
Toronto, Ontario -- Automaker Stellantis is joining GlobalPlatform, an automotive industry task force calling for OEMs to adopt cybersecurity standards, alongside Volkswagen and Toyota.
The task force is calling on OEMs to become compliant with SAE J3101, standards designed to set out clear requirements for physical security features in modern cars and trucks released in early 2020 by SAE International. Unlike older rules, J3101 doesn’t prescribe how to build security systems. Rather, it outlines what level of protection is needed so engineers can design their own solutions based on trusted industry criteria.
Suppliers that follow GlobalPlatform rules will automatically meet J3101, giving carmakers confidence that parts will fit safely with existing systems such as AutoSAR and the Car Connectivity Consortium.
The task force has also created a new evaluation method to make sure secure parts can be certified once and then reused across different platforms, saving time and money.
Bill Mazzara (pictured), Stellantis’s North American regulatory lead and technical fellow for product cybersecurity, has been named co-chair of the group.
“The automotive task force is helping the industry converge on a platform of secure, scalable foundations for software-defined vehicles,” said Mazzara.
The push comes as cybersecurity risks to vehicles become more pronounced. In 2024, more than 500 car-related cyber weaknesses were reported, compared with only six in 2014. Estimated damages from cyberattacks have jumped to US$22.5 billion from just US$1 billion in 2022.
GlobalPlatform says about 200 million secure elements and more than 100 million trusted execution environments have already been built into vehicles, creating a foundation for stronger protections in the years ahead.

















