Automotive Security

Today's vehicular systems comprise complex and distributed structures and encompass in some cases more than 70 Electronic Control Units (ECUs). In the near future the number of electronic components will further increase and more and more vehicular functions will be implemented in hard- and software. However, for this reason the threat potential for those systems increases significantly. In order to make use of the IT penetration for OEMs, suppliers, repair shops, service providers etc., the security of the deployed technologies is an indispensable requirement.

Expertise

Fraunhofer AISEC supports OEMs, suppliers, device manufacturers and system integrators in development, implementation and integration of secure vehicular functions, applications and value-added services, and thus assists enabling innovative products by the approach »Safety by Security«.

Fraunhofer AISEC has competencies in a widely spread spectrum securing both internal and external vehicular communication by using automotive suitable security mechanisms and protocols, which are qualified for the long product life cycles in the automotive industry. We advise and provide solutions for secure function enabling, secure linking up with backend services, and also for protection of Internet attacks or other potential attacks (e.g., chip tuning). In the field of in-vehicle systems, Fraunhofer AISEC develops security mechanisms which in particular increase the safety of vehicular components. Additionally, we develop and implement concepts which enable the secure integration of those vehicular components in existing or new automotive systems.

Skills and services at a glance

  • Development of secure Car-to-X (C2X) Systems
  • Development of secure In-Vehicle Systems
  • Design of secure vehicular components as well as their secure integration into vehicular systems
  • Protection of production infrastructures and processes

Publications

  • Angermeier, D. and J. Eichler. "Risk-driven security engineering in the automotive domain." Embedded Security in Cars (escar USA, 2016).
  • J. Eichler and D. Angermeier. “Modular risk assessment for the development of secure automotive systems”. In: Tagungsband der 31. VDI/VWGemeinschaftstagung
  • M. Salfer and C. Eckert. “Attack Surface and Vulnerability Assessment of Automotive Electronic Control Units”. In: Proceedings of the 12th International Conference on Security and Cryptography (SECRYPT 2015). Colmar, France, July 2015.
  • D. Angermeier, A. Kiening and F. Stumpf. "PAL - privacy augmented LTE: A Privacy-preserving Scheme for Vehicular LTE Communication". Proceeding of the 10th ACM International Workshop, 2013.
  • A. Kiening, C. Krauss and P. Schoo et al. "A Security Model for Future Vehicular Electronic Infrastructures". 8th escar Embedded Security in Cars conference, Bremen, Germany, Nov. 16, 2010.
  • P. Schoo et al.. "SEIS‚ Security in Embedded IP-based Systems". In: ATZelektronik, Nr. 2010-01, Feb 2010.