Tires, wipers and oil changes are the most commonly sold aftermarket products, but the comforts of mobile technology and the latest OEM accessories such as infotainment systems, remote key entry or RKE, smartphone integration and more spur demand for the installation of similar systems in cars already on the road.
But even without upgrading to the latest gadgets, old cars are more connected than you think. Carburetors were phased out of cars in the 1980s and were replaced by fuel injection systems that use microprocessors called electronic control units (ECUs) that precisely control the fuel-air mix. In addition to fuel injection, ECUs are also used for engine and transmission control, climate control, anti-lock braking, park assist and more. And they are all connected to an automotive computer called the Controller Area Network (CAN). Older cars may have up to a dozen ECUs “talking” to one another while a new vehicle may have 150 or more ECUs, the equivalent of 20 personal computers, transmitting more than 25 gigabytes of data an hour.
All of these ECUs ensure your car runs at optimum performance and enables mechanics to perform proactive maintenance that helps extend the life of your car. Gone are the days when a garage owner would examine a car for hours or days looking for a problem. The reason? A connection that looks like a computer port located underneath the dashboard near your steering wheel. Actually, it is a computer port that was especially designed for cars. It’s called an On-Board Diagnostics (OBDII) Port or “OBD port” for short. It’s a veritable data highway to your car’s computer and gives mechanics easy access to all of your car’s various subsystems. But just like a mechanic can use the OBD port for accessing all of your car’s subsystems, so can less scrupulous people as well(!). All it takes is ordering some equipment online and a little tech savvy gleaned from one of the “DIY for Hacker” sites such as Wikihow website.
In other words, your car includes a set of computers, just like your laptop and smartphone. And its connectivity offers similar risks of cyber-attack: viruses, ransomware, distributed DDoS (Distributed Denial-of-Service) attacks and even connected car hijacking—although not yet at the level portrayed in the movie “The Fate of the Furious.” Over the last few years, white-hat hackers have shown that the cyber threat to consumer and commercial vehicles is very real. Wired magazine offers a detailed account of white hackers taking control of a Jeep on a highway. Although Fiat Chrysler quickly worked to mitigate the risk, OEMs and vendors of these electronic automotive systems are only just beginning to develop the security-conscious culture that has existed in the computer and smartphone world for many years.
Each new challenge brings a new opportunity. Mitigating the risks of cyber-attacks on vehicles has created new aftermarket business opportunities for selling cybersecurity solutions. GuardKnox’s Secure Network Orchestrator™, or SNO, is a complete cybersecurity platform that protects consumer, commercial and heavy vehicles against any type of known and unknown cyber-attack, whether over-the-air, via USBs or even via the OBD II port. With a full software stack and a hardware architecture, the Secure Network Orchestrator™ complies with the ISO 15408 or common criteria security standard and the ISO 26262 safety standard. This holistic automotive cybersecurity solution is an easy fit for all segments of the automotive aftermarket, including dealerships, fleet owners, Tier 1 manufacturers, consumer and commercial vehicle OEMs and manufacturers of heavy machinery. The SNO™ even benefits insurers as well. Aftermarket resellers can sell and install either one or both of GuardKnox’s product lines:
the local solution assists in
Selling the GuardKnox SNO™ enables car dealerships to create a new line of aftermarket business selling warranties against car theft by electronic means. Sitting behind the OBD II port, GuardKnox Local SNO™ not only protects the car from electronic theft, but also secures the car’s safety and handling systems and prevents breaches of personal data including phone records, travel logs, credit card information and more. GuardKnox SNO™ can reduce costly automotive insurance, serving as a theft-prevention device like an immobilizer and can also be sold as part of a warranty for electronic systems, such as infotainment and remote key entry, to make a vehicle a less vulnerable target for theft.
Enabling dealer-branded smartphone apps with the SNO™ can improve retention of customers with out-of-warranty vehicles and increase profitable maintenance visits. Dealer-initiated maintenance requests, discounts, and improved customer service for app users can also facilitate upselling opportunities for aftermarket vehicle-mounted cameras, navigation systems and more—and can increase the likelihood of future car purchases. In addition, SNO™ can eliminate Inventory headaches—and improve the efficiency of inventory management and dealer operations by enabling employees to quickly and accurately find any vehicle no matter where it is—without fumbling through dozens or hundreds of keys. Having a comprehensive car dealership cybersecurity offering can also serve as a unique selling point that increases the brand value of your dealership, enables premium pricing based on your perceived value and can reduce the influence of price in the customers’ decision-making and purchasing process.
Just as cyber-criminals can target a single car, they can also target an entire fleet of vehicles owned or leased by car rental companies, taxicab companies, public utilities, transportation companies, corporations and governments. Since fleet owners are usually companies and organizations whose businesses are entirely dependent on the use of their vehicles, they are prime targets for ransomware attacks. Infecting dozens or hundreds of vehicles with malicious software, blocking vehicle usage or even threatening the safety of drivers and passengers can be catastrophic to these businesses unless large ransoms are paid. The SNO™ platform’s deterministic Communication Lockdown™ methodology prevents any kind of ransomware attack from taking control of a vehicle as it only allows “legal” communication and blocks any improper commands, such as a shut-down of the ignition while driving, or other commands that could unreasonably or dangerously change the vehicle’s performance. GuardKnox offers a full end to end solution through their partnership and Integration with Palo Alto Networks’ GlobalProtect™ Cloud Service which enables GuardKnox to protect vehicles when they are most vulnerable: during updates and direct external communication via the Internet, providing secure OTA updating of car software, command and control engine tuning, and real-time fleet analytics. GuardKnox has also partnered with DXC Technology, a world leader in fleet management to create a unique end-to-end solution that protects fleets of cars from potentially hostile surroundings and provides vehicle-related and incident-related information to a Security Operation Center (SOC) that records all events and triggers alarms according to detected security incidents for quick response by professionals.
The installation of GuardKnox Secure Network Orchestrator by OEMs will enable them to offer comprehensive cybersecurity for their vehicles, whether as a premium upgrade or a standard feature that can elevate the brand. By selling the Central SNO™ as a gateway for the entire vehicle or the Local SNO™ as a plug-in unit for infotainment and other connected systems, GuardKnox’s product lines allow OEMs to package their cybersecurity for a variety of price points that address the needs of a full range of customers.
The longer lifetime of heavy machinery and the extreme conditions that require the frequent replacement of parts makes the aftermarket especially active in this segment. Tough working conditions will make infotainment systems and other connected conveniences an easy sell in a market that struggles to attract skilled operators. Plug-and-play local SNOs can protect newly connected systems placed in older heavy equipment. While regulatory, technological and public perception challenges are slowing the adoption of self-driving cars, the challenges of construction sites and mines are accelerating the on-boarding of autonomous vehicles in this market. In addition to the paucity of skilled operators for heavy machinery, mines and construction sites face extreme time-pressures for 24×7 operations and the chronic exposure to constant vibrations, noise and dust is a true health hazard. For the connected heavy machinery of today and tomorrow, GuardKnox’s Central SNO™ platform delivers the required vehicle cybersecurity.
In 2016, more than 750,00 vehicles were stolen in the USA. Recognizing how SNOs mitigate the risks of cyber-attack, vehicle loss, paying ransoms, and the liability from accidents caused by cyber-hijacking, insurers may develop new policies that cover theft from electronic means or ransomware on condition that SNOs are used to protect connected vehicles.
While many incorrectly believe that vehicle cybersecurity is a solution that is required by the autonomous vehicles of the future, it should now be clear that cybersecurity is a mandatory requirement yesterday. Cybersecurity is needed for just about any consumer, commercial, or heavy industrial vehicle on the road, whether it was produced this year, last year or over the last decade.