Cybersecurity Challenges for Connected Off-Highway Vehicles

Explore the trends, risks and regulatory environments in both on- and off-highway connectivity.

April 17, 2024
Elisabeth WaitzGabriel Byman
Elektrobit
Ekb 08 Security Loop Embedded Security 02 000100 Rgb Highres Ppt
Elektrobit

As connected mobility becomes a reality, so too do the dangers posed by cybersecurity threats to autonomous driving and software-defined mobility. Threats posed by hacking, malicious software and unauthorized access require constant vigilance from software product and service providers. Just as with passenger vehicles, a substantial percentage of all off-highway vehicles (OHVs) will be connected — many already are. While OHV connectivity can provide many benefits, it also makes the vehicles vulnerable to the same cybersecurity attacks faced by on-highway private and commercial vehicles.

Hackers & Threats

Wireless connections provide opportunities for vehicle attacks. Connected interfaces are a potential path of attack for denial of service attempts, remote hacking or malware injection via connected interfaces. These threats can impact system functionality, road use safety or data with privacy attributes that are necessary to comply with legal data protection restrictions.

While OTA software updates provide a potential entry point for a hacker, they are, more significantly, an important countermeasure to react to vulnerabilities and threats. Therefore, the vast majority of all OHVs will be connected, due to the many benefits connectivity provides.

Automation is already more advanced in OHVs than automated driving is in on-road passenger or commercial vehicles because the operating environment in which they are operating is usually an easier, more controllable space. For example, an autonomous tractor could be serving a well-defined space limited by GPS coordinates, such as a field that needs plowing. The operational environment is less complex because there are fewer participants, less traffic and fewer unforeseeable or unexpected obstacles and changes to the environment.

Nevertheless, these vehicles usually operate in a publicly accessible area. Just as in the case of any other vehicle, cybersecurity concerns are real and potentially extremely dangerous as they can impact the safety of on- and off-road users.

Cybersecurity Legislation

OHV OEMs approach cybersecurity differently than conventional vehicle manufacturers. In Europe, rather than adhering to the United Nations’ (UN) cybersecurity regulations, OEMs will be required to follow the Cyber Resilience Act (CRA) or other applicable local regulations.

In the European Union (EU), the CRA has created a legal framework describing cybersecurity requirements for hardware and software products with digital elements including on- and off- road commercial vehicles, but excluding vehicles covered by UN regulation R155. In December 2023, the CRA was agreed to in principle by the EU and will be formally approved in 2024, coming into force over a phased transition period commencing from the end of 2025. Meanwhile in 2023, the U.S. introduced the Cyber Trust Mark, a voluntary cybersecurity certification and labeling program for connected devices and other U.S. executive orders

Fundamental Differences

A key difference between on- and off-highway vehicles in terms of cybersecurity is the number of potentially impacted vehicles in case of a security incident. Production runs of OHVs are generally smaller.

While the size of a fleet for one model of on-road vehicles can easily exceed 150,000 vehicles in one region, typical tractor fleet sizes, for example, may range between 100 to 10,000 vehicles per region. By implication, a security breach of a road vehicle could affect more vehicles than an off-highway vehicle. Another difference might be the motivation and execution of an attack. An attack targeted at on-road vehicles often applies to the whole fleet, i.e., a potentially high number of vehicles, to threaten or blackmail users or OEMs of the individual vehicles. Agricultural machines and tractors, on the other hand, are far more expensive and therefore a popular target for theft (versus blackmail or threats).

Nevertheless, to build secure systems, the off-highway sector must consider fundamental security principles and best practices common to both on-road vehicles and OHVs. It is vital to maintain security over the entire vehicle life cycle. With connected vehicles, security measures cannot guarantee to prevent attacks completely and must accept that attacks to the vehicles are possible and will happen. Cybersecurity must address vehicle protection not only by hardening systems, but also by detecting ongoing attacks or threats. New threats can also arise due to advances in technology or new publicly known vulnerabilities. As a result, OEMs and operators must continuously monitor the industry, vehicle systems and events happening in its environment, and analyze accordingly. Furthermore, they need to be able to respond to incidents or new threats. Typically, this could entail disabling vulnerable functions or interfaces, adopting new or modifying existing security policies, deploying software updates or patches, or revoking and updating certificates.

A Layered Approach

To achieve end-to-end security, a layered approach to the vehicle’s architecture is necessary. Vehicles are connected and managed by backends, the cloud and infrastructure. Therefore, security also needs to consider this infrastructure, which includes vehicle operation centers with key management, fleet management and life cycle management. Connected vehicles communicate via external interfaces to protect themselves from attacks against their external communication channels, employing such countermeasures as firewalls, intrusion detection systems or secure communication channels. The protection of sensitive data must be considered from end to end so this kind of data is never communicated in plain text via an external interface.

The next layer to consider is the in-vehicle network. Its segmentation can isolate safety-critical functionality from a less critical subnetwork that is more exposed to outside attacks. In-vehicle communication can be protected by using secure protocols with an intrusion detection system monitoring its network communication.

The last security layer to be considered is protecting the electronic control units. Security countermeasures, such as secure boot, secure software update, authentication for secure diagnostics, isolation of different partitions, data protection and encryption, and operating system hardening, round out the package of vehicle security concepts.

Ultimately, highly all connected OHVs are vulnerable to cybersecurity attacks. While fundamental principles of cybersecurity best practices apply to both categories, significant differences continue to exist between on- and off-highway and vehicles relative to security risks, the potential impact of an attack and regulatory aspects. Reaching the goal of secure vehicles is only possible by addressing the whole life cycle of the vehicles’ systems and considering each layer of the system architecture.

Gabriel Byman is senior product manager, cybersecurity, and Elisabeth Waitz is senior expert, cybersecurity, at Elektrobit.


Recommended
Adobe Stock 270531549
April 2024 Equipment Market Outlook
Data suggests business confidence is improving, especially in the private nonresidential construction sector. However, borrowing conditions remain restrictive, signaling the further slowing of growth in construction ahead.
April 23, 2024
The Port of Baltimore is used by many of the largest construction machinery manufacturers.
What Effects Will the Baltimore Bridge Collapse Have on US Imports/Exports of Agricultural & Construction Machinery?
Following the collapse of the Baltimore Bridge and the suspension of traffic through the Port of Baltimore, construction and agriculture vehicle supply chains will be affected but the question is: How much?
April 11, 2024
New Final
Call for Products: OEM Off-Highway's 2024 Product Showcase
If you manufacture cutting-edge solutions for the mobile equipment industry, we want to see them — and so do our readers. Submit your product(s) for a chance to be featured in our comprehensive pictorial guide packed with industry-leading offerings.
April 1, 2024
Latest
091322 Agco Pontiac No 18186 (1)
AGCO Launches PTx Precision Ag Portfolio
The move aims to facilitate the growth of AGCO’s technology transformation and support the future development and distribution of next-generation ag technologies for farmers and OEMs.
April 8, 2024
Adobe Stock 225106727
Agriculture’s Merge Into the New Road Safety
Understanding the connected capabilities of interoperable vehicle-to-everything (V2X) technologies and the need for standardization.
April 8, 2024
Modern Cockpit with well-positioned multifunctional controls
6 Ways Operator Cockpit Designs Impact End-User Efficiency
From comfort and ergonomics to cutting-edge technology, learn how the cab is becoming a key differentiator in the off-road vehicle market.
April 5, 2024
Agco Trimble Id Ee44ea16f98c Logo
AGCO & Trimble Close Joint Venture, Form PTx Trimble
PTx Trimble combines Trimble's precision agriculture business and AGCO's JCA Technologies to form a new company that will serve farmers with factory fit and retrofit applications in the mixed-fleet precision agriculture market.
April 4, 2024
2480x750 Jcb Lgs Pr
JCB & Leica Geosystems Partner on 2D & 3D Semi-Automated Excavator Controls
The INTELLIGRADE solutions will be available initially on the JCB 220X tracked excavator in the UK before being offered across the whole JCB X Series range in additional regions.
March 27, 2024
Elevat Io T Logo
Elevāt & Superior Broom Announce Strategic Partnership
The move aims to provide road construction and street-sweeping equipment end-users with enhanced fleet management options, preventive maintenance and data-driven insights.
March 26, 2024
The CAN Actuator is a drive-by-wire alternative to the typical push/pull cable mechanical shifter to rotate the shift shaft on a variety of on- and off-highway vehicle transmissions, with this next generation technology developed to be easily adapted for transmissions from other OEMs.
Curtiss-Wright Unveils Updates & New Offerings at INTERMAT 2024
At the April trade show, the company aims to highlight its continued development of vehicle controllers, introduce updated sensor solutions and promote vehicle electrification with its eMobility Solutions portfolio.
March 25, 2024
HED Inc. has expanded its vehicle control system portfolio with the introduction of the CL-640 HVAC Panel.
HED Inc. Introduces the CL-640 HVAC Panel
The completely customizable CL-640 is designed for rugged applications to control and adjust temperature effectively inside on- and off-highway vehicles.
March 25, 2024
APEX display
APSCO Releases Interactive Dump Truck Controls, Electric Over Air Actuator & Integrated Reservoir Systems
The company expands its footprint across multiple applications with the announcement of four new product lines — the APEX, ARIS, ATAS and EDM Series.
March 18, 2024
Te Off Highway Agriculture
Navigating the Modern Productivity & Connectivity Obstacles of Off-Highway Applications
Learn what's amplifying equipment performance and reliability needs at the component level and how OEMs are rising to meet the challenge.
March 11, 2024
Septentrio Anta Rx Si3 Gnss Ins Smart Antenna Receiver Imu All In One
Septentrio Introduces AntaRx-Si3 Inertial GNSS Smart Antenna
The new GNSS/INS receiver uses FUSE+ technology to combine high-accuracy GNSS positioning with an IMU in the same enclosure as the GNSS antenna.
February 13, 2024
Picture11
Is it Finally Time to Switch?
Take a look at the industry's migration from electromechanical to digital switch technology in the cab and learn why it's important for engineers to weigh the benefits of both switch types.
February 5, 2024
Br82 Ks 01 00509
EAO Releases New Rugged Push-Button HMIs With Integrated Cables & Rear Sealing
EAO’s latest Series 82 devices are R118 certified for automotive applications and feature M12 connectors for enhanced operational reliability.
February 1, 2024
The PatriotPro features the rugged design and feel of the legacy Patriot product, and now boasts a new look and an advanced, future-ready technology platform.
Cattron Introduces Remtron PatriotPro Industrial Remote Control System
The operator control unit, which features a 600-foot operating range, is available in standard configurations and can be engineered to meet specific application requirements.
February 1, 2024
Eao Opc
EAO Introduces New Online Product Configurator
The interactive 3D tool gives engineers and designers the control to configure, compare and purchase modular products that meet their individual requirements.
January 23, 2024
Photo Hd Hyundai Google Gloud
HD Hyundai Teams Up With Google Cloud to Accelerate AI Innovation
The collaboration will introduce generative AI across Hyundai's core businesses, including its shipbuilding and construction machinery businesses in Korea.
January 18, 2024
Continental and Aurora reach partnership milestone by finalizing design of world’s first scalable autonomous trucking system.
Continental & Aurora Finalize Design of World’s First Scalable Autonomous Trucking System
The companies have finalized the design and architecture of the future fallback system and hardware of the Aurora Driver – an SAE Level 4 autonomous driving system – that Continental plans to start production of in 2027.
January 15, 2024
Coop Dt Torc Aev 240108 2 (1)
Daimler Truck, TORC Robotics & Aeva Partner on Series-Production Autonomous Trucks
The multiyear collaboration begins in the first quarter of 2024 with Aeva’s start of production by 2026 and Daimler Truck’s production ramping up by 2027.
January 10, 2024
The CP150 compact controller with newly developed standby mode: The wait for the electronics to start up again is com-pletely eliminated allowing the machine to be ready for operation more quickly
B&R Releases Standby Mode on X90 CP150 Compact Controller
As the first B&R controller with this newly developed standby mode, this release provides the option of restarting a machine or vehicle immediately after the engine was shut down for a short time.
January 8, 2024
Adobe Stock 250938892
State of the Industry 2023
Get seven professional perspectives and predictions about what's shaping the 2024 OEM landscape.
December 1, 2023
Agco+pr+ +agco+opens+acceleration+center+in+scottsdale+az+ +12 2023 56f2ba0f 0bf5 45a9 8abc Bebd8c968d69 Prv
AGCO Opens Acceleration Center in Scottsdale, Arizona
The center is dedicated to software and electronics development in the areas of autonomy, precision ag, artificial intelligence and digital products, and aims to deliver new, value-added precision ag technologies for farmers.
December 14, 2023
Hd Hyundai Xite Transformation Booth Image[1]
HD Hyundai Brings Xite Transformation to CES 2024
At the upcoming electronics trade show, the company plans to expand on its vision to now include transformative land infrastructure ideas, showcasing Future Xite, Twin Xite and Zero Xite.
December 20, 2023
Fort Safe Remote Control Pro Resized
FORT Robotics Introduces Safe Remote Control Pro
The rugged gaming-style controller can be paired with up to 30 machines, used with robots in warehousing and manufacturing, and also in heavy machinery in agriculture, construction, mining and more.
December 8, 2023
Cedrik Neike, CEO of Digital Industries and board member for Siemens AG and Keyvan Esfarjani, chief global operations officer for Intel Corp. pose for a photo to mark the signing of a memorandum of understanding by the companies to advance global manufacturing efforts. The deal was signed in Santa Clara, California, in December 2023.
Siemens & Intel to Collaborate on Advanced Semiconductor Manufacturing
The partnership will focus on driving digitalization and sustainability of microelectronics manufacturing and advancing future efforts, evolving factory operations and cybersecurity, and supporting a resilient global industry ecosystem.
December 5, 2023