This past week Fiat Chrysler Auto (FCA) announced the recall of 4.8 million US cars to install revised software in their Engine Control Modules (ECMs). A few years ago the same manufacturer had to recall over 1 million vehicles when cybersecurity researchers showed that they could penetrate the car’s control systems remotely using the vehicle’s connected infotainment system.
These 2 recalls show two sides of the connectivity “coin”. In one case connected car systems were not securely isolated. In the other case, no connectivity was available, so a software upgrade required a service procedure on each vehicle. With respect to connectivity, poor FCA seems damned if they do and damned if they don’t. If both of these recalls illustrate the way not to do things, then what is the right way to plan for systems of the future? This question is equally relevant to industrial IoT deployments and to industrial automation systems of the future, not just to cars. I’m propose 2 key lessons from this debacle:
Connectivity is a Must
First, suppliers can no longer afford to deploy disconnected products or systems. If the ECM upgrade service costs $200 per vehicle (my estimate), then FCA will spend nearly $1 billion on this recall. That figure will subtract from their bottom line. Ouch. And that billion will not add one bit of additional functionality to the vehicles, and the same cars are still subject to a new vulnerability that would have to be remedied the very same costly way. In hindsight (always easy, I admit) an earlier investment in product designs with secure connectivity and remote software update capability would have saved almost all of that billion dollars, and would greatly reduced the financial risk of future incidents.
Do you think you can’t afford the risk of designing secure connectivity into your products and systems? Then ask yourself how much it would cost you (and your customers!) to repair a similar software vulnerability in your installed base. Or do you simply hope this never happens to you?
Business Process Disruption
Second, business processes need to be re-imagined in order to realize the potential value of connected assets. Cars by EV manufacturer Tesla designed in the capability to upgrade vehicle software remotely, probably because they knew that with entirely new products this would be necessary. How many of today’s industrial IoT or industrial automation installations can do the same? Not many, I would guess. But this capability represents a feature that improves service levels while driving down service costs compared with today’s antiquated service processes.
Software for industrial IoT and industrial automation systems of the future will be remotely serviceable, All software. Yes, I mean all. So don’t shackle your products (and your customers!) to the outdated, costly, and labor-intensive service models of the past.
About ARC Advisory Group (www.arcweb.com): Founded in 1986, ARC Advisory Group is a Boston based leading technology research and advisory firm for industry and infrastructure.
For further information or to provide feedback on this article, please contact firstname.lastname@example.org
About the Author:
Harry is ARC’s lead analyst for the Distributed Control System (DCS) market. In addition, ARC leverages Harry’s utility expertise in its coverage of Smart Grid, industrial networking, networking and communication standards, and the electric power vertical industry. His research topics include the DCS integration and architecture, Smart Grid, Smart Metering, energy storage, industrial wireless, industrial Ethernet and emerging network technologies.