Intelligent CISO Issue 02 | Page 44

industry unlocked
Scott Manson , Cybersecurity Lead – Middle East and Africa , Cisco
Self-drive vehicles are no longer just a hypothetical possibility . But while these new vehicles herald a revolutionary new era for transport , there are also some important security issues to be considered . Intelligent CISO hears two experts ’ take on self-drive vehicles and how two companies have collaborated to try to tackle the cybersecurity problem .

THE FUTURE OF TRANSPORT
CAN AUTONOMOUS VEHICLES EVER BE TRULY SECURE ?

AND CYBERSECURITY :

SScott Manson , Cybersecurity Lead – Middle East and Africa , Cisco , said : “ In the next five years we will see more and more self-driving vehicles , or autonomous vehicles , hit the market . An autonomous vehicle is what is known as a cyberphysical system because it has elements in both the physical and virtual worlds . This makes security particularly challenging .

“ Although self-driving vehicles have the potential to drastically reduce accidents , travel time and the environmental impact of road travel , concerns remain that could delay widespread adoption .
“ Of particular concern are data privacy and security risks . Not only are they at risk from traditional cyberattacks to the information and running of the vehicle , but also to a new breed of attacks around things such as ransomware and vehicle theft .
“ There are also security risks to the networks that connect vehicles , whether the financial networks that process payments , roadside sensor networks , electricity infrastructure or traffic control features .
“ From a cybersecurity perspective , driverless cars present a number of unique considerations , challenges and risks . While many of the issues at play are not necessarily unique to driverless cars , these connected vehicles collect massive amounts of information by design and travel into areas that may often increase the risk of inadvertent disclosure .
“ Moreover , these vehicles may be used to cross borders and enter jurisdictions that require the protection of information in materially different ways .
“ Autonomous vehicles aren ’ t going to be here tomorrow , they are here today . The numerous points of entry into a self-driving vehicle ’ s computer system give clever thieves and cyberterrorists multiple opportunities to take control of vehicles . They will be vulnerable to those that regularly disrupt computer networks , like data thieves of personal and financial information , spoofers who present incorrect information to a vehicle and denial-of-service attacks that move from shutting down computers to shutting down cars .
“ Driverless cars are of course designed to travel . These vehicles are expected to share and collect information from a wide array of connected vehicles , devices and surrounding infrastructure across wide geographic ranges and borders .
“ While the evolution in driverless car capability promises many benefits , the greater responsibility and power delegated to driverless cars also creates a greater risk of negative privacy implications , injury , or property damage if these vehicles fail , mishandle
44 Issue 02 | www . intelligentciso . com