Talk, AutoSec | Lunch seminar, Gothenburg, Sweden
At the AutoSec lunch seminar organised by Chalmers and RISE, I presented a walk through of a the hack of a Hyundai’s infotainment system. It highlights the major security pitfalls that ultimately allowed a dedicated and patient programmer to ultimately program and run his own applications on his car’s infotainment system. The description of the hack can be found here.
Talk, AutoSec | CyReV Conference, Gothenburg, Sweden
At this spring’s AutoSec conference organised by Chalmers and RISE, I presented our work about resilience techniques for automotive systems (REMIND) and a vehicle to cloud anomaly detection framework (V2C Anomaly Detection).
Ph.D. Defense Presentation, Chalmers University, Gothenburg, Sweden
Vehicular security was long limited to physical security - to prevent theft. However, the trend of adding more comfort functions and delegating advanced driving tasks back to the vehicle increased the magnitude of attacks, making cybersecurity inevitable. Attackers only need to find one vulnerability in the myriad of electronic control units (ECUs) and communication technologies used in a vehicle to compromise its functions. Vehicles might also be attacked by the owners, who want to modify or even disable certain vehicle functions.
Talk, [AutoSec + OWASP] Christmas Seminar, Gothenburg, Sweden
We already have best practices and mechanisms for functional safety in place, however, a structured or standardised approach for identifying specific security mechanisms mandatory to be implemented are missing for the automotive domain. Our proposed approach covers basic security demands and enables a closer cooperation between safety and security work.
Licentiate Seminar, Chalmers University, Gothenburg, Sweden
Vehicular security was long limited to physical security - to prevent theft. However, the trend of adding more comfort functions and delegating advanced driving tasks back to the vehicle increased the magnitude of attacks, making cybersecurity inevitable. Attackers only need to find one vulnerability in the myriad of electronic control units (ECUs) and communication technologies used in a vehicle to compromise its functions. Vehicles might also be attacked by the owners, who want to modify or even disable certain vehicle functions.