Senior people interpret: How to protect cars from being "black"?

Exploring the weaknesses of electronic components in automobiles is a very risky task. On the one hand, the automobile industry has not really experienced the tragedy caused by hacking attacks so far, and it seems that there is a suspicion of "making panic"; On the one hand, car safety is a relatively new issue for most people in this industry, including chip suppliers, module developers, and, of course, car manufacturers.

The reliability of cars has always been high in the minds of suppliers, so their safety has not been noticed for a while; for decades, the connectivity between cars and the outside world has not been as high as it is now. But in the past few years, the mentality of the automotive industry has begun to change; as Dirk Besenbruch, director of engineering for automotive systems and applications at NXP Semiconductors, said, a comprehensive experimental analysis of the car attack surface, released in 2011. The report became a turning point. [Reference: Is your car likely to be attacked by hackers? 】

What needs to be clarified is that the industry has not ignored the risks that connected cars may face, and they have not stagnated. Richard Soja, who is responsible for 32-bit automotive SoC development at Freescale, said several automakers, including BMW and Audi, have developed a specification called SHE (Secure Hardware Extension). , designed to provide an agreement for secure communication between different modules within the car.

In addition, Soja pointed out that some manufacturers are cooperating with an EU-sponsored program “EVITA (E-Safety Vehicle Intrusion Protected ApplicaTIons)”, with the goal of developing a set of guidelines for manufacturers to respond to various safety functions; The painting has been closed at the end of 2011. However, given the long product development schedule of the automotive industry (about five years), it may take some time to see vehicles with new safety features on the road.

In any case, car safety is a new business opportunity for semiconductor manufacturers to show their talents in safety technology, add safety to their cars, and even persuade automakers to replace existing car micros with newly developed safety SoCs. Controller (MCU).

For example, NXP has long recognized that car safety benefits from the company's experience and expertise in developing "safe elements" that have been successfully deployed in millions of smart cards; Besenbruch said that NXP's cars The security solution leverages the “live evidence” smart card technology and provides an independent security element.

NXP's solution is clearly different from that of some competitors, such as Infineon. Infineon is redesigning the entire MCU architecture to create embedded security modules; while embedded security modules are designed for high-end models. This would be a good solution, but Besenbruch believes that changing the entire microcontroller architecture means being locked by a particular MCU.

NXP is flaunting the flexibility of its independent security element solution; considering the product cycle of the automotive industry and the need for reliability, NXP believes that its flexible solution can bring more choices to automakers, in the shorter The time to launch a protection method for a specific hacker attack mode.

But the reality is that when a car may have many weaknesses, it may be necessary to provide different levels of security technology for each location. Besenbruch said it's important to improve security to prevent human manipulation of the in-vehicle network, but: "You must be careful to observe what you need to protect." He explained that strengthening security should not affect car performance, you don't It will be hoped that the car system needs to be verified to delay the brake time.

Besenbruch pointed out that the right solution should be compatible with existing architectures and systems: "The current hardware platform and software elements need to be modified as little as possible." Under this premise, NXP's proposal is by "integration." A secure memory area that only allows authorized writes/reads to protect "existing and future systems."

NXP believes that the integration of a trusted element called a "trust anchor" into a security-related electronic control unit (ECU) enables data protection. The so-called "trust anchor", which is a secure microcontroller, is not a new concept. It has been applied to SIM cards for credit cards and mobile phones. NXP is one of the technology providers in this field.

Security elements within the ECU architecture

Security elements within the ECU architecture (provided by NXP)

Today's security processors include secure memory blocks, cryptographic coprocessors that manage authentication, private keys, and generate public keys. By adding this security processor (for example based on the NXP A700x product line - already in other industrial applications where security is required) to the ECU, combined with existing automotive microcontrollers, NXP can The security related features provided include:

̇Security gateway firewall, the relevant communication must be authorized to pass the relevant sub-bus;

̇ Security storage to avoid false logs or mileage; need to be authorized to write;

̇Safe boot, which ensures that the software of individual ECUs is not attacked;

认证 When the electronic parts are replaced, only the authorized ECU can be imported into the vehicle network;

注册 Register external services via protected links. This security element provides VPN and HTTPS data links.

Of course, in order to decide which ECU needs to be equipped with a “trust anchor”, it is necessary to first define which car functions and applications need to be protected from hacking attacks. According to Besenbruch, hacking attacks that a car may encounter, including tampering with mileage, unauthorized location, or eavesdropping on a car phone via Bluetooth due to malicious programs in MP3 files, and by manipulating ECU software The chip settings have been changed.

According to the location of the vulnerable features on the in-vehicle network, Besenbruch said that the security element should provide protection locally: "by storing, calling or authorizing the data used by the ECU's main microcontroller, or protection and Links to other ECUs." In addition: "A safe boot algorithm that avoids software manipulation by humans should be required in all cases."

Besenbruch specifically pointed out that there is another perspective related to car safety that should not be ignored, that is, the weaknesses that the supply chain may have. Protecting installed ECU keys and secrets during module manufacturing is critical, and automakers must specify which partners are responsible for installing the security elements, who is responsible for installing the keys within the ECU, and assigning tasks at each stage of the supply chain. How is it managed.

In this regard, NXP said that the company's experience in the financial applications field with banking and credit card supply chain can also be applied to the automotive industry.

Compilation: Judith Cheng

Author: Junko Yoshida

Electronic Components Resistor

Resistor (Resistor) commonly known as resistance directly in our daily life.It is a current limiting element. When the resistance is connected to the circuit, the resistance value of the resistor is fixed, usually two pins.Fixed resistors are those whose resistances cannot be changed.Resistance variable is called potentiometer or variable resistor.The ideal resistor is linear, that is, the instantaneous current through the resistor is proportional to the applied instantaneous voltage.Variable resistor for partial pressure.On the exposed resistor body, one or two movable metal contacts are pressed tightly.The contact position determines the resistance between any end of the resistance body and the contact.

RESISTOR

Electronic Components Resistor,Metal Film Resistor,Metal Oxide Film Resistor

YANGZHOU POSITIONING TECH CO., LTD , https://www.yzpstcc.com