The Connected Car UX Through APIs - Francois Lascelles, VP Solutions Architect, CA Layer 7 @ Telematics Detroit
Download as PPTX, PDF1 like1,628 views
The document discusses the importance of secure APIs in enhancing the connected car experience and driving consumer adoption. It highlights the various types of information and connections enabled by APIs, including vehicle telemetry, entertainment platforms, and social media. Furthermore, it addresses the challenges of balancing user experience with security concerns in the context of connected vehicles.
![17 © 2014 CA. ALL RIGHTS RESERVED.
API-enabled connected car service provider
Beyond enhancing the user experience,
APIs enable new business and partnership
250M connected cars = big data
– Telemetry history
– APIs lets you monetize this information
Driving new business models and partnerships
Insurance
Urban planning
Emergency
response
Real-time traffic
info
Connected car API
infrastructure
– Correlate
– Anonymize
– Secure
[your idea here]](https://image.slidesharecdn.com/connectedcaruxthroughapis-telematicsjune2014-flascelles-140610094240-phpapp02/85/The-Connected-Car-UX-Through-APIs-Francois-Lascelles-VP-Solutions-Architect-CA-Layer-7-Telematics-Detroit-17-320.jpg)
The Connected Car UX Through APIs - Francois Lascelles, VP Solutions Architect, CA Layer 7 @ Telematics Detroit
- 1. The connected car App experience Improving consumer adoption through secure APIs 6/4/2014 © 2014 CA. All rights reserved. Francois Lascelles VP Solutions Architecture, CA Technologies
- 2. 2 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider How do you connect any of these things? The connected car Connected to what? Manufacturer or service provider – Telemetry, call home Entertainment platforms – E.g. Netflix Weather, traffic info, gps Social media A mobile app used by driver
- 3. 3 © 2014 CA. ALL RIGHTS RESERVED. Connections = APIs Web Web API Presentation, interface Information Information Presentation, interface { “min”: “23C”, “max”: “11C”…}
- 4. 4 © 2014 CA. ALL RIGHTS RESERVED. APIs connect everything { “min”: “23C”, “max”: “11C”…}
- 5. 5 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider APIs of the connected car APIs APIs APIs App App App
- 6. 6 © 2014 CA. ALL RIGHTS RESERVED. Connected car user experience In-car/IHU apps Emerging/immature app marketplace Closed ecosystem Mobile apps Mature app marketplace Rich experience
- 7. 7 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider Companion app APIs APIs APIs { unlock} { unlock}
- 8. 8 © 2014 CA. ALL RIGHTS RESERVED. Companion App
- 9. 9 © 2014 CA. ALL RIGHTS RESERVED. Mobile Car 3rd party service/soc ial Connected Car Service Provider Mobile powered car sharing service APIs APIs APIs {book it} {pickup} {find it}
- 10. 10 © 2014 CA. ALL RIGHTS RESERVED. Good UX -> good business UX Adoption
- 11. 11 © 2014 CA. ALL RIGHTS RESERVED. Security matters too Safety – When cars can be controlled remotely … “My car was hacked” Privacy – Locate users – Abuse of driver history data APIs are becoming the attack vector of choice for the new generation of hackers
- 12. 12 © 2014 CA. ALL RIGHTS RESERVED. UX Disruptors Key defensive techniques, such as user authentication disrupt UX The impact on user experience is more severe in mobile context Compounding factors: – Challenge frequency – Number of secrets – Secret complexity
- 13. 13 © 2014 CA. ALL RIGHTS RESERVED. Reconciling UX and Security Identify yourself Show me my data
- 14. 14 © 2014 CA. ALL RIGHTS RESERVED. Public vs confidential apps Public devices and public clients shift burden of authentication to a user (lowering UX) – Pattern: Secure API flows which assert registered device/client Mobile Connected Car Service Provider {prove possession} Register device, app In-car appHSM
- 15. 15 © 2014 CA. ALL RIGHTS RESERVED. User-managed delegation Users delegate applications to act on their behalf – Pattern: revocation should be as easy as delegation Connected Car Service Provider … later, device lost or stolen Connected Car Service Provider Revoke app, device Authorize app, device
- 16. 16 © 2014 CA. ALL RIGHTS RESERVED. Risk and context-based authorization Low – Must have valid session Medium – Must have a ‘fresh’ session High – Registered device only – Challenge user every x minutes Risk associated with API call Multifactor – Infotainment + mobile
- 17. 17 © 2014 CA. ALL RIGHTS RESERVED. API-enabled connected car service provider Beyond enhancing the user experience, APIs enable new business and partnership 250M connected cars = big data – Telemetry history – APIs lets you monetize this information Driving new business models and partnerships Insurance Urban planning Emergency response Real-time traffic info Connected car API infrastructure – Correlate – Anonymize – Secure [your idea here]
- 18. 18 © 2014 CA. ALL RIGHTS RESERVED. API infrastructure for the connected car Enable innovation Layer 7 API Management Solutions App developer services Internal/3rd party developer on boarding API discovery App registration API Key issuing Analytics Billing Mobile SDKs Runtime API services Secure API delivery Access control Enterprise integration Identity brokering Device registration Social/cloud integration Threat protection, sanitization Deliver, scale and secure
- 19. 19 © 2014 CA. ALL RIGHTS RESERVED. Thank you © 2014 CA. All rights reserved. Francois Lascelles VP Solutions Architecture, CA Technologies
Editor's Notes
- #4: When we talk about APIs, we’re talking for example of Web apis. Web apis are different from the web … That’s how mobile apps are powered today Reproducing a web browsing experience on any device is not the path to optimal user experience The information needs to be consistent across devices, but native applications produce the best experiences Better user experience because not everything is a browser
- #5: And of course by decoupling presentation from content, you make it easier to consume the content across platforms. This is what allows yahoo Weather to be on your fridge. Netflix became available everywhere because of APIs. This is a huge advantage for them. So APIs are a great way to more easily reach out to the audience to their platform of choice By extension, APIs enable this connected car concept. TEXT TO SPEECH AUGMENTED REALITY
- #6: In the context of the connected car, where are the Apps and where are the APIs
- #7: Publication “Apps for connected cars? Your mileage may vary” Quote “The connected car app ecosystem resembles mobile apps in 2008” A rich connected car user experience has to tie into the existing digital life of the user and therefore has to enable mobile apps The in-car app marketplace is still very fragmented and until we get a few standards in place that developers can rally around, the apps available in-car will continue to be limited
- #8: With these APIs in place, connected car manufacturers can come up with great mobile apps for a vehicle owner to interact with its vehicle These apps provide functionality to lock/unlock, remote start, turn on horn and lights to make it easier to find the car in a parking lot How does this work though Well it’s not like the app on your mobile phone talks directly to your car This two-step interaction allows the connected car service provider to put additional checks in place
- #9: Taken in parkinglot of temelatics 2014 first day
- #10: A car sharing service manages a fleet of vehicles that it makes available to its members There is already an IoT aspect to this and cars are already connected to a central system so that the service provider can keep track of where the cars are at any time Because the user doesn’t own the car in this case, the mobile experience is that much more important The subscriber interacts with the service provider … The service provider has its own interactions with the car itself … where are you The experience is great. Imagine urban situation, parking is not an option Valet pickup experience once the cars start driving themselves
- #11: Easy sells The better the experience, the better the adoption and more adoption generally translates into more business Good UX is sticky In the context of the connected car, good UX is about your car integrating within the digital lifestyle of the user Anecdote: no BT music streaming in your car is bad
- #12: My car was hacked Imagine somebody being able to unlock your car with his smart phone Imagine somebody being able to remote shut down your car as you drive. Remote steer target down a cliff. In a future where cars are self-driven, the potential risks only go up
- #13: The problem with security though is that it often gets in the way of UX
- #14: The real challenge is to reconcile UX and security The winner here is the one who can make the experience seamless, transparent, with