C-ITS PKI as a Service
In many respects, todays's motor vehicles function as connected devices. And with this in consideration, joint EU initiatives have broadened the impact of Cooperative Intelligent Transport Systems (C-ITS) to include more expanded connections, including road infrastructure. This enhanced connectivity is expected to show significant improvements to road safety and traffic efficiency.
Meanwhile, it must be noted that the deployment of C-ITS on the part of governments, municipalities, smart infrastructures and automotive players is a costly endeavour. One of the most significant deterents to the adoption of C-ITS security is the implementation cost of the mandatory security component - Public Key Infrastructure (PKI).
The investment consists of hardware procurement costs, such as servers and the hardware security module (HSM). Additionally, the price includes a software license for the PKI, security experts, training, and maintenance costs. A specific example is the public tender executed by the European Commission during 2019, which concerned C-ITS "EU Root Certification Authority". The winning bid was approximately 1 million EUR for construction and 400,000 EUR for operation annually, depending on the number of connected C-ITS stations (vehicles and road infrastructure units). This puts C-ITS systems into the arena of significant public investment, and thus out of reach for smaller bodies who are still interested in C-ITS in general, and C-ITS security in particular.
Our view, supported by market research, is that there is a substantial market for more accessible forms of C-ITS security systems. Furthermore, investments in this market area will innately improve the overall cybersecurity of car-to-car and car-to-infrastructure communication.
As part of our UK research project called Meili, in cooperation with our partners AppPlus + IDIADA and CryptaLabs, we have developed C-ITS PKI as a Service. Project Meili was part of the UK Government and its partners Zenzic and InnovateUK 1.2 million British pounds to develop a cohesive understanding of the challenges and potential solutions to addressing digital resilience and cyber security within Connected and Automated Mobility.
Unique PKI as a Service delivery is going to aid rapid adoption of C-ITS without the costly initial investment, and without the need to build and operate central PKI.
For getting early access to PKI as a Service, please visit https://teskalabs.com/products/seacat-pki and subscribe.
For more information about Meili project's results visit https://zenzic.io/cybersecurity/
Are you interested in security for connected vehicles? Visit this page
You Might Be Interested in Reading These Articles

Connected Vehicles: Are we ready?
Connected vehicles that talk to each other, increase road safety, and rely on automation all seem like a plot from a sci-fi movie. When does the robot takeover come in? As outlandish as all of this might seem, we’re closer than ever to connected vehicles being the new normal on our roadways. In fact, by 2025, every car on the road is expected to be connected in some way, shape, or form.
Published on June 15, 2019

TeskaLabs at the ETSI 7th CMS Plugtest validating C-ITS security
It is our great pleasure to announce that TeskaLabs successfully participated at the ETSI 7th CMS Plugtest at Sophia Antipolis, France, from 4th to 7th November 2019. This V2X plugtest was focused on testing C-ITS cyber security, interoperability and a validation of the European trust domain.
Published on November 15, 2019

C-ITS ITS-S Security microservice
As part of TeskaLabs‘s research activities, we are working toward a more flexible, contemporaneous method to deploy the software security component (specifically C-ITS Security) into the vehicle software ecosystem (ITS-S). The current best practice in the industry is that the cybersecurity component is integrated into the vehicle application software as a library. However, this approach brings with it many limitations, such as narrow software compatibility. The deployment is highly inflexible and so it is often omitted due to its complexity.
Published on June 15, 2020