FIELD NOTES
Working notes from the parts of automotive cybersecurity that do not make it into the marketing decks. Post-quantum migration, V2X PKI, vehicle SOC operations, regulatory readiness. Written by the engineers doing the work.
POST-QUANTUM · ARCHITECTURE
·The argument that a cryptographically-relevant quantum computer is decades away is true. The argument that it is months away is also occasionally made. Neither is a planning horizon. Here is what is.
PSIRT · INCIDENT RESPONSE · OEM
·Field notes from running automotive vulnerability response across five OEMs and a dozen real disclosures. The official process and the working process are not the same document.
V2X · POST-QUANTUM · BANDWIDTH
·The post-quantum standards landed in 2024. The 1,400-byte V2X frame ceiling did not move. Here is what actually happens when you try to drop ML-DSA into a Basic Safety Message, and what we ship instead.
REGULATION · COMPLIANCE
·Most R155 readings happen in compliance teams. That's a mistake. The clauses are written for engineers if you know which ones to read first.