There are two purposes for cryptography in communication systems: authenticity and privacy.
The sender signs the data sent so the receiver can determine that the data is authentic and sent by the sender. Prevents man in the middle attacks.
Data can be encrypted for privacy. Only the receiver can decode the data. Sender and receiver share a secret key (symmetric encryption) or it can be asymetric (public and private key).
In AUTOSAR, there is SecOC for data authenticity.
Additionally, CRY, Cryptolib, Csm manage the security from MCAL to service layer. From the HSM (crypto co-processor) to the RTE.
IPsec for both authenticity and privacy at IP level. MACsec at MAC level. And TLS for V2G and secured on board HTTPS. As well as X.509 certificate exchange for authentication for software download and diagnostics.
All these mechanisms are currently integrated in todays vehicle architectures with Ethernet.
Stay tuned for next posts onĀ AUTOSAR cybersecurity and Ethernet.
More info: contact guru@autoethernet.com
yinlong Says :
March 4, 2022 at 6:37 amthanks for sharing.