SAE International Journal of Transportation Cybersecurity and Privacy

Thomas M. Forest, General Motors Research & Development, USA: Thomas M. Forest (Tom) is a Senior Technical Fellow with General Motors Research & Development in Warren, Michigan. Tom is a member of the Electrical & Controls Systems Research Laboratory, working primarily in the areas of vehicle cybersecurity, vehicle electrical architecture, in-vehicle networking, and safety-critical systems. Since 2011 Tom has been the chairman of the SAE Vehicle Electrical Systems Security Committee and has over 30 years of experience in automotive electrical system design.

Kevin Harnett, Department of Transportation (DOT)/Volpe National Transportation Systems Center, USA: Kevin Harnett is a Program Manager for the United States Department of Transportation (DOT) at the Volpe National Transportation Systems Center located in Cambridge, Massachusetts. Mr. Harnett has over 36 years of combined project management, technical consulting, and implementation skills. Kevin is a Cybersecurity Program Manager (PM) with experience providing technical leadership in planning, implementing, and managing high-priority programs involving cybersecurity and risk management for the DOT, Federal Aviation Administration (FAA), National Highway and Traffic Safety (NHTSA), DOD/USAF, Defense Information Systems Agency (DISA), NASA, DHS, and other agencies. From 2010-2014, Kevin supported NHTSA on their “Research Planning for Cybersecurity of Automotive Safety—Critical Electronic Control Systems” Program and the development of a Vehicle Cybersecurity Threat/Risk Model, Assessment of the Automotive Information Sharing and Analysis Center (Auto ISAC) Model Paper, Vehicle Cybersecurity Testing laboratory, and Vehicle Cybersecurity Guidance. Since October 2014, Kevin has supported DHS Science and Technology (S&T) Cybersecurity Division (CSD) on three major programs focusing on automotive cybersecurity: Automotive Cybersecurity Industry Consortium (ACIC), Cybersecurity for Government Vehicles Program, and Automotive Cybersecurity Tools Research. In support of DHS, Kevin has been evaluating OBD-2 dongles/telematics systems, Open Source CAN tools, CAN Bus, Bluetooth, etc., and state-of-the-art Automotive Cybersecurity countermeasures, such as Intrusion Detection System (IDS), Intrusion Prevention Systems (IPS), Firewalls, etc. in the Volpe Cybersecurity Vehicle Testing Lab. Since 2016, Kevin is also supporting the National Motor Freight Traffic Association (NMFTA) on a new program called Heavy Vehicle Cybersecurity (HVCS), Kevin is evaluating OEM heavy vehicles and telematics system vulnerabilities.

Dr. André Weimerskirch, Lear Corporation, USA: André Weimerskirch is VP Cyber Security at Lear Corporation. Before that, André established the transportation cybersecurity group at the University of Michigan Transportation Research Institute (UMTRI) and co-founded the embedded systems security company ESCRYPT, which was sold to Bosch in 2012.

André is active in all areas of automotive and transportation cybersecurity and privacy, is a main designer of the vehicle-to-vehicle security system, which will likely be the largest security system ever deployed; has published numerous articles in the area of automotive and embedded cybersecurity; and is co-founder of the American workshop on embedded security in cars (escar USA). André is vice chair of the SAE Vehicle Electrical System Security Committee, co-chairs the Michigan Mobility Transformation Center (MTC) cybersecurity working group, co-organizes the SAE ComVEC heavy vehicle cybersecurity session, and is a member of the joint SAE/ISO Cybersecurity Working Group.