Who are we ?
Connected car• Complex A/V• Remote maintenance• Real time navigation
Connected user• Streaming music• Social network• Payment
Driving help• Self park• Self driving• …
SW R&D Raising cost• 2015 ~ 35%• 2020 ~ 50%
Vehicle Software Becomes Critical
● Automotive industry● has limited knowledge and return of experience on being connected.
Why Securing Connected Cars?
● Security Mechanism might be short-circuited● Lack of knowledge, Performances● Time-to-market, Cost concerns
Security / Complexity Mitigation
AGL Over 100 members
Platform• Yocto Base BSP• Build in Security• Common Transport layer• Monitoring
Micro Services Middleware• Audio• Signalling• Graphic• Applications
Natively Connected• Multi-ECU• Car to Cloud• Car to Car
Profile oriented• IVI• Cluster• Telematics
White Box Architecture
Application Security Model
Micro Services Architecture
AGL V2C (Vehicle to Cloud)
Yet an Other Security Burden
Security: a Long Road to Go
Further Information
● Some References● https://www.automotivelinux.org/automotive-grade-linux-
https://www.automotivelinux.org/automotive-grade-linux-security-white-paperhttps://www.automotivelinux.org/automotive-grade-linux-security-white-paperhttp://iot.bzh/download/public/2015/tizen-security-lessons-learnt-initial.pdfhttp://iot.bzh/download/public/2015/tizen-security-lessons-learnt-initial.pdfhttp://bgr.com/2015/10/13/why-is-android-security-so-bad/http://bgr.com/2015/10/13/why-is-android-security-so-bad/https://www.blackhat.com/presentations/bh-usa-09/BURNS/BHUSA09-Burns-AndroidSurgery-PAPER.pdfhttps://www.blackhat.com/presentations/bh-usa-09/BURNS/BHUSA09-Burns-AndroidSurgery-PAPER.pdfhttp://illmatics.com/carhacking.htmlhttp://iot.bzh/en/publicationshttp://docs.automotivelinux.org/
Slide 1Slide 2Slide 3Slide 4Slide 5Slide 6Slide 7Slide 8Slide 9Slide 10Slide 11Slide 12Slide 13Slide 14