At the Device Authority Virtual Summit, Kaivan Karimi discussed how, as IoT and OT ecosystems grow more intertwined, especially within the automotive industry, the stakes in cybersecurity have never been higher. Connected vehicles, once a novel innovation, are now mission-critical infrastructure vulnerable to advanced threats.

The Past: Security as an Afterthought

In the early days of IoT, security was often sidelined in favour of rapid innovation. Connected vehicles began to emerge, but without sufficient consideration for their digital vulnerabilities. For instance, by 2015, high-profile incidents like the Jeep Cherokee hack exposed the automotive industry’s glaring security gaps. At the time, addressing such vulnerabilities often involved reactive measures rather than proactive planning.

The Present: Security-Driven Development

Fast forward to today, and the paradigm has shifted significantly. Technologies like generative AI are enhancing both innovation and security. In the automotive space, AI tools like Microsoft’s GitHub Copilot have drastically reduced development times. According to Kaivan, these tools can automate up to 98% of repetitive coding tasks, helping manufacturers close the gap with competitors who have shorter product development cycles, particularly in China.

However, this rapid advancement also introduces challenges. AI has become a double-edged sword, as Kaivan warned: “While AI improves operational efficiency, it also increases the scale and sophistication of cyberattacks. Visibility becomes a double-edged sword in connected systems.” This is especially concerning in the context of ransomware and the potential misuse of connected cars as weapons, underscoring the need for robust, end-to-end security frameworks.

The Future: From Reactive to Predictive Security

Looking ahead, cybersecurity in the IoT/OT realm is shifting towards predictive and lifecycle management. One key example is the collaborative effort between Microsoft, Device Authority, and partners like CyberArk and Argus Security. Their focus? Comprehensive, end-to-end solutions that integrate zero-trust principles and generative AI to protect connected cars throughout their 15-20 year lifecycle.

Emerging Trends and Key Stats

1. Generative AI as a Productivity Tool: General Motors reported a 1,000x increase in simulation speeds using AI-powered tools, with 98% accuracy, enabling faster R&D cycles and reducing time-to-market.
2. Cybercrime on the Rise: Cybersecurity firm estimates predict a $10.5 trillion annual global cost of cybercrime by 2025, with IoT/OT systems being prime targets.
3. AI’s Role in Threat Mitigation: According to Microsoft, their security AI solutions process 78 trillion threat signals daily, demonstrating AI’s critical role in combatting sophisticated attacks.
4. Regulatory Landscape: The European Union has taken significant steps with its AI Act and Data Act, setting a benchmark for AI governance, while other regions, like North America, lag behind with limited regulatory frameworks.

Conclusion

As connected cars evolve into AI-driven ecosystems, cybersecurity cannot be an afterthought. The future of IoT/OT security lies in collaboration, leveraging tools like generative AI to enhance both innovation and protection. With stakeholders like Microsoft and Device Authority leading the charge, the automotive industry has a unique opportunity to transform its security posture into a competitive advantage.

Now more than ever, organizations must embrace secure-by-design principles, invest in AI training for their teams, and proactively engage in partnerships to safeguard critical infrastructures in an increasingly connected world.

Want to dive deeper into the challenges and opportunities of IoT/OT security in Automotive? Watch the full webinar, Revolutionizing Automotive Industry When Connected Car Meets Generative AI, featuring insights from Kaivan Karimi of Microsoft. Discover how cutting-edge technologies are shaping the future of connected vehicles and learn actionable strategies to enhance your organization’s security and efficiency.

Watch the Full Webinar Now

Don’t miss this opportunity to gain expert knowledge and practical tips from industry leaders!