SECURE OTA COMMUNICATIONS WITH PALO ALTO NETWORKS TECHNOLOGY

End-to-end cyber security solution combining secure in-vehicle communication lockdown with secure communication between the vehicle and remote databases at OEMs, fleet management companies, car dealerships and more.

 

Click here to download the solution brief about Palo Alto Networks’ and GuardKnox’s automotive cybersecurity solution

NO-RISK VEHICLE INTERNET CONNECTIVITY

Smart vehicles are connected to the Internet for a variety of applications including navigation, infotainment, over-the-air (OTA) vehicle software updates and more. Unsecured connections can enable hackers to manipulate data being transferred in order to steal personal information, overcome vehicle security mechanisms or take control of the car.

A mutual authentication mechanism between their Palo Alto Networks® and GuardKnox enables secure Internet communication with the strongest level of encryption between smart vehicles and the OEM, fleet management systems, telematics providers, insurance providers, emergency services, and more.

OEMS SAVE TIME & MONEY WITH SECURE OTA COMMUNICATIONS

OEMs can save time and money by integrating the combined Palto Alto and GuardKnox solution for securing periodic OTA maintenance and new feature updates as well as ongoing, real-time communication with vehicles deployed worldwide. The solution also enables manufacturers to receive data regarding driving habits and preferences of multiple drivers of the same vehicle and to enable remote configuration and personalization that uniquely tailors the car performance for maximum satisfaction of each driver.

FULLY SECURE REAL-TIME FLEET ANALYTICS

OEMs and fleet owners are now able to safely collect and utilize the on-board vehicle data such as maintenance and performance, driver behavior, vehicle location, and more to enable real-time, fleet-level analytics, proactive maintenance and inventory management. Preventing cyberattacks with the integrated GuardKnox and Palo Alto Networks solution ensures the safe growth of the telematics and fleet management systems industry and allows OEMs, fleet owners and other service providers to reduce their business costs while improving their customer service.

Benefits

  • Secure highly vulnerable OTA software updates for all vehicles deployed worldwide
  • Leverage Palo Alto’s managed cloud-based network for easy creation and deployment of consistent security policies across your entire fleet
  • Focus on vehicle deployment, software updates and analytics rather than the reliability, scalability or availability of the communications network
  • Patented Communication LockdownTM technology provides deterministic in-vehicle cyber and data security
  • Prevent cyber-attacks in real time with zero false positives
  • Accurate vehicle-usage performance indicators enable usage-based insurance models and driver profiles

SECURE END-TO-END COMMUNICATIONS

The fully integrated Palo Alto Networks and GuardKnox solution offers end-to-end cybersecurity, combining external communication with secure in-vehicle communication lockdown.

  • Secure external communications – Palo Alto Networks state-of-the-art firewall and cloud-based network supports both mutual authentication and the highest levels of encryption from the OEM’s network to the vehicle.
  • Internal vehicle communications – GuardKnox Secure Network Orchestrator (SNO) parses all messages entering the vehicle’s network and permits only authorized communication, examining the routing, content, and contextual layers and locking all message fields to prevent unauthorized manipulation.

MAXIMUM ENCRYPTION AND PRIVACY

Using NSA Suite B Cryptography, the collaborative Palo Alto and GuardKnox solution delivers the highest level of end-to-end security while still enabling the Palo Alto GlobalProtect™ Cloud Service firewall to effectively filter and monitor the traffic. Privacy and confidentiality are maintained by using Advanced Encryption Standard (AES) encryption while the exchange of encryption keys uses the state-of-the-art Elliptic Curve Diffie–Hellman (ECDH) protocol and is authenticated using Elliptic Curve Digital Signature Algorithm (ECDSA) or the RSA public key.

CRITICAL FOR THE CONTINUED GROWTH OF THE CONNECTED/AUTONOMOUS VEHICLE INDUSTRY.

Robust, end-to-end security for over-the-air (OTA) communication with the ECUs of today’s connected vehicles is absolutely imperative for the secure communications that will enable the safe growth of the telematics and fleet management systems industry. OEMs, fleet owners and other service providers will also be able to reduce their business costs while improving customer service.

suggested readings