The Road to the Perfection… Customizable Fleet Solutions

The Road to the Perfection… Customizable Fleet Solutions

Custom Reports

ELDSince all fleets must become ELD compliant, it makes sense to leverage your investment across all your fleet operations. With electronic logging, you have access to a wealth of data, from duty status and location, engine hours, vehicles miles, driver ID, and more. A telematics solution can even capture other critical data like odometer, fuel usage, speed, hard braking, and emissions.

So, why not benefit from your ELD investment and put this great data to work for you? Custom reports can help you:

  1. Improve driver safety
  2. Manage your driver’s time better; take on more work
  3. Improve accuracy; reduce violations and fines
  4. Save time and money; office staff can be more efficient
  5. Improve driver coaching; minimize wear and tear on your fleet
  6. Automate IFTA reporting
  7. And much more!!!

Protection Through Proof

Surfsight dashcam captures the drive and the driver behavior in real-time. Powered by artificial intelligence and machine vision, Surfsight automatically detects, and alerts distracted driver behavior and harsh driving incidents, addressing the leading causes of preventable accidents.

When an accident does occur, on-demand video retrievals allow you to review the details leading up to and during the accident. This easily accessible video footage ensures your company is protected through visual proof, reducing claims and insurance costs.

Predictive Maintenance

Electronic logs make it possible to manage your defects in real-time, which can reduce your downtime due to maintenance. In addition, PdM, or predictive maintenance will help avoid breakdowns and expensive repairs.

Predictive maintenance offers huge cost savings and a big boost to customer satisfaction. A well-maintained vehicle is overall all more cost effective and meets a higher safety standard. Operating conditions can be seen in the diagnostic trouble codes that are transmitted along a vehicle’s common area network (CAN lines). Your vehicle’s health is reported in order to predict emerging problems BEFORE they occur. Predictive maintenance has been shown to save companies on average 10-20 percent (and more) of maintenance costs per year.

Problem? We Have a Solution for You!

Time to scrap your paper records and go electronic. Whatever your fleet size, whatever your biggest pain point, we have a solution for you. AND…the best part, your solution can grow as your business and fleet grows!


Vehicle Licensing Consultants

A Virtual Projects, LLC Company

Fleet & Driver Compliance…Fleet Tracking Software


Is My ELD Data Secure?

Is My ELD Data Secure?

Telematics devices generate a large amount of data daily. ELD devices are tracking all vehicle and driver activities necessary for reporting as well as for the business to control fuel and maintenance costs. Protecting this data is important on many levels as it may contain customer accounts, schedules, shipment data, assets, and personal information.

It is clear to see that not only is this data is extremely valuable to the small business owner, the fleet manager, the CIO, and the CEO, it is valuable to everyone involved, including clients. How your telematics data is handled and protected from cybercrimes is critical.


At VLC, we have partnered with the leader in telematics and the ELD industry, Geotab. Geotab takes a very rigorous approach to information security and they are continually improving upon their security measures. In addition, they provide recommendations to clients and partners to ensure all Geotab telematics systems are resilient to intrusion and uncompromising with respect to information security.

Here are key recommendations from Geotab for data security for your telematics system:

  • Secure data transfer
  • Digital signatures for updates
  • Hardware code protection
  • Use of cryptography
  • Third-party security audits
  • Limit server access
  • Keep software & firmware updated
  • Verify & test


Your data must be secure across all aspects of your telematics ecosystem. Starting with the design and manufacture of the telematics device itself and the firmware security controlling the device, you need reassurances that your device is free of malware or compromise from a malicious party.

Secondly, the data transfer to the central server, security in the cloud, and your corporate culture must be rigorous in practicing and refining security processes.


In summary, protect your data with a telematics product that is steeped in industry best practices and comprehensive security processes. Pair that with a strong corporate culture and employee training in security to maintain a constant vigilance of your important assets.

Cybersecurity is a shared responsibility. Let’s all do our part to keep data safe!


Vehicle Licensing Consultants

A virtual Projects, LLC Company

Fleet and Driver Compliance | Fleet Tracking Software


FBI Notification On Electronic Logging

FBI Notification On Electronic Logging

On July 21, the Federal Bureau of Investigation (FBI) issued a Private Industry Notification (PIN) on the security of electronic logging devices (ELDs). The document, titled “Electronic Logging Device Cybersecurity and Best Practices” outlines key information on ELDs and cyber risk, as well as advice on managing risk.

The aim of the FBI notice is to alert businesses to the importance of ELD cybersecurity and the potential for cyber criminal activity. No specific cybersecurity requirements for ELD manufacturers or suppliers is prescribed, however, the FBI encourages businesses to reach out to their suppliers for security information.

To mitigate cyber risk, the FBI recommends that businesses follow ELD best practices. They also encourage businesses to talk to their ELD provider about cybersecurity. Here is the list of questions to ask from the FBI notice.

Questions to ask your ELD provider:

Is the communication between the engine and the ELD enforced?
Were current technical standards or best practices followed in the device’s development?
Does the component [ELD device] protect confidentiality and integrity of communications?
Has the component [ELD device] had penetration tests performed on it?
Does the device have secure boot?
Does the device ship with debug mode disabled?
The FBI states that taking an “active approach to vetting ELD options” is a worthwhile measure. Taking the time to critically evaluate an ELD before rollout can help minimize risk, but also verify quality to avoid costly disruptions due to performance issues.

The U.S. ELD mandate does not require third-party validation or testing of ELDs before self-certification. This makes it even more important for fleets to practice due diligence on ELD research.

Fleets can also reference the cybersecurity guidelines for telematics systems from the National Motor Freight Traffic Association (NMFTA) for guidance on rating cybersecurity considerations. Read more about NMFTA and cybersecurity.

While the FBI has not provided detailed answers to the ELD questions, we have outlined below what we believe are acceptable minimum responses from an ELD provider. Geotab meets all of these cybersecurity considerations noted below.

Is the communication between the engine and the ELD enforced?
NMFTA document SCP-060 section is: “The vendor shall enforce controls integrated into the telematics device to limit the possible commands and data transmitted to the vehicle network.” The GO device is designed to minimize the number of commands or data transmitted into the vehicle on the CAN Bus.

Were technical standards or best practices followed in the device’s development?
Geotab publishes its Software Development Life Cycle. In addition, please see the Geotab Product Integrity White Paper for information on international standards compliance. Finally, Geotab actively contributed to the NMFTA Cybersecurity Requirements for Telematics Systems linked in the FBI PIN notice.

Does the component protect confidentiality and integrity of communications?
Geotab provides one of the most secure telematics solutions available on the market today. Geotab uses encryption to protect data at all times during collection, transmission, storage, and use. The GO devices use AES 256 to encrypt all Data At Rest (DAR). DAR AES 256 keys are generated and stored within the GO device microcontroller.

Each GO device creates their own unique random AES 256 keys. AES 256 keys are generated on the GO device by a Cryptographically Secure Pseudorandom Number Generator (CSPRNG). Geotab’s cryptographic module has achieved FIPS 140-2 validation. The certificate is number #3371. Geotab is the first telematics company to achieve FIPS 140-2 validation.

Data transmission from the GO device to the My Geotab solution uses a rolling AES 256 encryption key scheme to encrypt all Data In Transit (DIT). The DIT keys are securely stored by the GO devices using the DAR keys. The DIT keys are also stored by the My Geotab solution. The DIT AES 256 keys are generated using a CSPRNG by the My Geotab solution. All servers in the My Geotab solution are configured to run in “FIPS mode” so the keys will be generated by a FIPS 140-2 validated cryptographic library.

Customer data in the My Geotab solution is encrypted at rest using AES 256 disk encryption provided by Google. More information on Google disk encryption can be found at Customer data transmitted inside the My Geotab solution is encrypted in transit with TLS 1.2.

Customer access to their data stored in My Geotab is through one of two ways — via web browser or via API. The My Geotab web application and API access is over HTTPS with TLS 1.2. Customer access is controlled through either username and password, or by SSO with SAML 2.0. Password complexity rules are set up by customers within the My Geotab application.

Has the component had penetration tests performed on it?
Yes. Geotab performs at least annual hardware penetration testing on the GO device.

Does the device have secure boot?
The GO device uses firmware that has been cryptographically signed by Geotab and the encryption keys are securely stored in on-board microprocessor memory. This ensures the firmware used by the GO device is authentic when the GO device goes to boot up.

Does the device ship with debug mode disabled?
The GO device ships with debug mode disabled.

Geotab takes a proactive approach to information security. As a global leader in connected vehicles and IoT, Geotab has developed a rigorous and comprehensive cybersecurity program. We work with industry associations and universities to develop security technologies and practices, and create awareness around best practices.

Last year, Geotab was the first telematics company to achieve FIPS 140-2 validation from the National Institute of Standards and Technology (NIST) for the cryptographic module in our Geotab GO vehicle tracking device. FIPS 140-2 validation is the benchmark for cryptographic modules protecting sensitive information in computer and telecommunication systems for government and military applications in North America.

Read more about FIPS 140-2 validation in this blog post and the related press release.

We invite you to go to the Geotab Security Center for more details on Geotab’s policies and practices. The Security Center includes information about the Geotab security policy and leadership team, customer data privacy, learning resources, and a contact form.

Read Geotab’s response letter to the FBI notification

The following Geotab resources provide an overview on important considerations and best practices for telematics security. Additionally, you can see more best practices and guidelines in the FMCSA’s Cybersecurity Best Practices for Integration/Retrofit of Telematics and Aftermarket Electronic Systems into Heavy Vehicles.

Blog posts:

Four questions about cybersecurity every fleet executive must ask
Cybersecurity basics — how to protect your business
15 security recommendations for building a telematics platform resilient to cyber threats
Federal fleet manager cybersecurity considerations for telematics
White paper:

Best practices for cybersecurity management in telematics
Cybersecurity is a key consideration when it comes to any technology or device for your business, including ELDs. The FBI notification on electronic logging is a reminder that along with safety, productivity and efficiency, fleets and solution providers alike need to be ever mindful of security in their organization.


Vehicle Licensing Consultants

A virtual Projects, LLC Company

Fleet and Driver Compliance | Fleet Tracking Software


About VLC: Who we are | What we do
Partners and Affiliates: Industry leaders
Careers: VLC is NOT just a place to work
Contact Us: Email | Phone | FAX
Testimonials: What clients are saying

DQMConnect™​ is now live!

DQMConnect™ is a self-managed software tool designed to meet the growing need to ensure and manage DOT driver qualification files.



Interstate: IRP | IFTA | UCR | 2290 | DOT
Tax Reporting: IFTA | OR | NM | KY | NY
Intrastate: PFR | PYR | PTI

DQMConnect™​ is now live!

DQMConnect™ is a self-managed software tool designed to meet the growing need to ensure and manage DOT driver qualification files.



TripDAWG® Solutions: Sort, manage, push data
Fleet Telematics: Real time fleet tracking
ELD: Powered by Geotab®
Dispatch: Powered by EXTRA®
Dashcams: Powered by Netradyne®
Drivewyze®: Connected truck services
Asset Tracking: GPS asset tracking
OEM: Mixed fleet tracking
Fleet Maintenance: Optimum VRX®

DQMConnect™​ is now live!

DQMConnect™ is a self-managed software tool designed to meet the growing need to ensure and manage DOT driver qualification files.