William Whyte, Chief Scientist, Security Innovation.  On December 20th, 2016, the US Department of Transportation released a Notice of Proposed Rulemaking (NPRM) which will, when it becomes a regulation, require all new light vehicles in the US to be equipped with Vehicle-to-vehicle communications capabilities. Already, plans are in progress for 8,000 and 2,500 vehicle deployments in New York City and Tampa, respectively, in 2017-18 and GM is planning to make equipped vehicles commercially available in the first half of 2017.

These vehicles will send signed messages ten times a second which receivers will use for efficiency, for mobility, and for safety of life and collision avoidance purposes. Given the safety-of-life use of these messages, it is vital that the underlying software platform is secure and trusted. Given the size of the market — 17 million a year — it is important to develop specific security requirements for those platforms early, so that vendors have a chance to go to market with a compliant solution.

In this presentation we will:
* Provide an overview of the Connected Vehicle security subsystem and current deployments
* Describe the platform and hardware security requirements that have been considered in trial deployments to date
* Outline the current requirements for Pilot Deployments
* Provide an overview of ongoing research and specification efforts and likely timelines for a final set of requirements
* Present on current certification practices for V2X security and how they might evolve

Industry Vertical/Embedded Crypto Track