The sales volume of intelligent connected vehicles "blowout" Data security supervision has attracted attention

With the continuous progress of intelligent and networked technology, the mainland automobile industry is running into the era of intelligent networked vehicles.

The "2021 China Intelligent Connected Vehicle Data Security Research Report" released by Yiou Think Tank believes that as the process of the new four modernizations of the global automotive industry continues to advance, the sales of intelligent and connected vehicles may rise steadily. Yiou think tank predicts that global sales of intelligent and connected vehicles will reach 78.5 million in 2025. "In the past, automotive safety mainly referred to the three concepts of active safety, passive safety and functional safety, intelligent networking redefined the car, as the car became more and more like a large 'mobile phone', the concept of automotive safety began to migrate to data security."

Tan Minqiang, secretary of the party committee and director of dongfeng's technology center, said during the two sessions of the National People's Congress this year: "The risk of cyber attacks on the Internet of Vehicles has intensified, and there is still a big lack of intelligent vehicle security capabilities, and a 'cloud pipe end' Internet of Vehicle security guarantee system has not yet been formed." There are obstacles in terms of policies and funds in the implementation of technical research and application of enterprises, and the construction of complete system-level security solutions is difficult, and the security technology gap still exists. ”

In this regard, Deloitte China Risk Consulting Network Security Service Partner Zhang Zhen said in an interview with the China Business Daily reporter that in the automotive network security segment, it is difficult to solve the common challenges faced by the industry by relying only on individual technology companies, and car companies need to build new security capabilities with the concept of collaboration, co-construction, openness and innovation, cooperate more with relevant institutions and alliances in the industry, and perceive the development trend of technology faster and more efficiently, so as to quickly identify challenges and deal with risks.

Intelligent cars accelerate iterative upgrades

In fact, with the emergence of new concepts such as "intelligent cockpit" and "assisted driving", the pursuit of intelligence and networking is becoming one of the main means for new energy vehicle brands to compete misplaced with traditional fuel vehicles and attract young consumer groups.

It is understood that Weilai Automobile is accelerating iterative upgrading in terms of intelligent systems and other aspects. According to the data, the NIO ET7, which recently opened for delivery, is equipped with the latest automatic driving technology NAD (NIO Autonomous Driving) based on nio Aquila SUPER SENSE system and NIO Adam NIO supercomputing platform, which will gradually realize the easy and safe point-to-point automatic driving experience in scenarios such as high-speed, urban areas, parking and power-up.

Among them, the Aquila NIO ultrasensory system equipped with THE NIO ET7 has 33 high-performance sensing hardware, including 11 cameras and 12 ultrasonic radars. Weilai Automobile said that the sensor's line of sight can effectively cross the occlusion, effectively reducing blind spots and improving safety in complex traffic scenarios in the city.

In addition to Weilai Automobile, Geely Automobile's Extreme Kr Automobile is also vigorously laying out intelligent networking systems and technologies. According to the official information of Extreme Kr Automobile, the Eagle Eye Vision Fusion Perception System owned by Extreme Kr 001 also includes 15 cameras with different functions, 12 short-range ultrasonic radars and 1 ultra-long perceptual millimeter-wave radar.

In addition, Extreme Kr Auto has also pushed its ZEEKR OS 2.0 official version to users. It is understood that the system involves a total of 33 ECU units and adds 5 new functions. The relevant person in charge of Extreme Kr Automobile said that in the newly pushed system, the early warning function of the poor intersection in front of the FCTA is a new feature added in the basic package of the ZAD intelligent driver assistance system, and a large number of scene tests have been carried out in full combination with the actual road conditions in China.

Not only hardware upgrades, but also the role of software in intelligent and connected vehicles is becoming more and more important. According to deloitte China research reports, at present, the value of in-vehicle software in intelligent connected vehicles has reached 10% to 30%, and in the future, the proportion of software and content in vehicles will reach more than 60%.

Deloitte China's above report also pointed out that software is the lowest logic to promote the current development of vehicle networking, automation, electrification and sharing, but the intelligence of automotive software brings a more extreme driving experience, while also increasing the data and content required by cars.

"For car companies, China's passenger car market is fiercely competitive, and it is expected that the market share of the head brand will reach 74% in 2025, leaving only 26% of the remaining participants. How to strive for greater survival and development opportunities in the stock market? Data is one of the solutions. "Yiou think tank analysis believes that for intelligent networked vehicles, data is the key to the next stage of car companies.

Cui Dongshu, secretary general of the National Passenger Car Market Information Joint Association, told reporters that for the testing and guarantee of the network information security of the Internet of Vehicles, the car companies themselves can cultivate talents in network information security, and can also cooperate with external network security professional teams.

Focus on ioV data security

The iterative upgrading of intelligent networked vehicles has also brought huge driving data, and network security problems have also followed and become increasingly prominent.

According to NIO data, its latest supercomputing platform can generate 8GB of image data per second. According to relevant information, the data uploaded by an intelligent networked car for a day is as high as 10TB, which not only contains the facial expressions, movements, eyes and voice data of the driver and passenger, but also includes the geographical location of the vehicle, the environmental data inside and outside the car and the data on the use of the Internet of Vehicles.

KPMG, one of the Big Four accounting firms, pointed out in the "Research Report on the Data Security Supervision System of the Internet of Vehicles 2022" that the data between the various intelligent networking platforms cannot be effectively synchronized, and the non-structural and non-standard nature of the data has brought great challenges to the aggregation or splitting technology of the data, as well as the management and safe storage of permissions, and how to ensure the security of the interactive flow of data is also an important issue in the construction of the data security system of the Internet of Vehicles.

The "Annual Report on Intelligent Connected Vehicle Information Security" released by the 360 Intelligent Connected Vehicle Safety Laboratory also pointed out that the current automotive information faces many security threats including automotive remote service providers, APP applications, workshop communications and so on. Defects and errors in the initial design of the system will intentionally or unintentionally adversely affect the operation of the entire Internet of Vehicles, such as the system being attacked, important data being stolen, and user data being tampered with.

The above-mentioned data security threats to the Internet of Vehicles have also raised concerns in the industry. Tan Minqiang once said that "software-defined cars" have brought hackers a new attack surface and attack path: from the car itself to the cloud or the owner's APP, the purpose of the attack has expanded from remote control of the car to the theft of the owner's personal information or corporate cloud data.

"Regulations are the biggest driving force for the construction of data security in intelligent and connected vehicles." Yiou think tank said that at present, China's intelligent networked vehicle data security legal and regulatory system is not perfect, and car companies are in a state of inability to follow and no rules to follow.

Multi-party cross-border integration and collaboration is still needed

Although the information data of the Internet of Vehicles has increased significantly, and the handling of security issues is imminent, there is no unified standard for the information security of the Internet of Vehicles in the industry, and the establishment of this standard also requires the joint suggestions of all parties.

The "Guidelines for the Construction of the Networking Network Network Security and Data Security Standard System" issued by the Ministry of Industry and Information Technology recently also clarified the development timetable and phased tasks of the mainland Vehicle Networking Network Security and Data Security Standard System. The "Construction Guide" proposes that by the end of 2023, a network security and data security standard system for the Internet of Vehicles will be initially established; by 2025, a relatively complete network security and data security standard system for the Internet of Vehicles will be formed.

In addition to further regulation at the policy level, car companies have also laid out early in the data security of the Internet of Vehicles. The relevant person in charge of the passenger car business department of SAIC Motor Group Co., Ltd. (hereinafter referred to as "SAIC Motor") said in an interview with reporters that SAIC Motor has issued a network security control standard 2.0, which has added a new module for information security and personal information protection.

"SAIC Motor has formed the most leading and perfect network security system standard among Chinese car companies. At the same time, SAIC Motor has also built a 'network security management coordination platform', forming a network security collaborative guarantee capability covering the whole group, all-round and all-weather, and effectively responding to internal and external security risks." The relevant person in charge of SAIC Motor group said.

According to reports, SAIC Motor Passenger Vehicle has established a three-tier structure of safety leading group, network security working group and network security implementation team in terms of network security, which is composed of party secretaries, responsible persons in related fields, as well as experts and engineers in automobile safety, industrial control security, information technology security, data security, legal compliance and other experts and engineers.

In Tan Minqiang's view, the network security of the Internet of Vehicles requires multi-party cross-border integration and collaboration. "This urgently needs to start from the national level, promote mutual coordination between different departments, different industries and upstream and downstream enterprises in the industrial chain, and jointly build a standardized and systematic automotive information security protection system, a standard regulatory system and a safety supervision system."

Cui Dongshu also told reporters that the formulation of industry standards for data security in the Internet of Vehicles network should be extremely cautious, industry standards are different from country to country, and international standards should have some common concepts, so as to facilitate China's products to the world. "In the process of formulating unified standards, the corresponding standard construction should still be carried out with car companies as the core, and the interface management of upstream and downstream enterprises should be done well, so as to facilitate upstream and downstream enterprises to access the entire ecosystem of the Internet of Vehicles."