OSS.5 Europe is Europe’s first platform bringing together all stakeholders who play an active role in the achievement of high-level functional, system & operational safety for fully automated driving.
In the run-up to the event, we.CONECT spoke with Evgeniya Ponomareva, Automotive Business Development Manager and Andrey Fadin, Transportation Security Products Manager from Kaspersky Lab about new technical innovations, latest updates to standards, and pressing challenges regarding operational & functional safe systems in Level 4 & 5 vehicles.
we.CONECT: Your solution is announced at OSS.5 Europe under the title “High-assurance cybersecurity system for ADAS ECUs leveraging AUTOSAR Adaptive & ROS”. What is the most important message to the participants and your clients in this context?
Evgeniya Ponomareva: Kaspersky is heavily involved in the development of industry-specific cybersecurity technologies, including for the automotive industry. For example, it’s simply not possible to use a classic product like antivirus in automotive electronics. That’s why we have developed dedicated products for vehicle ECUs taking into account the specifics of the industry while leveraging our experience in cybersecurity.
Our product Kaspersky Automotive Adaptive Platform is a universal SOA platform for developing applications for vehicle ECUs that also instantly incorporates cybersecurity technologies. We’ve already taken care of the cybersecurity side, meaning the application developers can focus on developing the functionality of the application on the electronic unit.
we.CONECT: What would you highlight as the unique selling point of your solution/approach?
Evgeniya Ponomareva: First of all, we offer an integrated approach to building a cybersecurity system for connected vehicles. The KAAP product is itself a secure-by-design platform, since we are building a multi-layered cybersecurity system from the OS level to providing secure updates over the air and integration with a vehicle security operations center. The KasperskyOS operating system, which is the basis of our product, is also unique. Inherently focused on maximum cybersecurity, it provides mature implementation of the most advanced architectural solutions in this field (MILS, FLASK).
we.CONECT: If you think of your clients’ requirements: Which problem areas in the context of functional, operational and systems safety of autonomous driving do you regard as particularly critical?
Evgeniya Ponomareva: The most pressing issue now is that cybersecurity only began to influence functional safety once vehicles started to be “connected” en masse, which coincided with the appearance of ADAS systems with high levels of autonomy. That is, both the attack surface and the maximum possible resulting damage increased at the same time. In addition, cybercriminals are constantly looking for new ways and technical means to carry out successful attacks on the vehicle ecosystem. Changing approaches to E/E architecture, lengthening supply chains and a growing software code base make it very difficult to build a cybersecurity system and find vulnerabilities in time.
we.CONECT: What do you think are the best approaches / technologies to meet these challenges?
Evgeniya Ponomareva: It’s necessary to comprehensively assess the entire ecosystem of the connected vehicle. Depending on the type of ecosystem component (TCU, ADAS, DCU, mobile application, telematics cloud), appropriate security measures must be applied, taking into account its specific nature.
It is also important to stop the attack at the initial stage, preventing it from spreading further inside the car. KasperskyOS and KAAP technologies make it possible to build up reliable isolation of components and prevent the system from performing unauthorized actions due to security models “hardwired” into the system.
Indeed, all new systems should be secure by design based on an assessment of their specific risks.
we.CONECT: How do you assess – also with regard to the participants and speakers of at OSS.5 Europe – the developments on the market for solutions for vehicle automation in the next 1-2 years?
Evgeniya Ponomareva: The development of new technologies is accelerating every year, especially in the automotive sphere. The new regulatory framework for cybersecurity will have a serious impact on the market for solutions, approaches to creating electronics, and on the subsequent life cycle of a vehicle after leaving the assembly line. We’re closely following market trends and legislative changes and we’re already supporting our clients in dealing with new requirements for future vehicles.
we.CONECT: Thank you for the interview! To all our readers, if you are interested and want to join us together with Kaspersky Lab and want to learn, engage and discuss automotive tech innovation in real-time with thought leaders across the globe, feel free to save your seat: https://www.oss-5.com/book-now