Securing the future of Automotive

•

0 likes•168 views

The document discusses the need for increased security in automotive Ethernet architectures as connectivity and the use of Ethernet expands in vehicles. It summarizes Marvell's secure automotive Ethernet switch system-on-chip, which provides trusted boot, update, and runtime access concepts to securely configure, update, and access the device. It also details intrusion prevention and detection solutions to monitor data flows, detect anomalies, and execute countermeasures.

Automotive Update
• With the rapidly increasing
amount of designs using Ethernet
for communication in cars, the
need for security is increasing
• Compared to the first generation
of Ethernet in cars, the upcoming
architectures have much more
complex use cases
• Ethernet is now entering ADAS
domains in the car where the
need for safe and secure
communication is paramount
2
More than a standard switch
is required to address these
needs:
Marvell’s Secure Automotive
Ethernet Switch SoC

Areas to Secure
3
Software Configuration
Runtime
configuration
access
Diagnostic
access
Configuration
or firmware
update
Data
exchange
Intrusion
detection/
prevention

Secure – Software Boot
4
Requirements:
Ensure authenticity and integrity of
any software running on the device
Solution:
Trusted Boot concept:
• Uses asymmetric cryptography
• Root of trust / trust anchor
• Chain of trust
• Only public key is needed locally
• OEM has the private key to sign

Secure – Update
5
Requirements:
Ensure authenticity and integrity of
any software and/or configuration
update before using it, and
Ensure that any failure during the
update process still results in a
bootable and trusted firmware and
configuration (fail-safe)
Solution:
Trusted Update concept:
• Use the measures from Trusted Boot
and Trusted Configuration for every
update block before activation it
• Use backup images to ensure fail-
safe operation

Secure – Runtime Access
Requirements:
Ensure that only authenticated entities
can access the device for Diagnostic,
Configuration and Update
Solution:
Trusted Runtime Access concept:
• Authenticate any and all access to
the device
• Protect and shut down any
attempted unauthorized access
6

Intrusion Prevention/Intrusion Detection
7
Requirements:
Detect Intruders and Prevent
Intrusions
Solution:
Intrusion-safe concept:
• Combine hardware pre-filtering
with TCAM and ingress rate limiting
with a Deep Packet Inspection (DPI)
module to monitor data flow and
detect anomalies
• Log/report anomalies
• Execute counter measures

SUMMARY
Marvell provides you
with the industry’s first
secure automotive
gigabit ethernet switch,
enabling a new level of
safe and robust data
transmission in next-
generation connected
vehicles

Session ID: HKG18-212 Session Name: HKG18-212 - Trusted Firmware M: Introduction Speaker: James King Track: Iot, Security ★ Session Summary ★ Trusted Firmware M In October 2017, Arm announced the vision of Platform Security Architecture (PSA) - a common framework to allow everyone in the IoT ecosystem to move forward with stronger, scalable security and greater confidence. There are three key stages to the Platform Security Architecture: Analysis, Architecture and Implementation which are described at https://developer.arm.com/products/architecture/platform-security-architecture. Trusted Firmware M, i.e. TF-M, is the Arm project to provide an open source reference implementation firmware that will conform to the PSA specification for M-Class devices. Early access to TF-M was released in December 2017 and it is being made public during Linaro Connect. The implementation should be considered a prototype until the PSA specifications reach release state and the code aligns. --------------------------------------------------- ★ Resources ★ Event Page: http://connect.linaro.org/resource/hkg18/hkg18-212/ Presentation: http://connect.linaro.org.s3.amazonaws.com/hkg18/presentations/hkg18-212.pdf Video: http://connect.linaro.org.s3.amazonaws.com/hkg18/videos/hkg18-212.mp4 --------------------------------------------------- ★ Event Details ★ Linaro Connect Hong Kong 2018 (HKG18) 19-23 March 2018 Regal Airport Hotel Hong Kong --------------------------------------------------- Keyword: Iot, Security 'http://www.linaro.org' 'http://connect.linaro.org' --------------------------------------------------- Follow us on Social Media https://www.facebook.com/LinaroOrg https://www.youtube.com/user/linaroorg?sub_confirmation=1 https://www.linkedin.com/company/1026961

Developing for Industrial IoT with Linux OS on DragonBoard™ 410c: Session 4

Qualcomm Developer Network

Trusted Computing security _platform.ppt

naghamallella

Trust and Cloud Computing, removing the need to trust your cloud provider

David Wallom

Presentation at CloudSecurityExpo 2106 publicly describing the Porridge distributed remote attestation using multiple trusted Third Parties as a way of building a cryptographically secure cloud service. Allowing users to know the cloud they are using is in exactly the format they expect. This will be commercially available through the Antyran product. This work is supported by InnovateUK KTP in partnership between University of Oxford e-Research centre and 100PercentIT. Other partners not in the KTP in include OctaInnovations.

Increase IBM i Security & Accelerate Compliance with New Syncsort Security Re...

Precisely

Regulatory compliance and security of critical systems, applications and data are top-of-mind issues for IT organizations in 2018. New capabilities are now available from the Syncsort Assure products that can help your organization achieve and maintain compliance while strengthening IBM i security. View this webinar on-demand to discover how new innovations from Syncsort can help you meet your auditing and control needs.

Welcome to Team TSI.

sdimond1

ECU Flashing: Flash Bootloaders that Facilitate ECU Reprogramming

Embitel Technologies (I) PVT LTD

ISACA SV Chapter: Securing Software Supply Chains

Jim Bugwadia

Curiosity and fourTheorem present: From Coverage Guesswork to Targeted Test G...

Curiosity Software Ireland

This webinar was co-hosted by fourTheorem and Curiosity Software on 18th January 2023. Watch the on demand recording here: https://www.curiositysoftware.ie/coverage-guesswork-targeted-test-generation-webinar Assuring quality pre-release hinges on one question: Did you run the optimal set of tests to de-risk changes made in that iteration? Too often, testing cannot answer this question, due to poor traceability between tests, user stories, code and data. This limited traceability underpins a raft of challenges: 1. Test coverage is unmeasurable, or based on partially-educated guesses. 2. Updating tests is slow, manual, and unstructured, leading to mounting technical debt. 3. Shallow test assertions cannot say whether tests got the right results for the right reasons, especially at the code and database levels. This webinar will set out how you can measure and consistently hit the right in-sprint test coverage. Curiosity’s CTO, James Walker, and Peter Elger, CEO of fourTheorem, will set out techniques for linking tests, user stories, code and data, generating targeted tests based on changes across the SDLC. You will see how: 1. Automated test generation can target tests based on changing user stories and code. 2. Tracking tests at the code and data level boosts observability and creates close traceability. 3. Database comparisons verify that UI and API tests produce the right results in critical back-end systems. Join James and Peter to discover how you can make every release with confidence! Watch the on demand webinar: https://www.curiositysoftware.ie/coverage-guesswork-targeted-test-generation-webinar

XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...

The Linux Foundation

Artem will briefly cover what has been done since the first talk on Xen in Automotive domain back in 2013, what is going on now and what is still missing for broad adaptation of Xen in vehicles. The following topics will be covered: Embedded/automotive features of Xen Collaboration with AGL and GENIVI organizations for standardization Efforts on Functional Safety compliance Artem will also go over typical automotive use scenarios for Xen which may not be the same as generic computing use of hypervisor.

Praetorian secure encryption_services_overview

Brent Bernard, CISSP & PCI-QSA

Praetorian_Secure_EncryptionServices_OverviewBrent Bernard, CISSP & PCI-QSA

Do we need a wakeup call to keep driver-less cars protected?

ITU

Global Virtual Mobile Network for Car manufacturers

ITU

Similar to Securing the future of Automotive

Over-the-air (OTA) updates and the Connected car

Pratik Desai, PhD

Enabling the-Connected-Car-Java

terrencebarr

Why TPM in Automotive?

Alan Tatourian

OTT for Mobile Devices

Jacob Greenblatt

Standardizing the tee with global platform and RISC-V

RISC-V International

Trust and Cloud computing, removing the need for the consumer to trust their ...

David Wallom

Trust and Cloud computing, removing the need for the consumer to trust their ...

David Wallom

Schneider-Electric & NextNine – Comparing Remote Connectivity Solutions

Honeywell

HKG18-212 - Trusted Firmware M: Introduction

Linaro

Developing for Industrial IoT with Linux OS on DragonBoard™ 410c: Session 4

Qualcomm Developer Network

Trusted Computing security _platform.ppt

naghamallella

Trust and Cloud Computing, removing the need to trust your cloud provider

David Wallom

Increase IBM i Security & Accelerate Compliance with New Syncsort Security Re...

Precisely

Welcome to Team TSI.

sdimond1

ECU Flashing: Flash Bootloaders that Facilitate ECU Reprogramming

Embitel Technologies (I) PVT LTD

ISACA SV Chapter: Securing Software Supply Chains

Jim Bugwadia

Curiosity and fourTheorem present: From Coverage Guesswork to Targeted Test G...

Curiosity Software Ireland

XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...

The Linux Foundation

Praetorian secure encryption_services_overview

Brent Bernard, CISSP & PCI-QSA

Praetorian_Secure_EncryptionServices_OverviewBrent Bernard, CISSP & PCI-QSA

Similar to Securing the future of Automotive (20)

Over-the-air (OTA) updates and the Connected car

Enabling the-Connected-Car-Java

Why TPM in Automotive?

OTT for Mobile Devices

Standardizing the tee with global platform and RISC-V

Trust and Cloud computing, removing the need for the consumer to trust their ...

Schneider-Electric & NextNine – Comparing Remote Connectivity Solutions

HKG18-212 - Trusted Firmware M: Introduction

Developing for Industrial IoT with Linux OS on DragonBoard™ 410c: Session 4

Trusted Computing security _platform.ppt

Trust and Cloud Computing, removing the need to trust your cloud provider

Increase IBM i Security & Accelerate Compliance with New Syncsort Security Re...

Welcome to Team TSI.

ECU Flashing: Flash Bootloaders that Facilitate ECU Reprogramming

ISACA SV Chapter: Securing Software Supply Chains

Curiosity and fourTheorem present: From Coverage Guesswork to Targeted Test G...

XPDDS19 Keynote: Xen in Automotive - Artem Mygaiev, Director, Technology Solu...

Praetorian secure encryption_services_overview

Praetorian_Secure_EncryptionServices_Overview

More from ITU

Do we need a wakeup call to keep driver-less cars protected?

ITU

Global Virtual Mobile Network for Car manufacturers

ITU

Coordination of Threat Analysis in ICT Ecosystems

ITU

Learning from the past: Systematization for Attacks and Countermeasures on Mo...

ITU

Trustworthy networking and technical considerations for 5G

ITU

The role of Bicycles and E-Bikes in the future development of Intelligent Tra...

ITU

Connected Cars & 5G

ITU

5G for Connected and Automated Driving

ITU

The Connected Vehicle - Challenges and Opportunities.

ITU

Machine learning for decentralized and flying radio devices

ITU

This presentation discusses matters of machine learning for decentralized and flying radio devices. This presentation was given during the ITU-T workshop on Machine Learning for 5G and beyond, held at ITU HQ in Geneva, Switzerland on 29 Jan 18. More information on the workshop can be found here: https://www.itu.int/en/ITU-T/Workshops-and-Seminars/20180129/Pages/default.aspx Join our upcoming forums and workshops here: https://www.itu.int/en/ITU-T/Workshops-and-Seminars/Pages/default.aspx https://www.slideshare.net/ITU/ai-and-machine-learning

AI and machine learning

ITU

This presentation discusses matters of AI and machine learning. This presentation was given during the ITU-T workshop on Machine Learning for 5G and beyond, held at ITU HQ in Geneva, Switzerland on 29 Jan 18. More information on the workshop can be found here: https://www.itu.int/en/ITU-T/Workshops-and-Seminars/20180129/Pages/default.aspx Join our upcoming forums and workshops here: https://www.itu.int/en/ITU-T/Workshops-and-Seminars/Pages/default.aspx

Machine learning for 5G and beyond

ITU

This presentation discusses matters of machine learning for 5G and beyond, towards a reliable and efficient reconstruction of radio maps. This presentation was given during the ITU-T workshop on Machine Learning for 5G and beyond, held at ITU HQ in Geneva, Switzerland on 29 Jan 18. More information on the workshop can be found here: https://www.itu.int/en/ITU-T/Workshops-and-Seminars/20180129/Pages/default.aspx

Efficient Deep Learning in Communications

ITU

AI for Good Global Summit - 2017 Report

ITU

Driven by the rapid progress in Artificial Intelligence (AI) research, intelligent machines are gaining the ability to learn, improve and make calculated decisions in ways that will enable them to perform tasks previously thought to rely solely on human experience, creativity, and ingenuity. As a result, we will in the near future see large parts of our lives influenced by AI. AI innovation will also be central to the achievement of the United Nations' Sustainable Development Goals (SDGs) and will help solving humanity's grand challenges by capitalizing on the unprecedented quantities of data now being generated on sentiment behavior, human health, commerce, communications, migration and more. With large parts of our lives being influenced by AI, it is critical that government, industry, academia and civil society work together to evaluate the opportunities presented by AI, ensuring that AI benefits all of humanity. Responding to this critical issue, ITU and the XPRIZE Foundation organized AI for Good Global Summit in Geneva, 7-9 June, 2017 in partnership with a number of UN sister agencies. The Summit aimed to accelerate and advance the development and democratization of AI solutions that can address specific global challenges related to poverty, hunger, health, education, the environment, and others. The Summit provided a neutral platform for government officials, UN agencies, NGO's, industry leaders, and AI experts to discuss the ethical, technical, societal and policy issues related to AI, offer reccommendations and guidance, and promote international dialogue and cooperation in support of AI innovation. Please visit the AI for Good Global Summit page for more resources: https://www.itu.int/en/ITU-T/AI/Pages/201706-default.aspx If you would like to speak, partner or sponsor the 2018 edition of the summit, please contact: ai@itu.int

Standardization of XDSL and MGfast in ITU-T SG15

ITU

One World One Global Sim

ITU

ICTs, LDCs and the SDGs

ITU

Collection Methodology for Key Performance Indicators for Smart Sustainable C...

ITU

These indicators have been developed to provide cities with a consistent and standardised method to collect data and measure performance and progress to:  achieving the Sustainable Development Goals (SDGs)  becoming a smarter city  becoming a more sustainable city The indicators will enable cities to measure their progress over time, compare their performance to other cities and through analysis and sharing allow for the dissemination of best practices and set standards for progress in meeting the Sustainable Development Goals (SDGs) at the city level. For more information visit: https://www.itu.int/en/ITU-T/ssc/united/Pages/default.aspx

Enhancing innovation and participation in smart sustainable cities

ITU

The United for Smart Sustainable Cities (U4SSC) initiative was launched by the International Telecommunication Union (ITU) and United Nations Economic Commission for Europe (UNECE) in May 2016. The first phase of this initiative, which was conducted via three Working Groups, was completed in April 2017. This flipbook brings together the work done in Working Group 3 (WG3) for Enhancing Innovation and Participation in Smart Sustainable Cities. WG3 is formed of a group of global experts and practitioners to facilitate knowledge sharing and partnership building on smart cities, with the aim of formulating strategic guidelines and case studies for enhancing innovation and participation in smart sustainable cities. More specifically, WG3 addresses various topics on smart governance, smart economy and smart people with the aim of achieving strong and symbiotic governance, economics and society. For more information visit: https://www.itu.int/en/ITU-T/ssc/united/Pages/default.aspx

Implementing SDG11 by connecting sustainability policies and urban planning p...

ITU

In this guidance document, we study the advantages of using ICT technologies to support the implementation of the Sustainable Development Goals, namely SDG 11, by facilitating the missing linkages that exist between sustainability policies and urban-planning practices through digitally-enabled urban actions. These urban actions will be shaped as recommendations that will put forward physical and non-physical advice to help the user improve the implementation of both SDG 11 and the New Urban Agenda. For more information visit: https://www.itu.int/en/ITU-T/ssc/united/Pages/default.aspx

More from ITU (20)

Do we need a wakeup call to keep driver-less cars protected?

Global Virtual Mobile Network for Car manufacturers

Coordination of Threat Analysis in ICT Ecosystems

Learning from the past: Systematization for Attacks and Countermeasures on Mo...

Trustworthy networking and technical considerations for 5G

The role of Bicycles and E-Bikes in the future development of Intelligent Tra...

Connected Cars & 5G

5G for Connected and Automated Driving

The Connected Vehicle - Challenges and Opportunities.

Machine learning for decentralized and flying radio devices

AI and machine learning

Machine learning for 5G and beyond

Efficient Deep Learning in Communications

AI for Good Global Summit - 2017 Report

Standardization of XDSL and MGfast in ITU-T SG15

One World One Global Sim

ICTs, LDCs and the SDGs

Collection Methodology for Key Performance Indicators for Smart Sustainable C...

Enhancing innovation and participation in smart sustainable cities

Implementing SDG11 by connecting sustainability policies and urban planning p...

Recently uploaded

Accelerate your Kubernetes clusters with Varnish Caching

Thijs Feryn

PHP Frameworks: I want to break free (IPC Berlin 2024)

Ralf Eggert

In this presentation, we examine the challenges and limitations of relying too heavily on PHP frameworks in web development. We discuss the history of PHP and its frameworks to understand how this dependence has evolved. The focus will be on providing concrete tips and strategies to reduce reliance on these frameworks, based on real-world examples and practical considerations. The goal is to equip developers with the skills and knowledge to create more flexible and future-proof web applications. We'll explore the importance of maintaining autonomy in a rapidly changing tech landscape and how to make informed decisions in PHP development. This talk is aimed at encouraging a more independent approach to using PHP frameworks, moving towards a more flexible and future-proof approach to PHP development.

When stars align: studies in data quality, knowledge graphs, and machine lear...

Elena Simperl

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

Paul Groth

"Impact of front-end architecture on development cost", Viktor Turskyi

Fwdays

I have heard many times that architecture is not important for the front-end. Also, many times I have seen how developers implement features on the front-end just following the standard rules for a framework and think that this is enough to successfully launch the project, and then the project fails. How to prevent this and what approach to choose? I have launched dozens of complex projects and during the talk we will analyze which approaches have worked for me and which have not.

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

Product School

ODC, Data Fabric and Architecture User Group

CatarinaPereira64715

Essentials of Automations: Optimizing FME Workflows with Parameters

Safe Software

Are you looking to streamline your workflows and boost your projects’ efficiency? Do you find yourself searching for ways to add flexibility and control over your FME workflows? If so, you’re in the right place. Join us for an insightful dive into the world of FME parameters, a critical element in optimizing workflow efficiency. This webinar marks the beginning of our three-part “Essentials of Automation” series. This first webinar is designed to equip you with the knowledge and skills to utilize parameters effectively: enhancing the flexibility, maintainability, and user control of your FME projects. Here’s what you’ll gain: - Essentials of FME Parameters: Understand the pivotal role of parameters, including Reader/Writer, Transformer, User, and FME Flow categories. Discover how they are the key to unlocking automation and optimization within your workflows. - Practical Applications in FME Form: Delve into key user parameter types including choice, connections, and file URLs. Allow users to control how a workflow runs, making your workflows more reusable. Learn to import values and deliver the best user experience for your workflows while enhancing accuracy. - Optimization Strategies in FME Flow: Explore the creation and strategic deployment of parameters in FME Flow, including the use of deployment and geometry parameters, to maximize workflow efficiency. - Pro Tips for Success: Gain insights on parameterizing connections and leveraging new features like Conditional Visibility for clarity and simplicity. We’ll wrap up with a glimpse into future webinars, followed by a Q&A session to address your specific questions surrounding this topic. Don’t miss this opportunity to elevate your FME expertise and drive your projects to new heights of efficiency.

The Art of the Pitch: WordPress Relationships and Sales

Laura Byrne

Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes? All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

BookNet Canada

The publishing industry has been selling digital audiobooks and ebooks for over a decade and has found its groove. What’s changed? What has stayed the same? Where do we go from here? Join a group of leading sales peers from across the industry for a conversation about the lessons learned since the popularization of digital books, best practices, digital book supply chain management, and more. Link to video recording: https://bnctechforum.ca/sessions/selling-digital-books-in-2024-insights-from-industry-leaders/ Presented by BookNet Canada on May 28, 2024, with support from the Department of Canadian Heritage.

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

UiPathCommunity

💥 Speed, accuracy, and scaling – discover the superpowers of GenAI in action with UiPath Document Understanding and Communications Mining™: See how to accelerate model training and optimize model performance with active learning Learn about the latest enhancements to out-of-the-box document processing – with little to no training required Get an exclusive demo of the new family of UiPath LLMs – GenAI models specialized for processing different types of documents and messages This is a hands-on session specifically designed for automation developers and AI enthusiasts seeking to enhance their knowledge in leveraging the latest intelligent document processing capabilities offered by UiPath. Speakers: 👨‍🏫 Andras Palfi, Senior Product Manager, UiPath 👩‍🏫 Lenka Dulovicova, Product Program Manager, UiPath

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

FIDO Alliance

GraphRAG is All You need? LLM & Knowledge Graph

Guy Korland

Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs. 1. Unifying Large Language Models and Knowledge Graphs: A Roadmap. https://arxiv.org/abs/2306.08302 2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs: https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/

DevOps and Testing slides at DASA Connect

Kari Kakkonen

Connector Corner: Automate dynamic content and events by pushing a button

DianaGray10

Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to: Create a campaign using Mailchimp with merge tags/fields Send an interactive Slack channel message (using buttons) Have the message received by managers and peers along with a test email for review But there’s more: In a second workflow supporting the same use case, you’ll see: Your campaign sent to target colleagues for approval If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team But—if the “Reject” button is pushed, colleagues will be alerted via Slack message Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors. And... Speakers: Akshay Agnihotri, Product Manager Charlie Greenberg, Host

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

Tobias Schneck

As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other? Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

James Anderson

Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management. The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM). Speakers: Bob Boule Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle. Gopinath Rebala Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

Thierry Lestable

UiPath Test Automation using UiPath Test Suite series, part 4

DianaGray10

Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap. The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies. Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques What will you get from this session? 1. Insights into SAP testing best practices 2. Heatmap utilization for testing 3. Optimization of testing processes 4. Demo Topics covered: Execution from the test manager Orchestrator execution result Defect reporting SAP heatmap example with demo Speaker: Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

Product School

Recently uploaded (20)

Accelerate your Kubernetes clusters with Varnish Caching

PHP Frameworks: I want to break free (IPC Berlin 2024)

When stars align: studies in data quality, knowledge graphs, and machine lear...

To Graph or Not to Graph Knowledge Graph Architectures and LLMs

"Impact of front-end architecture on development cost", Viktor Turskyi

Unsubscribed: Combat Subscription Fatigue With a Membership Mentality by Head...

ODC, Data Fabric and Architecture User Group

Essentials of Automations: Optimizing FME Workflows with Parameters

The Art of the Pitch: WordPress Relationships and Sales

Transcript: Selling digital books in 2024: Insights from industry leaders - T...

Dev Dives: Train smarter, not harder – active learning and UiPath LLMs for do...

FIDO Alliance Osaka Seminar: Passkeys and the Road Ahead.pdf

GraphRAG is All You need? LLM & Knowledge Graph

DevOps and Testing slides at DASA Connect

Connector Corner: Automate dynamic content and events by pushing a button

Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024

GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...

Empowering NextGen Mobility via Large Action Model Infrastructure (LAMI): pav...

UiPath Test Automation using UiPath Test Suite series, part 4

From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...

Securing the future of Automotive

1. Securing the future of Automotive

2. Automotive Update • With the rapidly increasing amount of designs using Ethernet for communication in cars, the need for security is increasing • Compared to the first generation of Ethernet in cars, the upcoming architectures have much more complex use cases • Ethernet is now entering ADAS domains in the car where the need for safe and secure communication is paramount 2 More than a standard switch is required to address these needs: Marvell’s Secure Automotive Ethernet Switch SoC

3. Areas to Secure 3 Software Configuration Runtime configuration access Diagnostic access Configuration or firmware update Data exchange Intrusion detection/ prevention

4. Secure – Software Boot 4 Requirements: Ensure authenticity and integrity of any software running on the device Solution: Trusted Boot concept: • Uses asymmetric cryptography • Root of trust / trust anchor • Chain of trust • Only public key is needed locally • OEM has the private key to sign

5. Secure – Update 5 Requirements: Ensure authenticity and integrity of any software and/or configuration update before using it, and Ensure that any failure during the update process still results in a bootable and trusted firmware and configuration (fail-safe) Solution: Trusted Update concept: • Use the measures from Trusted Boot and Trusted Configuration for every update block before activation it • Use backup images to ensure fail- safe operation

6. Secure – Runtime Access Requirements: Ensure that only authenticated entities can access the device for Diagnostic, Configuration and Update Solution: Trusted Runtime Access concept: • Authenticate any and all access to the device • Protect and shut down any attempted unauthorized access 6

7. Intrusion Prevention/Intrusion Detection 7 Requirements: Detect Intruders and Prevent Intrusions Solution: Intrusion-safe concept: • Combine hardware pre-filtering with TCAM and ingress rate limiting with a Deep Packet Inspection (DPI) module to monitor data flow and detect anomalies • Log/report anomalies • Execute counter measures

8. SUMMARY Marvell provides you with the industry’s first secure automotive gigabit ethernet switch, enabling a new level of safe and robust data transmission in next- generation connected vehicles

Securing the future of Automotive

Recommended

Recommended

More Related Content

Similar to Securing the future of Automotive

Similar to Securing the future of Automotive (20)

More from ITU

More from ITU (20)

Recently uploaded

Recently uploaded (20)

Securing the future of Automotive