Cyber Security and ITS

Standards

Tony English, ICF/Wyoming

Connected Vehicle System Development Lead

tenglish@trihydro.com

Site Orientation and Key Issues

I-80 in Wyoming

• Major corridor for east/west freight in the northwest part of the country

• 402 miles long from Utah to Nebraska

• More than 32 million tons of freight per year (at 16 tons per truck).

• Truck volume is 30 to 55% of the total traffic stream on an annual basis

– can make up as much as 70% of the traffic stream on a seasonal basis

• Elevation all above 6,000 feet, with the highest point reaching 8,640 feet (2,633 m) above sea level at Sherman Summit

Solving a Real Need for Commercial Vehicles

655 incidents involving commercial vehicles on I-80 since pilot started in Sept ‘16

5

Fatalities

90

Injury Crashes

561

Property Damage Only Crashes

Since September 2016

• 250 hours

Full Closure

• ~180 hours

High Profile Vehicle Restriction

• 37 Days

Inclement weather

Truck Driver

Driving a light truck between Rawlins and Laramie, I-80 drivers would have experienced a total of more than 2 weeks with closures in this 10 month period

Project Overview

System Overview

DSRC

Satellite

Vehicle System

OBU-S

HMI

Env. Sensors

OBU-D

CAN Bus Integration

OBU-S

HMI

OBU-D

CAN Bus Integration

Sub-

System #1

WYDOT

Fleet

Sub-System

#2

Integrated

Trucks

OBU-S

HMI

OBU-D

Sub-

System #3

Retrofit

Vehicle

HMI

OBU-D

Sub-

System

#4 Basic

Vehicle

OBU-D: On-Board Unit with DSRC

OBU-S: On-Board Unit with Satellite

HMI: Human-Machine Interface

Back-office functions located at the Wyoming TMC

Wyoming CV System

Operational Data Environment (ODE)

Pikalert®System (PA)

WYDOT Data Broker (DB)

WYDOT Data Warehouse (DW)

Roadside Units (RSU)

WTI

CVOP

TRAC

RCRS

Third-Party

CA

IC

511 App

Weather

Vehicle OBUs

Vehicle OBUs

Vehicle OBUs

Vehicle OBUs

SDW

SCMS

ON-BOARD APPLICATIONS

Forward Collision Warning (FCW)

Infrastructure-to-Vehicle (I2V) Situational Awareness (SA)

Distress Notification (DN)

Work Zone Warning (WZW)

Spot Weather Impact Warning (SWIW)

Cyber Security

Cyber and PII SecurityPII• Privacy by Design

• Sanitization at On-Board Unit and Operational Data Exchange

– Privacy in depth

• Performance Measures

• CV and Non-CV data

Cyber• Access Control

– Hardware Security Module (HSM)

– Secure Shell (SSH)

– Access Control List (ACL)

– Transportation Management Center stored data (TMC)

– Certificate Revocation List (CRL)

• Encryption

– Security Credential Management System certificates

– IEEE 1609.2 (Certificates, Digital Signatures, and Encryption)

CV OBU Privacy by Design• Security Management Operating Concept

• Participant Protection

– Human Use Approval

– Institutional Review Board Approval

– Participant Training Plan

• Changing Mac and IP Address

• Rotating Certificates

• No personal information within Basic Safety Message (BSM) for commercial fleet vehicles

• BSM start time and minimum speed

• Application Analysis based on Federal Information Processing Standard (FIPS) 199

– Confidentiality

– Integrity

– Availability

• Devices selected based on results of FIPS 199 information flows for FIPS 140-2 levels

Standards Development

Challenges with Evolving Standards• J2945TM/1 Mar2016 (V2V) and J2735TM Mar2016 (Message Dictionary) Trucks are not big

cars

– Trajectory (Single and Double Trailers are allowed in Wyoming)

– Blow over risk

– Stopping distance

– Dynamic Weight (Snow Plow dispensing sand)

– Dynamic Height (Snow Plow bed elevation)

– Dynamic Width (Snow Plow blade)

• J3067 AUG2014 While very useful for V2I, is in conflict with current standards in some areas

• J2945TM/2 will be useful once available

• The space is evolving rapidly, our plan is to maintain compliance with standards as they become available where possible

• SCMS updates and availability

• Secure Boot OBU/RSU availability (FIPS 140-2 level 2 and 3)

• OBE/HMI updates for firmware/operating system/application over DSRC

• Distress Notification

• TIM distribution over satellite

STSMO Cyber Security and ITS Standards Q&A

STAY CONNECTEDContact for CV Pilots Program:

Vince Garcia, WYDOT, Project Site Lead

Vince.Garcia@wyo.gov

Deepak Gopalakrishna, ICF, Project Management Lead

Deepak.Gopalakrishna@icfi.com

Kate Hartman, USDOT, Program Manager

Kate.hartman@dot.gov

Public ConOps Webinars:

» ICF/Wyoming Pilot Site

8/22/2016, 1:00 – 2:00 pm EST

Please visit the CV pilots website for the recording and the briefing material of the previous webinars.

Website: http://www.its.dot.gov/pilots