Vehicle data & IT Security

Use of vehicle data for accident investigation

Modern motor vehicles store a range of event data in the case of a claim, such as an accident, breakdown or theft which is of high and increasing importance for the insurance company when processing claims. These event data from the vehicle can not only be used to reconstruct the course of an accident, check plausibility of damages and clarify liability issues but also to speed up the entire claims processing from notification to payment, making it more digital and customer-friendly. However, even for experts, it is currently not transparent in which vehicle models which data is recorded in which quality and how or whether this data is accessible, except to the vehicle manufacturer.

At present, both the UNECE (United Nations Economic Commission for Europe), the EU Commission and the individual countries are working on regulations on the recording of accident and incident data in the vehicle, on access options to vehicle data and on the forwarding of vehicle data to third parties. Numerous legal and technical issues arise in this context. The Allianz Centre for Technology contributes to the relevant committees, working groups and research projects by providing the technical basis for appropriate data parameters, event recognition by vehicle systems, data security and non-discriminatory access to this data.  The position of the Allianz on data and victim protection as well as on the safety of automated driving functions is of great importance and is taken into account in all discussions.  

The possible clarification of accidents and traffic offences involving automated vehicles in mixed traffic is a focus of future global regulations as well as of German legislation.  As a member of the informal IWG EDR/DSSAD working group of the UNECE, the Allianz Center for Technology actively supports the formulation of corresponding draft legislation.

You can find more details under the following links:

Principles of the data custodian procedure

Networks and IT security

In the course of digitalization, the global networking of systems and functions and the assessment of the risks this poses are increasingly coming to the fore - and this applies to the automotive industry as well. The new forms of technology in vehicles do not have to only function smoothly without any technical glitches, but they also have to be evaluated in terms of IT security. This gives rise to completely new challenges such as the forensic evidence of risks which arise through attacks and manipulation and may make the interfaces to the outside world insecure. 

In this context, AZT is currently taking an in-depth look at two questions in particular:

1. Analysis and risk assessment of newly networked functions, such as virtual vehicle keys.

AZT has analyzed the potential ecosystem "Virtual Vehicle Keys", addressed the existing and new potential risks and attack vectors, and formulated the requirements with regards to virtual vehicle keys.

The requirements are to serve as guidelines for the handling of networked and security-critical functions in a loss event from the insurer's perspective, and, at the same time, to assist the automotive manufacturers with the technical design of the system and its protection against misuse.

2. IT security in networked vehicles

Attacks on the wiring system of a networked vehicle may jeopardize the comfort, property and safety of the passengers, as well as threaten economic interests.

Within the scope of a long-term, interdisciplinary cooperation project with the private research institution InS³  headed by Prof. Dr. Rudolf G. Hackenberg, professor at Ostbayerische Technische Hochschule (OTH) in Regensburg, these digital risks are examined, and threats as well as attack methods analyzed in terms of IT security.

Ecosystem Virtual Vehicle Key