The 5StarS consortium, which consists of Horiba MIRA, Ricardo, Roke, Thatcham Research and Axillium Research (and is funded by Innnovate UK), has issued a consultation paper on a new assurance framework to assess the cyber-security
It is seeking feedback from automotive manufacturers, the Government and insurers.
With new technologies becoming a common component of new vehicles, manufacturers must have proven built-in safeguards and resilience against the emerging threat of cyber attacks.
Furthermore, the arrival of Connected Autonomous Vehicles and Advanced Driver Assistance System is accelerating the debate around technology’s role and its impact on road safety.
The 5StarS consortium aims to develop an assurance framework that will underpin future assessments of the cyber-security capabilities of new vehicles and their resilience to attacks.
The consultation paper provides a ‘roadmap’ to increasing assurance, which starts by meeting the requirements of emerging regulations and standards such as ISO/SAE 21434, while introducing independent vehicle vulnerability assessments.
This allows the framework to be adapted to cope with continually changing threats. The paper also proposes a consumer-facing risk rating system to reassure consumers about their choice of vehicle.
Paul Wooderson, cyber-security principal engineer at Horiba MIRA (and 5StarS project leader), said: “It’s important that we address cyber-security assurance for connected and autonomous vehicles, not only for vehicle manufacturers but for the automotive industry as a whole, as well as insurers and consumers.
We are now inviting feedback on this paper, which we will use to further enhance the 5StarS framework, providing a positive solution for trusted and resilient mobility.”
Nick Tebbutt, Ricardo business manager for cyber-security, said: “For many years now, consumers have been able to make their new-vehicle purchasing decisions informed by clear and easy-to-understand crash safety ratings.
“One of the principal aims of the 5Stars project is to develop such a rating system for product cyber-security, which is equally important.”