Feb. 20, 2020—A "discussion draft" dated Feb. 11 that was obtained by The Detroit News contains language that would prohibit automakers from selling self-driving cars unless they develop, maintain, and execute "cybersecurity practices and processes to minimize cybersecurity risks to motor vehicle safety" within 180 days of enactment of the proposed legislation. 

Carmakers would have to provide annual detailed descriptions of what manufacturers are doing to minimize hacking of systems. The reports would be considered privileged and confidential, according to the report.

Previous versions of the self-driving legislation would have directed the U.S. Department of Transportation to update federal safety standards to ensure that autonomous vehicles match safety levels required for human-operated cars.