Automotive security: pen-testing is no replacement for sound product development
October 20, 2016 Leave a comment
Reposting from Automotive Testing Technology International
http://www.automotivetestingtechnologyinternational.com/industry-blogs.php?BlogID=1863
By Cesare Garlati
When it comes to testing the components of modern connected cars, of course pen-testing (penetration testing) has its place; however, it is no substitute for solid product development.
In testing, companies often operate under the notion that an identified problem can be fixed or patched. This may be true for some areas of testing, but for security, it is not sufficient. Security needs to be built-in, from the ground up. And that means starting at the hardware layer, which is seldom done today, but which is completely viable given the advancements in silicon and other connected vehicle technologies.
BringYourOwnIT.com 