13.00 HoliSec WP2 2017-09-07 Final - Autosec
Transcript of 13.00 HoliSec WP2 2017-09-07 Final - Autosec
HoliSecHolisticApproachtoImproveDataSecurity
Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandberg,VolvoGTTSeptember7,2017.Time13:00 – 13:20
HoliSecHolisticApproachtoImproveDataSecurity
Presentation outline
2Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
• Purpose• Timeline• Tasks:
• SecOCFreshnesshandling• SecOCKeyderivation• Keymanagementlifecycle
HoliSecHolisticApproachtoImproveDataSecurity
Purpose
3Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
Hostandsupportotherworkpackageswithactivitiesrelatedtocryptography
Input:DerivecryptographicneedsfromWP1
HoliSecHolisticApproachtoImproveDataSecurity
Timeline
4Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
Deliverables
Q1/22017: ExtractingrequirementsfromD1.1CollectingOEMrequirementsonSecOCfreshnesshandling
Q3/42017: DocumentrequirementsAnalyzefreshnessalgorithmsAnalyzekeyderivationalgorithms
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: SecOC freshness handling
5Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
• OEMtospecifyfreshnesshandlingalgorithm,notcoveredbytheAUTOSARstandard
• Freshnessascounter• IndividualcountersforeachPDU• Riskofgettingoutofsynchbetweensenderandreceiver
• Freshnessastime• Needtoensuresecureglobaltimebroadcastinthevehicle
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: SecOC freshness handling
6Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
• Transparentgateways(repackagingmightputincreasedcertificationrequirementsongateways,e.g.ISO26262ASIL)
• J1939compliant(e.g.ForCAN8byteframes,29bitid...)• Samealgorithmformulti-protocol,e.g.CAN,Ethernet(aidgateway
transparency)• Avoidsinglepointoffailuredesigns• Considerresynchspeedtoquicklygetcommunicationrunninge.g.
followingstartup,sleep,orerroneousrestartbyacommunicatingparty.Exampleusecase:safetyapplications
• Vehiclemodeaware(e.g.keepbussilence,sleep)• Potentiallyeasiertograduallyintroducecounterbasedsolutioninlegacy
platformthanintroducesecureglobaltime
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: Key derivation algorithms
7Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
EachPDUmayhaveauniquekey(e.g.AES128).WithmanyPDUsbeingcommunicatedtomanypeers,itwouldrequiresecurestorageofmanykeys.AwaytoaddressthisistoderivekeysfromasmallersetofmasterkeysusingKeyderivationalgorithms.
Masterkey
=f(PDUID, MasterKey)PDU1key
PDU2key
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: Key derivation algorithms
8Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
Activities:
• Identifysuitablekeyderivationalgorithms
• Keyderivationalgorithmswillbeanalyzedforrelevantusecases
involving,amongothers,AUTOSARSecureOnboardCommunication
• Implementation
• Usage
• Evaluationofe.g.resourceneeds
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: Key lifecycle management
9Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
Activities:
• ExtractkeylifecycleusecasesandrequirementsfromD1.1
• AnalyzehowNIST.SP.800-130/57(Part1-3)maybeusedforautomotive
keymanagementusecases
• DescribekeylifecycleprocessforselctedusecasesidentifiedfromD1.1
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: Key lifecycle management
10Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
Example:D1.1RT-TN-10”Howtoprotectinformationheldinthevehiclefromunauthorizedmodificationanddeletion(dataatrest)”
Derivedusecases:• Securesoftwaredownload• Securestorageofdata
Exampleofhighlevelderivedsecurityrequirements:• ECU/Sensorshallusecryptographicmechanismtoensureintegrityofdata
atrest• ECU/Sensorshallusecryptographicmechanismtoensureauthenticityand
integrityofdatapackagesbeingdownloaded
HoliSecHolisticApproachtoImproveDataSecurity
Tasks: Key lifecycle management
11Topic:WP2:Cryptographicsupportandkeymanagement
Presenter:ChristianSandbergSeptember7,2017.Time13:00– 13:20
NIST.SP.800 Specifies,keyphases,activitiesandstates.Dependingonkeyusecases,akeymayenterthesephases/statesatdifferenttimesduringtheproductlifecycle,puttingrequirementsonhowtheyarehandledduringdevelopment,manufacturing,useinthefield,serviceworkshopsetc.
HoliSecHolisticApproachtoImproveDataSecurity
Thankyouforyourattention!