Telematics generates a vast amount of data, including a detailed history of vehicle and driver activities and operations. This data type is beneficial within an organization for controlling fuel and maintenance costs, increasing productivity and safety, and minimizing risk. Using telematics for collision reconstruction or benchmarking can generate even greater insight.
Protecting that valuable data is essential. If accessed by a malicious party, there could be severe consequences, potentially jeopardizing customer accounts, schedules, shipments, location of assets, and personal information. Cybercrimes are committed because there is value to be gained from data, whether that data is a collection of usernames and passwords, credit card numbers, or social security numbers, or — as we’ll see — telematics data.
Therefore, whether you are a small business owner, fleet manager, developer, CIO, or CEO, you must understand how your telematics data is handled and protected.
The telematics ecosystem includes both hardware and also the software responsible for collecting and analyzing the vehicle data.
As businesses gravitate towards software-based systems and working in the cloud, telematics data security will become an even more significant challenge. Telematics systems are expansive and multi-tiered: physical hardware, radio systems, software servers, and human agents. Because there are many components involved, the potential threats [1,2] are numerous and can include theft, GPS jamming, cellular sniffing, firmware manipulation, server exploits, and phishing.
Protecting telematics data requires a comprehensive, proactive approach. The integrity of the system relies on the upkeep of many sub-systems, each with its distinct set of potential vulnerabilities. Therefore, in addition to firm policies and processes, creating a culture of security across the organization is the best way to protect data and build resiliency against malicious attacks. In general, telematics security can be strengthened with these principles from IoT security.
1. Implement secure data transfer
2. Digitally sign updates
3. Enable hardware code protection
4. Assume your code is public so you do not rely on secrets
5. Use cryptographically strong random numbers that cannot be reverse-engineered
6. Individualize security-critical data
7. Use different keys for different roles
8. Monitor metadata to detect hacks
9. Do not forget to disable debug features
10. Perform third-party auditing
11. Limit server access
12. Apply secure design practices
13. Implement support for software/firmware updates
14. Verify and test
15. Develop a security culture
Geotab takes a rigorous approach to data security following the principle of continuous improvement. To protect our customers and partners, Geotab is constantly reviewing, improving and validating our security mechanisms and processes, so our systems remain resilient to intrusion and disaster. Geotab provides customers with comprehensive documentation regarding the technical and organizational data security measures implemented throughout our ecosystem. We also collaborate with leading stakeholders to advance security across the industry. As a vertically-integrated telematics provider, Geotab is directly involved in every stage of its telematics ecosystem.
Geotab platform security is designed for end-to-end protection of your data. Key implementations include:
The microelectronic modules on each Geotab GO device are manufactured in fabrication facilities across the globe. The pieces return to Geotab’s facilities, where the final assembly by Geotab employees completes the GO device hardware. The electronics of each device are tested and then prepared to receive the firmware programming.
Since Geotab does not purchase the device hardware from any other entity and has full control of design, manufacturing, assembly, and testing, we can quickly and efficiently respond to manufacturing defects or potential hardware vulnerabilities internally, without being reliant on any other party.
Firmware is the specialized software that programs the microcontroller and electronics modules in the device — including communicating with the engine computer and auxiliary systems, receiving GPS coordinates, and coordinating cellular communication.
Because a telematics device attaches itself to a complex and interconnected system, the firmware that issues the orders to the device is a significant part of the connected car.
A telematics device will receive many updates to its firmware over the course of its life. These updates introduce new features or resolve issues with the device after it has been installed in a vehicle. The device automatically receives over-the-air (OTA) updates and performs the update process in a way that is invisible to the user.
This leaves a potential opening for attackers to attempt to replace the firmware on a telematics device with malicious firmware of their own.
To prevent compromised firmware, the following methods are used to secure the device:
Without both steps to verify that every firmware update is authentic, it is impossible to know if the device is under your control or the control of a malicious party interested in getting your data.
The telematics device sends data from the vehicle to the central server over a cellular connection. Although varying by territory, provider, and infrastructure, cellular communication is commonly done over 2G, 3G and 4/5G networks, which can have unique vulnerabilities.
A secure communication channel can be established with the use of encryption. Encryption is the process of encoding a message such that only the sender and recipient would be able to view the message. To an outside party, like an attacker, this encoded message would appear as a meaningless collection of symbols. The intended recipient of the message, using a unique key, can turn this collection of symbols into intelligible information.
As such, a typically vulnerable channel like a cellular network can be made secure by encrypting the messages sent from a telematics device to the destination server. Because of its mathematical properties, strong encryption cannot be decrypted trivially even by powerful computers.
Telematics devices relay their data to storage and processing servers, which can be thought of as vaults containing valuable information. The physical servers can be protected by restricting physical access only to authorized personnel. The data inside, on the other hand, can be protected by securing the cloud environment through industry-standard firewalls, access control, and activity monitoring.
It is critical to understand that even the most secure systems are not perfect. In the event of a security breach, it is essential to mitigate the damage caused by any unauthorized access.
Mitigation is the act of minimizing the potential impact of a threat. Effective mitigation can be done by never storing user passwords for the attacker to steal. This is a process known as hashing and salting a password — storing a hash and salt value of a password instead of the actual password.
This process impedes the progress of an attacker if they gain unauthorized entry, thus buying precious time to respond to the security compromise and mitigate damage.
Hashing and salting extend the metaphor of the vault: if a robber breaks into a bank vault, instead of having direct access to a pile of treasure, they would have to break into every individual personal vault one at a time to steal the valuables.
Data security is a practice rather than an act. New security threats are bound to arise as technology develops, and the complexity of a system grows. An organization that is serious about security will continuously engage with security issues through updating their systems, training employees, refining processes, and finding vulnerabilities.
At the very core of the telematics system is the team of engineers and support staff that keep everything running smoothly. Resilient organizations should address the fact that an employee might go against the best interest of the company — whether leaking data because of payments from competitors, malfeasance, or merely accidental errors.
So it becomes essential that an organization maintain vigilance at all levels. This can be accomplished by controlling and monitoring access privileges, making log records of important operations, and ensuring all employees know the risks related to their actions. A strong culture of security should instill confidence in employees of their ability to respond to security threats, but without creating anxiety about attacks that may or may not come.
One way of building security confidence and safely exposing a telematics system to threats is by performing penetration tests, which are authorized hacking attempts performed by a company specializing in computer security. In a penetration test, the security company will attempt to find vulnerabilities in your hardware and software and — instead of exploiting these vulnerabilities like an actual hacker might — they will document their attack methodology and report their findings to you. The results of the penetration test should then acted upon accordingly — whether that is fixing security holes or changing internal procedures — before malicious agents can exploit those very same vulnerabilities.
Ultimately, data security is an ongoing, corporation-wide effort aimed at safeguarding the data of all users.
Cybersecurity is a shared responsibility. We can all play a role in keeping security systems healthy. Getting informed and asking questions is a significant first step on the path to effective cybersecurity management.
To learn more about telematics security, please visit: geotab.com/security