Sign up to save your podcasts
Or
Share Navigating Automotive Security Growth with Slava Bronfman
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Navigating Automotive Security Growth with Slava Bronfman
Welcome to Security Breaks Podcast! In this pillar episode, John Heldreth and Slava Bronfman discuss the evolution and challenges of automotive cybersecurity. They delve into the differences between functional safety and product security, highlighting the importance of understanding the dynamic nature of security in contrast to the relatively static world of safety. The conversation also explores the maturity levels of OEMs and suppliers in implementing security frameworks and the role of regulations and standards in driving industry practices forward.
Key Takeaways:- Automotive cybersecurity has evolved from research-led projects to comprehensive programs within OEMs and suppliers, but there remains a wide variance in maturity levels across the industry.
- The distinction between functional safety and product security lies in the magnitude, practices, and dynamic nature of security compared to safety.
- The adoption of tools and processes, even if rudimentary like Excel, marks progress in establishing security frameworks within organizations.
- Achieving scalable security solutions requires a holistic approach encompassing methods, processes, organization, and technology.
Quotes:
- "The commitment to continuous improvement and adaptation is key to addressing the complexities of automotive cybersecurity."
- "The distinction between functional safety and product security lies in the magnitude, practices, and dynamic nature of security compared to safety."
Timestamps:
(16:05) John starts discussing the importance of processes, methods, organization, and tooling in automotive cybersecurity.
(17:32) Slava Bronfman responds affirmatively to John's points.
(18:43) John and Slava discuss the potential consequences of OEMs being blind to vulnerabilities in their vehicles.
(20:50) They discuss the importance of proactive security measures in preventing incidents.
(21:55) Slava shares insights into the alignment between OEMs and suppliers regarding cybersecurity.
(24:42) The conversation shifts to the future of automotive cybersecurity.
(25:53) Slava discusses the challenges posed by emerging technologies such as software-defined vehicles.
(29:48) They discuss the potential impact of quantum computing and autonomous driving on cybersecurity.
(33:11) John emphasizes the importance of responsible disclosure for researchers and hackers.
(34:42) Slava provides an overview of Cybellum and its role in automotive cybersecurity.
(38:03) They discuss the future development of Cybellum and its focus on AI and ML technologies.
(42:14) The podcast concludes with closing remarks and reflections on the challenges and opportunities in automotive cybersecurity.
About The Guest:
Slava Bronfman is a cybersecurity expert with a background in software engineering and extensive experience in the automotive industry. He co-founded Cybellum, a company specializing in automotive cybersecurity solutions, and has been instrumental in shaping the direction of automotive security practices.
Connect with Slava Bronfman:LinkedIn: Slava Bronfman
Website: Cybellum
Connect With ASRG:- ASRG Website
- ASRG Facebook Page
- ASRG LinkedIn
Please leave us a rating and a review.
View all episodes
By Automotive Security Research GroupWelcome to Security Breaks Podcast! In this pillar episode, John Heldreth and Slava Bronfman discuss the evolution and challenges of automotive cybersecurity. They delve into the differences between functional safety and product security, highlighting the importance of understanding the dynamic nature of security in contrast to the relatively static world of safety. The conversation also explores the maturity levels of OEMs and suppliers in implementing security frameworks and the role of regulations and standards in driving industry practices forward.
Key Takeaways:- Automotive cybersecurity has evolved from research-led projects to comprehensive programs within OEMs and suppliers, but there remains a wide variance in maturity levels across the industry.
- The distinction between functional safety and product security lies in the magnitude, practices, and dynamic nature of security compared to safety.
- The adoption of tools and processes, even if rudimentary like Excel, marks progress in establishing security frameworks within organizations.
- Achieving scalable security solutions requires a holistic approach encompassing methods, processes, organization, and technology.
Quotes:
- "The commitment to continuous improvement and adaptation is key to addressing the complexities of automotive cybersecurity."
- "The distinction between functional safety and product security lies in the magnitude, practices, and dynamic nature of security compared to safety."
Timestamps:
(16:05) John starts discussing the importance of processes, methods, organization, and tooling in automotive cybersecurity.
(17:32) Slava Bronfman responds affirmatively to John's points.
(18:43) John and Slava discuss the potential consequences of OEMs being blind to vulnerabilities in their vehicles.
(20:50) They discuss the importance of proactive security measures in preventing incidents.
(21:55) Slava shares insights into the alignment between OEMs and suppliers regarding cybersecurity.
(24:42) The conversation shifts to the future of automotive cybersecurity.
(25:53) Slava discusses the challenges posed by emerging technologies such as software-defined vehicles.
(29:48) They discuss the potential impact of quantum computing and autonomous driving on cybersecurity.
(33:11) John emphasizes the importance of responsible disclosure for researchers and hackers.
(34:42) Slava provides an overview of Cybellum and its role in automotive cybersecurity.
(38:03) They discuss the future development of Cybellum and its focus on AI and ML technologies.
(42:14) The podcast concludes with closing remarks and reflections on the challenges and opportunities in automotive cybersecurity.
About The Guest:
Slava Bronfman is a cybersecurity expert with a background in software engineering and extensive experience in the automotive industry. He co-founded Cybellum, a company specializing in automotive cybersecurity solutions, and has been instrumental in shaping the direction of automotive security practices.
Connect with Slava Bronfman:LinkedIn: Slava Bronfman
Website: Cybellum
Connect With ASRG:- ASRG Website
- ASRG Facebook Page
- ASRG LinkedIn
Please leave us a rating and a review.