking Forward

4th Automotive Cybersecurity Symposium 2021

The next Automotive Cybersecurity Symposium will take place on October 06 and 07, 2021 in a virtual space.

Look forward to the latest information on ISO 21434 and CSMS, Learning Systems and Security, Fuzz and Pen Testing as well as Automotive Intrusion Detection Systems. You will experience presentations from ASRG, Bosch, IBM, Lear, Marquardt and Vector as well as a discussion round on current safety and security topics.

Agenda

Wednesday October 6, 2021
14:00 / 2 p.m.
CEST
ISO 21434 and CSMS in Practice
Oliver Huppenbauer | Marquardt
 
Experience of Tier 1 how to implement ISO/SAE 21434 into company and  how to integrate Cybersecurity into existing management systems.
15:00 / 3 p.m.
CEST
Grey-Box Penetration Testing for Full Life-Cycle Cybersecurity
Dr. Christof Ebert | Vector Consulting Services
 
Automotive electronics and enterprise IT are converging and thus open the doors for advanced hacking. With classic security testing, vulnerability detection is inefficient and incomplete. In this presentation, we show how an enhanced Grey-Box Penetration Test (GBPT) needs less test cases while being more effective in terms of coverage and indicating less false positives. We will show the systematic approach to GBPT and underline with industry experiences the take-aways.
16:00 / 4 p.m.
CEST
Automotive Safety and Security – Current Trends and Challenges
Stefan Kriso | Bosch
 
With the current trend towards automated driving, connectivity, and electrification we have to deal with new challenges in the area of vehicle safety. In the past we had a strong focus on functional safety (ISO 26262), but this will be no longer sufficient in future – other aspects of vehicle safety will become more and more important, for example SOTIF (safety of the intended functionality), security (especially the safety relevance of intended manipulations), safety regulations etc. Especially the trend that more and more support and functionality come from the infrastructure lead to new safety and security questions. For example, what if someone manipulates not the vehicle itself, but the environment of the vehicle? This presentation will give an overview over the current activities in the area of standardization and regulations and the activities which are required to ensure safe vehicles in future. It will give some examples how to deal with upcoming safety questions and how the different safety aspects could interact.
17:00 / 5 p.m.
CEST
Discussion Panel: How To Effectively Combine Cybersecurity and Safety
André Weimerskirch | Lear
Sven Schran | Bosch
John Heldreth | Automotive Security Research Group (ASRG)
Dr. Christof Ebert | Vector Consulting Services
 
 
Cybersecurity and functional safety are closely related and must be implemented together. However, this is challenging due to lack of combined methods but also due to different responsibilities in companies. This panel shows how cybersecurity and safety can be effectively implemented: Sustainably and cost-effectivly.

 

Thursday October 7, 2021
14:00 / 2 p.m.
CEST
Scalable Automotive Intrusion Detection Systems: From the ECU To the VSOC
Justus Reich | IBM und Dr. Eduard Metzker | Vector
 
 
  • Regulatory requirements drive the need for Intrusion Detection Systems (IDS)
  • A scalable automotive IDS solution from the ECU to the vehicle security operation center (VSOC) is required
  • A solution based on automotive standards and of-the-shelf IT software is reasonable
 
15:00 / 3 p.m.
CEST
Automated Threat Evaluation of Automotive Diagnostic Protocols
Nils Weiß | OTH Regensburg
 
 
Diagnostic protocols in automotive systems can offer a huge attack surface with devastating impacts if vulnerabilities are present. This presentation shows the application of active automated learning techniques for reverse engineering system state machines of automotive systems. The developed black-box testing strategy is based on diagnostic protocol communication. Through this approach, it is possible to automatically investigate a highly increased attack surface. Based on a new metric, introduced in this presentation, we are able to rate the possible attack surface of an entire vehicle or a single ECU. A novel attack surface metric allows comparisons of different ECUs from different OEMs, even between different diagnostic protocols.
16:00 / 4 p.m.
CEST
Fuzz Testing the ISO 15118 Protocol Stack
Tobias Schöneberger | Vector
 
 
The charging port is a new, externally accessible gateway for vehicle attacks, which requires systematic robustness and security tests of the ISO15118 interface.
The presentation displays how IP, TCP, TLS and EXI protocols can be tested automatically with the combination of fuzz and security tests. In focus is the test of TLS handshake and X509 certificates.
17:00 / 5 p.m.
CEST
Keeping Your ECU Secure Against Compromised Adaptive Applications
Udo Neitzel | ITK Engineering
 
 
The AUTOSAR Adaptive Platform (AP) enables the implementation of multiple tasks with different security objectives on a single ECU. Identity and Access Management (IAM) allows to assign access permissions on platform resources and services. We present the principles, architecture and application of IAM.
18:00 / 6 p.m.
CEST
ISO 21434 From a Software Supplier Point of View
Till Neudecker | Vector

Looking Back: 2020

Health and Safety First

Due to the COVID19 pandemic, the Automotive Cybersecurity Symposium 2020 unfortunately did not take place.

Nevertheless, we were able to present two interesting lecture at the 1st Vector Virtual Week on the topic of Automotive Cybersecurity:

Topics and Speakers
Standardization of Intrusion Detection Systems for Vehicles via an AUTOSAR Approach
Dr. Eduard Metzker, Vector
Video
Standards for Safety and Security: Efficient Usage in the Automotive Industry
Prof. Dr. Christof Ebert, Vector
Video

 

2019

3rd Automotive Cybersecurity Symposium

In April 2019 the Wagenhallen Stuttgart was the perfect venue for the Automotive Cybersecurity Symposium. In conjunction with the Automotive Ethernet Symposium and the Connectivity Symposium, about 200 E/E engineers and developers enjoyed 3 days of deep insights and know-how.

An overview of the lectures 

Topics and Speakers
Challenges in Automotive Cybersecurity for Automated Driving
Miriam Gruber, BMW
PDF Video
Automotive Intrusion Detection – Benefits of a Static E/E Architecture Combined with Machine Learning
Marc Weber, Vector
PDF Video
ISO 21434 - Current Status
John T. Krzeszewski, Aptiv
PDF Video
Cybersecurity Best Practice – From TARA to PenTest
Dr. Christof Ebert, Vector
PDF Video
Formal Security Analysis for Web Standards and Applications
Prof. Dr. Ralf Küsters, University Stuttgart
PDF Video
A Holistic Security Approach for the Connected Car
Thierry Maudire, Sysgo
PDF Video
Vector Security Manager for Secure Diagnostics
Max Lohmann, Vector
PDF Video
From Requirement to Standard Security Test – A Brief Introduction to the World of Security Testing
Christian Folda, Continental
PDF Video

2017

2nd Automotive Cybersecurity Symposium

In October 2017, the Sparkassenakademie in Stuttgart was our location for the Automotive Cybersecurity Symposium. We had a lot of interesting lectures from OEMs and suppliers and from Vector.

An overview of the lectures

Topics and Speakers
Automotive Anomaly Monitors and Threat Analysis in the Cloud
Dr. André Weimerskirch, Lear
PDF
Example of Security Integration with E/E Architecture
Yasuaki Morita, Toyota
PDF
Vehicle Key Management – Challenges for Standardization
Dr. Eduard Metzker, Vector Informatik GmbH
PDF
Trusted Platform Module – Automotive Applications and Demarcation from HSM
Martin Brunner, Infineon
PDF
Security of Connected Autonomous Cars
Prof. Dr. Frank Kargl, Universität Ulm
PDF
Systems Engineering and Security Challenges
Frank Kirschke-Biller, Ford
PDF
Vector Security Check – Tool-supported Security Assessment
Dr. Christof Ebert, Vector Consulting Services
PDF
Efficient Testing of ECUs Despite Security
Matthias Brenner, Vector Informatik
PDF
Pentesting Cars – Improving Security by Breaking it
Gerhard Klostermeier, SySS
PDF

2016

1st Automotive Cybersecurity Symposium

We were very excited to see if our first Automotive Cybersecurity Symposium in June 2016 would attract interest. By acquiring top-class speakers with a wide range of topics, all participants who made their way to the Liederhalle in Stuttgart were thrilled.

An overview of the lectures

Topics and Speakers
Keynote: Car IT Security as a Standard?
Lorenz Slansky, Daimler
PDF
DENSO on Security
Masahiro Goto & Martin Prisching, DENSO
PDF
Integration of Security Test Methods on Different Test Levels
Katharina Lohmann, Hella
PDF
Risk Based Security
Prof. Dr. Christof Ebert, Vector
PDF
Security for On-Board Ethernet-Networks
Dr. Christian Meineck, Porsche AG
PDF
Automotive Security Trends in North Amerika
Dr. André Weimerskirch, University of Michigan
PDF
Cyber Immunology: Inurement and Resilience through Design and Verification
Dietmar Hilke, Thales
PDF
Security by Cryptography: Current Status and Future Trends
Klaus Schmeh, Cryptovision
PDF
Security Aspects for Software updates Over The Air (SOTA)
Axel Freiwald, Infineon
PDF
From Threats to Technical Security Mechanisms
Dr. Eduard Metzker, Vector Informatik GmbH
PDF
Interaction Between Funktional Safety and Cyber Security
Achim Fahrner, ZF
PDF

Your Contact

Are you interested in more information about the Vector Automotive Cybersecurity Symposium?

 

Eduard Metzker
Automotive Cybersecurity Expert