The U.S. National Highway Traffic Safety issued recommendations to automakers on Monday on how to protect connected and automated vehicles from cyber attacks. The agency’s guidelines are suggestions, but cannot be enforced.
“Cybersecurity is a safety issue, and a top priority at the Department,” U.S. Transportation Secretary Anthony Foxx said in a press release. “Our intention with today’s guidance is to provide best practices to help protect against breaches and other security failures…”
The NHTSA recommended prioritizing the protection of critical vehicle controls and consumers’ personal data. It also suggested that companies should consider the full life-cycle of their vehicles and facilitate rapid response and recovery from cybersecurity incidents. The NHTSA is also asking manufacturers to conduct tests of vehicle systems to determine if their cyber security systems can be breached, and document their testing.
But critics in the U.S. Senate say the NHTSA guidelines aren’t enough.