Automotive electronics and enterprise IT are converging and thus open the doors for advanced hacking. With their immediate safety impact, cyberattacks on such systems will endanger passengers. The automotive industry is using various methods for security verification and validation. Yet, we realize that with classic security testing, vulnerability detection is inefficient and incomplete. In this video, we will provide an overview on security testing with focus on Grey-Box Penetration Test (GBPT). If done right with adequate KPI, it needs less test cases while being more effective in terms of coverage and indicating less false positives.

About our speaker:
Prof. Dr. Christof Ebert is Managing Director of Vector Consulting Services GmbH. He supports companies worldwide in improving their product development and product strategy as well as in change management. He sits on various supervisory boards, is a professor at the University of Stuttgart and the Sorbonne in Paris, and the author of several renowned books. Twitter: @ChristofEbert.

More information about Vector Consulting Services: https://www.vector.com/consulting​
___________________________________________________________________________
#VectorVCS #consulting #training #cyberattack #securitytesting #automotive

0:00 Introduction
2:08 Welcome Vector Group
3:14 Challenges with Security Implementation, Verification and validation
9:17 Security by Lifecycle
10:23 Systematically Deploy 10 Steps for a Risk-Oriented Security Test
14:25 Grey-Box Penetration Testing in 10 Steps
17:02 Understand and Evaluate Underlying Architecture Goal
19:41 Iteratively Update Functional Security Requirements