Cybersecurity for the Next Generation of In-vehicle Infotainment (IVI)
Smart vehicles are connected to the Internet for a variety of applications including navigation, infotainment, over-the-air (OTA) vehicle software updates and more. Unsecured connections can enable hackers to manipulate data being transferred in order to steal personal information, overcome vehicle security mechanisms or take control of the car. A mutual authentication mechanism between their Palo Alto Networks® and GuardKnox enables secure Internet communication with the strongest level of encryption between smart vehicles and the OEM, fleet management systems, telematics providers, insurance providers, emergency services, and more.
OEMs can save time and money by integrating the combined Palto Alto and GuardKnox solution for securing periodic OTA maintenance and new feature updates as well as ongoing, real-time communication with vehicles deployed worldwide. The solution also enables manufacturers to receive data regarding driving habits and preferences of multiple drivers of the same vehicle and to enable remote configuration and personalization that uniquely tailors the car performance for maximum satisfaction of each driver.
OEMs and fleet owners are now able to safely collect and utilize the on-board vehicle data such as maintenance and performance, driver behavior, vehicle location, and more to enable real-time, fleet-level analytics, proactive maintenance and inventory management. Preventing cyberattacks with the integrated GuardKnox and Palo Alto Networks solution ensures the safe growth of the telematics and fleet management systems industry and allows OEMs, fleet owners and other service providers to reduce their business costs while improving their customer service.
The fully integrated Palo Alto Networks and GuardKnox solution offers end-to-end cybersecurity, combining external communication with secure in-vehicle communication lockdown.
Using NSA Suite B Cryptography, the collaborative Palo Alto and GuardKnox solution delivers the highest level of end-to-end security while still enabling the Palo Alto GlobalProtect™ Cloud Service firewall to effectively filter and monitor the traffic. Privacy and confidentiality are maintained by using Advanced Encryption Standard (AES) encryption while the exchange of encryption keys uses the state-of-the-art Elliptic Curve Diffie–Hellman (ECDH) protocol and is authenticated using Elliptic Curve Digital Signature Algorithm (ECDSA) or the RSA public key.
Robust, end-to-end security for over-the-air (OTA) communication with the ECUs of today’s connected vehicles is absolutely imperative for the secure communications that will enable the safe growth of the telematics and fleet management systems industry. OEMs, fleet owners and other service providers will also be able to reduce their business costs while improving customer service.