Building Trust in Connected Vehicles: Active Safety Systems Must Converge with In-Vehicle Infotainment

This is the third in a series of blog posts based on Intel research into human-machine interfaces (HMIs) for connected driving. Read the first and second in this series.

In my previous articles, I’ve written about why it’s so important to design experiences that build trust and confidence in connected vehicles. Now I’ll go over some of the technologies that work inside the vehicle to support these experiences and how we can design systems to provide more seamless interactions between a vehicle and its passengers.

Taking a step back, let’s start with a word: convergence. Convergence is the single greatest accelerator for the development and adoption of connected vehicles. We are converging the automotive industry with the technology industry. Mechanical engines with computing engines. Physical experiences with digital experiences.

For the purposes of this article, let’s explore the convergence of two previously disparate systems within the vehicle itself: active safety and infotainment.


Where Two Systems Meet

A stock image tries to recreate the mood of Michelangelo's "The Creation of Adam" by having a person touch a computer screen.

Active safety systems are as old as cars themselves. These are features that were designed to prevent accidents — think steering and brakes. More recently, active safety systems have expanded to include features like brake assist, adaptive cruise control and collision warning.

On the other hand, in-vehicle infotainment was created for the pure enjoyment of the driver and his or her passengers. It started with the radio. Later, cassette and CD players were added to the mix. Today, a car’s entertainment might include navigation systems, video players and compatibility with the driver’s smartphone. When we talk about HMI, this is where it lives. The in-vehicle infotainment system is responsible for all interactions between a vehicle and its occupants.

Historically, a vehicle’s infotainment and active safety systems have been strictly separated. They’re often developed by entirely different engineering teams. However, in a highly or fully connected vehicle, active safety systems need to interact with the driver or passengers — for example, to warn of a potential collision. Simply put, these two systems need to start working together.


A Single Platform

A connected BMW dashboard with hands-off steering.

The solution my team at Intel has proposed is to converge the vehicle’s active safety and infotainment systems into a unified architecture. This architecture must link self-driving functionality with visual, audible and other communication with passengers.

Architectural convergence can take a variety of forms. Vehicle engineers could physically converge active safety and infotainment systems onto a single high performance compute cluster. They could also keep them separate, but connected. Either way, engineering teams have a new challenge: How can they safely and securely link two very different systems in a way that delivers seamless communication — and a cohesive experience — to passengers?

We believe that a single platform is the most elegant solution to this challenge. One system that delivers infotainment and HMI interactions, while also performing the active safety functions of the vehicle, affords exciting new opportunities for tight integration.


Overcoming Challenges

A man lets his new road trip buddy, his automated vehicle, take over the driving.

That said, converging these systems requires specialized hardware separation to ensure that safety systems with high Automotive Safety Integrity Levels (ASILs) are protected and take priority over noncritical safety functions. In other words, collision avoidance is more important than, say, navigation. One excellent way to help isolate these functions is with Intel Virtualization Technology, which allows multiple workloads to share a common set of resources while maintaining full isolation from each other.

Even if active safety and infotainment systems aren’t physically converged, they must still achieve convergence at a system level, with highly secure and deterministic mechanisms to communicate with each other. For example, if the active safety system needs to notify passengers of a situation immediately, it must have a secure channel to the infotainment system. Furthermore, whatever had been taking place on the infotainment system must be interrupted at once to deliver the safety message. Contrary to traditional design, these mechanisms will now likely require conformance to an ASIL for the very first time.

But this challenge may not be as difficult as it seems. Again, hardware virtualization can provide an isolated extension of the active safety system, delivering the safety and security isolation needed to support a converged architecture.

These are early days for connected vehicles. But if they are to truly succeed in the market, it will be critical to design trust interactions that make drivers and passengers feel safe, comfortable, confident and in control. To learn more about the road ahead for connected vehicles, visit For more on Intel IoT developments, subscribe to our RSS feed for email notifications of blog updates, or visit and Twitter.

The post Building Trust in Connected Vehicles: Active Safety Systems Must Converge with In-Vehicle Infotainment appeared first on IoT@Intel.

Source: Network News

Intersections of Trust: HMI Use Cases for Connected Vehicles

This is the second in a series of blog posts based on Intel research into human-machine interfaces (HMIs) for connected driving. Read the first one here.

In my previous blog post I wrote about how Intel’s user experience research teams have been conducting tests in the realm of fully connected vehicles, and how the results of our research are helping to drive advancements in HMI capabilities. Building on that first post, I’d like to share six key use cases in which our research shows trust interactions will be crucial.

One thing to keep in mind is that while personally owned connected vehicles will eventually be available for us to purchase, fleet-managed fully connected vehicles are likely to reach the market first. These are vehicles a person can hire, like a taxi. Fleet vehicles will provide the first fully connected vehicle experience for millions of passengers. They’ll need to be designed with a focus on interactions that build trust, from the moment a ride is requested.


1: Requesting a Connected Vehicle

An image of vehicles of a freeway representing vehicle-to-vehicle communciation.

You’re standing on a busy downtown street corner. Traffic is rolling by. You’ve just requested a pickup from a ride-hailing service, but there’s a catch. The car is driverless. Without a human behind the wheel, how will the car recognize you? How will you know it’s your ride?

When deploying fully connected vehicles as part of their fleets, transportation-as-a-service providers will need to make it easy for passengers to ensure the car that shows up is the one they asked for. Today, drivers and passengers of ride-sharing services can usually see a photo of one another. In addition, riders can confirm that the license plate on the car matches what they see on their app. Fleet connected vehicles will need a quick, simple way to be identified, whether it’s by photos, serial numbers, proximity sensors, or a combination thereof. Vehicles could even have an external display or indicator to let the passenger know that it’s there for him or her.


2: Entering the Vehicle and Initiating a Trip

A man lets his new road trip buddy, his connected vehicle, take over the driving.

Even in the absence of a human driver, getting inside an connected vehicle should be a warm, welcoming experience. Vehicles should offer a welcome message and invite passengers to adjust the environment — such as temperature and music selection— to their liking. These little touches can help passengers feel comfortable and confident once inside the vehicle.

Today, ride-sharing services let passengers select their destination via mobile app before the car arrives. However, the driver often confirms the route as the passenger enters. A connected vehicle’s HMI must make it incredibly easy to confirm the destination or set it for the first time. Large, prominent touchscreens can give passengers a way to quickly see where they’re headed or make changes.


3: Handling Trip Changes

A stock image tries to recreate the mood of Michelangelo's "The Creation of Adam" by having a person touch a computer screen.

Road construction. An accident ahead. A sudden urge for a burger and fries. Whether based on the vehicle’s GPS or a passenger’s whim, trip changes must be handled simply and clearly.

Clear, bidirectional communication between passengers and the vehicle’s HMI is the first and foremost way to remove ambiguity and confusion — and build confidence and trust. Connected vehicles will need to inform passengers of route changes or request additional details with messages that are simple and easy to understand. The HMI must also acknowledge passenger inputs, so that riders know their instructions have been received.


4: Handling Emergencies

In this picture of a car driving through the snow, a connected vehicle quickly, and safely, adjusts to changing weather conditions.

From time to time, connected vehicles will be faced with emergencies or situations that require dramatic reactions. In these cases, successful HMIs will provide context for what just happened — for example, the vehicle stopped suddenly to avoid hitting another car running a red light. If the situation requires, the HMI should also give additional context for what should or will be happening next — for example, passengers should exit the vehicle and wait for another vehicle in a safe location.

Connected vehicles will need to be designed with consideration for what happens in an accident and what instructions are provided to passengers. How will the vehicle notify police, respond to injured passengers or request a new vehicle if the current one is disabled?


5: Safely Pulling Over and Exiting

A pair of road trip buddies take a selfie with their connected vehicle.

A good HMI will allow passengers to tell the vehicle where they’d like to be dropped off. If there are pedestrians, bicyclists or other obstacles, the HMI should show passengers that it knows they are there and will navigate safely around them. Sensors inside the vehicle can detect when the passengers have exited and even alert riders if a personal object, such as a mobile device, has been left behind. Outside the vehicle, sensors will continue to monitor passengers. Lights or other signals should clearly tell passengers when it’s safe to cross in front of the car.


6: Using the Road in Proximity to a Connected Vehicle

A family pushing a stroller walks across the street in front of a connected vehicle.

Not only must connected vehicles win the trust of their passengers, but also the people and drivers around them. Visual or audible notifications can help pedestrians and other vehicles safely cross in front of a connected vehicle. Our research has found that showing passengers what the connected vehicle “sees” is a key aspect of establishing trust. For example, many participants noted that when the HMI included a visual display of a pedestrian crossing the street, they felt more confident in the vehicle’s ability.

At the end of the day, connected vehicles must behave, react, and communicate in ways that passengers, pedestrians and other drivers are comfortable with. Only by winning trust will connected vehicles achieve widespread adoption.

Stay tuned for our third installment in this three-part series on Intel’s research into HMIs for connected driving. To learn more about the road ahead for connected vehicles, visit For more on Intel IoT developments, subscribe to our RSS feed for email notifications of blog updates, or visit and Twitter.


The post Intersections of Trust: HMI Use Cases for Connected Vehicles appeared first on IoT@Intel.

Source: Network News

Introducing the WatchGuard Firebox T70

WatchGuard is excited to announce the launch of the Firebox T70, our latest tabletop network security appliance. The T70 has set a new industry best, with 1 Gigabit per second in full UTM mode with HTTP traffic, and over 600 Megabits per second with HTTPS traffic. Now, network administrators can confidently deploy a tabletop appliance knowing it will run the services necessary to secure their network without compromising performance.

The Firebox T70 was designed to ensure that network administrators in the small and midsize business (SMB) and Distributed Enterprise segments can deploy a tabletop appliance that can handle HTTPS DPI in environments where Fiber broadband connections are becoming more prevalent. Though HTTPS adds security by encrypting traffic, unfortunately, bad actors are increasingly using this as an attack vector for passing malware through the firewall. It is critical that network admins have the capability to inspect and sanitize this traffic.

To achieve the high performance bar that was set for T70, we decided to leverage an Intel chipset – our first use of the Intel platform in our tabletop lineup. The combination of the product architecture and WatchGuard’s proprietary Fireware OS resulted in our most powerful tabletop yet, and the fastest tabletop UTM on the market when running in full UTM mode (e.g. Intrusion Prevention, Gateway Antivirus, and Application Control) But you don’t have to take our word for it – the performance of the Firebox T70 has been verified by the Miercom independent test lab.

From a design perspective, the Firebox T70 is a 1U tabletop appliance with an all-metal body and comes equipped with 8 x 1 Gb Ethernet ports, 2 of which support Power over Ethernet+ (PoE+). The 2 PoE+ ports allow administrators to easily extend the reach of the Firebox T70 by connecting remote peripherals such as wireless access points, without having to run costly AC power. The Firebox T70 is also fanless, so administrators can feel free to place it in noise sensitive work areas without having to worry about users being bothered by constant whirring.

The Firebox T70 is generally available now, please see the resources below to learn more, or to buy.

To Learn More:

Source: WatchGuard

Firebox M4600 & M5600

Today WatchGuard is pleased to announce the new Firebox M4600 and M5600 models, completing the replacement of all of our older XTM appliances with a new generation of hardware. Now, from the smallest Firebox T10 to the top of the line Firebox M5600, there is a new Firebox appliance that provides critical network and security functions in a single, centrally managed UTM platform that is easy to set up, deploy and manage.

The WatchGuard Firebox M4600 and Firebox M5600 appliances both provide two empty bays that can be used to add expandable network modules to meet the needs of a wide range of network configurations. Both models support three modular interface options that each add either four or eight interfaces to the Firebox:

  1. 8 x 1 Gb Fiber
  2. 4 x 10 Gb Fiber
  3. 8 x 1 Gb Copper

The picture above shows an M4600 with options 1 and 2 in the two expansion bays. Expandable network modules offer room to grow for the future. If the need for more network ports into the firewall grows, the business doesn’t have to do a costly rip out and replace. The network admin can simply add a new module to the existing appliance to add extra ports.


These exciting new products are Generally Available (GA) now. Learn more through some of the new resources that are available with today’s public launch:

The M4600 provides 8 Gbps UTM throughput, and the M5600 is the fastest Firebox ever with 11 Gbps UTM. Download the datasheet with the full technical specifications for the two new appliances.

Use our new interactive module selector on the web to explore the different network module options available for each model, and see how the firewall throughput can depend on module configuration.

We also have a new technical brief that explains in detail how the new network modularity concept works in WatchGuard appliances.

Source: WatchGuard

Big Security in a Small Package

At WatchGuard, we believe that good things can come in small packages. Our smallest tabletop appliances run the same operating system, or firmware, as the largest rack mount units. This means we can provide enterprise class security in a small form factor that helps protect small offices, retail stores, and remote branches of a distributed enterprise.

This is why we are very excited to introduce the next generation of our tabletop appliances today, the WatchGuard Firebox T30 and T50, which replaces our existing XTM 25/26 and XTM 33. With the Firebox T Series, companies of all sizes can benefit from our suite of sophisticated security technologies that have been developed to protect the most demanding enterprises. For example, with the WebBlocker service, every link is checked against the Threat Seeker cloud URL database from Websense. Using Intrusion Prevention Service (IPS), the Firebox looks for attacks against known vulnerabilities using technology from Trend Micro. Our newest subscription service, APT Blocker provides a defense against advanced malware. We check unknown files in a next generation sandbox in the cloud using full system emulation technology from Lastline.

You might think that these services would slow performance. In fact, the new T50 provides up to 165 Mbps of Unified Threat Management (UTM) performance[1] in a compact form factor with 7 Ethernet ports. The smaller T30 appliance has 5 ports and provides up to 135 Mbps UTM throughput. These powerful new boxes provide full security inspection of Internet traffic at the fast connection speeds available today.

The T30 and T50 don’t just provide faster throughput. New features support the growing needs for secure wireless access. Both models have options for an integrated 802.11ac wireless version – providing faster speeds over the less congested 5 GHz channel. Each model also includes a Power over Ethernet (PoE) port, which can be used to provide power to a WatchGuard Wireless Access Point. With PoE, small locations like retail shops don’t have to install expensive power runs to the ceiling for wireless access points. They can simply run an Ethernet cable from the Firebox to the mounting point. Of course the Firebox also comes with the integrated Gateway Wireless Controller software.

That’s a lot of sophisticated security technology in a small box. I’ve been running a Beta version of the T50 at home for a couple of months now. In today’s world, it’s reassuring to know that I have enterprise level security technology protecting my family and any work that I do for my company from home.

Find out more about the new T30 and T50 appliances at, here.

[1] Remember that UTM performance measures the throughput when the most demanding security services are enabled, including IPS and Gateway Antivirus. Not all vendors publish a combined performance number like this, but we believe that it is important to enable all security services and measure the combined throughput.

Source: WatchGuard

Firedot honeypot solution

Main Street is the New Cyber Battleground. We Have Your Secret Weapon.

Network breaches at corporate giants make headlines, but a surprisingly bloody cyber battlefield is taking place on Main Street. In fact, nearly half of small and mid-sized businesses (SMBs) have been victims of cyber crime. And “the bigger they are, the harder they fall” doesn’t apply. Big companies often survive to fight another day, but 60 percent of SMBs go out of business within six months of an attack.

Today, WatchGuard introduced two enterprise-strength firewalls that give small businesses a new secret weapon against hackers. The WatchGuard Firebox M200 and M300 Next-Generation Firewall (NGFW) and Unified Threat Management (UTM) appliance provide powerful security with easy setup and management. What’s more, they’re up to 218 percent faster than competing solutions with all security engines turned on, and up to a blazing 385 percent faster for encrypted traffic inspection, so even small businesses can compete at enterprise speed. (Download the Miercom report now.)

“Sony and Target breaches have dominated headlines, but it’s the mom-and-pop shops that have gained traction with hackers,” said Corey Nachreiner, chief technology officer at WatchGuard. “In general, small businesses are less-protected and easier to breach, but not any more. The Firebox M200 and M300 make it easy for SMBs to protect themselves as effectively as large enterprises—and without the need for big-company IT resources.”

The new Firebox M200 and M300 run WatchGuard’s powerful Fireware® operating system and include RapidDeploy support that makes setup and configuration easy for SMBs, even without a dedicated technical staff. You can get complete product information here.

Want to know more about how cyber crime is affecting small businesses—and what to do about it? Download our eBook now: “The Cyber Crime Guide for Small and Midsize Businesses.


Or explore our interactive infographic “Cyber Crime Comes To Main Street” to see the sneaky tactics hackers are using to attack mom-and-pop companies on every corner.


Source: WatchGuard

Find Out Why IT Pro Magazine Calls WatchGuard’s Firebox M440 “a Powerful Beast”

Today, we’re excited to announce the “beastly” accomplishments of our Firebox® M440. It has achieved a coveted 5-Star rating and has been named the Editor’s Choice by IT Pro Magazine. Read the entire review right now.

You may recall back in October, when we launched this powerful UTM/NGFW appliance, it was the first appliance rich in truly independent ports. And, it was the first appliance to make it easy to apply the right policies to the correct network segment, without complex configurations. That means better security and protection for data.

IT Pro agrees! WatchGuard’s Firebox® M440 impressed the editors on a variety of fronts with its superb value, top performance, extensive security measures, high port density and integral wireless gateway controller.

As the review notes, “With its fire-engine red chassis you can’t miss a WatchGuard security appliance, but the Firebox M440 is an eye-catcher for a number of other good reasons. It’s designed to help big businesses enforce custom security policies across multiple network segments, but without complicating the process.”

The WatchGuard Firebox M440 delivers 25 1Gb Ethernet ports, eight that deliver Power over Ethernet (PoE), plus two 10 Gb SFP+ (fiber) ports.

The editors also highlight that for a sub-£10K appliance, it’s a powerful beast, with the appliance claiming a top 6.7Gbits/sec firewall throughput and 1.6Gbits/sec for UTM against the competition. The value is excellent as well, with a three-year LiveSecurity subscription that activates the firewall, VPNs, HTTPS inspection plus full customer support and has an RRP of £4,942 ex VAT. Add in all the features, including IPS, app control, advanced threat protection, DLP and more, and the cost is only £8,449. Finally, along with a superb range of security features, the M440 took top value, costing significantly less than competing products, such as SonicWALL’s E-Series NSA 6500.

RED continues to roar.

To read the entire review, click here.

To check out the infographic we did on network segmentation myths, click here.

Source: WatchGuard