Automotive Cybersecurity

Thales supports OEMs and Tier 1 suppliers with expert consulting to build cybersecurity regulation-compliant architectures. Through advanced connected vehicle services, Thales helps develop strategies and implement steps for a robust security-by-design framework.

Thales assesses risks in connected cars by analyzing ECUs, key functions, threat models, attacker profiles and attack scenarios. Using regulations and Cyber Threat Intelligence (CTI), we design architectures to mitigate and reduce cybersecurity risks in vehicles.

Defining secure architectures and specifying cybersecurity measures.
Implementing state-of-the-art hardware components with Thales Automotive Embedded Secure Element.

With dedicated methodologies and penetration testing, Thales identifies exploitable breaches across surfaces, interfaces, and components. This allows us to assess the security of architectures, ECUs, and off-board services, ensuring vulnerabilities are addressed effectively.

We ensure end-to-end security for automotive infrastructures thanks to Thales' IoT Security Manager. 

It provides: 

• Secure ID generation and key provisioning into the roots of vehicles and ECUs 
• Mutual authentication between vehicle ECUs and external stakeholders
• Vehicle data integrity and confidentiality through secure data encryption/decryption mechanisms
• Secure credential and software lifecycle management 

Designed for connected vehicles by the Software République consortium, Thales Automotive Detect and Respond is an on-board and off-board cyber threat monitoring solution, supported by automotive Cyber Threat Intelligence and specifically built for cyber detection by using AI and Machine Learning. This state-of-art solution was co-developed and is under implementation by a major European car manufacturer.