This is release 1.5 of cybersecurity requirements for telematics systems developed in collaboration with motor freight carriers, telematics service providers, and cybersecurity experts.
All documents are licensed under the Creative Commons BY-NC-ND 4.0:
THE INFORMATION CONTAINED HEREIN IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE INFORMATION IS WITH THE USER.
For this release, there are multiple changes:
- updated NIST 800-53 outward references to match r5 (of 800-53)
- corrected format of outward references to FMCSA document
- updated outward references to match TS 103 645 v1.1.1 revision of ETSI document
- updated outward references to newest CAIQ version
- added outward references to OWASP to 10
- added outward references to UL 1376
- added new requirements in response to gaps identified relative to UL 1376: SCP-140, CM-040, M-040, SCP-092, SII-041, and SAA-050
Contributors
This requirements matrix and the Request For Proposal Contract Template Language project where it was originally developed was made possible through the generous contributions of thought leadership and technical expertise of many collaborators across the heavy vehicle cybersecurity community, working to push the industry forward and make it more resilient. Though some of our contributors wish to remain anonymous, we are deeply grateful to everyone who has given their time and energy to make this a reality.
| Fleet Managers | Telematics Providers | Independents |
|---|---|---|
| Bill Brown, Retired Manager of Fleet Telematics, SEFL | Derek Held, Zonar Systems | Altaz Valani, Security Compass |
| Geotab | Mr. Mark Zachos, President, DG Technologies | |
| Richard M. Litwinczuk, Senior Cybersecurity Engineer, Land Cyber Mission Assurance Program DND | ||
| Jacob D'Aoust, Junior Researcher, DeepMicro Limited |
