Upload
others
View
3
Download
0
Embed Size (px)
Citation preview
How security mechanisms can protect cars against hackersMartin Böhner, Elektrobit
Automotive World Webinar
Sept. 29th 2015
How security mechanisms can protect cars against hackers
Drivers fears are being fueled by recent news
© Elektrobit (EB) 2015 | Confidential 2
Connected Cars, new opportuniesfor hackers
IAA: New Autonomous DrivingConcepts
How security mechanisms can protect cars against hackers
Connected Car offers new business models for hackers?
© Elektrobit (EB) 2015 | Confidential 3
How security mechanisms can protect cars against hackers
Autonomous theft?
© Elektrobit (EB) 2015 | Confidential 4
5© Elektrobit (EB) 2015 | Confidential
How security mechanisms can protect cars against hackers
Increasing digitalization and digital integration
Hypothetical vulnerabilities identified
Regular security breaches with severe damages
Security threats become relevant in practice
SecurityIssues
Source: escrpyt
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
6
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
7
How security mechanisms can protect cars against hackers
ECU Security
© Elektrobit (EB) 2015 | Confidential 8
Secure update
Secure boot
Hardware security module
Software as a product
How security mechanisms can protect cars against hackers
Secure ECU Software Architecture
© Elektrobit (EB) 2015 | Confidential
OS(opt.)
Bootloader / Flasher
e.g. Ethernet, FlexRay, CAN, LIN
OS
RTE
Applications
AutoCore
HardwareHardware Security Module (HSM)
CSM CryHSM
Application Bootloader/Flasher
Authentication
SW signatureverification
SW as a product
Secure Boot
EB Software
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
10
How security mechanisms can protect cars against hackers
On-Board network Security
© Elektrobit (EB) 2015 | Confidential 11
Theft protection
Anomaly detection
Intrusion detection
Secure communication
How security mechanisms can protect cars against hackers
On-Board network Security
© Elektrobit (EB) 2015 | Confidential 12
OS(opt.)
Bootloader / Flasher
ECUECU
Ethernet, FlexRay, CAN, LIN
OS
RTE
Applications
AutoCore
HardwareHardware Security Module (HSM)
CSM CryHSMSecOC
Application Bootloader/Flasher
Authentication
SW signatureverification
Anti theft
SW as a productMilage prot.
Secure Boot
Intrusion Det.
EB Software
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
13
How security mechanisms can protect cars against hackers
• Security: Protection against external access, e.g. hacks
• Safety: reliable execution environment for ECUs.“knowing what the system does”
© Elektrobit (EB) 2015
Security protects Safety
There is no safety without security and vice versa
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
15
How security mechanisms can protect cars against hackers
Vehicle Security: Various Access Points
© Elektrobit (EB) 2015 | Confidential 16
Internet connection
Bluetooth connection
Wireless key
Tire pressure monitor
Remote start
Remote HVAC
WiFi Hotspot
Car2Infrastructure
Car2Car
eCall
How security mechanisms can protect cars against hackers
Current Vehicle Systems Architecture
© Elektrobit (EB) 2014 17
GatewayCAN CAN FlexRay … …
How security mechanisms can protect cars against hackers
Future Vehicle Systems Architecture
© Elektrobit (EB) 2014 18
GatewayEthernet Ethernet Ethernet Ethernet Ethernet
Intrusion detection
Anomalydetection
How security mechanisms can protect cars against hackers
Use Case: Smart Antenna
© Elektrobit (EB) 2015 | Confidential 19
How security mechanisms can protect cars against hackers
Smart Antenna
© Elektrobit (EB) 2015 | Confidential 20
ECUECU
Ethernet, FlexRay, CAN
ASILSWCs
OS
CloudApp
RTE
e.g. Linux
ASSWCs
ASSWCs
AutoCore
CloudApp
CloudApp
Hypervisor
Secure COM
Firewall
HardwareHardware Security
Module (HSM)
CSM CryHSMSecOC
Fire
wal
l
Threat monitoring
Concentrate Wireless access
Secure Separation
Denial of Service prev.
EB Software
How security mechanisms can protect cars against hackers
Vehicle Security
© Elektrobit (EB) 2015 | Confidential 21
How security mechanisms can protect cars against hackers
Agenda
• Electronic Control Unit (ECU) security
• On-board network security
• Excursion: Security issues in a safety environment
• Vehicle security
• The connected car
22
How security mechanisms can protect cars against hackers
The connected car
© Elektrobit (EB) 2015 | Confidential
How security mechanisms can protect cars against hackers
The connected car
© Elektrobit (EB) 2015 | Confidential
How security mechanisms can protect cars against hackers
The connected car
© Elektrobit (EB) 2015 | Confidential
How security mechanisms can protect cars against hackers
The connected car
© Elektrobit (EB) 2015 | Confidential
How security mechanisms can protect cars against hackers
Over the Air functionality
© Elektrobit (EB) 2015 | Confidential 27
TargetECU
Target ECU
Ethernet, FlexRay, CAN
Hypervisor
Secure COM
Firewall
HardwareHardware Security Module (HSM)
Fire
wal
lSecure Backend Channel
SW storageOver the Air: • SW update agent• Remote Diagnostics
agent• …
EB Software
Remote diagnostics
100% security is an illusion
Secure OTA update
Identity vs. privacy
Summary
Summary
• Security is necessary on all levels‒ in ECUs and between ECUs‒ in the vehicle and between vehicles ‒ in the backend
• A big challenge, but you are not alone ‒ Existing and approved mechanisms available‒ EB secures vehicles for more than 15 years
• Security needs constant care‒ Monitoring on all levels‒ Update over the air is key to keep cars secure
• Visit us at: https://www.elektrobit.com/security
© Elektrobit (EB) 2015 28