ENISA Looking for Help with Cybersecurity Policies For Autos

The EU's leading information privacy and security group will be issuing a report on smart car security and is soliciting feedback from auto industry suppliers and experts.
The EU’s leading information privacy and security group will be issuing a report on smart car security and is soliciting feedback from auto industry suppliers and experts.

In-brief: The EU’s leading information privacy and security group will be issuing a report on smart car security and is soliciting feedback from auto industry suppliers and experts.

The European Union Agency for Network and Information Security (ENISA) announced last week that it is conducting a study on cyber security measures for smart cars and wants to speak with “relevant stakeholders” including Tier 1 and Tier 2 suppliers to automakers.

The EU’s chief information security body is tasked with developing a “comprehensive list of cybersecurity policies, tools, standards, and measures to enhance security in next-generation automobiles,” according to an ENISA statement. The group will provide recommendations on how to enhance the security of smart cars sold to EU consumers.

This is just the latest news from ENISA and the EU on security for connected vehicles. Earlier this year launched an expert group focused on policies relevant to connected cars. The ENISA CaRSEC (Cars and Roads SECurity) expert group. The group is made up of government, private, and public-sector experts with experience in areas like cybersecurity as it relates to car manufacturing, vehicular hardware and software, road standards, and car security.

ENISA plans to interview stakeholders as well as the public, which can weigh in at an open workshop on October 10th in Munich, Germany. ENISA’s resulting study will be reviewed by the CaRSEC Expert Group before being released to the public.

The activity in the EU mirrors that in the U.S., where the National Highway Traffic and Safety Administration (NHTSA) in April issued a request for proposals (RFP) to private firms for support developing automotive cybersecurity guidelines. NHTSA is looking to contractors to “help develop initial light-vehicle cybersecurity guidelines” that will “help provide the foundation for safe, reliable and secure vehicle systems.”

Source: ENISA Jumpstarts Connected Car Cybersecurity Study for EU | HL Chronicle of Data Protection