The Connected Car UX Through APIs - Francois Lascelles, VP Solutions Architect, CA Layer 7 @ Telematics Detroit
 

Like this? Share it with your network

Share

The Connected Car UX Through APIs - Francois Lascelles, VP Solutions Architect, CA Layer 7 @ Telematics Detroit

on

  • 633 views

Whether it be infotainment, companion or ecommerce apps, they all have one thing in common - APIs. APIs are enabling the development of new apps both inside and outside the vehicle. But the "always ...

Whether it be infotainment, companion or ecommerce apps, they all have one thing in common - APIs. APIs are enabling the development of new apps both inside and outside the vehicle. But the "always on" connectivity comes with increased risk to both the user and data.

Explore common app initiatives fueling the connected car industry
Understand the intersection of connected car apps, identities and agile API platforms
Learn how to apply the right security and UX balance that drives connected car app adoption

Statistics

Views

Total Views
633
Views on SlideShare
631
Embed Views
2

Actions

Likes
0
Downloads
11
Comments
0

2 Embeds 2

https://www.linkedin.com 1
https://twitter.com 1

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • When we talk about APIs, we’re talking for example of Web apis. Web apis are different from the web … <br /> That’s how mobile apps are powered today <br /> Reproducing a web browsing experience on any device is not the path to optimal user experience <br /> The information needs to be consistent across devices, but native applications produce the best experiences <br /> Better user experience because not everything is a browser
  • And of course by decoupling presentation from content, you make it easier to consume the content across platforms. This is what allows yahoo Weather to be on your fridge. <br /> Netflix became available everywhere because of APIs. <br /> This is a huge advantage for them. <br /> So APIs are a great way to more easily reach out to the audience to their platform of choice <br /> By extension, APIs enable this connected car concept. <br /> TEXT TO SPEECH <br /> AUGMENTED REALITY <br /> <br />
  • In the context of the connected car, where are the Apps and where are the APIs <br />
  • Publication “Apps for connected cars? Your mileage may vary” <br /> Quote “The connected car app ecosystem resembles mobile apps in 2008” <br /> A rich connected car user experience has to tie into the existing digital life of the user and therefore has to enable mobile apps <br /> The in-car app marketplace is still very fragmented and until we get a few standards in place that developers can rally around, the apps available in-car will continue to be limited <br />
  • With these APIs in place, connected car manufacturers can come up with great mobile apps for a vehicle owner to interact with its vehicle <br /> These apps provide functionality to lock/unlock, remote start, turn on horn and lights to make it easier to find the car in a parking lot <br /> How does this work though <br /> Well it’s not like the app on your mobile phone talks directly to your car <br /> This two-step interaction allows the connected car service provider to put additional checks in place <br />
  • Taken in parkinglot of temelatics 2014 first day <br />
  • A car sharing service manages a fleet of vehicles that it makes available to its members <br /> There is already an IoT aspect to this and cars are already connected to a central system so that the service provider can keep track of where the cars are at any time <br /> Because the user doesn’t own the car in this case, the mobile experience is that much more important <br /> The subscriber interacts with the service provider <br /> … <br /> The service provider has its own interactions with the car itself <br /> … where are you <br /> The experience is great. Imagine urban situation, parking is not an option <br /> Valet pickup experience once the cars start driving themselves
  • Easy sells <br /> The better the experience, the better the adoption and more adoption generally translates into more business <br /> Good UX is sticky <br /> In the context of the connected car, good UX is about your car integrating within the digital lifestyle of the user <br /> Anecdote: no BT music streaming in your car is bad
  • My car was hacked <br /> Imagine somebody being able to unlock your car with his smart phone <br /> Imagine somebody being able to remote shut down your car as you drive. Remote steer target down a cliff. <br /> In a future where cars are self-driven, the potential risks only go up
  • The problem with security though is that it often gets in the way of UX
  • The real challenge is to reconcile UX and security <br /> The winner here is the one who can make the experience seamless, transparent, with

The Connected Car UX Through APIs - Francois Lascelles, VP Solutions Architect, CA Layer 7 @ Telematics Detroit Presentation Transcript

  • 1. The connected car App experience Improving consumer adoption through secure APIs 6/4/2014 © 2014 CA. All rights reserved. Francois Lascelles VP Solutions Architecture, CA Technologies
  • 2. 2 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider How do you connect any of these things? The connected car Connected to what?  Manufacturer or service provider – Telemetry, call home  Entertainment platforms – E.g. Netflix  Weather, traffic info, gps  Social media  A mobile app used by driver
  • 3. 3 © 2014 CA. ALL RIGHTS RESERVED. Connections = APIs Web Web API  Presentation, interface  Information  Information Presentation, interface { “min”: “23C”, “max”: “11C”…}
  • 4. 4 © 2014 CA. ALL RIGHTS RESERVED. APIs connect everything { “min”: “23C”, “max”: “11C”…}
  • 5. 5 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider APIs of the connected car APIs APIs APIs App App App
  • 6. 6 © 2014 CA. ALL RIGHTS RESERVED. Connected car user experience In-car/IHU apps Emerging/immature app marketplace Closed ecosystem Mobile apps Mature app marketplace Rich experience
  • 7. 7 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider Companion app APIs APIs APIs { unlock} { unlock}
  • 8. 8 © 2014 CA. ALL RIGHTS RESERVED. Companion App
  • 9. 9 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider Mobile powered car sharing service APIs APIs APIs {book it} {pickup} {find it}
  • 10. 10 © 2014 CA. ALL RIGHTS RESERVED. Good UX -> good business UX Adoption
  • 11. 11 © 2014 CA. ALL RIGHTS RESERVED. Security matters too  Safety – When cars can be controlled remotely … “My car was hacked”  Privacy – Locate users – Abuse of driver history data APIs are becoming the attack vector of choice for the new generation of hackers
  • 12. 12 © 2014 CA. ALL RIGHTS RESERVED. UX Disruptors  Key defensive techniques, such as user authentication disrupt UX  The impact on user experience is more severe in mobile context  Compounding factors: – Challenge frequency – Number of secrets – Secret complexity
  • 13. 13 © 2014 CA. ALL RIGHTS RESERVED. Reconciling UX and Security Identify yourself Show me my data
  • 14. 14 © 2014 CA. ALL RIGHTS RESERVED. Public vs confidential apps  Public devices and public clients shift burden of authentication to a user (lowering UX) – Pattern: Secure API flows which assert registered device/client Mobile Connected Car Service Provider {prove possession} Register device, app In-car appHSM
  • 15. 15 © 2014 CA. ALL RIGHTS RESERVED. User-managed delegation  Users delegate applications to act on their behalf – Pattern: revocation should be as easy as delegation Connected Car Service Provider … later, device lost or stolen Connected Car Service Provider Revoke app, device Authorize app, device
  • 16. 16 © 2014 CA. ALL RIGHTS RESERVED. Risk and context-based authorization  Low – Must have valid session  Medium – Must have a ‘fresh’ session  High – Registered device only – Challenge user every x minutes Risk associated with API call  Multifactor – Infotainment + mobile
  • 17. 17 © 2014 CA. ALL RIGHTS RESERVED. API-enabled connected car service provider  Beyond enhancing the user experience, APIs enable new business and partnership  250M connected cars = big data – Telemetry history – APIs lets you monetize this information Driving new business models and partnerships Insurance Urban planning Emergency response Real-time traffic info  Connected car API infrastructure – Correlate – Anonymize – Secure [your idea here]
  • 18. 18 © 2014 CA. ALL RIGHTS RESERVED. API infrastructure for the connected car  Enable innovation Layer 7 API Management Solutions App developer services Internal/3rd party developer on boarding API discovery App registration API Key issuing Analytics Billing Mobile SDKs Runtime API services Secure API delivery Access control Enterprise integration Identity brokering Device registration Social/cloud integration Threat protection, sanitization  Deliver, scale and secure
  • 19. 19 © 2014 CA. ALL RIGHTS RESERVED. Thank you © 2014 CA. All rights reserved. Francois Lascelles VP Solutions Architecture, CA Technologies