2. Introduction
IT/Cyber modules of a car
Automotive Architecture
Functionality
Security Design Philosophy
Secure Architecture
Security Enhancement
Firewall
Why Needed
Intrusion Detetction System
CONTENTS
3. As the integration of advance
technologies in electronics, software and
internet connectivity has increased in
automotive sector, Our vehicles are now
more prone to cyber attacks. A
ransomware attack may occur in the
steering, braking, car infotainment
systems, etc.
INTRODUCTION
4. IT/CYBER MODULES AND EQUIPMENTS OF A CAR
Modern cars have
their ECU, ECM, BCM
and other electronic
modules connected
to internet via a sim
card, satellite, etc.
Hence, the major
fuctionalities of
modern cars are
prone to cyber
attacks.
5. MAIN BOARD
ECU/ECM
OBD - II Port
ECU-2 BCM ECU-3
ECU-1
AUTOMOTIVE ARCHITECTURE
Cloud Services
Cellular/Mobile
Services
Bluetooth
WiFi
Satellite
e-Sim
CAN - Bus
CAN - Bus
6. All the modules are interconnected via Controller
Area Network (CAN) Bus.
OBD -2 Port has full CAN access
Cars are controlled by various modules like ECM -
Engine working, BCM - Lock & lights, Airbag Module,
Transmission Module - gears, Internet connectvity,
etc.
FUNCTIONALITY
7.
8. Block everything except what you must let through.
What you do let through, Authenticate and Sign or
encrypt.
(If you care about Integrity you sign, If care about privacy you encrypt
)
3.Log what gets through and what gets blocked
1.
2.
SECURITY DESIGN PHILOSOPHY
9. Add a firewall between CAN and OBD-2
Firewall should have Over the AIr (OTA) updatable rules Protects most vulnerable OBD-2 Port.
MAIN BOARD
ECU/ECM
OBD - II Port
ECU-2 BCM ECU-3
ECU-1
Firewall
SECURE AUTOMOTIVE ARCHITECTURE
Cloud Services
Cellular/Mobile
Services
Bluetooth
WiFi
Satellite
e-Sim
CAN - Bus
CAN - Bus
Firewall
10. Firewall
Intrusion Detection System
1. Need a Firewall instance on every entry point
- Cellular, WiFi, Bluetooth, OBD
-2
2. Rules/Policies should be updatable
- Detects abnormal/malicious activities and traffic
SECURITY ENHANCEMENT
11. Firewall
Automotive network firewall is a security system
that monitors and controls incoming and outgoing
network traffics of automotive at every point based
on predetermined security rules. The main functions
of network firewall include data packet filter, anti-
DoS and access control.
FIREWALL
13. Security needs to evolve and policies should be timely
updated
Detects and block DoS attacks
Security against Vehicle Theft
OTA updates and vehicle data is monitored from
intrusion
Need to prevent the routing engine from getting
Overloaded
Need to understand when attacks are being made and
to be able to take action
WHY NEEDED ?
14. CAN Detection
g
ECU Inte rity
Keyfob Detection
- Abnormal/Conflicting CAN activity
- CAN messages with invalid or clone ID
CAN bus scan by unauthorized tool
-
- Alert when ECU is reflashed (reprogrammed) or modified
- Monitor flash signatures for changes
- Detect a diagnostic tool on the BUS performing diagnostic scans
- Detect scans being performed by unauthorized tools
INTRUSION DETECTION SYSTEM
15. Cyberattacks on Vehicles specially Luxury Vehicles are
starting to increase.
Hackers could attack our vehicles Or vehicles of
Important People (P.M., Defence Vehicles, etc).
Overall, hackers are morelikely to attack luxury vehicles
for financial gains OR Important People Vehicles to get
their wishes fulfilled.
The automotive makers are continuously increasing the
security measures to avoid mis-happenings.
KEY TAKEAWAYS