New regulations governing cybersecurity for software-defined vehicles will start next year but the automotive industry may not be prepared, according to Israel's Argus Cyber Security.
Argus, a subsidiary of Germany's Continental AG, found that 58 percent of small automakers and automotive suppliers are not prepared to create a management system focusing on vehicle cybersecurity that complies with Regulation 155 from the United Nations Economic Commission for Europe.
Additionally, the commission's Regulation 156 governs cybersecurity protocols for software updates in new vehicles and will start that same month.
"No one's prepared and to be honest, the complete automotive chain is not prepared," Gulroz Singh, an executive at NXP Semiconductors, in Austin, Texas, told Automotive News.
The regulations provide standards for vehicle software and system security, personal data protection and cybersecurity incident management. They also spell out cybersecurity practices at automakers and suppliers.
In the European Union, the regulation will be mandatory for all new vehicles produced from July 2024.