Industrial environments and critical infrastructure often have different types of computing equipment, a wide array of manufacturers, different communications protocols, physical access controls, and stringent regulatory compliance requirements compared to general purpose or "office" environments. Operational Technology (OT) and Critical Infrastructure ecosystems also have requirements for high security and sometimes face different types of threats. In this session, we'll consider how OT and ICS environments differ from regular IT, the challenges they face in securing their assets, as well as technical approaches to providing layered security for OT and ICS.
Vehicles have long ceased to be isolated objects. Whether in their production process or in their daily use, they are part of an automotive ecosystem. Every area from design and production to ongoing operation and maintenance is subject to cyber threats. Legislators and regulators have understood this as a central challenge and are taking the industry (OEMs, supply chain) substantially to task. UNECE R155, ISO/SAE 21434, Automotive SPICE and other frameworks demand for wide ranging Cybersecurity concepts. The implementation of a Cyber Security Management System (CSMS) is an essential foundation for the development, production and operation of connected and intelligent vehicles within a very short timeframe for these industries.
This must lead to a fundamental cultural change in the automotive industry towards security-by-design. Matthias Reinwarth gives an overview of what is required and when, and where we stand in the implementation today.