The EU's new cybersecurity regulations are causing ripples in the auto industry, leading to the end of production of some older models.these are
…
- The EU's new cybersecurity regulations are causing ripples in the auto industry, leading to the end of production of some older models. These regulations mandate strict cybersecurity measures for vehicles and are a response to the growing threat of cyberattacks on modern vehicles.
In today's technologically advanced world, modern cars are equipped with countless cameras and high-tech sensors that support a variety of safety and convenience systems. While these technological advances have revolutionized the driving experience, they have also made vehicles vulnerable to cyber-attacks and hacking attempts.
This has led global regulatory bodies such as the United Nations and the European Union to introduce strict rules regarding automotive cybersecurity.
UN Regulation R155, effective from July 2022, requires automotive OEMs to have management systems in place to address cybersecurity threats. Additionally, R156 ensures that vehicle software updates are performed securely to protect against cyber threats. These regulations will apply to all new cars sold in the European Union from July 7, 2024, highlighting the seriousness of cybersecurity issues in the automotive industry.
Impact on car manufacturers and car models
The introduction of these regulations has forced several car manufacturers to discontinue older models from their lineups in the European market. The cost of upgrading the electronics in these vehicles to comply with new cybersecurity standards was considered prohibitive. Affected models include the VW Up!, VW Transporter 6.1, Porsche Macan with ICE, and Porsche 718 Boxster/Cayman. Furthermore, models from Audi, Renault, and Smart are also reportedly scheduled to be discontinued due to these regulations.
Also read: Center suggests vehicle security system to prevent cyber threats in India
However, some automakers such as Mercedes-Benz insist they are well prepared for the new regulations and say their portfolios will not be affected. Despite these assurances, the impact of cybersecurity regulations on the automotive industry is significant, leading to a shift in focus to ensuring the security of vehicle systems and software.
SATA privacy and surveillance concerns
The increased use of cameras and sensors in modern cars has raised concerns about data privacy and surveillance. Economist Moritz Schlalick says modern electric vehicles (EVs) are being used as “four-wheeled spy machines”, collecting sensitive data and transmitting it to manufacturers, some based in China. He expressed concern that this may be the case. This raises questions about the extent of foreign government surveillance through the millions of connected cars on the road.
According to a recent study titled “Automotive Cyber Security” conducted by the German Automotive Management Center (CAM) and Cisco Systems, cybersecurity threats in cars are imminent. This research highlights the vulnerability of modern vehicles to cyber-attacks, especially with the proliferation of software-defined vehicles, electromobility, autonomous driving, and interconnected supply chains.
The introduction of strict regulations by global regulatory bodies reflects the seriousness of the problem and the need for automakers to prioritize vehicle cybersecurity.
First edition publication date: April 18, 2024, 7:05 AM IST
