Automakers join organization to standardize vehicle cybersecurity

Published on September 8, 2025

Stellantis has joined GlobalPlatform, a growing community of automakers, cybersecurity firms, silicon vendors, and academic institutions that are working together on a standardized cybersecurity approach for software-defined vehicles (SDVs), according to a press release.

Other recent members include AIST, Cariad (Volkswagen), Dekra, ETAS, Linaro, Rambus, Renesas, Uni-sentry, and Woven by Toyota.

Stellantis says it has joined to help align its technologies with evolving automotive use cases and regulatory requirements.

GlobalPlatform is a technical standards organization focused on the efficient launch and management of innovative, secure-by-design digital services and devices, according to the release.

As part of the agreement, Bill Mazzara, North American regulatory lead and technical fellow for product cybersecurity at Stellantis, becomes co-chair of GlobalPlatform’s Automotive Task Force.

“GlobalPlatform’s Automotive Task Force is helping the industry converge on a platform of secure, scalable foundations for software-defined vehicles,” said Mazzara, in the release. “Our engagement is focused on harmonizing security standards and fostering cross-industry collaboration to meet evolving regulatory and operational requirements and ultimately our customers’ expectations.”

GlobalPlatform says it recently reached a major milestone by fully aligning market-proven technologies and specifications with the new addendum of the SAE J3101 Hardware Protected Security Environment automotive cybersecurity standard (J3101-5).

“This creates the formal means for GlobalPlatform-compliant suppliers to demonstrate automatic compliance with J3101,” the release states. “It provides automakers with confidence that components embedded in their vehicles meet cybersecurity requirements and facilitate integration with applications of AutoSAR, Car Connectivity Consortium, and other automotive frameworks.”

A protection profile has also been built, based on the SESIP evaluation methodology, to ensure component-level certifications are aligned with SAE J3101. It will also allow certified components to be reused across platforms without the need for re-evaluation, according to the release.

“These recent advancements represent a breakthrough in the industry’s goal of creating a standardized and certified platform for secure vehicle applications,” said Ana Tavares Lattibeaudiere, GlobalPlatform’s executive director, in the release. “We urge further companies from across the auto industry to join us in our mission to lower risk, reduce costs, and eliminate fragmentation across the automotive cybersecurity ecosystem.”

Images

Featured image credit: Alexander Sikov/iStock

Continue reading on website

Other news

NHTSA plans to ‘modernize’ safety standards for autonomous vehicles; Lucid, Uber close deal to deploy 20,000 robotaxis

September 8, 2025

The National Highway Traffic Safety Administration (NHTSA) plans to launch three rulemakings to modernize Federal Motor Vehicle Safety Standards for vehicles with automated driving systems.Transportation Secretary Sean P. Duffy says the standards were written decades ago and fail to account for automated vehicles.“America must lead the way in transportation innovation,” he said in a Sept. 4 press

Nevada’s DOI and DMV continue to be impacted by a statewide ransomware attack

September 8, 2025

The Nevada Division of Insurance (DOI) and Department of Motor Vehicles (DMV) have both been impacted by a ransomware attack on the state’s government agencies. A Facebook post made by the DOI Wednesday says that their website remains temporarily unavailable. The website still was not working Friday afternoon following the ransomware incident that was identified by the state on Aug. 24. “We’re gra