Implementing PKI at Daimler AG: Motivation, Challenges, Lessons Learned

Implementing PKI at Daimler AG: Motivation, Challenges, Lessons Learned

This roundtable will cover the experience of implementing PKI at Daimler AG. It will cover the motivation for embarking on the project including the business drivers. It will describe the challenges, both business and technical, that were encountered in realizing this highly complex piece of technical infrastructure. It will highlight the lessons that were learned by Daimler AG that could be useful to other automotive organizations attempting a similar project.

After attending this Roundtable you will be able to:

• Describe the business and technical reasons why PKI was implemented at Daimler AG.
• Describe the business and technical challenges that were met during this project and how they were solved.
• Describe the lessons that were learned during the project.

This Roundtable block qualifies for up to 2 Group Learning based CPEs depending on the number of sessions you attend.

Connected Vehicle & The Internet of Things: How to adapt your Infrastructure

1. Authentication: do we need single sign-on for vehicles, vehicle identifiers (like MAC addresses)? What authorisation schemes are used in cars? Even engine control systems seem to be fairly open so that different engineers can work on them, does this need to change as more electronic gadgetry is introduced to vehicles?
2. Communication: the main issue within cars seems to be that there are multiple networks meeting in a single interface. Are these recognised by the manufacturers? Are they kept separate, air-gapped? What about the driver, can they cause vulnerabilities in the communication stream? Are the communication streams really sensitive enough that a hacker could take control of the vehicle?
3. Data Encryption: What data do we have in our cars that could be sensitive to attack? Is this data prone to leaking?