cyber SEcuriTy Pasi Kuvaja University of Oulu M3S Research Unit e M pirical research on S oftware S ystems and S ervices pasikuvajaoulufi Software Update Anywhere Smart ID: 788364
Download The PPT/PDF document "ASSET - Automotive Software" is the property of its rightful owner. Permission is granted to download and print the materials on this web site for personal, non-commercial use only, and to display it on your personal computer provided you do not modify the materials and that you retain all copyright notices contained in the materials. By downloading content from our website, you accept the terms of this agreement.
Slide1
ASSET - Automotive Software cyber SEcuriTy
Pasi Kuvaja
University of Oulu –
M3S
Research Unit
e
M
pirical research on
S
oftware,
S
ystems and
S
ervices
pasi.kuvaja@oulu.fi
Slide2Software Update Anywhere
Slide3Smart Move
Open
connected
platform
New and
legacy
carsMass differentiationIn-car servicesAfter-market innovationLiving service ecosystem
Traffic as an ecosystem
Energy & environmentMobile technologySafety and securityCost and ownershipConveniency services
Automotive industries are going through major transition due to many pressures, such as economics, emerging power sources, car as a networked entity, shifts in ownership models, and so on. Automotive ecosystem is fast growing and one of the largest business in Europe and global level. Car as an “intelligent entity” projects a huge value opportunity, where ICT play a key change agent role. The impacts will affect to all aspects of transportation, quality of living and overall cost of ownership.
Slide4Security and Safety Challenges
C
hallenges of interconnected
vehicles and open
platforms
Technical
safety–protection against technical failuresTechnical IT security– protection against malicious manipulation & intrusionHuman-centered quality attributes – end-user trust on applications and interconnected computing platforms & security-relevant organizational policies and processesTo deal with these challenges we should study:How we can ensure security and safety aspect in the context of vehicle2X?How we can manage safety and security during the software development life-cycle from requirement engineering to the development and deployment especially in open source environment?How we can provide trustworthy open automotive ecosystem and application store from human-centered perspective?
Slide5Related research efforts
Conceptual studies:
review of security aspects, challenges, and protection mechanisms related to vehicular
security
Security of vehicular ad-hoc networks (VANETs)
: previous issues in the more specific context
Experimental studies evaluating current automotive systems security: threats and defense mechanisms related with the in-vehicle networks, entire automotive platform, or wireless communications channels Privacy aspect: privacy threats and requirements for vehicular networks and communications Trust between vehicular applications and encountered entities: different trust models, related metrics, and trust management techniques Human-centered trust perspectives: aspects of drivers trust in automotive engineering and technology, inter-organizational trust perspective, rational and emotional aspects of trustOpen source software development platforms and ecosystems: experiments on security ensurance in the development and end results e.g. APPSTACLE platform
Slide6Project idea description
The vision of
ASSET
research project is
to contribute on tools, technology, methodology, and measures to understand and improve
safety and security
of automotive software developed using open platforms context for vehicle-to-cloud and cloud-to-vehicle environmentFor the in-vehicle systems, improved ECUs are required to fulfill safety and cyber-security of connected vehicles particularly in the area of on-board communicationFrom network and connectivity perspective, sophisticated technologies are required to improve safety and security of connected vehicles particularly in the area of vehicle-to-cloud communication and key management systemFrom software point of view, sophisticated technologies and a quality-aware process is required to improve security and safety aspects of automotive software applications in specific when they are developed suing open development platforms. The result will include technological and organizational measures in order to better specify, design and develop safe and secure automotive software functions throughout the entire lifecycle of software development, from requirement to quality assurance and deploymen.tFrom human-centered point of view, it is important to understand behavioral aspects as essential elements of human-technology interaction and decision-making via developing stakeholder trust building perspective within an automotive application store context.
Slide7Contribute to development of sophisticated in-vehicle technologies to deal with cyber security and safety aspects in context of connected vehicles i.e. improved on-board communication systems, key management systems etc.
Provide quality-aware viewpoint for
software engineering methodology
to deal with safety and security aspects within the development cycle from initial specification to the deployment.
Provide behavioral understanding to support building a trustworthy automotive ecosystem and application store e.g., trust
attributes that are relevant for different automotive stakeholders
’ and the different types of vehicular systems/applications. Experimentation in context of ITEA3/APPSTACLE project with 5G connectivityKey opportunities
Slide8OEMs (Original Equipment Manufacturers)Improved safety and security in the development cycle
Reduces recalls
Provide trustworthy channel to delivery continuous updates
MNOs (Mobile Network Operators)
New services based on new infrastructures
Capillary networks
Software IndustryOpens new software market area and business modelsDriving force for new developmentsConsumerContinuously more trustworthy driving and application purchasing experience Legacy cars upgrades and improved functionalitiesFor all: Improved inter-organizational collaboration within the key stakeholdersImproved quality of automotive applications, communications, and related business modelsBenefits for key stakeholders
Slide9WP1. In-Vehicle Safety and Security
aspects
inside the
vehicle
i.e. on-board communication systems, cyber security and etc.
WP2. Network Safety and Security relevant to vehicle-to-cloud and cloud-to-vehicle environment; aspects beyond the vehicle i.e. key management systems, secure communication channel, data encryption and etc.WP3. Trustworthy Ecosystem and Application Store security and safety in the surface layer including end-user and/or inter-organizational trust building perspective in cloud environmentWP4. Demonstration & ExperimentationWP5. Project ManagementTentative work packages
Slide10Expertise required
Automotive OEM providers
Automotive
1
st
tier companies
Telecom companiesSafety and security companiesTechnology platform developers5G application developersAutomotive software developersCar and transportation vehicle manufacturersSoftware companies willing to enter automotive software markets
Slide11Pasi KuvajaUniversity of Oulu / M3S
pasi.kuvaja@oulu.fi
+
358407693279
Kari
Liukkunen
University of Oulu / M3Skari.liukkunen@oulu.fi+358294481896Contact details
Slide12Opening of the Call
New Calls open: March 2017
New Calls deadline: September 2017
Link to the Call:
https://artemis-ia.eu/h2020calls.html
Time Schedule