Diese Präsentation wurde erfolgreich gemeldet.
Wir verwenden Ihre LinkedIn Profilangaben und Informationen zu Ihren Aktivitäten, um Anzeigen zu personalisieren und Ihnen relevantere Inhalte anzuzeigen. Sie können Ihre Anzeigeneinstellungen jederzeit ändern.

Securing the future of Automotive

56 Aufrufe

Veröffentlicht am

This presentation discusses securing the future of Automotive and was presented at a Symposium on the Future Networked Car 2018 (FNC-2018) in Geneva, Switzerland on 8 March 2018.
Find more information on this symposium here: https://www.itu.int/en/fnc/2018/Pages/programme.aspx

Veröffentlicht in: Technologie
  • Als Erste(r) kommentieren

  • Gehören Sie zu den Ersten, denen das gefällt!

Securing the future of Automotive

  1. 1. Securing the future of Automotive
  2. 2. Automotive Update • With the rapidly increasing amount of designs using Ethernet for communication in cars, the need for security is increasing • Compared to the first generation of Ethernet in cars, the upcoming architectures have much more complex use cases • Ethernet is now entering ADAS domains in the car where the need for safe and secure communication is paramount 2 More than a standard switch is required to address these needs: Marvell’s Secure Automotive Ethernet Switch SoC
  3. 3. Areas to Secure 3 Software Configuration Runtime configuration access Diagnostic access Configuration or firmware update Data exchange Intrusion detection/ prevention
  4. 4. Secure – Software Boot 4 Requirements: Ensure authenticity and integrity of any software running on the device Solution: Trusted Boot concept: • Uses asymmetric cryptography • Root of trust / trust anchor • Chain of trust • Only public key is needed locally • OEM has the private key to sign
  5. 5. Secure – Update 5 Requirements: Ensure authenticity and integrity of any software and/or configuration update before using it, and Ensure that any failure during the update process still results in a bootable and trusted firmware and configuration (fail-safe) Solution: Trusted Update concept: • Use the measures from Trusted Boot and Trusted Configuration for every update block before activation it • Use backup images to ensure fail- safe operation
  6. 6. Secure – Runtime Access Requirements: Ensure that only authenticated entities can access the device for Diagnostic, Configuration and Update Solution: Trusted Runtime Access concept: • Authenticate any and all access to the device • Protect and shut down any attempted unauthorized access 6
  7. 7. Intrusion Prevention/Intrusion Detection 7 Requirements: Detect Intruders and Prevent Intrusions Solution: Intrusion-safe concept: • Combine hardware pre-filtering with TCAM and ingress rate limiting with a Deep Packet Inspection (DPI) module to monitor data flow and detect anomalies • Log/report anomalies • Execute counter measures
  8. 8. SUMMARY Marvell provides you with the industry’s first secure automotive gigabit ethernet switch, enabling a new level of safe and robust data transmission in next- generation connected vehicles