Policy Studies Transportation

Addressing new challenges in automotive cybersecurity

The attached policy study is co-authored by Cyril Draffin, a project adviser to the MIT Energy Initiative.

As more connected and autonomous vehicles hit the road, new attack vectors emerge for hackers, cybercriminals and even nation states. If left unaddressed, these cyberattacks can result in physical harm to drivers, bystanders and infrastructure. However, excessive regulation can also delay this important innovation. Accordingly, the present study will discuss the various types of cybersecurity risk and efforts taken by industry stakeholders, federal regulators and Congress to try and reduce it, and will then make recommendations for a policy framework going forward. Rather than force new cybersecurity problems through the traditional Federal Motor Vehicle Safety Standards (FMVSS) process, we recommend embracing a more flexible regulatory approach that aligns manufacturer incentives, promotes the development of cybersecurity best practices, proactively tests their capabilities and holds companies accountable to their promises.

Image by Just Super

Featured Publications