Empowering Tomorrow's Automotive Software

We’re following up our Enterprise Red Teaming episode with the logical next topic: Enterprise Blue Teaming. ETAS’s Rene Reuter, Product Manager Enterprise Security Systems, and Wolfgang Neufeld, Subject Mater Expert Red & Purple Teaming, return and are joined by Sven Ulke, Sr. Manager DFIR at SVA System Vertrieb Alexander GmbH. The trio provide a thorough look at Blue Teaming – what it is, who works on it, why it’s important, p...

We’re once again diving into the world of software-defined vehicles (SDVs). In this episode we are joined by Florian Rohde, Managing Partner of iProcess, LLC. From founding Tesla’s system validation team to building an integration and validation team at NIO, he’s pretty much seen it all when it comes to SDVs. Florian joins ETAS’s Siamak Moshiri in a targeted discussion about the Chinese auto market, specifically SDVs. 

Siamak has Fl...

In this special episode, Madelyn Downs, Marketing Manager at ETAS, is joined by her colleague, Omar Alshabibi, Lead Global Product Manager, to reflect on the software-defined vehicle (SDV) news and announcements that already have been made this year, specifically at CES 2025. 

The two cover a lot in a short amount of time – the emergence of AI in general and in automotive and the SDV, differences in how OEMs are approaching AI and S...

In this episode, ETAS experts Zachariah (Zane) Pelletier and Michael Scharl discuss enterprise testing, how it differs from embedded testing, and how they are starting to come together with the development of software-defined vehicles and increased external interfaces with the car (e.g., remote start apps). The conversation takes listeners through the realities of today’s vehicle having a broader attack surface, why OEMs need to un...

ETAS’s Rene Reuter, Product Manager Enterprise Security Systems and Wolfgang Neufeld, Subject Mater Expert Red & Purple Teaming/Penetration Testing take us into the world of red teaming (i.e., real-world attack simulations). They talk about all things red teaming – what it is, why you should (or shouldn’t) do it, when to do it, how it’s done – as well as how it differs from pen testing and the pros and cons of internal vs exter...

Jake Jepson, Security Researcher, Red Balloon Security, joins Zachariah (Zane) Pelletier, Security Tester at ETAS, to talk about the research project he conducted as a student at Colorado State University to successfully hack a commercial truck. Jake takes us through how the project came to be, walks through the details leading up to the discovery of how electronic logging devices (ELDs) on commercial trucks may pose a grave cybers...

There’s a lot of talk about innovation in the automotive control space, but not how to get there. Process and toolchains, decision-making complexity, the rapid evolution of technology and regulations, how OEMs manage all the different pieces of software and ensure they correctly talk to one another, and consumer expectations about vehicle features expectations are all challenges being faced in ECU development. 

In this epi...

In this episode, Zachariah (Zane) Pelletier, Security Tester at ETAS, and Kevin Mitchell, Sr. Automotive Security Tester at ETAS, talk about CVE 2023-52709, a critical vulnerability in Texas Instruments’ BLE MCUs. The discussion takes us through the discovery by Kevin, working with Texas Instruments as they tried to reproduce the issue and the develop a remediation.

They share a real-world scenario that could have occurred...

It may seem that fuzz testing is fairly easy, but there definitely are challenges. That’s the focus of this episode, hosted by Marcos Cardoso from ETAS. He’s joined by Seungtaek Chang from Keysight Technologies for a discussion about common fuzzing challenges, including:

• Choosing a fuzz testing method and tool
• Deploying a global test strategy
• Determining what to do with the fuzz testing results

In addition to talking about the...

In this episode, we’re honored to be joined by renowned automotive journalist, commentator and thought leader, John McElroy. John joins our host, Eric Cesa, to talk about the incredible pace of change the industry is seeing related to the software-defined vehicle, the factors driving the change, where the change will happen, the significance (and fun) of all this change, as well as what it means to vehicle manufacturing and ownersh...

In this episode, Collin Mundell from ETAS is joined by Noah Gedrimas, VP of Strategy at GPR to talk about ground penetrating radar technology and its mobility applications, specifically passenger and commercial vehicles. Already used in mining and seaport applications, this technology can penetrate meters through the ground and create a signature for surveying and mapping. Noah and Collin talk about how the technology works in conj...

This impressive group of experts from ETAS (Ansgar Lindwedel), Bosch (Marcel Kurzmann), ZF (Sarah Moser) and formerly with Microsoft (Sarah Novotny) come together to talk about how to deal with open-source software – consuming and contributing. They look at different perspectives – European and U.S. suppliers, non-automotive companies, and individuals – in how open source evolved and is addressed today, and where it’s headed. The e...

In this episode, our host, Thomas Irmscher is joined by his ETAS colleague Marcos Cardoso and Steffen Sanwald from Mercedes-Benz. The trio of experts dive into security fuzzing: its purpose, what makes a good fuzzer and how to adjust it to fit your needs, the differences and benefits of source-code fuzzing and protocol fuzzing, and the collective effort needed to make vehicle software as secure as possible. Episode note: Steffen sh...

The journey to the software-defined vehicle (SDV) has started in earnest, and the trip promises to be an exciting one. This episode, hosted by Tim Messegee from Rambus, with expert guests Adiel Bahrouch from Rambus and Omar Alshabibi from ETAS, looks at many of the software and hardware challenges presented in realizing the vision of the SDV while enhancing system performance, quality and security. Our experts will explore how ecos...

At the heart of the software-defined vehicle is a computer. And a critical prerequisite for this computer is security for it, the software on it and its computing platform. That computing platform is where system-on-chip technology enters the picture, acting as the microprocessor for the vehicle ECU. In this episode, ETAS team members Collin Mundell and Omar Alshabibi talk through elements leading up to and part of system-on-chip t...

Moritz Minzlaff, Head of Professional Security Services at ETAS, is joined by Timo van Roermund, Technical Director of Automotive Security at NXP Semiconductors, to discuss the Automotive Cyber Maturity Report 2023. In addition to the benefits of conducting the survey the report is based on, as well as the key areas of interest in the report, Moritz and Timo discuss activities (industry and within companies) around standardization,...

The software-defined vehicle is and will continue to transform the auto industry. In this episode, our host, Carina Boettcher, leads a discussion with her ETAS colleagues, Moritz Minzlaff and Michael Lueke about one of these transformation topics – software-defined vehicle security. 

Referencing their recent whitepaper (see link below), the group talks about changes in software development, data flow, the vehicle’s ecosyst...

There are significant security challenges - a common language for configuration, connection to the intrusion detection system, standard firewall requirements and more - for today's connected vehicles and the future software-defined vehicle. In this episode, Michael Schneider, ETAS senior security consultant, and Siddharth (Sid) Shukla, ETAS senior product manager, discuss the AUTOSAR Firewall module and how it addresses these,...

For the software-defined vehicle to become a reality, we need a centralized software layer - middleware - between the operating system and applications.  Middleware (e.g.,  AUTOSAR Adaptive or AUTOSAR Classic) will enable decision making and connectivity for more immersive, personalized features and capabilities. In this episode, Eric Cesa is joined by Nigel Tracey, vice president of RTA solutions at ETAS, to talk about middleware ...