Automotive industry releases vehicle cybersecurity best practices

Members of the US Automotive Information Sharing and Analysis Center (Auto-ISAC) have released an overview of comprehensive Automotive Cybersecurity Best Practices, developed as a proactive measure to further enhance vehicle cybersecurity throughout the industry. The Executive Summary has been released publicly on the Auto-ISAC website. The Best Practices provide guidance to assist an organisation's development in seven key topic areas, including governance, risk assessment and management, threat de

July 22, 2016 Read time: 2 mins

Members of the US Automotive Information Sharing and Analysis Center (Auto-ISAC) have released an overview of comprehensive Automotive Cybersecurity Best Practices, developed as a proactive measure to further enhance vehicle cybersecurity throughout the industry.

The Executive Summary has been released publicly on the Auto-ISAC website. The Best Practices provide guidance to assist an organisation's development in seven key topic areas, including governance, risk assessment and management, threat detection and protection incident response, security by design, awareness and training and more.

The Best Practices provide deep technical and organizational breadth to support, develop, and improve defences against potential cybersecurity threats of the motor vehicle network. They are grounded in ISO, NIST and other established cybersecurity frameworks but are tailored to the motor vehicle. Auto-ISAC members have committed to continuously enhancing the Best Practices over time to keep pace with the constantly evolving cyber landscape.

"Automakers are committed to being proactive and will not wait for cyber threats to materialise into safety risks," said Auto-ISAC chairman Tom Stricker of Toyota.

Location Based Systems

Related Content

May 6, 2020

Don’t forget security threat, says Econolite

A new level of communication is helping deliver on the promise of Vision Zero and a more sustainable future. But amid the promise, Econolite’s Sunny Chakravarty suggests we need to be mindful of the potential downsides in an age of mass connectivity

Read More
June 11, 2015

Bigger role for data protection and privacy policies in transportation

Dr Caitlin Cottrill, lecturer at the University of Aberdeen’s School of Geosciences, examines the impact of privacy legislation on the transportation sector. Growing reliance on big data, underscored by the increasing ubiquity of smart infrastructure and the ‘Internet of Things’, has profoundly impacted the regulatory environment experienced by transportation professionals. This is particularly the case in relation to the privacy of personally identifying information (PII). There has been increased attenti

Read More
June 7, 2018

Gridsmart tackling infrastructure security threat

A new division, formed by Gridsmart Technologies only three weeks ago, is making its public debut here at ITS America Detroit. Gridsmart Information Security & Threat Intelligence (ISTI) is an industry first-of-its-kind transportation cybersecurity group dedicated to providing vulnerability/threat assessments and tailored security strategies. It will work with private companies, departments of transportation, and others to proactively defend and enhance the resiliency of their technical infrastructure

Read More
December 9, 2021

Cybersecurity isn't infrastructure? Like hell it isn't

This recent quote by the Mayor LaToya Cantrell of New Orleans is instructive. The transportation industry has made significant strides in awareness of the cyber vulnerabilities of traffic systems. Despite these improvements, we’ve yet to see the majority of DOTs take sufficient cybersecurity actions.

Read More

Highlighted Content

June 4, 2025

Are we nearly there yet? The rise and rise of AI in WiM

June 6, 2025

TxDoT takes Command with Rekor

June 9, 2025

The origin story of ITS World Congress

June 10, 2025

Cracking the congestion code