Survey says: Automotive software developers aren’t familiar enough with their company’s plans to secure the connected car
Wilmington, MA (PRWEB) October 15, 2015 -- A recently released survey by Ponemon Institute, the leading independent security research organization, reaffirms the belief that automotive developers are ill-equipped and often overwhelmed when it comes to building security into their processes and tools. The cybersecurity survey, sponsored by Rogue Wave Software and Security Innovation, polled over 500 automotive developers, engineers, and executives from automotive OEMs and Tier 1 suppliers. The findings were less than ideal.
“One of the most disappointing statistics is that over half the developers don’t think their company has the necessary training or technology to ensure that the software running in our cars is secure,” says Rod Cope, CTO of Rogue Wave Software. “This means that regardless of engineering talent, companies aren’t able to secure their code.”
As recent headlines attest, cars are no longer just made of steel, aluminum, or copper. Cars rely very heavily on software. In fact, electronic components can add up to half of the manufacturing cost of a car with some cars containing over 100 million lines of code. With the ever increasing headlines about software hacks in the automotive industry, Rogue Wave and Security Innovation teamed up to dive into the problem.
“This survey provides insights to help automotive software suppliers understand the current mindset of their developers and build security and safety into their software,” says Peter Samson, General Manager of Security Innovation’s Embedded Security Business Unit. “Contrary to public statements by carmakers this groundbreaking survey highlights a scary truth that OEMs and their suppliers do not yet have enough skills, tools, or processes to make a secure car.”
Both Rogue Wave and Security Innovation are increasing investment in automotive security products and services to inform, educate, and improve the software that runs in cars. Detailed survey findings will be shared with the extended development community to stimulate an industry-wide conversation on ways to address the systemic shortcomings identified in the data. Our goal is to provide this information so suppliers can start to get their arms around some very real issues with tools and techniques that will increase the cyber security of their products.
People are encouraged to visit the Security Innovation (http://web.securityinnovation.com/car-security-what-automakers-think) and Rogue Wave (http://www.roguewave.com/programs/the-journey-toward-automotive-application-security) websites for more information.
About Security Innovation
A software security pioneer since 2002, Security Innovation is dedicated to protecting sensitive data in the world’s most challenging environments – whether on embedded systems, desktops, web applications, mobile devices, or in the cloud. Recognizing that software applications no longer exist in isolation, our clients are better prepared to anticipate, navigate and reduce software security risk regardless of technology or system complexity. There are more than a million licenses of Security Innovation’s training products in use today and our embedded security products ship on tens of millions of systems each year. The company is privately held and is headquartered in Wilmington, MA USA. Visit the company at http://www.securityinnovation.com or follow on Twitter @SecInnovation.
About Rogue Wave Software
The largest independent provider of cross-platform software development tools and embedded components in the world. Through decades of solving the most complex problems across financial services, telecommunications, healthcare, government, academia, and other industries, Rogue Wave tools, libraries, and services enable developers to write better code, faster.
Alli Campofranco, Security Innovation, +1 9782263351, [email protected]
Share this article