To make the SDV and the larger connected-vehicle environment more secure for APIs, VicOne, a provider based in Michigan of automotive cyber protection technologies has recently entered into a business alliance with 42Crunch. This partnership is said to enable automotive OEMs and suppliers to provide a range of solutions meant to improve security and other aspects that may address compliance with rules within the automotive industry.
Key benefits for stakeholders include:
- Advanced Vulnerability Detection: This alleviates the process and time it takes to identify new API security risks that the Open Worldwide Application Security Project (OWASP) Top 10 lists in the developing cycle.
- Real-Time Threat Identification: They can use the integrated solutions to enhance the process of identifying the possible threats when running the applications to enable fast responding to the risks in question.
- Dynamic Risk Assessment: They are helping stakeholders with the ability to more effectively analyse risks and compliance with rules such as UN Regulation No. 155 and ISO/SAE 21434:2021 by linking API security events to other automotive data and security events.
The known cyber threats in automobiles have risen because of the use of SDS connected cars and furthermore, the relations to cloud based infrastructures and APIs are augmented the possibility of attacks. VicOne also points out that while API-related incidents positioned at 12% of automotive security risks for the later six months of 2022 to the first six months of 2023. Still, mitigating security threats across distinct touchpoints within a constantly transforming automotive landscape has been rather difficult until this day.
According to Gartner’s report named ‘Innovation Insight for API Protection,’ the fusion of VicOne and 42Crunch relates to the ongoing industry trend in API security. When integrating this innovative solution with the API Audit vulnerability testing tool by 42Crunch and API Firewall in combination with the next-generation vehicle security operations center xNexus provided by VicOne, OEMs and suppliers obtain accurate information regarding the threats as well as their context. These insights empower stakeholders to optimise resource allocation, expedite attack investigations, and mitigate the impact of security incidents effectively.
Moreover, VicOne’s xCarbon VSOC sensor and smart cockpit protection, integrated with the xZETA automotive vulnerability and SBOM management system, facilitate continuous and dynamic risk assessment across the automotive supply chain. This comprehensive approach enables stakeholders to identify and address zero-day vulnerabilities, undisclosed threats, and malware effectively, ensuring alignment with ISO/SAE 21434 processes and enabling continuous monitoring of the threat landscape.