Cyber-Physical Mobile Apps

Home Blog Cyber-Physical Mobile Apps

Cyber-Physical Mobile Apps

By Tamir Rahamim

Table of contents

The increasing use of mobile applications to connect to automotive features (whether infotainment or for keyless entry) requires security to become an inherent piece of mobile application development. Three documents are reviewed in this chapter. The first focuses on an existing US standard from the US NHTSA, the Federal Motor Vehicle Safety Standards for Theft Protection and Rollaway Prevention, and notably on some recent updates regarding the form factors of modern keys, which can today be on a code carrying device (i.e. a smartphone or other physical device).

The second is the OWASP Mobile Application Security Verification Standard which focuses on standardizing development practices and requirements to ensure the secure correct handling, storage, and protection of sensitive data in smartphones. This is a generic standard not specific to the automotive sector, but which is a significant recommendation carrying weight in the industry.

The last is NIST Special Publication 800-163, which is intended for use by organizations intending to disseminate applications on employee end devices. It includes standards and best practices for secure app development (in accordance with their intended use case), as well as the formulation of procedures to vet those applications. Also a generic all-market publication, it has direct relevance to the automotive industry.

Published: May 26th, 2020

Ready to See Plaxidityx in Action?

“We chose PlaxidityX based on its proven experience, knowledge, methodology, and expertise..PlaxidityX’s ability to complete and submit in an extremely short time with top quality results, was critical for meeting our business goals”

Emrah Duman
Ford Trucks Leader

“PlaxidityXs’ comprehensive suite of cyber security solutions and its outstanding array of strategic technological partnerships have contributed to the company’s leadership position”

Dorothy Amy
Industry Analyst, Business Strategy & Innovation, Mobility
Frost & Sullivan

“The partnership with PlaxidityX enables our customers to perform cybersecurity testing on our established test platforms ..We are excited to partner with a strong and experienced cybersecurity service provider such as PlaxidityX”

Dr. Herbert Schütte
Executive Vice President Real-Time Test & Development Solutions
dSPACE

“By combining PlaxidityX’s expertise in securing connected vehicles with Microsoft’s Azure AI capabilities, we have a unique opportunity to accelerate ‘shift left’ security innovations across the entire automotive sector..”

Dominik Wee
Corporate Vice President for Manufacturing and Mobility
Microsoft

“PlaxidityX is a key pillar of Continental’s SDV strategy, enabling Continental to implement a security-by-design approach. As automotive cyber security moves to the cloud, PlaxidityX’ cutting-edge technologies and proven VSOC capabilities position us advantageously to meet our customers’ future needs”

Gilles Mabire
Chief Technology Officer
Continental

Updates and insights

News

How AI is Shaping Automotive Cybersecurity

Webinar

Automate TARA for Automotive Cybersecurity & Compliance

White Paper

Accelerating Secure Design: Embracing TARA Automation for Safer Vehicles

Learn how we bring peace of mind for millions of drivers