The deep digitalization of transportation systems has significantly heightened cybersecurity risks for vehicular networks and IoT infrastructure. Method: This study proposes the first dual-track cybersecurity framework integrating policy governance and technological evolution, innovatively establishing a hybrid security paradigm tailored to transportation scenarios. It incorporates zero-trust architecture, AI-driven threat detection, lightweight encryption, and customized intrusion detection systems, underpinned by systematic security analysis, multi-stakeholder collaborative modeling, and IoT-specific security architecture design. Contribution/Results: The project delivers actionable policy recommendations, a comprehensive technology roadmap, and four prioritized R&D directions. Collectively, these outcomes provide a theoretically grounded yet practically implementable resilient cybersecurity framework for intelligent transportation systems, bridging governance and engineering dimensions to enhance systemic cyber-resilience.

The transportation industry is experiencing vast digitalization as a plethora of technologies are being implemented to improve efficiency, functionality, and safety. Although technological advancements bring many benefits to transportation, integrating cyberspace across transportation sectors has introduced new and deliberate cyber threats. In the past, public agencies assumed digital infrastructure was secured since its vulnerabilities were unknown to adversaries. However, with the expansion of cyberspace, this assumption has become invalid. With the rapid advancement of wireless technologies, transportation systems are increasingly interconnected with both transportation and non-transportation networks in an internet-of-things ecosystem, expanding cyberspace in transportation and increasing threats and vulnerabilities. This study investigates some prominent reasons for the increase in cyber vulnerabilities in transportation. In addition, this study presents various collaborative strategies among stakeholders that could help improve cybersecurity in the transportation industry. These strategies address programmatic and policy aspects and suggest avenues for technological research and development. The latter highlights opportunities for future research to enhance the cybersecurity of transportation systems and infrastructure by leveraging hybrid approaches and emerging technologies.