The most important lesson? Do something. With security, letting a sleeping giant stay dormant and looking the other way is never a good approach.
Andy Gryc, a spokesperson for the auto industry and for what is now known as AutoMobility LA (instead of the LA Auto Show), told CSO that steps are being taken. For example, car makers are starting to phase out the older bus architecture (known as the Controller Area Network or CAN) used in cars in favor of a more secure architecture called E-AVB (Ethernet Audio Video Bridging Solution). "Techniques like white-box encryption or code obfuscation are just starting to get traction, and have mostly been absent from vehicle software designs," he added.
Sadly, Gryc said these changes take time to implement. There isn't enough momentum in an industry that is all about horsepower and automated driving. In enterprise security, there are some clear lessons, even if the automotive field hasn't learned any of them.
Sign up for CIO Asia eNewsletters.