In this Article
Ford Cyber Security Wi-Fi Risk
Ford takes cyber security seriously and regularly works with security researchers, suppliers and other vehicle manufacturers to protect our customers, products and enterprise.
Ford learned from a supplier that a security researcher discovered a vulnerability in the Wi-Fi software driver supplied for use in the SYNC 3 infotainment system available on some Ford and Lincoln vehicles. Immediately, and in collaboration with them, we began developing and validating measures to address the vulnerability.
A news release states, “To date, we’ve seen no evidence that this vulnerability has been exploited, which would likely require significant expertise and would also include being physically near an individual vehicle that has its ignition and Wi-Fi setting on. Our investigation also found that if this vulnerability was exploited, however unlikely, it would not affect the safety of vehicle occupants, since the infotainment system is firewalled from controls like steering, throttling and braking.
Soon, Ford will issue a software patch online for download and installation via USB. In the interim, customers who are concerned about the vulnerability can simply turn off the Wi-Fi functionality through the SYNC 3 infotainment system’s Settings menu. Customers can also find out online if their vehicles are equipped with SYNC 3.”
Porsche Open Sources
Porsche is expanding its open source initiative and has published a strategic guide to using free and open source software.
Free and open-source software (FOSS) is playing an ever more important role in Porsche’s software strategy. By using open source software, Porsche is able to shorten development cycles, reduce costs, promote innovation and talent and improve software quality.
Almost two years after the initiative, the company is taking the next strategic step and publishing the FOSS Movement. In this publication, Porsche describes the fundamental values and principles of free and open source software as well as employees’ role in working with it. In addition to the Open Source Office, employees from the vehicle development, corporate IT and legal departments, as well as Porsche Digital, were involved in the development of the FOSS Movement.
“Over the past two years, we’ve made remarkable strides and firmly anchored the use of open source within the company,” says Lutz Meschke, Deputy Chairman of the Executive Board and Board Member for Finance and IT at Porsche AG. “I believe that with open source, we can continue to advance the digital transformation at Porsche. And we are delighted by every talented professional in the field who wants to join us in that. Our teams work closely with a global community of technology leaders. And with the Porsche FOSS Movement, they have now established a common foundation of values, principles and goals across all subsidiaries and national borders on which to build for the future.”
One of the values set forth in the FOSS Movement is the consistent use of open source throughout the company: “We strive to shift from commercial software to open source software wherever possible and useful. This gives us greater flexibility, reduces dependencies and allows us to benefit from the open source community,” says Nikita Peters, Director of Porsche Open Source Office.
Another element is the active engagement with the worldwide open source communities. The objective: to learn from and with each other and advance the open-source software movement. This facilitates collaboration and knowledge-sharing across company borders.
To achieve these objectives, the Porsche Open Source Office has implemented various measures:
- The development of lean processes as well as uniform tools based on FOSS for the automation and orchestration of open source software in all Porsche products, such as the OSS Review Toolkit and the ScanCode Toolkit project.
- Investment in training and qualification for employees in order to ensure that the potential of open source is put to optimal use.
- Joint development of the in collaboration with Porsche Digital. This platform serves as one-stop shop to establish transparency on Porsche’s open source activities. This makes it easier for all Porsche employees to get involved in open source and publish code as contributors.
Open source is a significant driver of the digital transformation at Porsche and already provides the foundation for many solutions in Porsche’s software ecosystem today – from control units in the vehicle to prototype tests, the My Porsche digital platform and the Porsche Design System. Porsche is also involved in the Android Open Source Project. Its open approach enables Porsche to analyse software code, bring own requirements to bear in the global project and improve the overall driving experience on the basis of an established platform.
Beyond the technological advantages, open source projects like this offer Porsche the opportunity to find new talent and work closely with a global community of technology leaders.
Inova for Samsung Foundry
Inova Semiconductors intends to produce its ISELED smart LED controller products also at Samsung Foundry in Korea as multi source to their existing foundry. The start of long-term mass production is scheduled for the fourth quarter of 2024.
Inova’s ISELED technology – also called the “Digital LED” – is already being used on a large scale by numerous car manufacturers in Europe, but above all in Asia. Thanks to the simplicity of use – there is no need for binning or user-calibration – and the trend to central/domain-based architectures ISELED is penetrating the market very quickly. Fully supported by the ISELED Alliance, a consortium of more than 50 lighting companies from around the globe – major Tier 1s, equipment manufacturers, light designers a.o. – Inova assumes that the mark of one billion ISELED chips per year will already be reached in 2026.
Infineon New MCU ICs
Infineon Technologies AG introduces the TLE988x and TLE989x families extending the company’s comprehensive and proven portfolio of MOTIX™ MCU embedded power ICs. By integrating a gate driver, microcontroller, communication interface and power supply on a single chip, Infineon’s system-on-chip solutions achieve a minimal footprint. The new TLE988x and TLE989x families offer higher performance and now feature CAN (FD) as the communication interface. The ICs are AEC Q-100 qualified, making them ideal for automotive brushed DC and brushless DC motor control applications in body, comfort, and thermal management applications.///
Sibros & iWave
Sibros, connected vehicle platform company, today announced a collaboration with iWave Global, a leading provider of embedded systems and ODM (original design manufacturer) solutions, to accelerate software-defined vehicle innovation for all vehicle architectures. Through the collaboration, Sibros’ over-the-air (OTA) platform will be built into iWave’s Rugged Telematics Device to enable embedded intelligence in vehicle applications such as automotive, industrial, off-road and heavy-duty vehicles.
Under the collaboration, Sibros’ customers will unlock new connected services and offerings across the full mobility product lifestyle, from development and manufacturing to field operations and end of life.
“This is a step forward in improving the safety, functionality and success of software-defined vehicles in the U.S.,” said Hemant Sikaria, CEO and co-founder at Sibros. “Sibros and iWave have a shared vision for driving the shift toward connecting and managing software and data for every vehicle across its lifecycle. We are looking forward to working with iWave to innovate new services for OEMs to push the bounds of possibility for the industry.”
Original Equipment Manufacturers (OEMs) working with Sibros-enabled iWave products will provide better product decisions, improve product quality and enhance the customer experience. The combined solution will empower OEMs with the ability to:
- Log vehicle data from any electronics control unit (ECU) for rich insights on product performance
- Deploy safety-certified OTA software and firmware updates to any domain controller
- Dispatch safe and secure remote diagnostic commands to any vehicle or fleet
“Telematics and OTA solutions hold unparalleled importance in software-defined vehicles. Software defined vehicles are built with more intelligence on the edge with the need for robust data collection and firmware update mechanisms,” said Abdullah Khan, Director of Engineering at iWave. “We are excited to partner with Sibros and empower OEMs in this fast-changing digital automotive environment.”
iWave enables the future of connected mobility with an extensive portfolio of telematics control units, telematics gateways, vehicle-to-everything (V2X) solutions and protocol stacks. The embedded computing and edge solutions allows automakers to harness vehicle data and build fleet intelligence.
Sibros and iWave’s combined solution will meet the highest international standards for safety, security and data privacy including ISO 26262 (ASIL-D rated), ISO 21434, WP.29 R155 and R156 and GDPR.
Valens & LG
Valens Semiconductor (NYSE: VLN), a premier provider of high-performance connectivity solutions for the automotive and audio-video markets, today announced that LG Vehicle component Solutions (VS) Company, a leader in the automotive components sector headquartered in Seoul, Korea, has selected Valens Semiconductor’s VA7000 MIPI A-PHY chipset family for its next generation camera system project. Automotive OEMs are expected to be able to benefit from this inaugural solution starting 2026.
Valens Semiconductor chipsets will form the underlying connectivity solution between multiple camera sensors and the LG VS Company’s cutting-edge next generation camera system. This will enable the seamless display of multifunctional information to augment driver decision-making and enhance passenger safety.
Winbond TrustME Flash Cert
Winbond Electronics Corporation, a leading global supplier of semiconductor memory solutions, is pleased to announce that their TrustME® W77Q Secure Flash family has received the prestigious ISO/SAE 21434 international standard certification. This certification is important for all OEMs to the automotive industry, and Winbond has now become the first Flash vendor worldwide to achieve this standard certification and meet global regulatory requirements.
The ISO/SAE 21434 standard, titled “Road vehicles – cybersecurity engineering,” is an industry standard developed by the International Organization for Standardization (ISO) and the SAE International. It focuses on protecting road users by outlining requirements to ensure the robustness of automotive systems against cyber-attacks. This standard applies to manufactured road vehicles and cybersecurity-related subcomponents, including IC components. Compliance with UNECE R155 is necessary to obtain EU-Type approval and vehicle approval through GSR.
The ISO/SAE 21434 Cybersecurity Product Certification for Winbond’s W77Q Secure Flash family encompasses several key elements:
- Rigorous risk assessment and management processes to identify vulnerabilities and threats, enabling effective mitigation strategies. A systematic approach to cybersecurity throughout the entire product development lifecycle, integrating security into every aspect.
- Extensive testing and validation to verify robustness against potential cyber threats, ensuring the effectiveness of the products in protecting against attacks.
- Ongoing monitoring and improvement of cybersecurity practices to stay ahead of emerging threats and vulnerabilities.
Winbond takes pride in being the first Specialty memory IC manufacturer to receive this Automotive CyberSecurity certification. This ISO/SAE 21434 certification showcases Winbond’s commitment to meet and exceed global cybersecurity standards, providing assurance to automotive clients that their products are designed and manufactured with utmost attention to cybersecurity vulnerabilities and risks.
In addition to the ISO/SAE 21434 certification, Winbond’s TrustME® W77Q Secure Flash has already obtained other industry-recognized security and safety certifications, including Common Criteria EAL2+, SESIP level 2, FIPS CAVP and CMVP, and ISO 26262 ASIL-C Ready. These certifications enable the TrustME W77Q Secure Flash to meet the emerging demands in safety and cybersecurity for automotive applications.
Winbond’s dedication to cybersecurity is supported by TÜV, “We warmly congratulate you on this achievement and are excited to serve Winbond as a leading manufacturer of their advanced products with our assessment and certification services. With the acquisition of the ISO/SAE 21434 Certificate, Winbond claims to be State-of-the-Art with its products,” says Bernd Püttmann, TÜV NORD.
Winbond’s compliance with the ISO/SAE 21434 Road vehicles – cybersecurity engineering Certification reinforces our position as a trusted provider of secure solutions for the automotive market. This certification highlights Winbond’s commitment to maintaining the confidentiality, integrity, and resilience of customers’ data and applications, safeguarding critical information from unauthorized access or exploitation. Winbond believes that cybersecurity is a collective responsibility and remains at the forefront of cybersecurity innovation to ensure a secure digital ecosystem for our customers and partners.