Guardians of the Code: Unleashing the Power of IDPS and TEE in Software-Defined Vehicles
PRESENTATION:
In an era where software-defined vehicles (SDVs) promise safer, connected, and autonomous driving experiences, the stakes have never been higher. But beneath the sleek exteriors and cutting-edge features lies a complex web of risks—millions of lines of code, diverse connectivity interfaces, and potential exploitable vulnerabilities. OEMs and Tier 1s need to meet these threats and comply with new Cybersecurity standards and regulations. How then should they rise to the challenge?
In this talk, we will explain the problem and outline an approach. Attackers are experts, and SDVs are no place for amateur hour. We will explain how horizontal protection and UN R155 compliance needs can be met using an Intrusion Detection and Prevention System (IDPS). An IDPS system is a vigilant sentry within electronic control units (ECUs). When a cyberattack strikes, the IDPS springs into action, protecting the vehicle and its occupants. It also acts as a data aggregator, feeding insights to the Vehicle Security Operations Center (VSOC). The IDPS is the night watchman, but that means it becomes a target for attack. We therefore need to guard the Guardian. We will explain how IDPS can be strengthened against various attacks by using a Trusted Execution Environment (TEE) to manage and mediate configuration and updates to the IDPS system. We will further explore how the TEE can be used to protect output from the IDPS ensuring the VSOC only receives high quality and high integrity data.
Join us to learn how to build a strategic approach to security – and leave DIY to the hobbyists.
PRESENTERS:
Dipl. Inf. (FH) Gregor Knappik
Cybersecurity Solutions Architect
VicOne
Gregor Knappik built his expertise in the integration of large-scale embedded software projects using state-of-the-art cybersecurity solutions over the past 15 years. Recently, he has been helping OEMs and Tier 1 suppliers build up a VSOC, an IDPS, and a vulnerability management system to prevent the exploitation of potential vulnerabilities in the SBOM. He has also been supporting them in their UN Regulation No. 155 and ISO/SAE 21434 compliance journeys. He holds a certificate in Automotive Cybersecurity Professional – Advanced Level Engineering with TÜV Rheinland Certified Qualification.
Richard Hayton
Chief Strategy & Innovation Officer
Trustonic
Richard Hayton is an experienced technology leader. With over 30 years in the cybersecurity industry, he is a regular speaker and influencer on matters of cybersecurity. Richard is a board
member at GlobalPlatform and chairs the Trusted Environments and Services (TES) Group, and the Automotive Task Force. Before joining Trustonic, Richard was Chief Architect for Citrix Mobility, where he was responsible for crafting the XenMobile Enterprise Mobility Suite. During his 20 years at Citrix, Richard led projects ranging from embedded software to global enterprise systems, with a focus on user and developer experience.
Richard holds a Ph.D. in Computer Science from Cambridge University, focusing on identity federation for users, devices, and services.