Automotive Cybersecurity News: Summit Pitches, BlackBerry, DHS & NTU

There was more automotive cybersecurity news this week from Securing Mobility Summit, Karamaba Security, BlackBerry, The Department of Homeland Security and NTU.

Pitch Automotive Cybersecurity at AutoMobility LA Securing Mobility Summit

Jeffrey Carr will be managing the Securing Mobility Summit at AutoMobility LA in November. Participants will have 10 minutes to pitch your company over lunch with automotive executives.

The Securing Mobility Summit will be using a two hour lunch to bring the best and newest cybersecurity startups before a select group of the 20,000+ attendees who attend AutoMobility LA each year (formerly known as the Trade and Media days for the LA Auto Show). There are ten slots of ten minutes each to the most innovative startups. Contact Jeffrey Carr [suitsandspooks@gmail.com} you’re interesting in receiving more information.

TU-Automotive Cybersecurity Survey Results

TU-Automotive released a results from a survey about automotive cybersecurity.  This year, on June 6-7 in Novi Michigan there will be a cybersecurity track at TU-Automotive Detroit, our readers receive a $100 discount using the  AUTOCC100 when you register you get an additional $100 off any of the tracks when you register(scroll down the page to see the cbyersecurity conference).

Karamba Security Funding

Karamba Security has received $10 million of funding from Silicon Valley-based venture debt firm Western Technology Investment, bringing the total investment in Karamba to $27 million.

BlackBerry News

Punkt and BlackBerry signed a licensing deal.The Punkt and BlackBerry deal will enable select new Punkt devices will use BlackBerry’s proprietary software and applications, and will be marketed as “BlackBerry Secure” devices.BlackBerry details features of its OS on its company blog noting

Marty Beard, COO of BlackBerry wrote taht BlackBerry QNX is much than an OS – it helps orchestrate an entire stack of applications, processes, processors, and networking hardware to protect against everything from system malfunctions to malware to active cyberattacks, including:

• Secure over-the-air software patches and updates.
• Certicom AMS technology to ensure integrated circuits running the software are manufactured securely and without tampering.
• Application ‘sandboxing’ so that only trusted code is executed.
• Encryption on both at-rest and in-transit data.
• A team of security researchers and engineers who regularly scan for vulnerabilities and code design issues.
• Hypervisors that create virtual software containers, such that any hiccup or breach in one car system, such as the Infotainment System, can be isolated and does not affect or create vulnerabilities in other domains (like the steering system or the engine).
• Certicom Managed PKI and security toolkits that are FIPS 140-2 certified.

In a article on Motherboard Colin Bird noted that OTA and security could be one of the key areas where BlackBerry can make an impact.  As for BlackBerry to become a major operating system, Bird noted that BlackBerry will have to defend itself against Green Hills Software, IBM, Irdeto, and others.

DHS S&T Release Mobile Security R&D Guide

The Department of Homeland Security (DHS) Science and Technology Directorate (S&T) today released its 2018 Mobile Security Research and Development (R&D) Program Guide that introduces the technology projects, goals and objectives and their alignment with DHS and federal mobile security strategies and priorities.

“Mobile technologies are evolving rapidly to meet increasing consumer demand and in parallel technology developers are evolving and improving their technologies to maintain a competitive edge,” said Dr. Douglas Maughan, Director of S&T’s Cyber Security Division. “The high adoption rate of mobile devices, apps and services by consumers and government departments has made the technologies a new target for attackers, who are taking advantage of this rapid pace of change to pinpoint vulnerabilities and introduce malware into the mobile ecosystem.”

The Mobile Security R&D Program was established to address the technical, operational and policy challenges that inhibit the adoption of secure mobile technologies. Its goals are to apply R&D to:

• Enable the mobile workforce to support the homeland security mission
• Enable mission success through effective, efficient and secure mobile technologies

“As the adoption of mobile technology by the federal government and the private sector accelerates, the S&T Mobile Security R&D Program is helping to secure these innovative technologies through targeted R&D that addresses security gaps and barriers,” said S&T Mobile Security R&D Program Manager Vincent Sritapan. “This guide will raise awareness about the program within the federal government and the private sector and create opportunities to transition these new technologies to operational use.”

The informational guide features an in-depth overview of the Mobile Security R&D Program strategy as well as summaries of the program’s two project areas: Mobile Device Security and Mobile Application Security. It also includes synopses of 11 current R&D efforts from both project areas.

NTU & Desay