Hazel Si Min Lim,Araz Taeihagh

DOI: https://doi.org/10.48550/arXiv.1804.10367

2018-04-27

Computers and Society

Abstract:Amidst rapid urban development, sustainable transportation solutions are required to meet the increasing demands for mobility whilst mitigating the potentially negative social, economic, and environmental impacts. This study analyses autonomous vehicles (AVs) as a potential transportation solution for smart and sustainable development. We identified privacy and cybersecurity risks of AVs as crucial to the development of smart and sustainable cities and examined the steps taken by governments around the world to address these risks. We highlight the literature that supports why AVs are essential for smart and sustainable development. We then identify the aspects of privacy and cybersecurity in AVs that are important for smart and sustainable development. Lastly, we review the efforts taken by federal governments in the US, the UK, China, Australia, Japan, Singapore, South Korea, Germany, France, and the EU, and by US state governments to address AV-related privacy and cybersecurity risks in-depth. Overall, the actions taken by governments to address privacy risks are mainly in the form of regulations or voluntary guidelines. To address cybersecurity risks, governments have mostly resorted to regulations that are not specific to AVs and are conducting research and fostering research collaborations with the private sector.

Md Aminul Islam,Sarah Alqahtani

2023-09-25

Abstract:This chapter explores the complex realm of autonomous cars, analyzing their fundamental components and operational characteristics. The initial phase of the discussion is elucidating the internal mechanics of these automobiles, encompassing the crucial involvement of sensors, artificial intelligence (AI) identification systems, control mechanisms, and their integration with cloud-based servers within the framework of the Internet of Things (IoT). It delves into practical implementations of autonomous cars, emphasizing their utilization in forecasting traffic patterns and transforming the dynamics of transportation. The text also explores the topic of Robotic Process Automation (RPA), illustrating the impact of autonomous cars on different businesses through the automation of tasks. The primary focus of this investigation lies in the realm of cybersecurity, specifically in the context of autonomous vehicles. A comprehensive analysis will be conducted to explore various risk management solutions aimed at protecting these vehicles from potential threats including ethical, environmental, legal, professional, and social dimensions, offering a comprehensive perspective on their societal implications. A strategic plan for addressing the challenges and proposing strategies for effectively traversing the complex terrain of autonomous car systems, cybersecurity, hazards, and other concerns are some resources for acquiring an understanding of the intricate realm of autonomous cars and their ramifications in contemporary society, supported by a comprehensive compilation of resources for additional investigation. Keywords: RPA, Cyber Security, AV, Risk, Smart Cars

Computational Engineering, Finance, and Science,Computation and Language

Amaresh Kumar

DOI: https://doi.org/10.60087/jaigs.v2i1.p138

2024-03-10

Abstract:The deployment of autonomous vehicles (AVs) powered by artificial intelligence (AI) raises profound ethical questions regarding the balance between safety and privacy. While AI-driven AVs promise to revolutionize transportation by potentially reducing accidents and increasing efficiency, concerns regarding data privacy, liability, and decision-making algorithms persist. This paper explores the ethical considerations surrounding AI-driven AVs, focusing particularly on the delicate equilibrium required to ensure both safety and privacy. Drawing upon existing literature and case studies, the paper examines the ethical dilemmas inherent in AV technology, including issues of consent, data collection, and algorithmic bias. Additionally, it delves into the regulatory frameworks and industry standards aimed at addressing these concerns. By highlighting the complexities of navigating safety and privacy in AI-driven AVs, this research contributes to the ongoing discourse on ethical AI development and deployment.

Franco Oberti,Fabrizio Abrate,Alessandro Savino,Filippo Parisi,Stefano Di Carlo

2024-06-30

Abstract:The automotive industry has evolved significantly since the introduction of the Ford Model T in 1908. Today's vehicles are not merely mechanical constructs; they are integral components of a complex digital ecosystem, equipped with advanced connectivity features powered by Artificial Intelligence and cloud computing technologies. This evolution has enhanced vehicle safety, efficiency, and the overall driving experience. However, it also introduces new challenges, notably in cybersecurity. With the increasing integration of digital technologies, vehicles have become more susceptible to cyber-attacks, prompting significant cybersecurity concerns. These concerns include securing sensitive data, protecting vehicles from unauthorized access, and ensuring user privacy. In response, the automotive industry is compelled to adopt robust cybersecurity measures to safeguard both vehicles and data against potential threats. Legislative frameworks such as UNR155 and UNR156 by the United Nations, along with other international regulations, aim to establish stringent cybersecurity mandates. These regulations require compliance with comprehensive cybersecurity management systems and necessitate regular updates and testing to cope with the evolving nature of cyber threats. The introduction of such regulations highlights the growing recognition of cybersecurity as a critical component of automotive safety and functionality. The future of automotive cybersecurity lies in the continuous development of advanced protective measures and collaborative efforts among all stakeholders, including manufacturers, policymakers, and cybersecurity professionals. Only through such concerted efforts can the industry hope to address the dual goals of innovation in vehicle functionality and stringent security measures against the backdrop of an increasingly interconnected digital landscape.

Cryptography and Security

Jozef Andraško,Ondrej Hamuľák,Matúš Mesarčík,Tanel Kerikmäe,Aleksi Kajander

DOI: https://doi.org/10.3390/su131910610

IF: 3.9

2021-09-24

Sustainability

Abstract:The article focuses on the issue of data governance in connected vehicles through a novel analysis of current legal frameworks in the European Union. The analysis of relevant legislation, judicial decisions, and doctrines is supplemented by discussions relating to associated sustainability issues. Relevant notions of autonomous vehicles are analyzed, and a respective legal framework is introduced. Although fully automated vehicles are a matter for the future, the time to regulate is now. The European Union aims to create cooperative, connected, and automated mobility based on cooperation between different interconnected types of machinery. The essence of the system is data flow, as data governance in connected vehicles is one of the most intensively discussed themes nowadays. This triggers a need to analyze relevant legal frameworks in connection with fundamental rights and freedoms. Replacing human decision-making with artificial intelligence has the capacity to erode long-held and protected social and cultural values, such as the autonomy of individuals as has already been in evidence in legislation. Finally, the article deals with the issue of responsibility and liability of different actors involved in processing personal data according to the General Data Protection Regulation (GDPR) applied to the environment of connected and automated vehicle (CAV) smart infrastructure. Based on a definition and analysis of three model situations, we point out that in several cases of processing personal data within the CAV, it proves extremely demanding to determine the liable entity, due to the functional and relatively broad interpretation of the concept of joint controllers, in terms of the possibility of converging decisions on the purposes and means of processing within the vehicles discussed.

environmental sciences,environmental studies,green & sustainable science & technology

Araz Taeihagh,Hazel Si Min Lim

DOI: https://doi.org/10.1007/978-3-030-66042-0_7

2021-01-01

Abstract:Autonomous vehicles (AVs) are increasingly proposed as a solution towards addressing urbanisation challenges in smart city initiatives, such as congestion, pollution, road safety and transport accessibility. However, their socio-economic and environmental benefits can be hampered by new technological risks emerging from their use. This chapter explores some of the major risks associated with AV adoption that need to be addressed to reap the technology’s full benefits. AVs can introduce safety risks arising from technical issues in the AV system and ethical issues in their design and deployment. In addition, socio-economic equity is a key aspect of sustainability, which can be undermined by AVs displacing jobs in existing industries, as well as by their discriminatory driving decisions shaped by algorithmic biases and the value-laden design choices of AV stakeholders. AVs’ connected nature also poses privacy and cybersecurity risks that can dampen consumer acceptance. After exploring these issues, we discuss some of the governance strategies adopted to address these risks and highlight the gaps in research and practice that need to be addressed.

David Fernández Llorca,Ronan Hamon,Henrik Junklewitz,Kathrin Grosse,Lars Kunze,Patrick Seiniger,Robert Swaim,Nick Reed,Alexandre Alahi,Emilia Gómez,Ignacio Sánchez,Akos Kriston

2024-02-21

Abstract:This study explores the complexities of integrating Artificial Intelligence (AI) into Autonomous Vehicles (AVs), examining the challenges introduced by AI components and the impact on testing procedures, focusing on some of the essential requirements for trustworthy AI. Topics addressed include the role of AI at various operational layers of AVs, the implications of the EU's AI Act on AVs, and the need for new testing methodologies for Advanced Driver Assistance Systems (ADAS) and Automated Driving Systems (ADS). The study also provides a detailed analysis on the importance of cybersecurity audits, the need for explainability in AI decision-making processes and protocols for assessing the robustness and ethical behaviour of predictive systems in AVs. The paper identifies significant challenges and suggests future directions for research and development of AI in AV technology, highlighting the need for multidisciplinary expertise.

Computers and Society,Artificial Intelligence,Machine Learning

Jennifer Dukarski,

DOI: https://doi.org/10.4271/epr2021019

2021-09-13

Abstract:Modern automobiles collect around 25 gigabytes of data per hour and autonomous vehicles are expected to generate more than 100 times that number. In comparison, the Apollo Guidance Computer assisting in the moon launches had only a 32-kilobtye hard disk. Without question, the breadth of in-vehicle data has opened new possibilities and challenges. The potential for accessing this data has led many entrepreneurs to claim that data is more valuable than even the vehicle itself. These intrepid data-miners seek to explore business opportunities in predictive maintenance, pay-as-you-drive features, and infrastructure services. Yet, the use of data comes with inherent challenges: accessibility, ownership, security, and privacy. Unsettled Legal Issues Facing Data in Autonomous, Connected, Electric, and Shared Vehicles examines some of the pressing questions on the minds of both industry and consumers. Who owns the data and how can it be used? What are the regulatory regimes that impact vehicular data use? Is the US close to harmonizing with other nations in the automotive data privacy? And will the risks of hackers lead to the “zombie car apocalypse” or to another avenue for ransomware? This report explores a number of these legal challenges and the unsettled aspects that arise in the world of automotive data

Araz Taeihagh,Hazel Si Min Lim

DOI: https://doi.org/10.48550/arXiv.1807.05720

2018-07-16

Computers and Society

Abstract:The benefits of autonomous vehicles (AVs) are widely acknowledged, but there are concerns about the extent of these benefits and AV risks and unintended consequences. In this article, we first examine AVs and different categories of the technological risks associated with them. We then explore strategies that can be adopted to address these risks, and explore emerging responses by governments for addressing AV risks. Our analyses reveal that, thus far, governments have in most instances avoided stringent measures in order to promote AV developments and the majority of responses are non-binding and focus on creating councils or working groups to better explore AV implications. The US has been active in introducing legislations to address issues related to privacy and cybersecurity. The UK and Germany, in particular, have enacted laws to address liability issues, other countries mostly acknowledge these issues, but have yet to implement specific strategies. To address privacy and cybersecurity risks strategies ranging from introduction or amendment of non-AV specific legislation to creating working groups have been adopted. Much less attention has been paid to issues such as environmental and employment risks, although a few governments have begun programmes to retrain workers who might be negatively affected.

Anastasios Giannaros,Aristeidis Karras,Leonidas Theodorakopoulos,Christos Karras,Panagiotis Kranias,Nikolaos Schizas,Gerasimos Kalogeratos,Dimitrios Tsolis

DOI: https://doi.org/10.3390/jcp3030025

2023-08-05

Journal of Cybersecurity and Privacy

Abstract:Autonomous vehicles (AVs), defined as vehicles capable of navigation and decision-making independent of human intervention, represent a revolutionary advancement in transportation technology. These vehicles operate by synthesizing an array of sophisticated technologies, including sensors, cameras, GPS, radar, light imaging detection and ranging (LiDAR), and advanced computing systems. These components work in concert to accurately perceive the vehicle’s environment, ensuring the capacity to make optimal decisions in real-time. At the heart of AV functionality lies the ability to facilitate intercommunication between vehicles and with critical road infrastructure—a characteristic that, while central to their efficacy, also renders them susceptible to cyber threats. The potential infiltration of these communication channels poses a severe threat, enabling the possibility of personal information theft or the introduction of malicious software that could compromise vehicle safety. This paper offers a comprehensive exploration of the current state of AV technology, particularly examining the intersection of autonomous vehicles and emotional intelligence. We delve into an extensive analysis of recent research on safety lapses and security vulnerabilities in autonomous vehicles, placing specific emphasis on the different types of cyber attacks to which they are susceptible. We further explore the various security solutions that have been proposed and implemented to address these threats. The discussion not only provides an overview of the existing challenges but also presents a pathway toward future research directions. This includes potential advancements in the AV field, the continued refinement of safety measures, and the development of more robust, resilient security mechanisms. Ultimately, this paper seeks to contribute to a deeper understanding of the safety and security landscape of autonomous vehicles, fostering discourse on the intricate balance between technological advancement and security in this rapidly evolving field.

computer science, information systems, interdisciplinary applications, software engineering

G. Caruso,S. Arrigoni,Fabio Fossa,Hafeez Husain Cholakkal,F. Cheli,Matteo Matteucci,Pragyan Dahal

DOI: https://doi.org/10.4018/ijt.291553

2022-01-01

International Journal of Technoethics

Abstract:In response to the many social impacts of automated mobility, in September 2020 the European Commission published Ethics of Connected and Automated Vehicles, a report in which recommendations on road safety, privacy, fairness, explainability, and responsibility are drawn from a set of eight overarching principles. This paper presents the results of an interdisciplinary research where philosophers and engineers joined efforts to operationalize the guidelines advanced in the report. To this aim, we endorse a function-based working approach to support the implementation of values and recommendations into the design of automated vehicle technologies. Based on this, we develop methodological tools to tackle issues related to personal autonomy, explainability, and privacy as domains that most urgently require fine-grained guidance due to the associated ethical risks. Even though each tool still requires further inquiry, we believe that our work might already prove the productivity of the function-based approach and foster its adoption in the CAV scientific community.

Computer Science,Philosophy,Engineering

Shah Khalid Khan,Nirajan Shiwakoti,Peter Stasinopoulos,Matthew Warren

DOI: https://doi.org/10.1049/itr2.12541

IF: 2.7

2024-08-08

IET Intelligent Transport Systems

Abstract:This study addresses the dearth of research on public perceptions regarding liability, consumer data, and their influence on the adoption of automated vehicles (AVs). Analysing a representative sample from the US, UK, Australia, and New Zealand, the research unveils significant concerns (70% of respondents) about AV liability due to cyber risks, correlating with heightened concerns about AV data and a reduced intent to adopt AVs. Surprisingly, individuals with AV data concerns do not exhibit a negative correlation with AV adoption intent, challenging assumptions about data‐related hesitations hindering adoption. The study underscores the nuanced associations between socio‐technical demographics and liability, consumer data, and patching in AV operations. There is a significant lack of comprehensive research that systematically examines public perceptions of liability (related to cyber risks), consumer data, and how these factors influence the adoption of automated vehicles (AVs). To fill this knowledge gap, the authors' research used a survey of 2062 adults across Australia, New Zealand, the UK, and the US to develop a scale for Liability, Data concerns, Data sharing and Patching and updates. This analytical approach employed various statistical methods to analyze the data (summarizing, finding patterns, measuring relationships). The results indicate that 70% of respondents express concerns about AV liability based on cyber risks, highlighting a significant level of liability anxiety. Individuals with highliability concerns also exhibit heightened concerns about AV data, are less comfortable sharing AV data, and display lower intent to adopt AVs. Conversely, individuals comfortable with data sharing are more willing to engage inpatching and express a greater intent to adopt AVs. Interestingly, individuals with AV data concerns do not exhibit a negative correlation with their intentto adopt AVs. Additionally, those willing for patches also show a strongerintent to adopt AVs, challenging the notion that software updates hinder AV adoption.

engineering, electrical & electronic,transportation science & technology

Scott McLachlan,Evangelia Kyrimi,Kudakwashe Dube,Norman Fenton,Burkhard Schafer

DOI: https://doi.org/10.48550/arXiv.2202.02734

2022-02-06

Abstract:Artificial intelligence (AI) features are increasingly being embedded in cars and are central to the operation of self-driving cars (SDC). There is little or no effort expended towards understanding and assessing the broad legal and regulatory impact of the decisions made by AI in cars. A comprehensive literature review was conducted to determine the perceived barriers, benefits and facilitating factors of SDC in order to help us understand the suitability and limitations of existing and proposed law and regulation. (1) existing and proposed laws are largely based on claimed benefits of SDV that are still mostly speculative and untested; (2) while publicly presented as issues of assigning blame and identifying who pays where the SDC is involved in an accident, the barriers broadly intersect with almost every area of society, laws and regulations; and (3) new law and regulation are most frequently identified as the primary factor for enabling SDC. Research on assessing the impact of AI in SDC needs to be broadened beyond negligence and liability to encompass barriers, benefits and facilitating factors identified in this paper. Results of this paper are significant in that they point to the need for deeper comprehension of the broad impact of all existing law and regulations on the introduction of SDC technology, with a focus on identifying only those areas truly requiring ongoing legislative attention.

Artificial Intelligence

Veljko Dubljević,Sean Douglas,Jovan Milojevich,Nirav Ajmeri,William A. Bauer,George F. List,Munindar P. Singh

DOI: https://doi.org/10.48550/arXiv.2101.11775

2021-01-29

Abstract:Autonomous Vehicles (AVs) raise important social and ethical concerns, especially about accountability, dignity, and justice. We focus on the specific concerns arising from how AV technology will affect the lives and livelihoods of professional and semi-professional drivers. Whereas previous studies of such concerns have focused on the opinions of experts, we seek to understand these ethical and societal challenges from the perspectives of the drivers themselves. To this end, we adopted a qualitative research methodology based on semi-structured interviews. This is an established social science methodology that helps understand the core concerns of stakeholders in depth by avoiding the biases of superficial methods such as surveys. We find that whereas drivers agree with the experts that AVs will significantly impact transportation systems, they are apprehensive about the prospects for their livelihoods and dismiss the suggestions that driving jobs are unsatisfying and their profession does not merit protection. By showing how drivers differ from the experts, our study has ramifications beyond AVs to AI and other advanced technologies. Our findings suggest that qualitative research applied to the relevant, especially disempowered, stakeholders is essential to ensuring that new technologies are introduced ethically.

Computers and Society,Artificial Intelligence

Gordana Dodig-Crnkovic,Tobias Holstein,Patrizio Pelliccione

DOI: https://doi.org/10.48550/arXiv.2107.08122

IF: 3.7

2021-07-16

Robotics

Abstract:Development of the intelligent autonomous robot technology presupposes its anticipated beneficial effect on the individuals and societies. In the case of such disruptive emergent technology, not only questions of how to build, but also why to build and with what consequences are important. The field of ethics of intelligent autonomous robotic cars is a good example of research with actionable practical value, where a variety of stakeholders, including the legal system and other societal and governmental actors, as well as companies and businesses, collaborate bringing about shared view of ethics and societal aspects of technology. It could be used as a starting platform for the approaches to the development of intelligent autonomous robots in general, considering human-machine interfaces in different phases of the life cycle of technology - the development, implementation, testing, use and disposal. Drawing from our work on ethics of autonomous intelligent robocars, and the existing literature on ethics of robotics, our contribution consists of a set of values and ethical principles with identified challenges and proposed approaches for meeting them. This may help stakeholders in the field of intelligent autonomous robotics to connect ethical principles with their applications. Our recommendations of ethical requirements for autonomous cars can be used for other types of intelligent autonomous robots, with the caveat for social robots that require more research regarding interactions with the users. We emphasize that existing ethical frameworks need to be applied in a context-sensitive way, by assessments in interdisciplinary, multi-competent teams through multi-criteria analysis. Furthermore, we argue for the need of a continuous development of ethical principles, guidelines, and regulations, informed by the progress of technologies and involving relevant stakeholders.

Michele Scalas,Giorgio Giacinto

DOI: https://doi.org/10.48550/arXiv.1910.01037

2019-10-02

Abstract:The automotive industry is experiencing a serious transformation due to a digitalisation process and the transition to the new paradigm of Mobility-as-a-Service. The next-generation vehicles are going to be very complex cyber-physical systems, whose design must be reinvented to fulfil the increasing demand of smart services, both for safety and entertainment purposes, causing the manufacturers' model to converge towards that of IT companies. Connected cars and autonomous driving are the preeminent factors that drive along this route, and they cause the necessity of a new design to address the emerging cybersecurity issues: the "old" automotive architecture relied on a single closed network, with no external communications; modern vehicles are going to be always connected indeed, which means the attack surface will be much more extended. The result is the need for a paradigm shift towards a secure-by-design approach.

Cryptography and Security

Shah Khalid Khan,Nirajan Shiwakoti,Peter Stasinopoulos,Yilun Chen,Matthew Warren

DOI: https://doi.org/10.1016/j.trip.2024.101084

2024-01-01

Transportation Research Interdisciplinary Perspectives

Abstract:No study has systematically investigated the public's perceptions of cybersecurity regulation, data generated by Autonomous Vehicles (AVs), and their relationship with the acceptance of AVs. To fill this knowledge gap, we conducted an exploratory study on public perceptions of cybersecurity regulation and consumer data in AVs acceptance by surveying nationally representative individuals from four OECD countries (US, UK, Australia, and New Zealand). A total of 2062 responses collected from the survey underwent Exploratory Factor Analysis (EFA) to examine constructs such as Cybersecurity Regulation, Data Sharing, Data Usage, Data Concerns, and intention to use AVs. Correlation analysis further explored the relationships between these constructs, while Mann-Whitney U and Kruskal-Wallis H tests assessed the significance of differences across participant groups.The empirical findings indicate that 80% of respondents agreed on the necessity of cybersecurity regulation for AV operations, with 67% perceiving it as a means to enhance AV safety. Surprisingly, 66% supported cybersecurity regulation despite the potential risk of exposing their personal information. Individuals who are more willing to share AV data also expressed a higher likelihood of using AVs. Furthermore, those who agreed more with cybersecurity regulations were more inclined to be compensated for their data transmission while expressing concerns about data storage and processing. Moreover, around 53% of participants feel they should be compensated for sharing their AV data, with 68% expressing concern about AVs' data storage and processing and 71% supporting the destruction of AV data post-sale. Regarding data privacy concerns, “In-vehicle Private Conversation” draws notable attention, rated very important or extremely important by 64% of the participants. The findings highlight the importance of cybersecurity regulation, data sharing, and data concerns in shaping individuals' intentions to use AVs, as well as the influence of socio-technological attributes.

Noah J. Goodall

DOI: https://doi.org/10.1007/978-3-319-05990-7_9

2020-10-29

Abstract:Road vehicle travel at a reasonable speed involves some risk, even when using computer-controlled driving with failure-free hardware and perfect sensing. A fully-automated vehicle must continuously decide how to allocate this risk without a human driver's oversight. These are ethical decisions, particularly in instances where an automated vehicle cannot avoid crashing. In this chapter, I introduce the concept of moral behavior for an automated vehicle, argue the need for research in this area through responses to anticipated critiques, and discuss relevant applications from machine ethics and moral modeling research.

Computers and Society

Shah Khalid Khan,Nirajan Shiwakoti,Peter Stasinopoulos,Matthew Warren

DOI: https://doi.org/10.1038/s41598-023-29018-9

2023-02-01

Abstract:The digital transformation of Automated Vehicles (AVs) has raised concerns in the cyber realm among prospective AV consumers. However, there is a dearth of empirical research on how cyber obstacles may impact the operation of AVs. To address this knowledge gap, this study examines the six critical cyber impediments (data privacy, AV connectivity, ITS infrastructure, lack of cybersecurity regulations, AV cybersecurity understanding, and AV cyber-insurance) that influence the deployment of AVs. The impact of gender, age, income level, and individual AV and cybersecurity knowledge on these obstacles are statistically assessed using a sample of 2061 adults from the United States, the United Kingdom, New Zealand, and Australia. The research revealed intriguing empirical findings on all cyber barriers in the form of a trichotomy: participants' education level, understanding of AVs, and cybersecurity knowledge. As education levels increase, the significance of a cyber barrier to AV deployment decreases; however, as AV comprehension and cybersecurity knowledge increase, the perception of a cyber barrier becomes significantly more important. In addition, the study demonstrates differences in perceptions of cyber barriers and AV deployments based on gender, age, income, and geographic location. This study's findings on cyber barriers and AV deployment have implications for academia and industry.

Marco De Vincenzi,Mert D. Pesé,Chiara Bodei,Ilaria Matteucci,Richard R. Brooks,Monowar Hasan,Andrea Saracino,Mohammad Hamad,Sebastian Steinhorst

2024-11-16

Abstract:The growing reliance on software in vehicles has given rise to the concept of Software-Defined Vehicles (SDVs), fundamentally reshaping the vehicles and the automotive industry. This survey explores the cybersecurity and privacy challenges posed by SDVs, which increasingly integrate features like Over-the-Air (OTA) updates and Vehicle-to-Everything (V2X) communication. While these advancements enhance vehicle capabilities and flexibility, they also come with a flip side: increased exposure to security risks including API vulnerabilities, third-party software risks, and supply-chain threats. The transition to SDVs also raises significant privacy concerns, with vehicles collecting vast amounts of sensitive data, such as location and driver behavior, that could be exploited using inference attacks. This work aims to provide a detailed overview of security threats, mitigation strategies, and privacy risks in SDVs, primarily through a literature review, enriched with insights from a targeted questionnaire with industry experts. Key topics include defining SDVs, comparing them to Connected Vehicles (CVs) and Autonomous Vehicles (AVs), discussing the security challenges associated with OTA updates and the impact of SDV features on data privacy. Our findings highlight the need for robust security frameworks, standardized communication protocols, and privacy-preserving techniques to address the issues of SDVs. This work ultimately emphasizes the importance of a multi-layered defense strategy,integrating both in-vehicle and cloud-based security solutions, to safeguard future SDVs and increase user trust.

Cryptography and Security,Operating Systems