AI

automotive, ChatGPT February 6, 2023

ChatGPT and automotive cybersecurity #1/2: About CSMS from ISO 21434

As promised, I played more with ChatGPT and this time I started to dig a bit into cybersecurity for automotive. Since I am working these days on CSMS (based on ISO ECE 21434 and TISAX), part of my companies consulting offer for automotive I thought maybe I check what ChatGPT things about them. Unfortunately, nothing dramatically new, a form of what a google search gives you. However, the model answered something interesting about TISAX, which usually I, as a human would probably answer.  ( No, this post is not written by ChatGPT: 🙂   )   Here it is:   Query: Tell me about CSMS from ISO 21434   ChatGPT: CSMS (Cybersecurity Management System) is a framework for managing cybersecurity within an organization, as defined in ISO 21434. ISO 21434 is an international standard for automotive cybersecurity that provides guidelines for the development and implementation of cybersecurity measures in the automotive sector. CSMS is designed to help organizations manage cybersecurity risks and protect against cyber threats. It is based on the same principles as other management systems, such as quality management or environmental management, and provides a structured approach to managing cybersecurity. The framework covers a range of cybersecurity-related activities, including:…

ChatGPT, General February 2, 2023

So much hype about Chat GPT… here are some facts

So much hype about ChatGPT these days.. But what does it mean? So, I gave it a try … and I created an account. This is the first post from many about ChatGPT. First thing you see when you go on the page:   CapabilitiesRemembers what user said earlier in the conversationAllows user to provide follow-up correctionsTrained to decline inappropriate requests LimitationsMay occasionally generate incorrect informationMay occasionally produce harmful instructions or biased contentLimited knowledge of world and events after 2021   I will only see later how true these warnings are 🙂     Query: What does Chat GPT mean? ChatGPT: “ChatGPT” stands for “Chat Generative Pretrained Transformer”. It’s a language model developed by OpenAI, which uses the Transformer architecture and is pre-trained on a large dataset to generate human-like text in response to prompts.     Nice, let’s try something else: If I ask about me or several people I know, but not any VIP person, nothing is found. If I ask about big VIPs, like Joe Biden, Olaf Scholz, Michael Jackson, then it finds various things you would find by just googling.. But then if I provide an anchor, a starting point, apparently this more information confuses the…

automotive, General June 10, 2016

Do you actually need a security product in your car? Part 2: the classical antivirus

I wrote in the first part of this article about Detection, Protection, Remediation and I stopped at the part where we analyze what kind of security products do you need in the car of tomorrow. 1)The classical antivirus We know it to be used mostly for files. But it can much more than that. a) Files There are many files that can enter the car and can produce damages: music video updates (binary or data) scripts configuration files for various subsystems html and javascript (plain text) for rendering Java compiled files (especially if you run Android) possibly Adobe Flash (not sure though) possible Microsoft Silverlight (not sure though) PDFs (reports, help files) Emails (MIME) SMSs Plenty of files to scan, isn’t it? These files can either contain malicious code (Java, JS) or may be specially crafted to exploit known vulnerabilities. This means that there has to be a kind of file checking, so classical antivirus is definitely not dead, despite the vehement comments of some executives and marketing people that wanted to advertise their newest technologies. However, it should be kept in mind that these scanners are mostly signature based. I say “mostly” because even though there are a lot of other detection…

%d bloggers like this: