Cyber Defense eMagazine December Edition for 2021

More documents

Recommendations

Info

wide electricity network due to repeated, simultaneous switching on/off of the charging current. It can also damage the vehicle battery being charged. All of these risk factors make a good case for the EV industry to implement cybersecurity practices that will protect EV customer data, as well as prevent network hacking and the potential costly loss of operation. In this era of concerns about compliance and data privacy the EV industry, notably charging station networks and suppliers, also cannot afford data breaches that will damage customer confidence and corporate image. ISO/IEC 27001 Certification First and foremost, ISO cybersecurity certification should be required for any business charging station supplier – whether they be portable chargers or networking applications that drive the charging operation, or any component that is tied to a network and thus vulnerable to a cyber threat. Compliance with ISO/IEC 27001 is considered the most important cybersecurity certification worldwide. It demonstrates that measures for ensuring information security and data protection have been implemented and are regularly monitored and reviewed. This proof is essential to developing a secure charging infrastructure and to protecting data generated by EV users, industry business partners, other supplier partners and investors. A Software-First Strategy Bringing the charging industry into advanced 21 st century cyber defense practices will be challenging. Many suppliers are “old world” thinkers, the “plugs and cables” hardware companies. The other side of this are startups who look at software security as an add-on, who've never focused that closely on software. They tend to underestimate the diverse range of sources of cyber threats that deficient software security can pose. Both types need to change their mindset to “software-first.” After all, charging stations have long since been highly complex, software-controlled systems that are equivalent to IoT nodes. They must cope with huge volumes of data streams, whether in communication with the vehicle to be charged, in communication with the electricity network, or in communication with user authentication and usage billing services. These are data streams that offer numerous points of attack for malicious parties, not to mention the physical access to the actual devices. U.K. researchers found that, in one case, a simple screwdriver was all that was needed to access the inner workings of the devices. The issue of vulnerability applies to popular charging stations and portable chargers with IoT connectivity. What is also notable is that security research in this area is lagging in spite of the growing adoption of EVs and increase in private and public charging stations. Cyber Defense eMagazine – December 2021 Edition 70 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Going forward, EV dealers, charging infrastructure suppliers and partners should look for products that are built with a software-first approach, products that are designed from the start with data and networking security in mind. In this manner, charging stations can offer consumers a safe, secure method of charging their EVs. Creating Community Lastly, to make charging cyber safe will take a holistic approach that frankly doesn’t exist yet in the EV industry. When suppliers do consider security, they usually only think about their own domains. For example, the car manufacturer only thinks about their vehicle, the charging network operator about their stations, the energy providers about their network, and the billing service providers about their payment transactions. Given how the EV industry is still early days in the U.S. the industry has a great opportunity to share cybersecurity research, share ideas on common data security problems and, working in concert, present consumers with a growing choice of secure charging options. If a major data breach were to hit a charging network that will no doubt create a lack of consumer confidence. However, if the EV industry gets ahead of the game in cybersecurity, everybody - consumers, suppliers, and network operators – can win. About the Author Thomas R. Koehler is CEO of German technology consultancy CE21 and a board member of Swiss charging specialist JUICE TECHNOLOGY. Thomas has a degree in business informatics from Wuerzburg University and was appointed research professor from the Center of International Innovation at Hankou University (CN). He has founded multiple companies (web development, software) and has a background in strategy consulting. He is the author of more than a dozen books on technology topics, including the English language books “Reorganizing Data and Voice Networks” (Artech House), “Understanding Cyber Risk” (Routledge Publishers / Taylor&Francis) and “The Digital Transformation of the Automobile” (Mediamanufaktur”). Cyber Defense eMagazine – December 2021 Edition 71 Copyright © 2021, Cyber Defense Magazine. All rights reserved worldwide.
Page 1 and 2:
9 Ways Social Media Sabotages Your
Page 3 and 4:
How Do You Secure the Modern Supply
Page 5 and 6:
@CYBERDEFENSEMAG CYBER DEFENSE eMAG
Page 7 and 8:
Cyber Defense eMagazine - December
Page 9 and 10:
Page 11 and 12:
Page 13 and 14:
Page 15 and 16:
Page 17 and 18:
Page 19 and 20: Cyber Defense eMagazine - December
Page 39 and 40: With over 4 billion users, social m
Page 41 and 42: Unsecure Mobile Networks When using
Page 43 and 44: However, as concerning as these pra
Page 45 and 46: Danny Lopez, CEO, Glasswall “Duri
Page 47 and 48: estoring data. Modern organizations
Page 49 and 50: When Diplomacy, Finance and Tech Co
Page 51 and 52: Another way leaders can take initia
Page 53 and 54: How Covid-19 Changed Advertising Fo
Page 55 and 56: However, this shift might not be su
Page 57 and 58: Why MFA Alone Isn’t Enough for Tr
Page 59 and 60: just highlights how vulnerable most
Page 61 and 62: on channels like email. This starts
Page 63 and 64: 3 Best Practices to Avoid Inevitabl
Page 65 and 66: For example, an employee may become
Page 67 and 68: and outcomes is essential for proje
Page 69: Electric Vehicle Charging: The Next
Page 73 and 74: How does this relate to MFA? Well,
Page 75 and 76: constant exposure of countries to a
Page 77 and 78: Why do you need a malware sandbox?
Page 79 and 80: Multi-Cloud Security and Compliance
Page 81 and 82: If security controls are not consol
Page 83 and 84: How Do You Secure the Modern Supply
Page 85 and 86: The case for isolation Supply chain
Page 87 and 88: Don’t Take Yourself Out of The Ga
Page 89 and 90: The U.S. Government Accountability
Page 91 and 92: assessment criteria for the tasks f
Page 93 and 94: the file. This was a great techniqu
Page 95 and 96: the wake of the pandemic where the
Page 97 and 98: Certain communications are protecte
Page 99 and 100: At Salt Communications we work with
Page 101 and 102: And it’s only getting worse. If y
Page 103 and 104: The benefits are great When HDOs ha
Page 105 and 106: 4 Pillars of Privacy-Preserving AI
Page 107 and 108: concern and a desire to be cautious
Page 109 and 110: and stay safe online. That’s why
Page 111 and 112: 2. Enabling over-the-horizon threat
Page 113 and 114: Techniques Used by Hackers to Bypas
Page 115 and 116: Phishing scams avoid email security
Page 117 and 118: ATO Detection Account takeover bene
Page 119 and 120: How To Protect Your Digital Legacy
Page 121 and 122:
I worked with cybersecurity experts
Page 123 and 124:
Sextortion Email Scams What to Do a
Page 125 and 126:
Sextortion attacks are a type of cy
Page 127 and 128:
How to respond to a sextortion emai
Page 129 and 130:
Example 2:'You've been hacked' emai
Page 131 and 132:
How can this strategy be implemente
Page 133 and 134:
Surviving The New Era of Terabit-Cl
Page 135 and 136:
accompanying shift toward more digi
Page 137 and 138:
Survey results show businesses are
Page 139 and 140:
Enterprises Cannot Achieve Zero Tru
Page 141 and 142:
Capital One breach back in 2019. Ad
Page 143 and 144:
Page 145 and 146:
Page 147 and 148:
Page 149 and 150:
Page 151 and 152:
Page 153 and 154:
Page 155 and 156:
Page 157 and 158:
Page 159 and 160:
Page 161 and 162:
CyberDefense.TV now has 200 hotseat
Page 163 and 164:
Books by our Publisher: https://www
Page 165 and 166:
Page 167 and 168:
show all

Cyber Defense eMagazine December Edition for 2021

Create successful ePaper yourself

Delete template?

Save as template?