Efficient testing of ECUs despite Security

Similar documents
Overview of Security Support in Vector Tools

Cyber security mechanisms for connected vehicles

Automotive Security: Challenges and Solutions

Automotive Security An Overview of Standardization in AUTOSAR

10 th AUTOSAR Open Conference

vflash Vector Webinar V

Diagnostic Trends 2017 An Overview

Secure Ethernet Communication for Autonomous Driving. Jared Combs June 2016

AUTOSAR Software Design with PREEvision

Diagnostic Use Cases V

From Signal to Service

Automotive Cybersecurity: A steep learning curve

PREEvision Technical Article

CANoe.Car2x. Product Information

CAN FD - Flexible Tools for Flexible Data Rates

Flash Bootloader. Product Information

CAN FD with Dynamic Multi-PDU-to-Frame Mapping

Sicherheitsaspekte für Flashing Over The Air in Fahrzeugen. Axel Freiwald 1/2017

Product Information CANdelaStudio

Automotive Security: Challenges, Standards and Solutions. Alexander Much 12 October 2017

SW-Update. Thomas Fleischmann June 5 th 2015

VT System Smart HIL Testing

TechPaper. Over-the-air updates what advantages does the AUTOSAR Adaptive Platform offer?

Automotive Anomaly Monitors and Threat Analysis in the Cloud

CANape Option Bypassing

IS CAR HACKING OVER? AUTOSAR SECURE ONBOARD COMMUNICATION

AUTOSAR System and Software Design with PREEvision

Vector vmdm TechLunch, October 24 th 2018, Novi Mi

Variants and Traceability as the Challenge

Connected driving is the future. However, data exchange between vehicles. and roadside equipment will only become genuinely beneficial when it is

OEM Conformance Tests for CAN FD

How Security Mechanisms Can Protect Cars Against Hackers. Christoph Dietachmayr, CIS Solution Manager EB USA Techday, Dec.

Conquering Complexity: Addressing Security Challenges of the Connected Vehicle

ODX TechDay, Seoul. How to come to ODX data? V

OTA and Remote Diagnostics

The CANoe.Ethernet Solution

Trusted Platform Modules Automotive applications and differentiation from HSM

Strong Security Elements for IoT Manufacturing

KSAR Support. for. ST s SPC5 32-bit Automotive MCUs

Minimum CANoe version to execute test units built with a specific version of vteststudio

OFF-ROAD VEHICLE DIAGNOSTICS WITH AUTOSAR. Jigar Patel Namdeo Dhawle July 18, 2018

EB TechPaper. Combining the strengths of Elektrobit's SecOC with Argus IDPS. elektrobit.com

盤技術Approaches for Secure and Efficient In-Vehicle Key Management*

ODX Live. How to Setup a Standards-based Diagnostic Process Chain

Diagnostics is evolving

Concept Manual vteststudio. Version 2.2 English

Ensuring quality for ADAS applications with a model-based approach

Configuring 802.1X Settings on the WAP351

Market Trends and Challenges in Vehicle Security

Adaptive AUTOSAR Extending the Scope of AUTOSAR-based Embedded Software

Fending Off Cyber Attacks Hardening ECUs by Fuzz Testing

Realizing Automated Driving Systems using Ethernet TSN and Adaptive AUTOSAR

STMicroelectronics Automotive MCU Technical Day 意法半导体汽车微控制器技术日 2017 年 ST 汽车 MCU 技术日 2017 年 6 月 6 日, 上海 2017 年 6 月 8 日, 深圳 2017 年 6 月 13 日, 北京

Benefits of Collecting Code Coverage Metrics during HIL/ECU Testing

Design Verification and Calibration Based on Physical Measurements for Electrical Vehicles

M2MD Communications Gateway: fast, secure, efficient

The Adaptive Platform for Future Use Cases

Security enhancing CAN transceivers. Bernd Elend Principal Engineer March 8 th, 2017

In March 2007, over 200 developers met in Stuttgart for the. control algorithms that have become increasingly faster are

Measurement Solution for new Radar Microcontroller V

Analysis and Testing of LIN ECUs

AUTOSAR Overview and Classic Platform

M2MD Communications Gateway: fast, secure and efficient

Adaptive AUTOSAR Extending the Scope of AUTOSAR-based Embedded Software

Tooling Overview ADAS - Status & Ongoing Developments

Software Architecture for Secure ECUs. Rudolf Grave EB TechDay-June 2015

CANoe.Ethernet. Product Information

High-End Datalogging System for Autonomus Driving V

Introduction of CAN FD into the next generation of vehicle E/ E architectures. Vector CAN FD Symposium 2017, Marc Schreiner, Daimler AG

Indigo. Vector Diagnostic Tester V / 6

CSI: VIDEO SURVEILLANCE CONVERTING THE JUGGERNAUT

Vector GB Ltd Annual Conference 2017

Who s Protecting Your Keys? August 2018

Scalable Security solutions to enable Cyber Security and to manage Digital Identities

Introducing Hardware Security Modules to Embedded Systems

Automotive Cyber Security

DEVELOPMENT OF DISTRIBUTED AUTOMOTIVE SOFTWARE The DaVinci Methodology

This presentation covers Gen Z s Security capabilities.

CANalyzer.MOST. Product Information

CANoe and CANalyzer as Diagnostic Tools

AUTOSAR proofs to be THE automotive software platform for intelligent mobility

This Support Note describes how to configure the trace window to analyse CCP or XCP communication in CANape.

The Power to Log. Powerful Solution for Vehicle Testing and Validation of Automobile Networks

Secure Product Design Lifecycle for Connected Vehicles

Enabling Connectivity with Service Oriented Architectures

10 th AUTOSAR Open Conference

CAN Obfuscation by Randomization (CANORa)

Release Presentation. ASAM Common MDF Version Measurement Data Format. Release Date: 2014 / 06 / 11

Vector Logger Cloud. VECTOR GB Ltd Conference, 28th Sept, 2017 V

High Speed Measurement For ADAS And Fast Analysis

Adaptive AUTOSAR. Ready for Next Generation ECUs V

CANoe 6.0. The Professional Development and Test Tool for CAN, LIN, MOST, FlexRay and J1587 TOOLS FOR NETWORKS AND DISTRIBUTED SYSTEMS

Security Requirements for Crypto Devices

Security of Embedded Hardware Systems Insight into Attacks and Protection of IoT Devices

Compliance Verification Process for Ethernet ECUs

Solutions for. Avionics Networking. CANoe.CANaero. CANalyzer.CANaero ENGLISH

Introduction to Ethernet and IP in automotive vehicles

Tools for CAN based networking. On the street, in the air, in the orbit

High-Speed Reprogramming and Calibration with CAN FD: A Case Study

EV CHARGING: MAPPING OUT THE CYBER SECURITY THREATS AND SOLUTIONS FOR GRIDS AND CHARGING INFRASTRUCTURE

Transcription:

Vector Cyber Security Symposium 2017 V0.1 2017-09-26

Security is a must have Security makes testing harder Security is a must have Todays features in vehicles require security Test Tools must support security Access is restricted by OEM-specific security mechanisms Vector Security Manager How does Vector make efficient testing possible 2

Vehicle network architecture in the past No external interfaces Isolated from the outside-world Classical automotive networks (CAN, Flexray, ) 3

Vehicle network architecture today Many important external interfaces Connected to the outside-world Ethernet as new network technology 4

Vehicle network architecture today Many important external interfaces Security is required! Connected to the outside-world Ethernet as new network technology 5

Testing vehicles 6

Testing vehicles in the past Any test tool could communicate with the ECU networks Security: Data Integrity Seed & Key Testing network communication Reading network data Stimulating Replay recorded data 7

Testing vehicles today Any test tool could communicate with the ECU networks Security: Integrity Authentication Encryption TLS SecOC Testing network communication Reading network data Stimulating Replay recorded data 8

Testing vehicles today Test tools must support security?? Security: Integrity Authentication Encryption TLS SecOC Testing network communication Reading network data Stimulating Replay recorded data 9

Diversity of security implementation Secured Onboard Communication OEM 1 Time-based freshness CMAC Keys on server OEM 2 Trip-based freshness SipHash Keys in secured container OEM 3 Time-based freshness Challenge-Response CMAC Default key in development 10

Effect on test tools Test tools have to manage a huge diversity of security implementations Accessing OEMs security data Keys Certificates Managing different security algorithms CMAC Sip Hash OEM 1 OEM 2 Different freshness models Time-based Trip-based OEM specific variants OEM 3 Security on different layers SecOC TLS 11

Security in a vehicles life cycle Test tools have to manage security depending on the vehicles life cycle. Development Production After Sales Security Active / Inactive Active Active Key Default key Key generation Defined vehicle key Freshness Flexible Fixed, Initial value Fixed, Any value Backend Development Productive Productive Certificates Full Access Restricted Restricted 12

Vector Security Manager concept Crypto Backend Security Sources Vector Security Manager Vector Tools CANoe CANape Device Under Test Interface Network 13

Vector Security Manager concept Security Profiles Security Source Security Security Source Source OEM1 Development Production After Sales OEM specific Security Source Implements specific security algorithms Provides access to keys and certificates on OEM specific infrastructure Provides Security Profiles Vector Security Manager Security Manager Central secret management for all Vector tools Encapsulation of secrets (do not forward them) Provides functional interface to tools 14

Summary Vehicles today with many external interfaces require security mechanisms Efficient testing is only possible if the test tool supports the OEM specific security Security restricts access and does not distinguish between tester and hacker High diversity of security data and implementations Vector Security Manager is Vectors solution to efficiently test secured vehicle networks and ECUs Management of security data (Keys, Certificates) Implementation of OEM specific security, freshness models Unique secret management for all Vector tools 15

16 I wish you efficient testing of secured vehicles!

For more information about Vector and our products please visit www.vector.com Author: Brenner, Matthias Vector Germany 17 2017. Vector Informatik GmbH. All rights reserved. Any distribution or copying is subject to prior written approval by Vector. V0.1 2017-09-26

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback