New updates reflect cutting-edge research, industry collaboration, and advanced tools to strengthen cybersecurity across fleets and the supply chain
The National Motor Freight Traffic Association, Inc. (NMFTA)™ is pleased to announce significant enhancements to the Telematics Security Requirements Matrix (TSRM), a vital resource for fleets seeking to strengthen their cybersecurity posture.
These updates demonstrate NMFTA’s ongoing commitment to providing cutting-edge security guidance tailored to the unique challenges of the supply chain industry.
Since its inception in 2019 and its most recent release in 2022, the TSRM has served as a trusted resource for industry professionals. This latest iteration, informed by robust research and collaboration with telematics service providers (TSPs), carriers, researchers, and cybersecurity experts, marks a significant step forward in enhancing the security of telematics systems across fleets.
NMFTA has actively contributed at WCX™, powered by SAE International®, to define more authoritative sources for improved security requirements. This is in addition to the original TSRM efforts starting as early as 2019, where we had partnered with experts such as those from National Institute of Standards & Technology (NIST) and led discussions with multiple electronic logging device (ELD) providers who are leaders in this space.
Key enhancements to the TSRM include:
Expanded Research: The latest updates incorporate findings from an in-depth investigation into Vehicle Network Gateway Device security. These insights, presented in a co-authored research paper at WCX 2024 by Ken Tindell, Ph.D. and John Maag, have directly shaped the revised TSRM.
Enhanced Requirements Management: The integration of the Strictdoc tool has improved requirements management, streamlined processes, thus enabling greater efficiency. NMFTA’s active contributions to the Strictdoc project have further refined its capabilities.
Industry Collaboration: Input from leading TSPs, most recently including Samsara’s contribution referencing NIST 800-82, has enriched the TSRM’s content, relevance, and practical application. NMFTA extends an open invitation to all TSPs to join us in this collaborative effort as we continue to advance our mission.
Automated Questionnaire Generation: A newly-developed script automates the creation of supplier questionnaires, ensuring consistency and efficiency in cybersecurity assessments.
The updated TSRM is available in various formats to suit diverse needs:
NMFTA invites all telematics service providers, cybersecurity professionals, and industry leaders to join this collaborative effort. Your participation is essential as we continue to strengthen the TSRM and prepare for its next major update in 2025.
To learn more, review the updated TSRM, or get involved, visit any of the above links or contact NMFTA’s cybersecurity team at cybersecurity@nmfta.org.