M2MD Communications Gateway: fast, secure, efficient

Similar documents
M2MD Communications Gateway: fast, secure and efficient

The Open Application Platform for Secure Elements.

Sicherheitsaspekte für Flashing Over The Air in Fahrzeugen. Axel Freiwald 1/2017

Launch Smart Products With End-to-End Solutions You & Your Customers Can Trust

Scalable Security solutions to enable Cyber Security and to manage Digital Identities

SW-Update. Thomas Fleischmann June 5 th 2015

Easy Incorporation of OPTIGA TPMs to Support Mission-Critical Applications

Security Strategy for Mobile ID GSMA Mobile Connect Summit

Achieving End-to-End Security in the Internet of Things (IoT)

Powering the Internet of Things with MQTT

Securing V2X communications with Infineon HSM

Connected Car Solutions Based on IoT

Simple and Secure Micro-Segmentation for Internet of Things (IoT)

LTE-M vs NB-IoT. Comparing New Cellular Connectivity Options

IoT security based on the DPK platform

Aerohive and IntelliGO End-to-End Security for devices on your network

IoT Edge within the IoT Framework

Securing the future of mobility

Connecting Securely to the Cloud

Mobile IoT: The Ideal Fit for Smart Cities

New Business. Opportunities for Cellular IoT. Loic Bonvarlet Director of Marketing Secure Identity Arm. Copyright 2018 Arm, All rights reserved.

SIMPLIFYING THE CAR. Helix chassis. Helix chassis. Helix chassis WIND RIVER HELIX CHASSIS WIND RIVER HELIX DRIVE WIND RIVER HELIX CARSYNC

IOT IN THE AUTOMOTIVE INDUSTRY

Strong Security Elements for IoT Manufacturing

PKI Credentialing Handbook

Automotive Gateway: A Key Component to Securing the Connected Car

5G SIM: Maximising MNO Investment in 5G Networks

Key Protection for Endpoint, Cloud and Data Center

The case for a Vehicle Gateway.

Connected Living. SIMs & M2M the Central and Developing Role of SIMs

Autorama, Connecting Your Car to

ARM Security Solutions and Numonyx Authenticated Flash

SHARE THIS WHITEPAPER. Fastest Website Acceleration for New HTTP Protocol with Alteon NG and Advanced HTTP/2 Gateway Whitepaper

Securing Vehicle ECUs Update Over the Air

Securing IoT devices with STM32 & STSAFE Products family. Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region

GSMA Embedded SIM Specification Remote SIM Provisioning for M2M. A single, common and global specification to accelerate growth in M2M

INTERNET OF THINGS (IoT) DESIGN CONSIDERATIONS FOR EMBEDDED CONNECTED DEVICES ANDREW CAPLES SENIOR PRODUCT MARKETING MANAGER, NUCLEUS

Security Solutions. End-to-end security. Protecting your physical access control system.

Case Study. gsma.com/iotsecurity

Turbocharging Connectivity Beyond Cellular

Sierra Wireless. Corporate Overview. May 2017

Utimaco IS GmBH. Teo Poh Soon Director. CryptoServer Products Aachen, Germany June 2014 Page 1

$263 WHITE PAPER. Flexible Key Provisioning with SRAM PUF. Securing Billions of IoT Devices Requires a New Key Provisioning Method that Scales

Make security part of your client systems refresh

CardOS Secure Elements for Smart Home Applications

Secure Application Trend in Smartphones. STMicroelectronics November 2017

A Robust, Flexible Platform for Expanding Your Storage without Limits

EBV Personalization Services for Security Devices

WIND RIVER NETWORKING SOLUTIONS

Solutions to Enhance IoT Authentication Using SIM Cards (UICC)

Avaya Aura Scalability and Reliability Overview

EDGE COMPUTING & IOT MAKING IT SECURE AND MANAGEABLE FRANCK ROUX MARKETING MANAGER, NXP JUNE PUBLIC

Automotive Cyber Security

THE THALES SECURITY WORLD ARCHITECTURE

The Next Generation of Credential Technology

The secure remote support, remote access and online meeting software that the world relies on.

Connected vehicle cloud Commercial presentation

GSMA Embedded SIM 9 th December Accelerating growth and operational efficiency in the M2M world

Introduction to Device Trust Architecture

RSA Solution Brief. Providing Secure Access to Corporate Resources from BlackBerry. Devices. Leveraging Two-factor Authentication. RSA Solution Brief

NC1701 ENHANCED VEHICLE COMMUNICATIONS CONTROLLER

USING DEVICE LIFECYCLE MANAGEMENT TO FUTURE PROOF YOUR IOT DEPLOYMENT

Security in NFC Readers

Securing Network Communications

Diagnostic Trends 2017 An Overview

SD Express Cards with PCIe and NVMeTM Interfaces

THE RTOS AS THE ENGINE POWERING THE INTERNET OF THINGS

Identity & security CLOUDCARD+ When security meets convenience

Kigen SIM Solutions. Unlock the full potential of IoT

Press Release. ETAS GmbH. Borsigstraße Stuttgart, Germany Phone Press and Public Relations: Anja Krahl


MASP Chapter on Safety and Security

World s Most Secure Government IT Solution

Getting to Grips with Public Key Infrastructure (PKI)

Introduction to VANET

WAP Security. Helsinki University of Technology S Security of Communication Protocols

Conquering Complexity: Addressing Security Challenges of the Connected Vehicle

Clouds and Things. Implications of the Cloud and Internet-of-Things for SCADA/ICS. April 25, 2018

The UICC. Recent Work of ETSI TC Smart Card Platform. Dr. Klaus Vedder Chairman ETSI TC SCP

The Future of Smart Cards: Bigger, Faster and More Secure

Automotive Anomaly Monitors and Threat Analysis in the Cloud

Overview. SSL Cryptography Overview CHAPTER 1

BUILDING AUTOMATION OF THE FUTURE

NEXT GENERATION INFOTAINMENT CONNECTIVITY AND TELEMATICS SOFTWARE FROM PROOF-OF-CONCEPT TO START-OF-PRODUCTION

Trusted Platform Modules Automotive applications and differentiation from HSM

Wireless LAN Security. Gabriel Clothier

EMERG IOT / M2M regulation and autonomous driving

Transaction Security Challenges & Solutions

Secure Technology Alliance Response: NIST IoT Security and Privacy Risk Considerations Questions

Presentation's title

Five Key Considerations When Implementing Secure Remote Access to Your IIoT Machines. Blanch Huang Product Manager

Implementing security has never been easier. Infineon Security Partner Network.

Spotlight on IoT Security. Choose the right security for the Internet of Things.

Connected vehicle cloud

DesignWare IP for IoT SoC Designs

Verizon Software Defined Perimeter (SDP).

WHITE PAPER Security in M2M Communication What is secure enough?

white paper SMS Authentication: 10 Things to Know Before You Buy

Best Practices for esim Deployments. Héctor López Solutions Architect Telecommunication Industries G+D Mobile Security

JUST WHAT THE DOCTOR ORDERED: A SOLUTION FOR SMARTER THERAPEUTIC DEVICES PLACEHOLDER IMAGE INNOVATORS START HERE.

Transcription:

Solution Brief M2MD Communications Gateway: fast, secure, efficient G+D Mobile Security and M2MD enable automakers to improve user experience through fast, secure and efficient cellular automotive connectivity. Key Benefits Technology has transformed almost every aspect of modern life, but the car has seen changes that significantly affect our day-to-day lives. Computerization has changed the way cars work, how they are produced, and how we view and interact with them. Getting from point A to point B is no longer enough. Today s cars have smart features and are connected transitioning to tomorrow s cars, which will be fully autonomous and require always-on connectivity. With an increasing number of connected vehicles on the road, the need for strong security and efficient communication has become paramount. However, the increasing computerization of the car brings with it the threat of digital security breaches. Now that our cars are connected and use our personal information, car makers must protect our data while still providing convenient and flexible access. The M2MD Communications Gateway transforms vehicle connectivity Instant connection Keys stored in hardware for optimal security Manages power consumption and costs effectively

M2MD Communications Gateway: 2 Security challenges for the connected car Certificate-based security is the authentication process used on the public internet between two devices that are unknown to each other (e.g. a personal computer and a bank s server). This authentication process typically requires a computationally intensive handshake that takes time and requires the devices to pass data back and forth to establish a secure session. When using a computer on a home or office network, this transaction happens quickly over a data circuit with nearly unlimited data budgets and sufficient bandwidth to make certificate-based security efficient. To minimize cost and battery consumption, car telematics control units (TCUs) typically have far less powerful processors than a normal personal computer, which increases the time needed to complete a certificate-based handshake. In addition, wireless operators charge automakers according to the amount of data transmitted over the network, which makes the data consumed in the handshake process a relatively expensive overhead cost. Automakers require a proven, tested security solution but need it to be fast, cost effective, and designed for the unique automotive environment. provides end-to-end security and efficient connectivity for mobile applications. With the ability to instantly connect to a vehicle, it delivers a better user experience whilst securing the connection. No additional hardware is required the solution works with most of the currently installed vehicle hardware. Certificate operations in connected cars In automotive telematics, cellular communications happen on a private network and between two known devices that have been preconfigured to work together. Certificate-based handshakes require time and power to compute on embedded devices, using significant overhead data and increasing costs with each cellular session established. Certificate operations were designed for human intervention. They have expiration dates and require regular updates. If a certificate is compromised in a vehicle, the vehicle may have to be recalled, and a trip to the dealer may be the only resolution. On average, top-of-the-line, server-supporting, certificate-based security can support only 15,000 devices, which drives higher hardware costs and impacts scalability. Improved Experience for drivers and automakers Designed for interactive use cases, the gateway provides a whole new user experience in terms of responsiveness without sacrificing security. The secure gateway provides the ability to instantly connect to a vehicle. Today s connected cars typically require thirty seconds to receive a mobile command. The M2MD Communications Gateway has reduced this communication time to just a few seconds. For improved connectivity, the M2MD Communications Gateway instantly triggers a network initiated data session to the vehicle, resulting in an immediate response to complete requests for remote control functions (e.g. remote vehicle battery charging status check). The automakers also benefit from improved connectivity with the vehicle using the M2MD Communications Gateway. This results in an immediate response regarding diagnostic trouble codes. The automaker can analyze the data and make adjustments immediately.

M2MD Communications Gateway: Improved Security merges M2MD s proprietary security solutions with G+D s expertise in encryption, key management and highly secure hosting capabilities. The gateway provides a secure communications channel between the TCU in the vehicle and a backend platform. The essential cryptographic key material is stored on hardware, utilizing the certified security of the SIM. strengthens data transmission security and the speed of initiating communications between the vehicle and the automaker s preferred telematics platform. The solution leverages well-tested and standardized security technologies like TLS and 3GPP methods. By using only symmetric cryptography, it avoids the challenges associated with certificates. 2 Data is sent to the OEM cloud or IoT platform OEM Cloud or IoT Platform 3 M2MD Communications Gateway 1 Remote start request initiated The gateway initiates data session via QuickConnect 4 The vehicle receives the start request To provide always-ready connectivity the M2MD Communications Gateway instantly triggers a data session using the QuickConnect technology. QuickConnect establishes a secure connection within seconds. 3

M2MD Communications Gateway: 4 Reduce costs with QuickConnect technology is optimized for embedded devices with low power budgets. The gateway has built-in QuickConnect wake-up technology, which requires negligible power consumption by both the vehicle and the device. The car is in an always ready state of connection as opposed to being always-on, which taxes the battery. The gateway s unique QuickConnect feature establishes a secure connection within seconds about ten times faster than today s methods. QuickConnect uses minimal mobile data to establish the connection as symmetric cryptography does not require data-heavy keys and certificates. While a single vehicle manages only a single connection, the automotive manufacturers handle thousands of connections through their backend systems. Symmetric encryption requires far less computing time, which greatly reduces the load on the backend platform and thus reduces the cost of managing the connectivity services. Why the SIM is the best security anchor for automotive connectivity The SIM has a long history as the trusted element for securing subscriber identity and connectivity credentials for mobile networks. The highly secure, multifunctional SIM or UICC (Universal Integrated Circuit Card) can also act as a security anchor for the horizontal security required for IoT and, in this case, car connectivity. The UICC is a compact computational device with data storage capability. It is tamper-resistant, and provides a secure repository for critical information. As an independent computing entity inside the connected car, the UICC can store the factory reset configuration in its secure storage and perform supervisory tasks, thus ensuring that cars can be remotely managed as needed. G+D Mobile Security manages 3+ billion cards across 80 countries. Furthermore, G+D Mobile Security leads the industry in esim management, which directly enables secure, over-the-air credential management using remote devices. Globally, G+D has deployed and supports more than 200 over-the-air platforms. Nine of the top ten automotive manufacturers trust G+D Mobile Security to provide UICC hardware, esim management software, and secure communications for current and next generation connected cars. M2MD Communications Gateway Key Features allows drivers to quickly connect to the vehicle over mobile networks, execute remote commands more rapidly, and enjoy extended battery life. In addition to a more satisfied customer, the automaker benefits from reduced vehicle data costs on the backend. The solution combines these benefits with G+D Mobile Security s expertise in hardware security, key management, and highly secure hosting capabilities. G+D Mobile Security s market leading M2M SIM expertise and secure data centers that are certified by banking and telecommunications institutions ensure the highest level of security and data privacy for car manufacturers and their customers. Fast < 3 second reaction time, 10 times faster than current solutions on the market Secure Proven and well-known security mechanisms are used (e.g. TLS 1.2) Static cryptographic elements are protected by SIM hardware security Only session keys are used for operations outside of SIM hardware Regular key rollovers reduce the impact of potential attacks Efficient Cost savings: No SMS required, only 304 bytes per connection establishment, 6,000 bytes less than certificate-based methods Power savings: Highly optimized embedded solution allows the TCU to be always ready, whereas current solutions have to go offline for periods of time to stay within the vehicle s power budget Run-time savings: Fewer CPU operations needed Client side: Faster execution, lower CPU requirements Server side: Up to 350,000 vehicles per server vs.15,000 clients per server for current solutions No additional hardware required, works with all TCUs/modems Dual/multi-source SIM strategy possible for automotive manufacturers

Learn more about G+D Mobile Security automotive solutions For more information, contact your G+D Mobile Security representative, or visit our online channels. https://www.gi-de.com/en/us/mobile-security/ industries/automotive/ Giesecke+Devrient Mobile Security GmbH Prinzregentenstrasse 159 81677 Munich Germany Giesecke+Devrient Mobile Security GmbH, June 2018. All Rights Reserved. Subject to change without notice. G+D and other trademarks are trademarks of Giesecke+Devrient Mobile Security GmbH, Germany. Other trademarks may be trademarks of their respective owners. This document is for informational P + 49 89 41 19-0 mobilesecurity@gi-de.com purposes only. Giesecke+Devrient Mobile Security make no warranties - express or implied - in this document. Connect with us:

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback