Скачать презентацию Secure Vehicle Communication Se Ve Com Secure Скачать презентацию Secure Vehicle Communication Se Ve Com Secure

23d663b91496a06eaa7ff3b4935a5678.ppt

  • Количество слайдов: 21

Secure Vehicle Communication Se. Ve. Com : Secure Vehicle Communication Antonio Kung Coordinator Trialog Secure Vehicle Communication Se. Ve. Com : Secure Vehicle Communication Antonio Kung Coordinator Trialog 25 rue du Général Foy 75008 Paris, France www. trialog. com TRA 2008 24 May 2008 1

Vehicle Communication (VC) n VC promises safer roads, Warning: Accident at (x, y) ! Vehicle Communication (VC) n VC promises safer roads, Warning: Accident at (x, y) ! ! Congestion Warning: At (x, y), use alt. route n … more efficient driving, Traffic Update: Congestion at (x, y) TOC RSU ! TRA 2008 24 May 2008 3

Vehicle Communication (VC) n … more services (infotainment), Text message: We'll stop at next Vehicle Communication (VC) n … more services (infotainment), Text message: We'll stop at next roadhouse MP 3 -Download RSU n … and easier maintenance. Malfunction Notification: Arriving in 10 minuten, need ignition plug TRA 2008 24 May 2008 Software Update Car Manuf. 4

Sounds good BUT … TRA 2008 24 May 2008 5 Sounds good BUT … TRA 2008 24 May 2008 5

Security and Privacy? ? ? n Safer roads? Warning: Accident at (x, y) ! Security and Privacy? ? ? n Safer roads? Warning: Accident at (x, y) ! n More efficient driving? Congestion Warning: At (x, y), use alt. route Traffic Update: Congestion at (x, y) TOC RSU ! ! TRA 2008 24 May 2008 RSU ! ! 6

Security and Privacy? ? ? n More fun, but for whom? Location Tracking Text Security and Privacy? ? ? n More fun, but for whom? Location Tracking Text message from silver car: You're an idiot! RSU n Position Beacon … and a lot more … Your new ignition-control-software TRA 2008 24 May 2008 7

SE-cure VE-hicle COM-munication n n Mission: future-proof solution to the problem of V 2 SE-cure VE-hicle COM-munication n n Mission: future-proof solution to the problem of V 2 V/V 2 I security Partners n Trialog (Coordinator) n Daimler. Chrysler n Centro Ricerche Fiat n Bosch n KU Leuven n Ecole Polytechnique Fédéral de Lausanne n University of Ulm n Budapest University of Technology and Economics TRA 2008 24 May 2008 8

SEVECOM is a Transversal Project European Institutions Industry Policies Standards Article 29 C 2 SEVECOM is a Transversal Project European Institutions Industry Policies Standards Article 29 C 2 C-CC Data protection WG Security WG e. Government SEVECOM e. Safety Forum Security WG Modinis-IDM liaison, terminology COMe. Safety Security e. Safety Safe. Spot Secur. IST liaison CVIS PRIME Coopers liaison-peer review GST-SEC TRA 2008 24 May 2008 9

Research topics Topic A 1 A 2 A 3 Key and identity management Secure Research topics Topic A 1 A 2 A 3 Key and identity management Secure communication protocols (inc. secure routing) Tamper proof device and decision on cryptosystem Scope of work Fully addressed A 4 Vehicle Intrusion Investigation work A 5 Mulfunction detection and Data consistency Investigation work A 6 Privacy Fully addressed A 7 Secure positioning Investigation work A 8 Secure user interface Investigation work TRA 2008 24 May 2008 10

Security Baseline Architecture n Objectives n n Focus on communication Baseline Privacy Enhancing Technology Security Baseline Architecture n Objectives n n Focus on communication Baseline Privacy Enhancing Technology (PET) Future dynamic deployment of stronger PETs n Analogy: switching from 8 to 10 digit telephone numbers Baseline solution design approach n n Standardized cryptographic primitives Easy-to-implement Low overhead Adaptable protection TRA 2008 24 May 2008 11

Security Baseline Architecture (cont’d) n Challenges n n High rate broadcast communication VANET-only (e. Security Baseline Architecture (cont’d) n Challenges n n High rate broadcast communication VANET-only (e. g. , safety) and TCP/IP communication Safety Applications General Applications C 2 C-CC Position Based Routing Wave Short Message Protocol (WSMP) C 2 C-CC MAC IEEE 802. 11 p MAC and PHY TRA 2008 24 May 2008 TCP / UDP IPv 6 IEEE 1609. 4 12

Security Baseline Architecture (cont’d) n Basic ideas Unique Identity Credentials and Cryptographic Keys • Security Baseline Architecture (cont’d) n Basic ideas Unique Identity Credentials and Cryptographic Keys • Long-term identity • Public key crypto • EC-DSA, RSA • Certificates Central Processing Module Wireless Communication Module Abstract view of a vehicle TRA 2008 24 May 2008 13

Building Blocks in Baseline Architecture In car Security Module Gateway/Firewall Intrusion Detection Attestation Secure Building Blocks in Baseline Architecture In car Security Module Gateway/Firewall Intrusion Detection Attestation Secure Communication Module Identification & Trust Management Module Hardware Security Module Secure Beaconing Identity Management Key/Certificate Storage Secure Geocast Trust Management Secure Time Base Secure Georouting Protected Functions Privacy Management Module Pseudonym Application Pseudonym Management TRA 2008 24 May 2008 14

Deployment Vehicle systems V 2 I/V 2 I Applications Communication Stack In-car Security Module Deployment Vehicle systems V 2 I/V 2 I Applications Communication Stack In-car Security Module Secure Communication Module Privacy Management Module Communication Stack V 2 I Applications Hardware Security Module Identification & Trust Management Module Direct Communication (Cellular, Physical) Wireless Medium RSU Security & Policy Manager Service Infrastructure Security & Policy Manager Secure Communication Module Identification & Trust Management Module Trust Management Infrastructure Backbone network Secure Communication Module Hardware Security Module TRA 2008 24 May 2008 15

Sevecom Privacy focus n Requirements n n Authentication, Integrity, Non-repudiation, Access control, Confidentiality Availability Sevecom Privacy focus n Requirements n n Authentication, Integrity, Non-repudiation, Access control, Confidentiality Availability Privacy Liability identification TRA 2008 24 May 2008 16

Sevecom Privacy focus n V 2 V / V 2 I communication n should Sevecom Privacy focus n V 2 V / V 2 I communication n should not make it easier to identify or track vehicles should conform to future privacy directives Lack of privacy control will prevent deployment Active safety applications require knowledge on activities of nearby vehicles, not their identity n Similar requirements to electronic payment Privacy-enhancement mechanisms that use resolvable pseudonyms n TRA 2008 24 May 2008 17

Sevecom Privacy focus Eavesdropping Case Protection Focus V 2 V Storage Internet Storage TRA Sevecom Privacy focus Eavesdropping Case Protection Focus V 2 V Storage Internet Storage TRA 2008 24 May 2008 V 2 V 18

Security Baseline Architecture (cont’d) n Basic ideas (cont’d) n n Pseudonym: Remove all identifying Security Baseline Architecture (cont’d) n Basic ideas (cont’d) n n Pseudonym: Remove all identifying information from certificate Equip vehicles with multiple pseudonyms n n n Alternate among pseudonyms over time (and space) Sign message with the private key corresponding to pseudonym Append current pseudonym to signed message PSNYM_2 PSNYM_3 PSNYM_2 TRA 2008 24 May 2008 PSNYM_1 19

Security Baseline Architecture (cont’d) n System setup Authority X Authority A Long-term Identification Pseudonym Security Baseline Architecture (cont’d) n System setup Authority X Authority A Long-term Identification Pseudonym Provider PSNYM_1, …, PSNYM_k Vehicle V TRA 2008 24 May 2008 20

Security Working Groups n C 2 C Security Working Group n n Dr H. Security Working Groups n C 2 C Security Working Group n n Dr H. J Voegel, BMW COMe. Safety IST project n Dr T. Kosch, BMW White Paper Baseline Architecture Impact of Security to e. Safety Architecture Recommendations n e. Safety forum Security WG n n Antonio Kung, Trialog Prof. Ruland, Siegen U. In-vehicle Communication, Telematics and Co-operative systems Workshop on security and privacy issues Brussels, 27 May 2008 TRA 2008 24 May 2008 21

Secure Vehicle Communication Thank You www. sevecom. org TRA 2008 24 May 2008 22 Secure Vehicle Communication Thank You www. sevecom. org TRA 2008 24 May 2008 22