Leveraging National Auditing Criteria to Implement Cybersecurity Safeguards for the Automotive Emergency Response Vehicles : A case study from Finland

Abstract

A modern Emergency Response Vehicle (ERV) is a combination of emergency services and functional mobile office on the wheels. The mobile office is aiming to leverage the benefits of fixed office while moving on the wheels. Researchers have observed that emergency response personnel including Law Enforcement Authorities (LEAs), Police and border guards, could be on the duty while having possibility to use same services compared to fixed office. On the one hand, demand of mobile office has significantly improved the emergency response services. On the other hand, emergency vehicle designers should rethink the demand of users. This resulted into modern standard emergency response vehicle with three compartments including cabin, office space and transport space. During our research study, users have registered special demand for mobile office, to meet this demand, designers and engineers have combined a modern vehicle platform with computers, monitors, wireless connectivity and many other devices needed in everyday activities. A set of standards has been released by local and global organisations to help building standard vehicle for emergency responses. However, there is continue challenge, the standards are not covering information and cyber security properly. This research paper fulfils that gap by applying the Finnish National Security Auditing Criteria version 2 (KATAKRI II) on top of eight asset classes that have recognised in Mobile Object Bus Integration (MOBI) project. The outcome is a pragmatic proposal that provides set of safeguards for guaranteeing ERV information and cyber security. This paper presents the information and cyber security safeguards utilising standards presented in Finnish National Auditing Criteria and applying in emergency response vehicles.