Security for the Autonomous Vehicle Identifying the Challenges

Similar documents
Citi's 2016 Car of the Future Symposium

EPSRC-JLR Workshop 9th December 2014 TOWARDS AUTONOMY SMART AND CONNECTED CONTROL

MEMS Sensors for automotive safety. Marc OSAJDA, NXP Semiconductors

V2X Outlook. Doug Patton. Society of Automotive Analysts Automotive Outlook Conference January 8, 2017

EMERGING TRENDS IN AUTOMOTIVE ACTIVE-SAFETY APPLICATIONS

WHITE PAPER Autonomous Driving A Bird s Eye View

ADVANCED DRIVER ASSISTANCE SYSTEMS, CONNECTED VEHICLE AND DRIVING AUTOMATION STANDARDS, CYBER SECURITY, SHARED MOBILITY

Financial Planning Association of Michigan 2018 Fall Symposium Autonomous Vehicles Presentation

NADY BOULES Director, Electrical & Controls Integration Lab

Autonomous Driving: The Short Term Impact

Test & Validation Challenges Facing ADAS and CAV

Autonomous Driving. AT VOLVO CARS Jonas Ekmark Manager Innovations, Volvo Car Group

Copyright 2016 by Innoviz All rights reserved. Innoviz

THE FUTURE OF AUTONOMOUS CARS

Ensuring the safety of automated vehicles

The Imperative to Deploy. Automated Driving. CC MA-Info, 15th December 2016 Dr. Hans-Peter Hübner Kay (CC/EB4) Stepper

Cooperative brake technology

Automotive Electronics/Connectivity/IoT/Smart City Track

Connected & Autonomous Vehicles: Developing the UK Supply Chain

Autonomous Vehicles: Status, Trends and the Large Impact on Commuting

New impulses for sensing in automotive Dr. Richard Dixon

Bitte decken Sie die schraffierte Fläche mit einem Bild ab. Please cover the shaded area with a picture. (24,4 x 7,6 cm)

AUTONOMOUS VEHICLES & HD MAP CREATION TEACHING A MACHINE HOW TO DRIVE ITSELF

The Car manufacturer s challenge in a fast paced world of More Electric, Connected and Automated Vehicles

Integrated ADAS HIL System with the Combination of CarMaker and Various ADAS Test Benches. Jinjong Lee, Konrad Yu-Mi Song, Hyundai-Autron

Safety for Self-driving Cars

Items to specify: 4. Motor Speed Control. Head Unit. Radar. Steering Wheel Angle. ego vehicle speed control

LiDAR Teach-In OSRAM Licht AG June 20, 2018 Munich Light is OSRAM

Requirements of the automotive industry and supply chain to the semiconductors industry

SIP-adus Field Operational Test

ZF Advances Key Technologies for Automated Driving

Our Market and Sales Outlook

ADVANCED DRIVER ASSISTANCE SYSTEMS, CONNECTED VEHICLE AND DRIVING AUTOMATION STANDARDS

Driver Assistance & Autonomous Driving

8 January

State-of-the-Art and Future Trends in Testing of Active Safety Systems

Safety Considerations of Autonomous Vehicles. Darren Divall Head of International Road Safety TRL

Challenges To The Future of Mobility

Autonomous Driving Technology for Connected Cars

AUTONOMOUS DRIVING COLLABORATIVE APPROACH NEEDED FOR BIG BUSINESS. Innovation Bazaar, Vehicle ICT Arena ver 2. RISE Viktoria Kent Eric Lång

Dr. Chris Borroni-Bird, VP, Strategic Development, Qualcomm Technologies Incorporated. Enabling Connected and Electric Vehicles

NXP S32X AUTOMOTIVE PROCESSING PLATFORM

Virtual Testing of the Full Vehicle System

IN SPRINTS TOWARDS AUTONOMOUS DRIVING. BMW GROUP TECHNOLOGY WORKSHOPS. December 2017

AUTONOMOUS VEHICLES: PAST, PRESENT, FUTURE. CEM U. SARAYDAR Director, Electrical and Controls Systems Research Lab GM Global Research & Development

Automated Driving - Object Perception at 120 KPH Chris Mansley

Pushing the limits of automated driving with artificial intelligence and connectivity

China Intelligent Connected Vehicle Technology Roadmap 1

Our Businesses. Environment. Safety. Advanced Vehicle Control Systems

DA to AD systems L3+: An evolutionary approach incorporating disruptive technologies

PORTUGUESE NETWORK FOR C-ITS

Dynamic Map Development in SIP-adus

Automated Driving: The Technology and Implications for Insurance. Matthew Avery Director of Insurance Research

The Development of ITS Technology, Current Challenges and Future Prospects Antonio Perlot Secretary General

The path towards Autonomous Driving

BMW GROUP TECHNOLOGY WORKSHOPS AUTOMATED DRIVING-DIGITALIZATION MOBILITY SERVICES. December 2016

THE FAST LANE FROM SILICON VALLEY TO MUNICH. UWE HIGGEN, HEAD OF BMW GROUP TECHNOLOGY OFFICE USA.

On the role of AI in autonomous driving: prospects and challenges

Stan Caldwell Executive Director Traffic21 Institute Carnegie Mellon University

Intuitive Driving: Are We There Yet? Amine Taleb, Ph.D. February 2014 I 1

D.J.Kulkarni, Deputy Director, ARAI

ERTRAC Vision Future Road Transport Prepared by the Executive Group in collaboration with the Working Group Leaders.

REGULATORY APPROVAL OF AN AI-BASED AUTONOMOUS VEHICLE. Alex Haag Munich,

Deep Learning Will Make Truly Self-Driving Cars a Reality

Aria Etemad Volkswagen Group Research. Key Results. Aachen 28 June 2017

Deutsche Bank AutoTech Day

We Move the Off-Highway Industry Our Solutions for Construction, Mining, Agriculture & Material Handling

Megatrends and their Impact on the Future of Mobility

DYNA4 Open Simulation Framework with Flexible Support for Your Work Processes and Modular Simulation Model Library

MAX PLATFORM FOR AUTONOMOUS BEHAVIORS

Infineon AURIX 32-bit microcontrollers as the basis for ADAS / Automated Driving Deutsche Bank AutoTech Conference San Francisco, 11 May 2017

The connected vehicle is the better vehicle!

CHEMICALS AND REFINING. ABB in chemicals and refining A proven approach for transforming your challenges into opportunities

Automated Driving UNECE International Harmonization

elektrobit.com Driver assistance software EB Assist solutions

Future Propulsion Systems

Robert Bosch Australia: Advice on automated and zero emission vehicle infrastructure for Infrastructure Victoria

Intelligent Vehicle Systems

(Type) Approval. Future and Current Developments INTRODUCTION. Partner in Mobiliteit. 4 july 2018

NHTSA Update: Connected Vehicles V2V Communications for Safety

STRATEGIES FOR THE MOBILITY TRANSFORMATION HANNO MIORINI, ROBERT BOSCH GROUP

RESEARCH FUNDING KEY TO AUTONOMOUS DRIVING

Impact of Automation and Connectivity on the Value Chain

H A R A L D W E S T E R C H I E F T E C H N I C A L O F F I C E R

CHALLENGES AHEAD KEEPING PACE WITH RAPID ADVANCES IN COLLISION REPAIR BY JASON BARTANEN

Emerging Technologies Committee

CONNECTED AUTOMATION HOW ABOUT SAFETY?

On the road to automated vehicles Sensors pave the way!

Optical Products in Automotive Active Safety

A3PS- Workshop. From ADAS to autonomous driving. Impact to propulsion system & vehicle design

MEETING 21 ST CENTURY TRANSPORTATION CHALLENGES: Entering New Era of Redefining Mobility. SUSAN MARLOW, GISP Principal at Stantec MAPPS President

David Pickett [Volvo Car Australia]; [National Road Safety Forum 2

Vehicle Integration of multiple ADAS HMI Concept and Architecture

Continental AG at insight conference Supplier Connectivity Purchasing Rubber Divisions

PSA Peugeot Citroën Driving Automation and Connectivity

Drive Security From The Inside Out... SIP-adus Workshop 2018 Tokyo Japan November Synopsys, Inc. 1

The Self-Driving Network : How to Realize It Kireeti Kompella, CTO, Engineering

Transportation. Actuators, Pedals and Sensors

5G V2X. The automotive use-case for 5G. Dino Flore 5GAA Director General

Accelerating the Driving Experience: The Semiconductor Point of View

Transcription:

Security for the Autonomous Vehicle Identifying the Challenges Mike Parris Head of Secure Car Division November 2016

Today s agenda A Definition Developing a Threat Model Key Findings Conclusions 2

A Definition Developing a Threat Model Key Findings Conclusions 3

SAE levels of vehicle autonomy Car manufacturers are working towards deploying systems corresponding to Level 3. SAE Level 0 No Automatio n SAE Level 1 Driver Assistan ce SAE Level 2 Partial Automat ion SAE Leve l 3 Conditiona l Automatio n SAE Level 4 High Automati on SAE Level 5 Full Automation *(Society of Automotive Engineers) 4

SAE Level 3 SAE Level 4 SAE Level 5 SAE levels of vehicle autonomy We re going to focus from Level 3 onwards. Conditional Automation High Automation Full Automation 5

Autonomous Technologies Complementary to Connected Services Camera Ultrasonic Radar Laser Sensing needs The sensors all have different characteristics and therefore can t replace each-other but rather complement each-over, leading to complex sensor fusion schemes. 6

ADAS Partitioning Piecemeal ADAS development over the years - 3 main groups Forward Facing Rear Facing All Around Adaptive Cruise Control Blind Spot Information 360 degree view Automatic Emergency Braking Side Collision Mitigation Fully Autonomous Lane Keeping Assistance SAE SAE Level 3 SAE Level 3 systems fuses forward facing and rear facing sensors (hybrid approach between hardwired and networked topology) Level 4 SAE Level 4 will fuse all sensors in a centralised unit 7

A Definition Developing a Threat Model Key Findings Conclusions 8

Threat Modelling Attacker view System Architecture Defender view Attack Objective DFDs Attack Tree toolkit Attack Trees Auto-generated Report STRIDE toolkit Potential Attack List Security Requirements Bringing it all together 9

Threat Modelling Attacker view System Architecture Defender view Attack Objective DFDs Attack Tree toolkit Attack Trees Auto-generated Report STRIDE toolkit Potential Attack List Security Requirements Bringing it all together 10

Developing a Threat Model Identify generic layers and entities Cloud layer AI Sensors layer Driver Monitoring Map data Ultrasonic Radar Lidar Cameras Human Machine Interface layer Instrument Cluster On/Off Activation Head-up Display Vehicle Data layer Door Status Vehicle Speed Steering Wheel Position Throttle Position Brake Pedal Position Gear Position Actuators layer Accelerator Demand Braking Demand Steering Demand 11

Developing a Threat Model Create a system architecture ADAS SENSOR FUSION Driving Assistance OTA Update Real-time Traffic Updates V2X Cloud Computing AI CENTRAL GATEWAY MODULE Powertrain Chassis Convenience Infotainment Suspension Control Driver Monitoring Hi-Fi Amplifier Switch Pack Gearbox ECU Steering Control Head Unit Anti-theft System EMS Dynamic Stability Control Door Module Rear-Seat Entertain. Accessory Power Management Telematics Control Instrument Cluster Fuel Pump Brake Control HVAC Seat Control ABS Head-up 12

Developing a Threat Model Create a data flow diagram (DFD) Bringing it all together 13

Developing a Threat Model Auto-generate DFD threat report Bringing it all together Identifies all possible threats from system architecture perspective Not all threats are relevant and there may be considerable duplication 14

Threat Modelling Attacker view System Architecture Defender view Attack Objective DFDs Attack Tree toolkit Attack Trees Auto-generated Report STRIDE toolkit Potential Attack List Security Requirements Bringing it all together 15

Developing a Threat Model Identify attack objectives and create attack trees Bringing it all together All threats are relevant Difficult to demonstrate completeness of attack tree 16

Threat Modelling Attacker view System Architecture Defender view Attack Objective Primary Functions Attack Tree toolkit Attack Trees DFDs STRIDE toolkit Auto-generated Report Potential Attack List Bringing it all together Security Requirements All Potential Attacks and Security Requirements are relevant with full 2-way traceability Completeness demonstrated by reference to DFD Auto-generated report 17

A Definition Developing a Threat Model Key Findings Conclusions 18

Findings Vehicle level threat examples Forced crash direct control Some obvious Complete Denial of Service: fail to start/engage operational failure SAE L4&L5 - no driver fall-back Leakage (theft) of Personally Identifiable Information (PII) real-time historical 19

Findings Vehicle level threat examples Partial system failure driver unaware including calibration errors Some less obvious Leakage (theft) of Personally Identifiable Information (PII) predictive Breach of an Autonomous vehicle geo-fence (SAE L4) Pedestrian provoked injury Congestion management 20

Findings Vehicle level threats Key Mitigations Resilience to Sensor interference Need for duplicate/redundant sensors Multiple verification special case of fusion: Like sensors (duplicate/redundant) Unlike sensors (e.g. correlate wheel speed with GPS speed) Security validation at point of manufacture Security validation during operational service: Calibration Roadside/Service Facility (windscreen mounted sensors/accident repair) OEM parts vs After-market parts Supply Chain Integrity Supplier-OEM-Distributor / Dealer Customer / Driver Service - Repair Vehicle Behaviour: Monitoring of one vehicle (use misuse abuse) Standard operations of systems between vehicles Fail-safe / Limp-home modes AI Integrity: Digital Forensics/Data Recorder/PII Privacy Failure Misuse Abuse is a spectrum of resilience 21

A Definition Developing a Threat Model Key Findings Conclusions 22

Conclusions Are all Industry Stakeholders Being Sufficiently Proactive? Collaboration (pre-competitive) between OEMs and Suppliers System behaviours automated driving vehicle licences HMI behaviours user interaction user licences Collaboration across extended supply chain Beyond point of manufacturer Beyond point of first sale change of ownership After-market and independent service centres Resilient Fusion Technology Balancing cost vs resilience Balancing performance (accuracy, security, safety) Security Audits and Vehicle Health Reports At point of manufacture Within operational service (what, frequency, who, where) Enforcement Regulatory Frameworks Regional flexibility vs Global harmonisation Activity and progression vs fragmentation Marketing advantage homologation 23

More about SBD Since 1995 we live, eat and breath automotive We enable data-driven decisions We are here to help! Our Mission To be the world-leading knowledge partner for the automotive industry Our Intelligence & Insight Services Model-level databases Technology forecasts Supplier intelligence Market regulations News analysis Our Approach We are committed to adapting to our client s needs and always strive for the highest quality of service Our Expertise The largest team of in-car technology specialists recruited from over 10 OEMs & suppliers Our Evaluation Services Expert UX testing Consumer UX testing Iterative prototype evaluation KPI setting Our Offices SBD NA (Michigan, USA) SBD EU (Milton Keynes, UK) SBD Japan (Nagoya, Japan) Cyber security testing SBD India (Bangalore, India) Our Customers 95% of OEMs 65% of Tier-1s 60% of Service Providers Our Strategy Services New market entry support RFP/RFQ management M&A due diligence Strategic workshops Supplier positioning support Your Contact Person Mike Parris MikeParris@sbdautomotive. com +44 (0)1908-305105

2024 © autodocbox.com Privacy Policy | Terms of Service | Feedback