For inquiries about GlobalPlatform or website assistance, contact secretariat@globalplatform.org.

Automotive cybersecurity has become a hot topic for a number of reasons. New international regulations (e.g. UNECE 155 and 156), an increase in emphasis on software based solutions and challenges from recent chip shortages have led OEMs to reassess their software approach. In response, GlobalPlatform initiated a direct focus on automotive, bringing together the full value chain of actors, to cooperate on hardware protected security environments for outstanding industry requirements and addressing priority security use cases.

GlobalPlatform’s goal is to develop a common set of non-differentiated standardized security services to support software-defined vehicles. GlobalPlatform is working with SAE International, Autosar, CCC, and AutoIsac to coordinate on common evolving requirements for future use cases.

GlobalPlatform’s relevance to automotive security

GlobalPlatform’s existing security specifications for Secure Element (SE) and Trusted Execution Environment (TEE) strongly align with the Society of Automotive Engineer’s (SAE) J3101 recommended practices for hardware protected security environments for ground vehicles.

As of 2023, over 192 Million SEs and over 100 million GlobalPlatform compliant TEEs are actively used in vehicles.

Automotive Task Force Objectives:

GlobalPlatform’s Automotive Task Force focuses on identifying alignment issues between Automotive requirements and GlobalPlatform specifications, in particular to:

  • Define requirements for secure components and services in the automotive industry related to GlobalPlatform technology, including Secure Element (SE), Trusted Execution Environment (TEE) and and mechanisms allowing access to platform services and other innovative isolation technologies.
  • Provide input into GlobalPlatform’s technical committees on how GlobalPlatform specifications can be advanced to extend the support to automotive requirements
  • Provide guidelines to the full value chain on the use of GlobalPlatform technology for automotive use cases
  • Foster common definitions, and where relevant, alignment with standards bodies regarding automotive use cases
  • Provide insight to the Automotive industry on:
    • Future-proofing secure components through roadmaps for migration to Post-Quantum Cryptography (PQC) and through guidance leveraging Software Bill of Materials (SBOM) in the software update process
    • Leveraging SESIP as a Security Evaluation Methodology in demonstrating compliance to automotive security requirements

The Automotive Task Force is chaired by Richard Hayton from Trustonic and all GlobalPlatform members are eligible to participate.

Current priorities for 2024

Automotive Standards Alignment with SAE & AUTOSAR

Demonstrating GlobalPlatform's fulfilment of SAE’s requirements of Hardware Protected Security Environments - J3101 and how GlobalPlatform provides security support to AUTOSAR’s upper software layers.

Autonomous Vehicle Security

Developing a blueprint for Secure Elements and Trusted Execution Environments and analysing and amending recommendations for AV security technologies.

Vehicle Attack Mapping

Analyzing the stages of vehicle cyberattacks to determine the objectives and methods of an attack to evaluate defense systems and then develop the appropriate safeguards.

GlobalPlatform’s Cybersecurity Vehicle Forum brings together the automotive value chain and experts on trusted digital services to address the latest developments in automotive cybersecurity and work together to future proof the next generation of connected services. Open to members and non-members, free of charge.

UPCOMING EVENTS

December

Cybersecurity Vehicle Forum
04 December

PAST EVENTS

June

Cybersecurity Vehicle Forum - Detroit – Novi, MI
04 June

Cybersecurity Vehicle Forum - Plymouth, MI
20 June

November

Cybersecurity Vehicle Forum - Hamburg, Germany
14 November

October

Cybersecurity Vehicle Forum - Beijing, China
24 October

September

Cybersecurity Vehicle Forum Virtual Update
25 September

Cybersecurity Vehicle Forum - Tokyo, Japan
14 September

March

Cybersecurity Vehicle Forum
31 March

Why Get Involved

Now is a valuable opportunity for the industry to engage on the requirements and priority use cases that the technical committees will use to base their development work for secure elements, trusted execution environments, security APIs, etc. In this way, automotive value chain actors drive the basis for market solutions, as opposed to merely choosing between available options.

To learn more about the value of GlobalPlatform membership, please contact automotive@globalplatform.org.

 

Related Content

Trust and Security in Automotive Systems

This whitepaper provides an overview of GlobalPlatform security technologies, which leverage best-in-class security solutions demonstrated over 20 years in the development of digital services for the mass market.

Download Whitepaper

View presentations from previous Cybersecurity Vehicle Forums

Access presentations and recordings from previous Cybersecurity Vehicle Forum events held in Detroit, Tokyo, Beijing, and Hamburg.

View here

Register for upcoming Cybersecurity Vehicle Forum events

Automotive stakeholders are invited to join the Cybersecurity Vehicle Forum to discuss the cybersecurity challenges around secure components, security APIs, and trusted platform services.

Register here
Chairs

Richard Hayton

TES Committee Chair
Automotive Task Force Chair

Trustonic

Richard is on the Board of Directors, and is also the Chair of the TES Committee and Automotive Task Force at GlobalPlatform where he contributes to the organization’s technical initiatives bringing over 30 years of experience in the cybersecurity industry. Richard is a regular speaker and influencer in the cybersecurity arena.

At Trustonic, Richard’s focus has been on enabling the telecoms industry – manufacturers and mobile operators, the automotive industry as well as application developers, to all benefit from embedded security and strong device identity. Prior to Trustonic, Richard held various roles at Citrix including Chief Architect, Distinguished Engineer and Chief Technology Officer. During 20 years at Citrix, he led projects ranging from embedded software to global enterprise systems, with a focus on user and developer experience.

He holds a PhD in Computer Science from Cambridge University, focusing on identity federation for users, devices and services.

Francesca Forestieri

Automotive Lead

GlobalPlatform

Francesca Forrestieri is GlobalPlatform’s Automotive Lead and is responsible for connecting the automotive value chain with experts on trusted digital services to address the latest developments in the automotive ecosystem and work to future-proof connected services.

Interested in joining the Automotive Task Force?

GlobalPlatform
Hey There!

It seems you are using an outdated browser, unfortunately this means that our website will not render properly for you. Update your browser to view this website correctly.

GOOGLE CHROME
FIREFOX
MICROSOFT EDGE