{"id":194919,"date":"2026-03-11T15:03:00","date_gmt":"2026-03-11T19:03:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/11\/ooida-raises-alarm-on-cybersecurity-gaps-in-house-bill-over-autonomous-trucks\/"},"modified":"2026-03-11T15:55:09","modified_gmt":"2026-03-11T19:55:09","slug":"ooida-raises-alarm-on-cybersecurity-gaps-in-house-bill-over-autonomous-trucks","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/03\/11\/ooida-raises-alarm-on-cybersecurity-gaps-in-house-bill-over-autonomous-trucks\/","title":{"rendered":"OOIDA raises alarm on cybersecurity gaps in House bill over autonomous trucks"},"content":{"rendered":"

OOIDA raises alarm on cybersecurity gaps in House bill over autonomous trucks<\/a><\/p>\n

https:\/\/www.thetrucker.com\/trucking-news\/business\/ooida-raises-alarm-on-cybersecurity-gaps-in-house-bill-over-autonomous-trucks<\/a><\/p>\n

Publish Date: 2026-03-11 15:03:00<\/a><\/p>\n

Source Domain: www.thetrucker.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. <\/p>\n

\t\tWASHINGTON \u2014 The Owner-Operator Independent Drivers Association (OOIDA) is opposing H.R. 7390, the SELF DRIVE Act of 2026, warning the bill would allow deployment of driverless 80,000-pound trucks based largely on company self-certification without independent federal verification of safety claims.<\/p>\n

OOIDA president Todd Spencer sent a letter to House Energy and Commerce Committee leadership expressing concern for the gaps in the bill
\n\u201cWe write to express our opposition to H.R. 7390, the SELF DRIVE Act of 2026, since it fails to ensure the safe operation of driverless trucks or provide adequate transparency about their performance and capabilities,\u201d Spencer said.<\/p>\n

Lack of Regulation
\nAccording to Spencer, a recent crackdown from the Federal Motor Carrier Safety Administration (FMCSA) demonstratedthe importance of oversight and enforcement of critical safety regulations.
\n\u201cOn Feb. 18, FMCSA announced it was revoking the authority of over 550 Commercial Driver\u2019s License (CDL) training schools for failing to meet federal safety standards and in some cases, perpetrating outright fraud,\u201d Spencer said. \u201cWe applaud FMCSA for this action since ensuring compliance with basic training and licensing standards is foundational to road safety. This action makes clear that regulatory verification and enforcement are critical to upholding safety standards.\u201d<\/p>\n

According to the letter, instead of holding autonomous vehicles to similar standards, H.R. 7390 would permit the operationof driverless 80,000 pound trucks based on the unverified assertions of companies with a vested financial interest in their deployment. While companies would be required to develop a \u201csafety case\u201d describing how the vehicle would operate safely, there is no requirement that the federal government verify these plans. In fact, companies would not need to provide these cases to the government before deployment or possibly even at all.
\nSelf-Certification
\n\u201cThese cases must only be submitted to DOT upon request,\u201d Spencer said. \u201cThis amounts to self-certification for the use of heavy-duty trucks on our nation\u2019s roads. Under these circumstances, there is no way for the public to know whether these vehicles will operate safely. The use of \u2018self-certification\u2019 has already proven to have serious shortcomings in multiple areasacross the trucking industry, and taking this approach with autonomous CMVs would be the most disastrous use yet. To take one example, the Electronic Logging Device (ELD) mandate requires that heavy-duty trucks be equipped with a device, hardwired into the engine control module, that tracks the truck\u2019s location and uptime, among other information.\u201d
\nAccording to Spencer, when issuing this regulation, FMCSA established only \u201cminimally compliant\u201d security standards, and no requirement for third-party validation or testing prior to self-certification.
\n\u201cAs a result, we have seen numerous reports of ELDs that are vulnerable to cybersecurity attacks and could allow hackers to, take control of, steal data from, or even disrupt entire fleets by spreading malware unnoticed between vehicles,\u201d Spencer said.<\/p>\n

Cyber Security Vulnerabilities\u00a0
\n\u201cIn 2019, the FBI issued a security bulletin that highlighted the ability of cyber criminals to exploit ELD vulnerabilities due to a lack of certified security practices,\u201d Spencer said. \u201cSpecifically, they noted that \u2018this poses a risk to businesses becauseELDs create a bridge between previously unconnected systems critical to trucking operations.\u2019 Similar to the implementation of the ELD mandate, H.R. 7390 contains only vague and insufficient cybersecurity requirements that fail to ensure the safety and integrity of automated vehicle operations. The bill merely requires manufacturers to maintain a written cybersecurity policy outlining how they would \u2018detect and respond to cyber attacks, unauthorized intrusions, and false vehicle control commands,\u2019 without defining specific technical standards such a policy must meet.\u201d
\nPlan of Action Needed
\n\u201cThis lack of specificity raises questions if these policies would actually prevent or mitigate cyberattacks, or whether manufacturers could even execute their stated plans since the bill does not require them to prove compliance or verify cybersecurity protections are functioning as intended,\u201d Spencer said. \u201cEqually troubling, H.R. 7390 includes no requirement for public disclosure of cyber intrusions, nor any mandate that companies suspend operations or take vehicles offline in the event of a cyber incident.\u201d
\nAccording to Spencer, as written, the legislation grants manufacturers significant discretion while offering the public little transparency or assurance that cybersecurity threats are being addressed promptly or appropriately.
\n\u201cAlthough H.R. 7390 attempts to provide additional cybersecurity oversight by requiring a review of the Department of Commerce\u2019s previously issued rule, \u2018Securing the Information and Communications Technology and Services Supply Chain: Connected Vehicles,\u2019 CMVs would not be included in this review since they were specifically excluded from the rule\u2019s scope. The Department of Commerce omitted CMVs because the complex nature of this sector and national security concerns require special attention. Specifically, the Department highlighted that vehicle connectivity systems for CMVs, \u2018pose a significant national security risk when designed, developed, manufactured, or supplied,\u2019 by Chinese or Russian entities, and these risks would likely require a separate rulemaking to address this significant threat..\u201d
\nAddressing Cybersecurity Threats
\n\u201cThis alone should be reason enough for the committee to recognize additional work is needed to address cybersecurity concerns for CMVs and it would be premature to permit their deployment under H.R. 7390,\u201d Spencer said. \u201cWe also believe that this legislation fails to adequately address outstanding questions about how current safety regulations and licensing requirements will apply to heavy-duty trucks operating with automated driving systems (ADS).
\nUnanswered Questions
\nIn the letter, Spencer noted that in 2019, FMCSA issued an Advanced Notice of Proposed Rulemaking (ANPRM) regarding the deployment of autonomous commercial motor vehicles (FMCSA-2018-0037-0131). This ANPRM raised numerous questions about how autonomous CMVs could be deployed, what safety measures should be in place, and in particular, what sort of CDL qualifications or requirements should be required of operators of these CMVs.
\n\u201cTo date, many of these questions remain unanswered,\u201d Spencer said. \u201cWe are concerned that this legislation doesn\u2019t directly address qualifications for remote operators for CMVs, or how an ADS would meet current Federal Motor Carrier Safety Regulations (FMCSRs) and qualifications for CMV drivers. Whether a vehicle is operated directly by a driver behind the wheel or by a remote assistant monitoring and potentially assuming control, the individual performing that function must hold a valid CDL. The CDL framework is built on decades of safety experience and ensures that operators understand the fundamental dynamics, risks and responsibilities associated with CMV operation. For these reasons, all autonomous and remotely operated CMVs must remain fully subject to FMCSRs. The need for thorough inspections, hours\u2011of\u2011service limitations, drug and alcohol testing requirements, and physical qualification standards remains just as relevant\u2014if not more\u2014when technology may disengage unexpectedly or require a human to rapidly assume control.\u201d
\nAre AV Trucks Safe
\n\u201cUntil ADS-equipped CMVs have demonstrated safety performance equal to or exceeding that of human drivers, they should be held to the same, or more stringent, regulatory oversight,\u201d Spencer said. \u201cDespite pronouncements from autonomous trucking companies that full deployment is just around the corner, we still have not seen any independent, verifiable evidence that AV trucks are safe and ready. As we have advocated for years, measures to advance automated technology should be met with mandatory data transparency from AV companies. This will help educate consumers, the industry, lawmakers and regulators about the actual reliability of autonomous technology.\u201d
\nH.R 7390 Falls Short
\n\u201cRegrettably, H.R. 7390 falls short on this aspect as well,\u201d Spencer said. \u201cInstead of requiring proactive reporting of safety data and performance, this legislation only requires companies to report information after a crash. Our members make their living on the road, and they shouldn\u2019t have to wait until something goes wrong to learn more about the safety of the driverless vehicles they\u2019re sharing the road with. We urge the Committee to reject H.R. 7390 and instead pursue a framework that prioritizes adherence to proven safety requirements, independent validation and full transparency before allowing driverless heavy\u2011duty trucks onto our nation\u2019s roads. Small\u2011business truckers and professional drivers have a direct stake in the outcomes of these decisions, and they deserve policies rooted in rigorous oversight, not assumptions or unverified assurances from industry. We stand ready to work with you to develop responsible, data\u2011driven approaches that genuinely enhance roadway safety while preserving the integrity of the trucking profession and safeguarding the motoring public.\u201d
\nDana Guthrie is an award-winning journalist who has been featured in multiple newspapers, books and magazines across the globe. She is currently based in the Atlanta, Georgia, area.<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

OOIDA raises alarm on cybersecurity gaps in House bill over autonomous trucks https:\/\/www.thetrucker.com\/trucking-news\/business\/ooida-raises-alarm-on-cybersecurity-gaps-in-house-bill-over-autonomous-trucks Publish Date:…<\/p>\n","protected":false},"author":1,"featured_media":194920,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.thetrucker.com\/wp-content\/uploads\/2026\/03\/iStock-1351045479.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[24,31,32],"class_list":["post-194919","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-cybersecurity","tag-exploit","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194919"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=194919"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194919\/revisions"}],"predecessor-version":[{"id":194921,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/194919\/revisions\/194921"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/194920"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=194919"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=194919"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=194919"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}