Embed Size (px)
Citation preview
Automotive Connected
Infineon, your partner for the connected vehicle
Dirk Geiger, Marketing, Infineon China 葛 德克, 高级经理, 市场部 March 14th, 2016
confidential
Infineon focus on three major areas
Energy Efficiency Mobility Security
Industrial Power Control
Automotive
Power Management & Multimarket
Chip Card & Security
Page 2 1/20/2015 Copyright © Infineon Technologies AG 2015. All rights reserved
Company Profile
1/20/2015 Page 3 Copyright © Infineon Technologies AG 2015. All rights reserved
• Infineon provides semiconductor and system solutions, focusing on three central needs of our modern society: Energy Efficiency, Mobility and Security
• As of January 2015, International Rectifier is an Infineon Technologies company
• Combined pro-forma revenue of ~€5,150m* (~6,950m USD) in
Infineon 2014 fiscal year
• About 34,000 employees worldwide (as of September 2014)
• Strong technology portfolio with more than 22,800 patents and patent
applications (as of September 2014)
• 32 R&D locations, 20 manufacturing locations
Who is Infineon? Mobility and Transportation
Infineon powered new energy car
Infineon offers key components like IGBT module, Sensors & MCU for most of the new energy cars worldwide, focusing highest efficiency for the drive-train.
Infineon help France to made a new record of high speed train
2007-Apri
Infineon IGBT powered TGV drive system to made a new record 574.8Km/hr
In France
4 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Who is Infineon? Smart and Secure
IFX in smart cloths
早在2004年,英飞凌就为运动服装品牌奥尼尔开发了一个芯片模块。这种新技术能将蓝牙话机和MP3音乐集成至单板滑雪服。
IFX secure the world
英飞凌安全智能卡事业部产品性能优越,已被全球各大国家护照,银行卡,公交卡,社保卡等等
应用所选用
5 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Who is Infineon? electrification & intelligence for the Automotive
Intelligent Light Audi Pixel LED
Autonomous Drive Audi zFAS
Electric Powertrain BMW
24GHz Radar blind detect for Hella
6 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
› Increased connectivity and software content increase risk exposure to hackers
› Internal/external connectivity must be secured
4 megatrends are shaping ATV market
› Advanced connectivity is driven by making the car part of the Internet
› The car will be fully connected (V2I, V2V, in-vehicle)
Connectivity Advanced security
ADAS/Autonomous driving
› From ADAS to semi-automated and finally autonomous driving
› Every world region is striving for “0-accident”
› Mandated CO2 reductions make electrification of powertrain inevitable
xEV/eMobility
7 2015-09-28 Copyright © Infineon Technologies AG 2015. All rights reserved.
The 5 levels of increased automation (VDA/SAE definition)
Source: BASt und VDA
Level 0-1 Level 2 Level 3 Level 4 Level 5
No Automation or Assisted Driver only
E. g.: Lane Departure Warning, Blind spot Detection
Partial Automation Driver monitors the automated functions
E. g.: Traffic Jam Assist, Parking Assistant, Lane Keep Assist
High Automation System monitors the car environment and gives control to driver beyond defined parameter values
E. g.: Traffic Jam Chauffeur, Highway, Chauffeur, Garage Parking
Amendments of current regulations are necessary (e.g. Vienna StVO, ECE-R79)
Permanent monitoring by the driver
Full Automation System can take full control beyond defined limits of a specific application
E. g.: Automated Driving (Highway Pilot, Valet Parking)
Autonomous Driving/Driverless System can tackle all driving situations. No Driver necessary from start to destination.
E. g.: Google Car, Robot Taxi
System is driving, with more or less backup by the driver. In case of failure the system must run for a certain time on a backup.
8 2015-09-28 Copyright © Infineon Technologies AG 2015. All rights reserved.
Cars have to be considered as one element in traffic system to reach next mobility level
Page 9 2014-12-17 confidential Copyright © Infineon Technologies AG 2014. All rights reserved.
Zero deaths from traffic accidents
Advanced Driver Assistance
Integrated safety systems
Sensor Fusion
Interconnectivity V2x Security
Infineon Provides Key Innovation for Safety
Reactive Safety
Active Safety
Proactive Safety Preventive Safety
Innovations for
Dri
ver-
, Road-
and P
edestr
ian S
afe
ty
Tire Pressure AIRBAG SoC Driver IC for EPS
24/77-79GHz radar
1990 Today > 2020
Semiconductor IC dedicated for Safety e.g. Infineon PRO-SIL
Semiconductors to enable Functional Safety Systems and Security Functionalities
AURIXTM MultiCore Microcontroller Family for
Safety/ADAS with integrated Security
Side Airbag Sensor
Dual Chip 79GHz Radar
System
Radar : Antenna in Package
Dual Chip 24GHz Radar
System
Page 10 2014-12-17 confidential Copyright © Infineon Technologies AG 2014. All rights reserved.
…and enables the Security Architecture
Battery Mgmt.
Inverter
Engine Control
…
Powertrain Domain Controller
ABS/ESP
ACC
Car2Car Com
…
Chassis Domain Controller
Door Module
Air Condition
Seat Control
Immobilizer
Body Domain Controller
E-Call/cell wireless
Connectivity ECU
Head Unit
…
Infotainment Domain Controller
Gateway / Firewall
AURIX™ AUDO MAX
› Application:
Powertrain/Safety
› Driver:
On Board Security
› Application:
Car Services
› Driver:
Standards reuse
TPM
› Application: Car2Car Communication
› Driver: Network integrity, Privacy
SLI 97 Car2Car
› Application:
Cellular Com
› Driver:
Network auth.
SLI 76 SLI 97
Discrete Hardware Security Integrated 2 1
11 2015-09-28 Copyright © Infineon Technologies AG 2015. All rights reserved.
Basic security considerations
Dynamics Control
Energy Management
Torque Control
…
Lid
ar
Cam
era
Radar
…
ADAS Domain
Lighting
Theft protection
HVAC
…
Body & Comfort Domain
HMI
Entertainment
Navigation
…
Infotainment Domain
Connectivity Gateway/ Data Fusion
Driving Domain
Basic protection of single ECUs (Immobilizer & Access)
Firewall & Gateway
Sandboxing
Secure On-board communication
12 2015-09-28 Copyright © Infineon Technologies AG 2015. All rights reserved.
AURIX™ Hardware Security Module A consequent security enhancement
TrustedExecution
Environment
Hardware Security Module (HSM)
› A highly flexible and programmable solution
› AES128 HW accelerator matching performance for automotive protocols
› Crypto- and Algorithm Agility by Software
› AIS31 compliant True Random Number Generator (TRNG) with high Random Entropie over Lifetime
Secure Platform HSM: 32 bit CPU
AES Accelerator Security
CPU
Sec
APP
Sec
APPSec
APP
AES
RNG
sec
APP HSM
ECC
RSA
13 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Overall Security Architecture inside the car & with controlled interfaces to the outside world
HACKER ATTACK
Unwanted access
must be denied
Infotainment
Steering
Airbag Brake
Engine Management
Traffic Jam Detection
Accident Avoidance
Prioritization of
Emergency Services
Toll Control
Tablet &
Smartphone
Traffic
Information
Infotainment
Apps Remote
Diagnostics
Software
Update
Car Repair
Shop
eCall Internet
Services
Payment
Systems
Automotive mCs
V2X Security Controller
Communication Gateway Security
Communication Gateway Security
Page 14 2014-12-17 confidential Copyright © Infineon Technologies AG 2014. All rights reserved.
Security Motivation
Unjustified Warranty Claims
Cyber Attacks
Fraud & Theft
Page 15 2013-07-25 confidential Copyright © Infineon Technologies AG 2013. All rights reserved.
Immobilizer Connected car (Car-to-Car) eCall
Secure onboard communication Trusted platform module Tuning protection
Exemplary use cases for car security
Page 16 2014-12-17 confidential Copyright © Infineon Technologies AG 2014. All rights reserved.
Security Updates
Auto Apps
Software Update
Performance Upgrade
Over-The-Air (OTA) Software Updates
Add Value New Revenue streams
Cost reduction Fewer Recalls
› 60-70% of recalls are due to SW glitches*)
› improved vehicle performance
› new features over lifetime
Customer satisfaction Better & faster
*) Frost & Sullivan
› fewer trips to the garage
› engagement from new features launches
90%
10%
Today
40%
40%
20%
2020+
Hardware Software Content
17 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
No D-Bus authentication
was used OPTIGA™ TPM
2014 Jeep Cherokee remote exploitation
Source: Miller C., Valasek C. , "Remote Exploitation of an Unaltered Passenger Vehicle", Black Hat, Aug., 2015
USB OTG
Sierra Wireless AirPrime AR5550
Wireless Module (Qualcomm MDM9x15TM)
Texas OMAPTM
DM3730
Renesas V850ES/FJ3
32-bit Microcontroller
Digital Media Processors
SPI CAN-C (primary)
CAN-HIS (interior)
Harman Kardon® Uconnect® 8.4AN/RA4 (simplified) Target Identification
(scan for vulnerable vehicles by modem IP address)
Run Code on the OMAPTM
(by using un-protected D-Bus communication)
Control the Uconnect (radio, HVAC, GPS)
Re-Flash the v850 with modified firmware via SPI
Perform cyber physical actions (using existing CAN
commands)
No bootloader protection was used AURIX™ incl. HSM
18 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Secure OTA Architecture Security partitioning
› Mutual authentication between car to OEM update server
› Encrypted transport channel
Service Authentication
Verification and central Storage
› Service Pack reception
› 1st verification
› Storage in car central memory
Update of Target ECU
› Service Pack reception
› 2nd verification
› Flashing of code memory
OPTIGA™ TPM
HSM
HSM
*
*: depending of customer architecture part of gateway, telematics etc.
19 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Secure OTA Architecture A brief explanation
Security Updates
Auto Apps
Software Update
Performance Upgrade
Safety and security must be ensured throughout the process
Step 1: Download while driving › Software download to central storage
› Unnoticed by the customer
› Vehicle shall be at any time safe and operational
Step 2: Update from central storage › After customer approval
› In the background or at key-off
› Permissible update time (100s to 15min)
› Confirmation to Backend
20 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Telematics Control Unit Infineon today's offering and future requirements
ETH Phy
Head Unit
Safety System Supply
TLF35584
Mute button
Airbag I/F
Key I/F
LED I/F
Emergency Call button
32-bit Lockstep
MCU AURIX™
e.g. TC23x 2MB / 200 MHz
HSM
Battery (KL30/31)
Backup Battery
SPI
*Universal Integrated Circuit Card (embedded SIM) **Low Noise Amplifiers
Application Processor &
Modem
Power management Circuit (PMIC)
Buck Converter
SRDAM
Flash
Audio Codec
Audio Amp.
eUICC* SLI 97
RF Transceiver
RF Switchs
LTE /3G LNA**
GPS LNA**
Antenna Tuner
RF Diodes / Transistors
Cellular
GNSS
Wifi
TLE9250SJ1)
Vehicle network
CAN TLE7250G
Future Requirements:
› Central access point for all OTA services
› Mutual authentication between car to the update server
› Tamper & side channel resistant key and certificate stores
› Fast and secure internal connectivity
Today's Solution
Mic.
Mic.
SPK.
21 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Telematics Control Unit Infineon's future proposal
Safety System Supply
TLF35584
Mute button
Airbag I/F
Key I/F
LED I/F
Emergency Call button
32-bit Multi-Core
MCU AURIX™
e.g. TC3xx 2-16MB / 300 MHz
HSM
Battery (KL30/31)
Backup Battery
ETH Switch
1)Universal Integrated Circuit Card (embedded SIM) 2)Low Noise Amplifiers
Application Processor &
Modem
Power management Circuit (PMIC)
Buck Converter
SRDAM
Flash
Audio Codec
Audio Amp.
eUICC1)
SLI 97
OPTIGATM TPM 2.0
SLI 97 V2X HSM
Silicon Microphones Mic.
ASIC
Mic. ASIC
RF Transceiver
RF Switchs
LTE /3G LNA**
GPS LNA2)
Antenna Tuner
RF Diodes / Transistors
Cellular
GNSS
Wifi
Central
OTA Storage*
All information can be exclusively routed to the board net via AURIXTM and vice versa
Different security Solutions according to customer requirements
eMMC/ SDIO interface
eMMC SDIO
1Gbit ETH
Centr
al
Gate
way
ETH PHY
Head U
nit
ETH PHY
Silicon Microphone with digital Interfaces
SPK.
* depending of customer architecture part of gateway, telematics etc.
Future Proposal
22 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Central Gateway – Infineon today's Infineon today's offering and future requirements
Future Requirements:
› Secure Communication (SC) from Domain to Domain
› Centrale Firewall (FW)
› Intrusion Detection System (IDS)
› Mass storage connection
Today
CAN Bus (opt.)
FlexRay
LIN Bus
Chassis Control
Powertrain Safety Comfort Infotainment
Smart Sensors Smart Actuators Comfort Sub-bus
MCP SBC TLE9278(-3)QX
CAN Transceiver TLE7250SJ/LE TLE7250VSJ/VLE TLE7251SJ/LE TLE7251VSJ/VLE
LIN Transceiver TLE7259-3GE TLE7258SJ/LE TLE7269G
Flexray (optional)
MultiCAN (CAN-FD)
Serial Interfaces
Central Gateway
1) In Development Samples Available
FlexRay Transceiver TLE9221SX
32-bit Multicore/Lockstep
Microcontroller AURIX™ TC3xx
2-8MB
Ethernet MAC
Ethernet PHY
Supply
& C
om
munic
ation
CAN Bus
+12V from Battery
Ethernet ADAS OBD
HSM
eMMC/ SDIO
23 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Central Gateway Infineon's future proposal
CAN Bus (opt.)
FlexRay
LIN Bus
Chassis Control
Powertrain Safety Comfort Infotainment
Smart Sensors Smart Actuators Comfort Sub-bus
MCP SBC TLE9278(-3)QX
CAN Transceiver TLE7250SJ/LE TLE7250VSJ/VLE TLE7251SJ/LE TLE7251VSJ/VLE
LIN Transceiver TLE7259-3GE TLE7258SJ/LE TLE7269G
Flexray (optional)
MultiCAN (CAN-FD)
Serial Interfaces
Central Gateway
1) In Development Samples Available
FlexRay Transceiver TLE9221SX
32-bit Multicore/Lockstep
Microcontroller AURIX™ TC3xx
2-16MB
1Gbit Ethernet
Ethernet PHY
Supply
& C
om
munic
ation
CAN Bus
+12V from Battery
Ethernet ADAS OBD Telematics
Future Proposal
HSM
Central
OTA Storage*
eMMC/ SDIO
Connectivity
› Ethernet up to 1GB
› eMMC/SDIO
› CAN FD up to 12 channels
Safety/Security Concept
› ISO26262 compliance
› Hardware security on all devices
Power Consumption
› On-chip SC DC/DC high-efficiency power supply
› Stand-by control unit for lowest quiescent current
MCU Performance & Scalability
› Multi-Core e.g. to use separate CPU for Firewall/Intrusion detection
› Software compatibility
› Pin-compatibility
› Binary compatible cores
* depending of customer architecture part of gateway, telematics etc.
24 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Infineon semiconductor solutions enhance the connected vehicle
Lower cost Fewer recalls
Customer satisfaction Better & faster
Safe and Secure
Extract value New feature
upgrades
25 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
Summary
Security is essential for connectivity
Discrete hardware security is best practice for securing critical external interfaces
HSM is clearly superior to SHE to secure the integrity on the board net architecture
Infineon, your partner for the connected vehicle
Connectivity impacts the overall car architecture
1
2
3
26 2016-03-08 confidential Copyright © Infineon Technologies AG 2016. All rights reserved.
1/20/2015 Copyright © Infineon Technologies AG 2015. All rights reserved
Infineon provides Mobility Solutions for Smart Cars/CCAVs, Electro-Mobility and Transportation Infrastructure
Leadership in Autonomous Driving
Smart Traffic Management & Improved Road Safety
Automotive Safety & Security solutions
NEV Electric Drive Train & Charging
Electrification of Power train for Cars & Auxiliary
Drives
Contactless Payment
Dirk Geiger, Marketing, Infineon China
葛 德克, 高级经理, 市场部
