12th International VDI Conference - Cyber Security for Vehicles

Dr. Mathias Dehm, AUMOVIO Autonomous Mobility Germany

• Introduction of the NVIDIA DRIVE platform and the Thor SoC
• Overview of NVIDIA‘s ASIC development process and how we introduced ISO/ SAE 21434 into it
• Discussing challenges we faced implementing each of the ISO‘s chapters into our chip development process 

Daniel Wegemer, Senior Hardware Security Architect, NVIDIA, Germany

• The role of information and intelligence sharing in improving cyber security
• How Auto-ISAC supports alignment with evolving regulations and standards
• Real-time information and intelligence sharing across 19 Working Groups
• Member-driven knowledge and insights delivered through Auto-ISAC products 

Faye Francy, Executive Director, Auto-ISAC, USA

• Ecosystem overview: who connects to whom, and what data is exchanged
• Where attacks can realistically happen along the chain
• So what: business impact and what to fix first—together 

Konrad Fels, M. Sc, Competence Unit Manager E-Mobility 
Georg Graupner, MBA, Competence Unit Manager Embedded Cybersecurity, 
both: NTT DATA Deutschland SE, Germany

• How risk assessments can be turned into practical, cost-efficient security controls
• The trade-offs between protection, performance, cost, and SoC capabilities
• How OEMs and suppliers can align control decisions across the vehicle lifecycle 

Falk Mayer, Founder & Managing Director, CYMETRIS, Germany

• How API design oversights scale into vehicle and fleet vulnerabilities
• Why IT-centric API security tools miss critical context
• The power of live digital twin technology: how correlating API traffic with telematics, and in-vehicle signals reveals real-world impact 

Dr. Matthias Lenk, Sales Director, Europe, Upstream, Germany

• Background on Fault Injection Attacks
• Fault Injection Attacks and UN R155/ISO 21434
• Mitigations Against Fault Injection Attacks 

Ondrej Šuffner, Product Security Testing Manager, Accenture, Czech Republic 
Dr. Daniel Schmidt, Firmware and Embedded Engineering Manager, Accenture, Germany

• Alignment of the ISO/SAE 21434 cybersecurity lifecycle with the semiconductor SoC development lifecycle
• TARA and risk assessment for out-of-context (OoC) SoCs and IP components
• Automotive-relevant attack scenarios on SoCs and IPs 

Dipl.-Wirt.-Phys. Dipl.-Phys. Jürgen Helmschmidt, Dipl.-WiInf. Natascha Freitag, SGS TÜV Saar GmbH, Germany

• Compilers can silently introduce vulnerabilities in embedded systems
• TARA vulnerabilities and  the conditions under which they arise
• Improved toolchain validation to strengthen software security and development processes 

Dipl. Ing. Rudolf Grave, Head of Compiler R&D, TASKING, Germany

• Trust Boundary Conflicts in Multi-Domain SDV Platforms
• Integrated Vehicle Key Management System
• PQC-Ready Key Management Policy Strategy 

Joohwa Sarah Lee, Managing Director, Autocrypt Technologies GmbH, Germany

At the end of the first conference day we kindly invite you to use the relaxed and informal atmosphere for in-depth conversations with other participants and speakers.

Join the industry experts and discuss challenges and opportunities of cyber security in vehicles. Ask your questions and contribute to the session with your valuable insights and expertise.

• Overview of the current landscape of regulatory requirements, complemented by established standards and publicly available solutions
• Insights that can be drawn from existing technical and methodological approaches to cybersecurity monitoring in modern vehicle architectures
• Requirements aimed at enabling a holistic security-monitoring approach for Software Defined Vehicles 

Dr. Alexandre Berthold, Senior Expert - Automotive Cyber Security, Volkswagen, Germany

• Edge AI enables fast, local threat detection in connected vehicles
• Deployment requires efficient, reliable, and securely updateable AI models
• Combining edge and cloud security can make SDVs more cyber-resilient 

Gregor Knappik, Senior Solution Architect Cybersecurity, VicOne, Germany

• Introduction to an AI-native Intrusion Detection and Prevention System (IDPS) for modern automotive environments
• Use of LSTM networks and Variational Autoencoders (VAEs) to detect and mitigate zero-day attacks in real time
• Optimization for embedded ECUs and high-throughput zonal gateways with low latency and reduced false positives Strategies to protect AI models from adversarial attacks and data poisoning
• Secure training and validation approaches to ensure model integrity and robustness
• Alignment with ISO/SAE 21434 cybersecurity and privacy requirements 

Thiyaneswaran Murthi, Senior Technical Architect, Bosch Global Software Technologies, India 
Jayaram Ganapathy, Senior Engineer, Bosch Global Software Technologies, India

• Modern automotive E/E architectures enable a variety of different securitycritical use cases and business models
• The requirements regarding security, safety, and performance capabilities vary depending on the application
• This talk presents a holistic security concept for raising the overall security level of modern vehicles while acknowledging their heterogeneous requirements 

Dr. Christian Plappert, Head of Cyber-Physical Systems Security, Fraunhofer SIT, Germany

• Introduction into technical and processual challenges of long term vehicle maintenance
• Observation of adaptive strategies to leverage lightweight cryptography as a flexible tool
• Investigation of use-cases and real-world scenarios where lightweight methods greatly expand the solution space 

Michael Gerhard Schneider, Principal Expert Product Cybersecurity and Privacy, AUMOVIO, Germany