VicOne Joins eSync Alliance to Boost Automotive OTA Security

May 29, 2025
VicOne
VicOne Joins eSync Alliance to Boost Automotive OTA Security

Automotive cybersecurity specialist brings expertise to established industry standards body as UN R155/R156 and ISO 24089 regulations drive demand for robust OTA frameworks

SILICON VALLEY/TOKYO  As UN R155, R156, and ISO 24089 cybersecurity and software update regulations become increasingly important for automakers globally, the eSync Alliance has welcomed VicOne as its newest member. 

The eSync Alliance, which has established standardized secure over-the-air (OTA) update technology for vehicles, gains additional cybersecurity expertise with VicOne, which provides the most advanced and comprehensive solutions to the automotive industry and galvanizes collective expertise from the sector’s broadest cast of best-of-breed partners. OEMs and suppliers trust VicOne’s purpose-built solutions to stay ahead of evolving threats and safeguard vehicles, drivers and sensitive data.  

This collaboration further strengthens industry cooperation on security standards that complement manufacturers’ efforts to address regulatory requirements through standardized approaches to vehicle software updates. 

“As vehicles continue to evolve into sophisticated software platforms, industry standardization around secure OTA updates remains a priority,” said Mike Gardner, Executive Director of the eSync Alliance. “VicOne’s membership adds valuable automotive cybersecurity expertise to our alliance as we collectively develop standards that help the industry address both security challenges and regulatory requirements. Their participation enhances our ongoing efforts to establish best practices for secure software updates across the automotive ecosystem.” 

VicOne brings proven automotive threat intelligence and purpose-built security solutions that will further contribute to the eSync Alliance’s secure bidirectional data pipeline between the cloud and electronic devices in vehicles. 

The eSync Alliance’s standardized approach to OTA updates provides a foundation that supports automakers and suppliers implementing solutions aligned with UN R155 and R156 requirements. As a member, VicOne will contribute its specialized security knowledge to these industry standards, helping enhance their robust cybersecurity practices. 

“Joining the eSync Alliance aligns with our mission to secure the vehicles of tomorrow,” said William Dalton, Vice President & Managing Director, VicOne North America and Europe. “The industry’s shift toward software-defined vehicles benefits from strong standards for secure OTA updates. By participating in the eSync Alliance, we can contribute our cybersecurity expertise to help shape standards that enable manufacturers to build vehicles that remain secure throughout their entire lifecycle while meeting regulatory requirements.” 

Addressing security regulations 

With UN regulations R155 (Cybersecurity Management), R156 (Software Update Management), and ISO 24089 (Software Update Engineering) now shaping requirements in major markets, the automotive industry benefits from standardized approaches to implementation. These frameworks collectively require manufacturers to establish robust cybersecurity practices and secure software update mechanisms throughout a vehicle’s lifecycle. 

By participating in the eSync Alliance, VicOne will contribute its security expertise to inform industry standards for OTA update frameworks. This collaborative development of best practices addresses UN R155/R156 requirements while promoting broader industry alignment on secure software update methodologies. 

“This membership represents an important addition to our automotive ecosystem,” said Mike Gardner. “The knowledge sharing between cybersecurity experts and automotive technology specialists will elevate cybersecurity awareness across the industry and help develop future-ready standards that anticipate evolving cyberthreats and regulatory landscapes.” 

The eSync Alliance’s established approach, now complemented by VicOne’s automotive cybersecurity expertise, will help advance industry-wide adoption of secure OTA update practices that support manufacturers in addressing regulatory requirements. 

About the eSync Alliance 

The eSync™ Alliance is a non-profit trade association driving a multi-company solution for Over-the-Air (OTA) updates and diagnostics data in the automotive electronics space. Used in millions of vehicles around the world, eSync has the power to save auto makers and the supply chain millions by offering the only standardized OTA bi-directional data pipeline that is proven for remote software updates, diagnostics, and telematics. OEMs can access an easy, effective, and secure platform that is ready to be integrated into vehicles. Tier-1 suppliers are not required to spend time and resource re-engineering their product to meet a multitude of different OTA protocols. Learn more at: esyncalliance.org 

Note to editors: eSync is a trademark of the eSync Alliance. 

About VicOne 

With a vision to secure the vehicles of tomorrow, VicOne delivers a broad portfolio of cybersecurity software and services for the automotive industry. Purpose-built to address the rigorous needs of automotive manufacturers and suppliers, VicOne solutions are designed to secure and scale with the specialized demands of the modern vehicle. As a Trend Micro subsidiary, VicOne is powered by a solid foundation in cybersecurity drawn from Trend Micro’s 30+ years in the industry, delivering unparalleled automotive protection and deep security insights that enable our customers to build secure as well as smart vehicles. For more information, visit vicone.com

Media Contact
Myla Pilao
myla_pilao@vicone.com

Our News and Views

Gain Insights Into Automotive Cybersecurity

  • Get CRA-Ready: One Platform to Simplify CRA Compliance
    Blog
    July 14, 2025
    The EU Cyber Resilience Act (CRA) has set cybersecurity requirements focusing on Products with Digital Elements (PDE). This means that manufacturers within the supply chain must monitor and report vulnerabilities once discovered. Otherwise, a fine of a substantial financial penalty will be imposed. In this landscape, what manufacturers need is a solution that offers proactive Vulnerability and SBOM Management.
    Read More
  • CVE-2025-6019: A Privilege Escalation Flaw With Implications for AGL and the Future of SDVs
    Blog
    June 25, 2025
    A recently disclosed Linux flaw shows how seemingly ordinary bugs are starting to affect software-defined vehicles (SDVs). We unpack CVE-2025-6019, its impact on Automotive Grade Linux (AGL), and what it means for in-vehicle cybersecurity.
    Read More
  • Replicating RAMN Using a Single STM32 Board: A Hands-On Exploration
    Blog
    May 26, 2025
    Replicating the core functions of a full-scale Resistant Automotive Miniature Network (RAMN) using just a single STM32 board is a practical, cost-effective way to dive into advanced in-vehicle networking. In this hands-on guide, we run through the step-by-step setup, enabling engineers and enthusiasts alike to prototype resilient automotive communication systems with minimal hardware.
    Read More
  • LockBit Ransomware Group Data Leak: Implications for Automotive Cybersecurity
    Blog
    May 21, 2025
    A recent breach of the LockBit ransomware group exposed chat logs, offering a rare inside look at how victims were targeted and extorted. Automotive companies featured prominently among those attacked. We unpack the key findings and outline practical steps that automotive companies can take to block LockBit attacks or similar incidents.
    Read More
Visit Our Blog

Accelerate Your Automotive Cybersecurity Journey Today

Contact Us