TÜV Informationstechnik GmbH

The International Automobile Federation (FIA) has asked TUVIT (the digital innovation member of the TÜV NORD company group) to conduct a study on how a cybersecurity architecture as part of the On-board Telematics Platform (OTP) can ensure data protection as well as IT security of a connected vehicle and the interconnected traffic as a precondition for future fully automated driving. The report linked belowdescribes a model design of security functionalities modularized in different security layers,suggests the grouping of different automotive stakeholders to suitable access rolesso that an Automotive Gateway (A-GW) inside the vehicle could control any remote access in a secure way andduring the whole lifetime. Rapidly developing information technology will also allow innovation for independent service providers (ISP). Local diagnostics and direct access to in-vehicle data, functions and resources in case of a car breakdown may in many cases be replaced with remote diagnostic support that allows a remote diagnostician to communicate with the driver over the air and resolve the cause of the breakdown. IT systems for prognostics by ISPs could also support the driver as he will be informed about problems inside the car before a breakdown is going to happen. Therefore, remote access must be feasible for an authorized ISP. Besides, implemented security functionalities must prevent unauthorized access attempts during the whole lifetime and need to recognize misuse.In all cases the European General Data Protection Regulation (GDPR) has to be fulfilled: If a vehicle is assigned to an owner and whenever persons are in the car, personal data will arise automatically. In order to ensure their consent to any data being transmitted to and from the vehicle, those persons should in most cases have the possibility to opt in or opt out.The International Automobile Federation (FIA) has asked TUVIT (the digital innovation member of the TÜV NORD company group) to conduct a study on how a cybersecurity architecture as part of the On-board Telematics Platform (OTP) can ensure data protection as well as IT security of a connected vehicle and the interconnected traffic as a precondition for future fully automated driving.

Darktrace, a global leader in cyber security AI, delivers world-class technology that protects over 6,500 customers worldwide from advanced threats, including ransomware and cloud and SaaS attacks. The company’s fundamentally different approach applies Self-Learning AI to enable machines to understand the business in order to autonomously defend it. Headquartered in Cambridge, UK, the company has 1,500 employees and over 30 offices worldwide. Darktrace was named one of TIME magazine’s ‘Most Influential Companies’ for 2021

GrammaTech enables organizations to develop software applications more efficiently, on-budget, and on-schedule by helping to eliminate harmful defects that can cause system failures, enable data breaches, and ultimately increase corporate liabilities in today’s connected world.GrammaTech is the developer of CodeSonar, the most powerful source and binary code analysis solution available today. Extraordinarily precise, CodeSonar finds, on average, 2 times more serious defects in software than other static analysis solutions. Designed for organizations with zero tolerance for defects and vulnerabilities in their applications, CodeSonar provides static analysis for applications where reliability and security are paramount - widely used by software developers in avionics, medical, automotive, industrial control, and other mission-critical applications. Some of GrammaTech's customers include Toyota, GE, Hyundai, Kawasaki, LG, Lockheed Martin, NASA, Northrop Grumman, Panasonic, and Samsung.Originally a spin-off of Cornell University, GrammaTech was co-founded by Thomas Reps and Tim Teitelbaum in Ithaca, NY. In addition to its commercial products, GrammaTech has performed cutting-edge research since it was founded for several government agencies, leveraging GrammaTech's engineering-centric staff and 20 PhD static analysis experts, all focused on creating the most innovative and in-depth analysis algorithms.

Applied Risk is focussed on critical infrastructure security and combating security breaches that pose a significant threat.

NanoLock Security protects the operational integrity of industrial devices, machines and manufacturing lines against cyber events and human errors to maintain business continuity, improve safety and safeguard revenues. NanoLock is the only zero-trust, device-level solution that prevents outsiders as well as insiders and supply chain cyber events and even human errors in legacy and new devices, regardless of attack origin or exploited vulnerability and without affecting functionality and performance.NanoLock fuels Industry 4.0 revolution with a zero-trust protection that is mandatory to critical infrastructures, such as industrial and manufacturing companies as well as utilities. NanoLock secures industrial devices like Smart Meters, RTUs, data cocentrators, EV chargers, industrial machines, PLCs and production lines, against a wide range of external and internal attacks.Trusted by critical infrastructure customers, such as utilities, industrial and manufacturing companies,NanoLock Security protects power generation, water and wastewater plants and food & beverage manufacturing as well as industrial production, while ensuring compliance with international security standards and guidelines.NanoLock Security is the winner of multiple industry awards¸ including the prestigious “2021 Top 10 for Baby Black Unicorns”¸ Tracxn’s “Emerging Startups 2021- minicorn“¸ MWC Barcelona “4YFN Startup of the Year” award and more. the American Cyber Award for “Best Security Company of the Year under 150 staff” and the CyberSecurity breakthrough award for the “Overall IoT Security Solution provider of the Year”.NanoLock is headquartered in Israel with offices in the US, Europe, and Japan.

BugProve offers a Firmware analysis tool that speeds up security testing processes and supports compliance needs by automating repetitive tasks and detecting 0-day vulnerabilities.