Welcome to Scribd!

A Secure Ipv6-Based Architecture For Internal Automotive Networks

Uploaded by

0% found this document useful (0 votes)

11 views7 pages

This document discusses a secure IPv6-based architecture for internal automotive networks. It proposes using IP as a homogeneous solution across an Ethernet backbone to interconnect up to 70 electronic control units. The architecture defines three security zones (high, comfort, and environmental) to isolate safety-critical functions. Unique local addresses are assigned to each control unit based on a vehicle identification number and manufacturer key to allow unique addressing while avoiding internet routing. Security gateways control communication between zones according to security policies. The proposed architecture aims to provide a standardized IP solution for automotive internal networks while integrating security and supporting inter-vehicle communication for services like vehicle diagnostics.

Original Description:

IPV6

Original Title

2012-03-26-seis-kit-ietf83-its

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

11 views7 pages

A Secure Ipv6-Based Architecture For Internal Automotive Networks

Uploaded by

Dragos Valentin Stefan

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 7

Search inside document

A Secure IPv6-based Architecture for

Internal Automotive Networks

Roland Bless
Institute of Telematics
Karlsruhe Institute of Technology (KIT)
Joint work with members of the SEIS Project

Seite 1

Focus of the Project

Modern vehicles contain up to 70+ electronic
control units (ECUs)
various automotive bus solution exist
need complex gateway for interworking

Use IP as homogeneous solution for the internal

communications
Mainly on top of a switched Ethernet

Integrate security
Identified three security zones (high, comfort,
environment)
high security zone contains safety relevant functions
No direct access from environment to high security
zone

Vendors: Daimler, BMW, VW, Audi, Bosch, EADS,

Continental, Infineon,
R. Bless IETF83 ITS informal meeting

Seite 2

Architecture
OBD
WLAN
USB CE
LTE

Security
Gateway
Ethernet/IP

Router

Ethernet/IP
Switch

Body & Cabin

Infotainment &
Cockpit

Driver
Assistance

R. Bless IETF83 ITS informal meeting

PSI5

Ethernet/IP
Switch

Ethernet/IP

LIN

CAN

LIN

CAN

Ethernet/IP

Flexray

Ethernet/IP

Internet

Engine & Power- Chassis

train Manager & Safety

Seite 3

Addressing IP-Subnets
IP subnet structure follows security zones
QoS orthogonal

Further structure according to functional domains

Direct communication between devices with the same
pair of (domain, security zone) possible
Domain

High Security

Comfort

Environmental

Zone

Net prefix

Controlled domain- and zone traversal

CRCS, HRCR
Enforcement of security policies

e.g. no route HE, explicit filtering rules

Filtering by ECUs possible, too.

R. Bless IETF83 ITS informal meeting

Seite 4

Use of IPv6 beneficial

Solution requires several subnets and IP
addresses per vehicle (some manufacturers
produce more than 10M vehicles per year)
Uniqueness (with high probability) of addresses
may help in some situations
BMW scheme embeds VIN7 into IPv6 prefix
Patent application filed
Privacy concerns?

R. Bless IETF83 ITS informal meeting

Seite 5

IPv6 addressing internal networks

Use of ULAs (Unique Local Addresses)
[RFC 4193] for internal communications
Prefix L
7

Global-ID

Subnet-ID

Interface-ID

Subnet matrix

Bits

per ECU i/f

rightbits(SHA-2(VIN | OEM-specific-256bit Key), 40)

Properties:
Global unique with high probability, cannot be routed in
the Internet
Allows simple filtering according to prefix FC00::/7
No special processing within applications
Uniqueness simplifies communication to several
vehicles, e.g., for diagnosis in garage
R. Bless IETF83 ITS informal meeting

Seite 6

Questions
Discussion of using ULAs?
ULA-C useful?
Must be prepared to handle conflicts nevertheless

Security aspects, e.g., adapted IKE (no DH)

BMW: Is there also interest in standardizing open
middleware protocols?
Service Oriented Middleware over IP
(SOME/IP)

R. Bless IETF83 ITS informal meeting

Seite 7

PC-based Instrumentation and Control
From Everand
PC-based Instrumentation and Control
Mike Tooley
Rating: 3 out of 5 stars
3/5 (2)
IPv6 Socket API Extensions: Programmer's Guide
From Everand
IPv6 Socket API Extensions: Programmer's Guide
Qing Li
No ratings yet
Xilinx - Solutions For Automotive
Document99 pages
Xilinx - Solutions For Automotive
Andres Sanchez
No ratings yet
infoPLC Net L02 Advanced Micro800 PPT PDF
Document19 pages
infoPLC Net L02 Advanced Micro800 PPT PDF
Alaa Ramadan
No ratings yet
Industrial Internet of Things (Iiot)
Document49 pages
Industrial Internet of Things (Iiot)
Somu Eswar
No ratings yet
06 Hideki Goto - Toyota JasPar Industry
Document18 pages
06 Hideki Goto - Toyota JasPar Industry
Someshwar Danappa
No ratings yet
Automotive Ethernet TB
Document2 pages
Automotive Ethernet TB
Muthanna Ali
No ratings yet
VAES17 02 Ethernet-Journey-JLR Bath Shinde
Document20 pages
VAES17 02 Ethernet-Journey-JLR Bath Shinde
Abii JiTh
No ratings yet
Sample of Notes
Document54 pages
Sample of Notes
Tфmmy Wilmark
No ratings yet
List of Automation Protocols - Wikipedia, The Free Encyclopedia
Document5 pages
List of Automation Protocols - Wikipedia, The Free Encyclopedia
Arvind Kumawat
No ratings yet
CIP Motion - CIP Sync
Document33 pages
CIP Motion - CIP Sync
Pipe Castillo
No ratings yet
Designing Ethernet/Ip Machine/Skid Level Networks: Rev 5058-Co900D
Document33 pages
Designing Ethernet/Ip Machine/Skid Level Networks: Rev 5058-Co900D
droncanciom
No ratings yet
10 Gigabit Ethernet Vs Infinibandbasic
Document122 pages
10 Gigabit Ethernet Vs Infinibandbasic
Harsh Narang
No ratings yet
RSLogix 5000 V20 External
Document29 pages
RSLogix 5000 V20 External
ruben dario
0% (1)
Its - 04271147
Document8 pages
Its - 04271147
VladimirKolot
No ratings yet
The Need For Automotive Ethernet Conformance and Interoperability Testing.
Document2 pages
The Need For Automotive Ethernet Conformance and Interoperability Testing.
Ixia
No ratings yet
SatCom Buyers Guide
Document30 pages
SatCom Buyers Guide
Arun Sasi
100% (1)
Asterisk Bim 17.01.07
Document27 pages
Asterisk Bim 17.01.07
Muhamed Halilovic
No ratings yet
Advanced CAN Docu
Document103 pages
Advanced CAN Docu
Amine Toukabri
No ratings yet
Using Embedded Web-Servers in Industrial Applications
Document8 pages
Using Embedded Web-Servers in Industrial Applications
Bharath Palanisamy
No ratings yet
Ethernet-Based Industrial Communication Protocols
Document40 pages
Ethernet-Based Industrial Communication Protocols
racordoba
100% (2)
CVD City Wifi-Cisco
Document49 pages
CVD City Wifi-Cisco
Sharif Hasan
No ratings yet
Logtel - Training Catalog
Document7 pages
Logtel - Training Catalog
Hagit Klein-Bagno
No ratings yet
Iot Protocols
Document5 pages
Iot Protocols
Uma
No ratings yet
Programming The Internet of Things
Document86 pages
Programming The Internet of Things
Khairul Alam Taifur
100% (1)
Network Selection Guide
Document52 pages
Network Selection Guide
augur886
100% (1)
Open Standards For Storage & Networking: David Dale, Industry Evangelist Chairman SNIA IP Storage Forum
Document30 pages
Open Standards For Storage & Networking: David Dale, Industry Evangelist Chairman SNIA IP Storage Forum
Nischal Maheshwari
No ratings yet
End-to-End Network Services: What Is Really Missing?: Mark Williams Liaison, R&E Networks, APAC
Document28 pages
End-to-End Network Services: What Is Really Missing?: Mark Williams Liaison, R&E Networks, APAC
Kishore Kumar
No ratings yet
Brochure Rugged Railway COTS Solutions Rev20180904
Document7 pages
Brochure Rugged Railway COTS Solutions Rev20180904
Nguyen Hoang Anh
No ratings yet
Logix5000 ™ & Rslogix™ 5000 Overview
Document75 pages
Logix5000 ™ & Rslogix™ 5000 Overview
Marcio Melo
No ratings yet
Eight Weeks Industrial Training: "Network Security"
Document27 pages
Eight Weeks Industrial Training: "Network Security"
himanshu SHARMA
No ratings yet
Brkiot 2555
Document92 pages
Brkiot 2555
Alberto Arellano
No ratings yet
Proxim Tsunam GX800 VAR Training Presentation
Document76 pages
Proxim Tsunam GX800 VAR Training Presentation
proximwireless
No ratings yet
Automotive Data Communication Buses
Document3 pages
Automotive Data Communication Buses
Silvio Madety
No ratings yet
Omotive System
Document22 pages
Omotive System
Pooja
100% (1)
Broadcom NetXtremeII Server T7.0
Document292 pages
Broadcom NetXtremeII Server T7.0
cristiancca123
No ratings yet
Carrier Grade NAT
Document111 pages
Carrier Grade NAT
yohanesfc
100% (1)
Cisco Ata 186 Analog Telephone Adaptor: Data Sheet
Document6 pages
Cisco Ata 186 Analog Telephone Adaptor: Data Sheet
Joe Doe
No ratings yet
EntVoice IP PBX Appliance
Document6 pages
EntVoice IP PBX Appliance
ENTERUX
No ratings yet
List of Lab Experiments: Department of Electronics & Telecommunication Engg. SUBJECT: Internet of Things
Document21 pages
List of Lab Experiments: Department of Electronics & Telecommunication Engg. SUBJECT: Internet of Things
Amit Sheoran
No ratings yet
Bus de Datos Ethenet Obd2 Doip
Document36 pages
Bus de Datos Ethenet Obd2 Doip
Alberto Abarca
No ratings yet
Compact Machine Solutions: Increased Capabilities To Maximize Your Small and Medium Size Machines
Document50 pages
Compact Machine Solutions: Increased Capabilities To Maximize Your Small and Medium Size Machines
José Hein
No ratings yet
DOI Presentation 3.17
Document69 pages
DOI Presentation 3.17
陈奇
No ratings yet
Ceragon IP-20
Document50 pages
Ceragon IP-20
Rafael Guerra
No ratings yet
Lin Overview Present
Document38 pages
Lin Overview Present
Hareesh Patil
No ratings yet
IOT-Module 3
Document73 pages
IOT-Module 3
M.A raja
No ratings yet
Open Source Industrial Iot: Middleware For A Modbus Energy Monitoring Solution (
Document24 pages
Open Source Industrial Iot: Middleware For A Modbus Energy Monitoring Solution (
meenakshi
No ratings yet
IEC Brochure
Document16 pages
IEC Brochure
Lê An Mai Cơ
No ratings yet
Hardware Design Consideration
Document6 pages
Hardware Design Consideration
Welington Oliveira
No ratings yet
PaloAPAN ACE Traininglto Training Print 01-30
Document27 pages
PaloAPAN ACE Traininglto Training Print 01-30
AshwaniPatel
100% (2)
MPLS Management Technology Overview
Document27 pages
MPLS Management Technology Overview
Isidora Popescu
No ratings yet
Bardolino Kinetix Guaglio
Document20 pages
Bardolino Kinetix Guaglio
Huguito Cruz
No ratings yet
Fieldbus Basics Book en
Document140 pages
Fieldbus Basics Book en
jorgecasalini
No ratings yet
LIN Protocol Description: 15 October 2014 TSPG - 8/16 Bit Products Division
Document38 pages
LIN Protocol Description: 15 October 2014 TSPG - 8/16 Bit Products Division
cartronix2010
No ratings yet
OTJNR Mod 01
Document84 pages
OTJNR Mod 01
has_mmu
No ratings yet
Instructor Materials Chapter 3: Branch Connections: CCNA Routing and Switching Connecting Networks
Document30 pages
Instructor Materials Chapter 3: Branch Connections: CCNA Routing and Switching Connecting Networks
Ferdian Adi
No ratings yet
Wireless Network Mikrotik
Document36 pages
Wireless Network Mikrotik
Marco Nm Martinez Andrade
No ratings yet
Microsoft® Exchange Server 2003 Deployment and Migration
From Everand
Microsoft® Exchange Server 2003 Deployment and Migration
Kieran McCorry
No ratings yet
IPv6 Network Programming
From Everand
IPv6 Network Programming
Jun-ichiro itojun Hagino
No ratings yet
Information Technology HandBook
From Everand
Information Technology HandBook
Duong Tran
Rating: 3 out of 5 stars
3/5 (1)
The Internet in Teaching and Learning
Document12 pages
The Internet in Teaching and Learning
Cinderella Rodemio
0% (1)
Subnetting Summary Youtube - Com Romeroc24
Document40 pages
Subnetting Summary Youtube - Com Romeroc24
Oscar Javier Cerquera Chavarro
No ratings yet
E-Tendering Synopsis
Document3 pages
E-Tendering Synopsis
Kunal Singhvi
100% (1)
Casa Datasheet C100G
Document5 pages
Casa Datasheet C100G
Pablo Cahuich
No ratings yet
BUS 500 Draft Portfolio
Document18 pages
BUS 500 Draft Portfolio
farjana taslim
No ratings yet
Cyber Crimes & Cyber Law
Document6 pages
Cyber Crimes & Cyber Law
Ananthanarayanan Vaidyanathan
No ratings yet
Internet Terminology
Document8 pages
Internet Terminology
geethkeets
No ratings yet
Common Ict Tools Used in Teachersc2b4 Daily Work
Document48 pages
Common Ict Tools Used in Teachersc2b4 Daily Work
Rica Mae Salvador Serrano
No ratings yet
Referat Engleza
Document9 pages
Referat Engleza
RoxanaGrr
No ratings yet
Introduction To Maracas Final
Document4 pages
Introduction To Maracas Final
Kristin McClure
0% (1)
UFW Essentials: Common Firewall Rules and Commands: Block An IP Address
Document7 pages
UFW Essentials: Common Firewall Rules and Commands: Block An IP Address
Luis Eduardo Becerra Ruíz
No ratings yet
Ubiquiti Home Network Project Instructions 2023
Document222 pages
Ubiquiti Home Network Project Instructions 2023
aussiebear22
No ratings yet
Course Syllabus
Document2 pages
Course Syllabus
api-3738694
No ratings yet
Waves Central: User Guide
Document18 pages
Waves Central: User Guide
Farraz
No ratings yet
Information Technology and Automation Systems in Industrial Applications
Document9 pages
Information Technology and Automation Systems in Industrial Applications
Burim Fejzaj
No ratings yet
The Fourth Industrial Revolution
Document24 pages
The Fourth Industrial Revolution
ely
No ratings yet
Modul A - Client Servers - Itnsa - Lks Provinsi 2022
Document10 pages
Modul A - Client Servers - Itnsa - Lks Provinsi 2022
Ahmad Riyanto
No ratings yet
Rastreadores de Utorren
Document121 pages
Rastreadores de Utorren
Reymon Vargas
No ratings yet
Course Outline: Security Center: Enterprise Technical Certification
Document2 pages
Course Outline: Security Center: Enterprise Technical Certification
Lê Khắc Hưng
No ratings yet
Cloudstack Provider: Example Usage
Document38 pages
Cloudstack Provider: Example Usage
esiddharth
No ratings yet
Online Intermediary Liability in Malaysia Exploring Artificial Intelligence As Game-Changer' (2022) 3 MLJ Cvi
Document17 pages
Online Intermediary Liability in Malaysia Exploring Artificial Intelligence As Game-Changer' (2022) 3 MLJ Cvi
teyom55996
No ratings yet
Cns506m Legalethissues Locke s14
Document8 pages
Cns506m Legalethissues Locke s14
KATHY
No ratings yet
Full Stack Angularjs For Java Developers: Printed Book
Document1 page
Full Stack Angularjs For Java Developers: Printed Book
Rishabh Pandey
No ratings yet
q1 Emptech
Document91 pages
q1 Emptech
Krizford Cervantes
No ratings yet
Kertas Trial English Sarawak (Saratok) k1 2021
Document11 pages
Kertas Trial English Sarawak (Saratok) k1 2021
Ghench Newziq
No ratings yet
ALC Journal Sept 2014
Document51 pages
ALC Journal Sept 2014
Daniela Munca-Aftenev
No ratings yet
The Study On Resolutions of STRIDE Threat Model
Document3 pages
The Study On Resolutions of STRIDE Threat Model
dont4get
No ratings yet
What Is An ICT System
Document11 pages
What Is An ICT System
Yu Oscar Kpariongo
No ratings yet
BBC First Click Beginners Guide
Document60 pages
BBC First Click Beginners Guide
chinna
No ratings yet
BSNL Multiplay Seminar
Document104 pages
BSNL Multiplay Seminar
7sem
100% (1)