NEWS: 公告在東京證券交易所JASDAQ標準市場新上市

表紙
市場調查報告書

OEM網路安全設計的調查:2020年

OEM Cyber Security Layout Report, 2020

出版商 ResearchInChina 商品編碼 980085
出版日期 內容資訊 英文 130 Pages
商品交期: 最快1-2個工作天內
價格
OEM網路安全設計的調查:2020年 OEM Cyber Security Layout Report, 2020
出版日期: 2020年12月25日內容資訊: 英文 130 Pages
簡介

伺服器和數位鑰匙是對攻擊脆弱的端口,OEM強化網路安全的措施。現在,汽車的網路安全事件,主要從對伺服器,數位鑰匙,行動APP,OBD端口的攻擊發生。

統計上,中國的新車的車載資通系統功能的引進率從2020年1月到10月超越50%,預計2025年上升到75%左右。

OEM,在網路安全中構築比以往更廣泛的合作關係。除了提高安全性外,OEM還積極尋求在車輛,通信,平台,數據和應用程序上的外部協作。

本報告提供全球OEM的網路安全設計的相關調查,IoV網路安全概要,IoV網路安全技術的應用,中國及全球汽車網路安全標準開發趨勢,汽車網路安全產業現況,OEM各公司的網路安全設計等相關分析。

目錄

第1章 IoV網路安全概要

  • 概要
    • 定義
    • IoV網路安全保護
  • IoV網路安全技術的應用
    • T-BOX
    • IVI
    • 數位鑰匙系統
    • 車輛雲端網路通訊安全PKI
    • 汽車系統FOTA
  • 在國內外的汽車網路安全標準的開發
    • 中國和全球汽車網路安全標準開發概要
    • IoV網路安全相關主要國際政策和法規
    • IoV網路安全相關歐洲的主要的政策和法規
    • IoV網路安全相關美國和日本的主要政策和法規
    • 中國的IoV網路安全標準系統結構
    • 中國的IoV網路安全標準建立
  • 中國的汽車網路安全現況與趨勢
    • 對網路安全的CASE的影響
    • IoV網路安全現況相關產業相關人員的知識
    • 車輛的E/E架構對網路安全的影響
    • 汽車網路安全技術開發策略:雲端
    • 汽車網路安全技術開發策略:通訊
    • 汽車網路安全技術開發策略:車輛

第2章 汽車網路安全產業現況

  • OEM網路安全事件分析
    • OEM網路安全事件分析
    • OEM網路安全事件分析:事件概要
    • OEM網路安全事件(應用)分析(I)
    • OEM網路安全事件(應用)分析(II)
    • OEM網路安全事件(平台)分析(III)
    • OEM網路安全事件(平台)分析(IV)
    • OEM網路安全事件(車輛)分析(V)
    • OEM網路安全事件(車輛)分析(VI)
    • OEM網路安全事件(通訊)分析(VII)
    • OEM網路安全事件(通訊)分析(VIII)
  • OEM網路安全設計比較
    • 歐洲、美國的OEM
    • 日本、韓國的OEM
    • 中國的OEM
  • OEM的網路安全合作
    • 歐洲、美國的OEM
    • 日本、韓國的OEM
    • 中國的OEM
    • 中國的汽車網路安全產業地圖

第3章 歐洲、美國的OEM網路安全設計

  • Mercedes-Benz
    • 網路安全設計
    • 網路安全技術途徑
    • 網路安全合作夥伴
  • BMW
  • Audi
  • VW
  • Volvo
  • Ford
  • GM

第4章 日本、韓國的OEM網路安全設計

  • Toyota
    • 網路安全設計
    • 網路安全技術途徑
    • 網路安全合作夥伴
  • Honda
  • Nissan
  • Hyundai

第5章 中國OEM的網路安全設計

  • Xpeng Motors
    • 網路安全設計
    • 網路安全技術途徑
    • 網路安全合作夥伴
  • NIO
  • Lixiang
  • WM Motor
  • Dongfeng Motor
  • SAIC
  • BAIC
  • GAC
目錄

Research into automotive cyber security: server and digital key are the ports vulnerable to attacks, for which OEMs have stepped up efforts in cyber security.

With advances in the CASE (Connected, Autonomous, Shared, and Electrified) trend, cars are going smarter ever with functional enrichment. Statistically, the installation rate of telematics feature to new cars in China is over 50% from January to October of 2020, a figure projected to rise to 75% or so in 2025. In terms of functionality, intelligent cockpit and advanced automated driving become trending, and the features such as multi-modal interaction, multi-display interaction, 5G connectivity, V2X, OTA and digital key finds ever broader application alongside the soaring number of vehicle control codes and more port vulnerabilities to safety threat.

Currently, the automotive cyber security events arise mainly from attacks on server, digital key, mobile APP, OBD port among others.

Server acts as the most important port for cyber security, which is exposed to the attack by hackers on operating system, database, TSP server, OTA server and the like, thus issuing in data tampering, damage and vehicle safety accidents. Most tools of assault on servers are remotely accessible with lower costs, while the data storage over servers is of paramount importance, all of which lead to often a rather high share of attacks on servers.

Digital key, as the second port that matters most to cyber security, is a common media subject to vehicle intrusion and theft. In 2020, there will be 300,000 Bluetooth digital key installs in China, coupled with an installation rate at about 4%, with such more functionalities besides lock/unlock & start as account log-in, key sharing, vehicle trajectory record, and parcel delivery to cars, which has ever more implications on vehicle safety.

Different auto brands are subject to varied attack on vehicle security.

The smarter a car is, the more vulnerable to security attacks will be. Amid the intelligence trend, all OEMs, whatever Mercedes-Benz, BMW, Audi, VW, Toyota, Honda or Hyundai, have varied exposure to security attacks.

In March 2020, key encryption approaches of OEMs like Toyota, Hyundai and KIA were reported to have limitations with a possibility of intrusions and thefts largely due to the vulnerabilities of TI's DST80 encryption system employed by them. A hacker just stands near the car that packs DST80 remote control key, using the inexpensive Proxmark RFID reader/transmitter for the 'identity theft' of the key and thus getting the encrypted information.

OEM quicken their presence in cyber security

To address serious challenges in automotive cyber security, the OEMs are sparing no efforts in security improvement in many aspects:

  • 1) information management inside the company and optimization of R&D process;
  • 2) to build a team intended for cyber security;
  • 3) cyber security protection of telematics.

European and American OEMs: Diversified deployments of cyber security protection

The automakers from Europe and America are pushing ahead with cyber security construction roundly with technical superiorities, with a tightened control on information security management inside the company apart from improvements in cyber security protection of telematics. As concerns team construction, the majority of European and American OEMs as usual set up either an independent cyber security division or a subsidiary to ensure information security during a vehicle lifespan.

Mercedes-Benz, for instance, has such actions for cyber security in the three below:

  • Cloud computing: vehicle data protection enabled by a cloud platform through which the car owner takes control of data openness to the outside while driving, and at the same time relevant information will be eliminated automatically after the car owner leaves his/her car;
  • Factory: partnership with telecom carriers and equipment vendors to set up intelligent vehicle manufacturing factories with production data safety enabled by 5G mobile network;
  • Vulnerability protection: joins forces with third-party cybersecurity providers to test and repair the potential vulnerabilities of intelligent connected vehicle.
  • Japanese and Korean OEMs: with a more focus on cyber security protection and management inside the company
  • Nissan Motor, for example, proceeds with intro-company management on information security and perfects the regulations concerned. Over the recent years, Nissan has been improving its R&D management system and cyber security platform, with its Tel Aviv-based joint innovation laboratory and collaborations with Israeli start-ups on cyber security testing and study. As yet, Nissan has more than ten cooperative joint prototype projects.
  • Chinese OEMs: the emerging forces go ahead of the rest.
    • The emerging carmakers are commendable in cyber security protection. Cases include XPENG Motors that boast concurrent deployments over cloud, vehicle and mobile phone by building a security team on its own and the partnerships with Aliyun, Irdeto, and Keen Security Lab of Tencent in order for a proactive protection system; and NIO that has built a X-Dragon multi-dimensional protection system through a self-owned security team and multi-party cooperation.

Also, the time-honored Chinese automakers follow suit, such as Dongfeng Motor, SAIC, GAC and BAIC that all prioritize the security stewardship during their life cycle. As concerns its overall deployment, SAIC, for example, incorporates its subordinates into the group's cyber security protection and management system and applies the data encryption software (GS-EDS system) with one accord for data safety as a whole; secondly, SAIC builds a cloud platform independently and a proprietary cloud computing center delivering cloud-based security services; last, SAIC founded SAIC Lingshu Software Co., Ltd in charge of developing basic technology platform and sharpening software R&D competence.

OEMs have ever broader cooperation in cyber security.

In addition to security enhancement, OEMs are vigorously seeking for external collaborations on vehicle, communication, platform, data, and application, to name a few.

Table of Contents

1. Overview of IoV Cyber Security

  • 1.1 Overview
    • 1.1.1 Definition
    • 1.1.2 IoV Cyber Security Protection
  • 1.2 IoV Cyber Security Technology Application
    • 1.2.1 T-BOX Safety Technology Application
    • 1.2.2 IVI Safety Technology Application
    • 1.2.3 Safety Technology Application of Digital Key System
    • 1.2.4 PKI Technology Application for Car Cloud Network Communication Security
    • 1.2.5 FOTA Safety Technology Application for Onboard System
  • 1.3 Automotive Cyber Security Standard Development at Home and Abroad
    • 1.3.1 Overview of Automotive Cyber Security Standard Development in China and the World
    • 1.3.2 Major International Policies and Regulations on IoV Cyber Security
    • 1.3.3 Major European Policies and Regulations on IoV Cyber Security
    • 1.3.4 Major American and Japanese Policies and Regulations on IoV Cyber Security
    • 1.3.5 Chinese IoV Cyber Security Standard System Architecture
    • 1.3.6 Chinese IoV Cyber Security Standard Construction
  • 1.4 Status Quo and Trend of Chinese Automotive Cyber Security
    • 1.4.1 Impact of CASE on Cyber Security
    • 1.4.2 Knowledge of Industry Insiders on Status Quo of IoV Cyber Security
    • 1.4.3 Impact of Vehicle E/E Architecture on Cyber Security
    • 1.4.4 Automotive Cyber Security Technology Development Strategy: Cloud
    • 1.4.5 Automotive Cyber Security Technology Development Strategy: Communication
    • 1.4.6 Automotive Cyber Security Technology Development Strategy: Vehicle

2. Status Quo of Automotive Cyber Security Industry

  • 2.1 Analysis of OEM Cyber Security Events
    • 2.1.1 Analysis of OEM Cyber Security Events
    • 2.1.2 Analysis of OEM Cyber Security Events: Event Summary
    • 2.1.3 Analysis (I) of OEM Cyber Security Event (Application)
    • 2.1.4 Analysis (II) of OEM Cyber Security Event (Application)
    • 2.1.5 Analysis (III) of OEM Cyber Security Event (Platform)
    • 2.1.6 Analysis (IV) of OEM Cyber Security Event (Platform)
    • 2.1.7 Analysis (V) of OEM Cyber Security Event (Vehicle)
    • 2.1.8 Analysis (VI) of OEM Cyber Security Event (Vehicle)
    • 2.1.9 Analysis (VII) of OEM Cyber Security Event (Communication)
    • 2.1.10 Analysis (VIII) of OEM Cyber Security Event (Communication)
  • 2.2 Comparison of OEM Cyber Security Layouts
    • 2.2.1 European and American OEMs
    • 2.2.2 Japanese and Korea OEMs
    • 2.2.3 Chinese OEMs
  • 2.3 Cyber Security Collaborations of OEMs
    • 2.3.1 European and American OEMs
    • 2.3.2 Japanese and Korea OEMs
    • 2.3.3 Chinese OEMs
    • 2.3.4 Chinese Automotive Cyber Security Industry Map

3. Cyber Security Layouts of European and American OEMs

  • 3.1 Mercedes-Benz
    • 3.1.1 Cyber Security Layout
    • 3.1.2 Cyber Security Technology Route
    • 3.1.3 Cyber Security Partners
  • 3.2 BMW
    • 3.2.1 Cyber Security Layout
    • 3.2.2 Cyber Security R&D System Construction
    • 3.2.3 Cyber Security Partners
  • 3.3 Audi
    • 3.3.1 Cyber Security Layout
    • 3.3.2 Cyber Security R&D System Construction
    • 3.3.3 Cyber Security Partners
  • 3.4 VW
    • 3.4.1 Cyber Security Layout
    • 3.4.2 Cyber Security R&D System Construction
    • 3.4.3 Cyber Security Partners
  • 3.5 Volvo
    • 3.5.1 Cyber Security Layout
    • 3.5.2 Cyber Security R&D System Construction
    • 3.5.3 Cyber Security Partners
  • 3.6 Ford
    • 3.6.1 Cyber Security Layout
    • 3.6.2 Cyber Security R&D System Construction
    • 3.6.3 Cyber Security Partners
  • 3.7GM
    • 3.7.1 Cyber Security Layout
    • 3.7.2 Cyber Security R&D System Construction
    • 3.7.3 Cyber Security Partners

4. Cyber Security Layout of Japanese and Korean OEMs

  • 4.1 Toyota
    • 4.1.1 Cyber Security Layout
    • 4.1.2 Cyber Security Technology Route
    • 4.1.3 Cyber Security Partners
  • 4.2 Honda
    • 4.2.1 Cyber Security Layout
    • 4.2.2 Cyber Security R&D System Construction
    • 4.2.3 Cyber Security Partners
  • Software
  • 4.3 Nissan
    • 4.3.1 Cyber Security Layout
    • 4.3.2 Cyber Security R&D System Construction
    • 4.3.3 Cyber Security Partners
  • 4.4 Hyundai
    • 4.4.1 Cyber Security Layout
    • 4.4.2 Cyber Security Technical Route
    • 4.4.3 Cyber Security Partners

5. Cyber Security Layout of Chinese OEMs

  • 5.1 Xpeng Motors
    • 5.1.1 Cyber Security Layout
    • 5.1.2 Cyber Security Technology Route
    • 5.1.3 Cyber Security Partners
  • 5.2 NIO
    • 5.2.1 Cyber Security Layout
    • 5.2.2 Cyber Security Technology Route
    • 5.2.3 Cyber Security Partners
  • 5.3 Lixiang
    • 5.3.1 Cyber Security Layout
    • 5.3.2 Cyber Security Technology Route
    • 5.3.3 Cyber Security Partners
  • 5.4 WM Motor
    • 5.4.1 Cyber Security Layout
    • 5.4.2 Cyber Security Technology Route
    • 5.4.3 Cyber Security Partners
  • 5.5 Dongfeng Motor
    • 5.5.1 Cyber Security Layout
    • 5.5.2 Cyber Security Technology Route
    • 5.5.3 Cyber Security Partners
  • 5.6 SAIC
    • 5.6.1 Cyber Security Layout
    • 5.6.2 Cyber Security Technology Route
    • 5.6.3 Cyber Security Partners
  • 5.7 BAIC
    • 5.7.1 Cyber Security Layout
    • 5.7.2 Cyber Security Technology Route
    • 5.7.3 Cyber Security Partners
  • 5.8 GAC
    • 5.8.1 Cyber Security Layout
    • 5.8.2 Cyber Security Technology Route
    • 5.8.3 Cyber Security Partners