How Security Mechanisms Can Protect Cars Against Hackers. Christoph Dietachmayr, CIS Solution Manager EB USA Techday, Dec.

Similar documents
Software Architecture for Secure ECUs. Rudolf Grave EB TechDay-June 2015

SW-Update. Thomas Fleischmann June 5 th 2015

Scalable and Flexible Software Platforms for High-Performance ECUs. Christoph Dietachmayr Sr. Engineering Manager, Elektrobit November 8, 2018

Secure Ethernet Communication for Autonomous Driving. Jared Combs June 2016

10 th AUTOSAR Open Conference

Adaptive AUTOSAR: Infrastructure Software for Advanced Driver Assistance. Chris Thibeault June 7, 2016

Automotive Security: Challenges and Solutions

Automotive Security: Challenges, Standards and Solutions. Alexander Much 12 October 2017

Automotive Anomaly Monitors and Threat Analysis in the Cloud

Cyber security mechanisms for connected vehicles

Smart Antennas and Hypervisor: Enabling Secure Convergence. July 5, 2017

Trusted Platform Modules Automotive applications and differentiation from HSM

Introduction to Adaptive AUTOSAR. Dheeraj Sharma July 27, 2017

TechPaper. Over-the-air updates what advantages does the AUTOSAR Adaptive Platform offer?

Sicherheitsaspekte für Flashing Over The Air in Fahrzeugen. Axel Freiwald 1/2017

Adaptive AUTOSAR Extending the Scope of AUTOSAR-based Embedded Software

PENETRATION TESTING OF AUTOMOTIVE DEVICES. Dr. Ákos Csilling Robert Bosch Kft., Budapest HUSTEF 15/11/2017

Adaptive AUTOSAR Extending the Scope of AUTOSAR-based Embedded Software

Offense & Defense in IoT World. Samuel Lv Keen Security Lab, Tencent

Software integration challenge multi-core experience from real world projects

Architecture concepts in Body Control Modules

Autonomous Driving From Fail-Safe to Fail-Operational Systems

Automotive Cybersecurity: A steep learning curve

KSAR Support. for. ST s SPC5 32-bit Automotive MCUs

Open Source in Automotive Infotainment

Countermeasures against Cyber-attacks

STMicroelectronics Automotive MCU Technical Day 意法半导体汽车微控制器技术日 2017 年 ST 汽车 MCU 技术日 2017 年 6 月 6 日, 上海 2017 年 6 月 8 日, 深圳 2017 年 6 月 13 日, 北京

Introducing Hardware Security Modules to Embedded Systems

Efficient testing of ECUs despite Security

Market Trends and Challenges in Vehicle Security

MIGRATING TO CAN FD. Tony Adamson. Marketing Director CAN / LIN / FlexRay

Secure Product Design Lifecycle for Connected Vehicles

Automotive Security An Overview of Standardization in AUTOSAR

Cyber security of automated vehicles

SIMPLIFYING THE CAR. Helix chassis. Helix chassis. Helix chassis WIND RIVER HELIX CHASSIS WIND RIVER HELIX DRIVE WIND RIVER HELIX CARSYNC

Development of Intrusion Detection System for vehicle CAN bus cyber security

Functional Safety and Cyber Security Experiences and Trends

13W-AutoSPIN Automotive Cybersecurity

Ethernet Design Challenges The requirements and use of Ethernet with AUTOSAR

Provisioning secure Identity for Microcontroller based IoT Devices

EB TechPaper. Combining the strengths of Elektrobit's SecOC with Argus IDPS. elektrobit.com

Automotive Linux Summit 2017 May 31-June 2, 2017, Tokyo, Japan Advances and challenges in remote configuration of connected cars

Infotainment Solutions. with Open Source and i.mx6. mentor.com/embedded. Andrew Patterson Business Development Director Embedded Automotive

1000BASE-T1 from Standard to Series Production

Welcome Note. Dr. Thomas Scharnhorst, AUTOSAR Spokesperson 10 th AUTOSAR Open Conference 8 th Nov 2017, Mountain View, California

10 th AUTOSAR Open Conference

Automotive Gateway: A Key Component to Securing the Connected Car

Virtual Hardware ECU How to Significantly Increase Your Testing Throughput!

Diagnostic Trends 2017 An Overview

MASP Chapter on Safety and Security

Securing the Connected Car. Eystein Stenberg Product Manager Mender.io

Embedded Automotive Systems Security:

Security and Performance Benefits of Virtualization

ISO meets AUTOSAR - First Lessons Learned Dr. Günther Heling

The Adaptive Platform for Future Use Cases

AUTOSAR proofs to be THE automotive software platform for intelligent mobility

OTA and Remote Diagnostics

Jim Gallagher Senior Technical Marketing Lead, MontaVista Software

Safety and Security for Automotive using Microkernel Technology

Communication Patterns in Safety Critical Systems for ADAS & Autonomous Vehicles Thorsten Wilmer Tech AD Berlin, 5. March 2018

Internet of Things real life cases Alex Ahlberg

Adaptive AUTOSAR. Ready for Next Generation ECUs V

Mentor Automotive Save Energy with Embedded Software! Andrew Patterson Presented to CENEX 14 th September 2016

Presentation's title

How to make Connected Car Reality? Dr. Walter J. Buga CEO

Design Verification and Calibration Based on Physical Measurements for Electrical Vehicles

Arccore AB 2017, all rights reserved. Accelerating innovation

ARM processors driving automotive innovation

Functional Safety and Cyber-Security Experiences and Trends

Virtualization of Heterogeneous Electronic Control Units Testing and Validating Car2X Communication

Cybersecurity Challenges for Connected and Automated Vehicles. Robert W. Heller, Ph.D. Program Director R&D, Southwest Research Institute

AUTOSAR Overview and Classic Platform

November 16, TTTech Computertechnik AG / TTTech Auto AG Copyright TTTech Auto AG. All rights reserved

Build a Driver Information System with IoT Technology

The Remote Exploitation of Unaltered Passenger Vehicles Revisited. 20 th October 2016 Mark Pitchford, Technical Manager, EMEA

How Microcontrollers help GPUs in Autonomous Drive

Car2Car Forum Operational Security

Standardization for efficient testing of Automotive Ethernet ECUs

UNECE WP29/TFCS Regulation standards on threats analysis (cybersecurity) and OTA (software update)

Risk-based design for automotive networks. Eric Evenchik, Linklayer labs & Motivum.io Stefano Zanero, Politecnico di Milano & Motivum.

STW s Connectivity Solution for Mobile Equipment: The Vehicle Data System (VDS) and VDS-Remote (VDS-R) 31 July 2009, STW, Norcross, Bob Geiger

Connected Cars as the next great consumer electronics device

Build the unified end to end IoT solution on ARM LEADING COLLABORATION IN THE ARM ECOSYSTEM

The Safe State: Design Patterns and Degradation Mechanisms for Fail- Operational Systems

INTERNET OF THINGS KONTRON

AUTOSAR Software Design with PREEvision

Network Services, Cloud Computing and Virtualization

Riccardo Mariani, Intel Fellow, IOTG SEG, Chief Functional Safety Technologist

How to protect Automotive systems with ARM Security Architecture

OTA-On-Demand (OOD) Services with AGL

Addressing Future Challenges in the Development of Safe and Secure Software Components The MathWorks, Inc. 1

Securing IoT devices with STM32 & STSAFE Products family. Fabrice Gendreau Secure MCUs Marketing & Application Managers EMEA Region

Christoph Schmittner, Zhendong Ma, Paul Smith

Automotive Security Standardization activities and attacking trend

Agenda. > AUTOSAR Overview. AUTOSAR Solution. AUTOSAR on the way

Solutions for Smarter Driving. Mobility Services

Data Security and Privacy : Compliance to Stewardship. Jignesh Patel Solution Consultant,Oracle

Automotive Cyber Security

Model Based Development and Code Generation for Automotive Embedded Systems. April 26, 2017 Dr. Gergely Pintér, Dr. Máté Kovács thyssenkrupp Steering

What s New in QNX SDP 7.0?

Transcription:

How Security Mechanisms Can Protect Cars Against Hackers Christoph Dietachmayr, CIS Solution Manager EB USA Techday, Dec. 3 rd 2015

Driver s Fears Are Being Fueled by Recent News ConnectedCars, new opportunies for hackers IAA: New Autonomous Driving Concepts Elektrobit (EB) 2015 2

Connected Car Offers New Business Models for Hackers? Elektrobit (EB) 2015 3

Autonomous Theft? Elektrobit (EB) 2015 4

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 5

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 6

ECU Security Secure update Secure boot Hardware security module Software as a product Elektrobit (EB) 2015 7

Secure ECU Software Architecture Application RTE OS Applications SW asa product AutoCore CSM CryHSM Bootloader/Flasher Bootloader/ Flasher Authentication SW signature verification OS (opt.) Secure Boot Hardware Hardware Security Module (HSM) EB Software e.g. Ethernet, FlexRay, CAN, LIN Elektrobit (EB) 2015

Elektrobit s Security Solutions Software and Hardware Security Modules Application Interface layer Csm AUTOSAR Csm Implementation layer Cry { data = 42mil/h ; key = 0x1234; secure(data, key); } Software implementation CryShe Security Hardware peripheral Elektrobit (EB), 2015 9

Elektrobit s Security Solutions Software and Hardware Security Modules Application Interface layer Csm AUTOSAR Csm HSM Core SHE-Firmware Implementation layer Cry { data = 42mil/h ; key = 0x1234; secure(data, key); } Software implementation CryHsm/ CryIf HSM Com Security Hardware peripheral EB supports the algorithms you need! Elektrobit (EB), 2015 10

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 11

On-Board Network Security Theft protection Anomaly detection Intrusion detection Secure communication Elektrobit (EB) 2015 12

On-Board Network Security Application Anti theft Milage prot. Applications Intrusion Det. SW asa product Bootloader/Flasher Bootloader/ Flasher RTE Authentication OS (opt.) OS SecOC AutoCore CSM CryHSM SW signature verification Secure Boot Hardware Hardware Security Module (HSM) ECU ECU EB Software Ethernet, FlexRay, CAN, LIN Elektrobit (EB) 2015 13

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 14

Security: Protection against external access, e.g. hacks Safety: reliable execution environment for ECUs. knowing what the system does Security protects Safety There is no safety without security and vice versa Elektrobit (EB) 2015

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 16

Vehicle Security: Various Access Points Car2Infrastructure Car2Car ecall Bluetooth connection Wireless key Internet connection WiFi Hotspot Remote HVAC Remote start Tire pressure monitor Elektrobit (EB) 2015 17

Current Vehicle Systems Architecture Gateway CAN CAN FlexRay Elektrobit (EB) 2015 18

Future Vehicle Systems Architecture Intrusion detection Gateway Anomaly detection Ethernet Ethernet Ethernet Ethernet Ethernet Elektrobit (EB) 2015 19

Use Case: Smart Antenna Elektrobit (EB) 2015 20

Smart Antenna Concentrate Wireless access Cloud App Cloud App Cloud App Firewall ASIL SWCs AS SWCs AS SWCs Secure Separation Threat monitoring e.g. Linux Firewall Secure COM OS RTE SecOC AutoCore CSM CryHSM Denial of Service prev. Hypervisor Hardware Hardware Security Module (HSM) ECU ECU EB Software Ethernet, FlexRay, CAN Elektrobit(EB) 2015 21

Vehicle Security Elektrobit (EB) 2015 22

Agenda Electronic Control Unit (ECU) Security On-board Network Security Excursion: Security Issues in a Safety Environment Vehicle Security The Connected Car 23

The Connected Car Elektrobit (EB) 2015

The Connected Car Elektrobit (EB) 2015

The Connected Car Elektrobit (EB) 2015

How security mechanisms can protect cars against hackers The Connected Car Elektrobit (EB) 2015

Over the Air Functionality 100% security is an illusion Secure Backend Channel Firewall Secure OTA update Remote diagnostics SW storage Secure COM Over theair: SW update agent Remote Diagnostics agent Identity vs. privacy Firewall Hypervisor Hardware Hardware Security Module (HSM) Target ECU Target ECU EB Software Ethernet, FlexRay, CAN Elektrobit(EB) 2015 28

EB Security Platform EB Security Portfolio Secure separation Hypervisor Virtualisation Crypto Algorithms SHE drivers HSM drivers Secure HW HSM firmware Future Security HW Security architecture OTA Secure Connection Update strategies Implementation Backend Security applications Unlock / Download SW as Product Secure Com Testing & Certification Functional Penetration Testing FIPS / Com. Criteria Key management Sym/Asym Key Derivation Initial / Update Secure Communication Firewall Intrusion-/Anomaly detection Security Consulting Architecture Solutions How-To Car2X Consulting Implementation Testing Elektrobit(EB), 2015 29

Summary Summary Security is necessary on all levels In ECUs and between ECUs In the vehicle and between vehicles In the backend A big challenge, but you are not alone Existing and approved mechanisms available EB secures vehicles for more than 15 years Security needs constant care Monitoring on all levels Update over the air is key to keep cars secure Visit us at: https://www.elektrobit.com/security Elektrobit (EB) 2015 30

Thank you Christoph.Dietachmayr@elektrobit.com automotive.elektrobit.com

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback