DeutschesFachbuch.de : Security Engineering for Vehicular IT Systems Improving the Trustworthiness and Dependability of Automotive IT Applications Von Marko Wolf

INHALTSVERZEICHNIS | öffnen

Table of Contents
Forewordv
Prefacevii
Table of Contentsxi
List of Figuresxv
List of Tablesxvii
List of Abbreviationsxix
I The Preliminaries 1
1 Introduction 3
1.1 Hope for the Best, Prepare for the Worst 3
1.2 Outline 7
1.3 Summary of Research Contributions 9
2 Related Work 11
3 Brief Background in Security and Cryptography 13
3.1 Enforcing the Secrecy of Secrets 13
3.2 Symmetric-Key Cryptography 14
3.2.1 Data Encryption Standard 15
3.2.2 Advanced Encryption Standard 17
3.3 Asymmetric-Key Cryptography 19
3.3.1 Rivest Shamir Adleman 22
3.3.2 Elliptic Curve Cryptography 23
3.4 Recommended Key Lengths 26
3.5 Hash Functions 27
3.6 Message Authentication Codes 29
3.6.1 Block Cipher Based Message Authentication Codes 30
3.6.2 Hash Function Based Message Authentication Codes 30
3.7 Cryptographic Implementations 31
3.7.1 Software Implementations 31
3.7.2 Hardware Implementations 32
3.8 Trusted Computing Technology 35
3.8.1 Trusted Computing Components 35
3.8.2 Trusted Computing Basic Functionalities 37
3.9 Security Schemes in the Automotive Domain 40
3.9.1 Digital Signatures 40
3.9.2 Key Exchange and Hybrid Encryption 41
3.9.3 Public-Key Infrastructure 43
3.9.4 Challenge-Response Protocol 44
3.10 Cryptanalysis 45
II The Threats 47
4 Security-Critical Vehicular Applications 49
4.1 Introduction 49
4.2 Theft Protection 49
4.2.1 Electronic Immobilizer 50
4.2.2 Remote Door Lock 51
4.3 Counterfeit and Intellectual Property Protection 53
4.3.1 Counterfeit Protection 53
4.3.2 Intellectual Property Protection 53
4.4 Software Updates 54
4.5 After-Sale Applications 56
4.5.1 Feature Activation 56
4.5.2 Infotainment 57
4.6 Legal Applications 58
4.6.1 Milage Counter 58
4.6.2 Electronic License Plate 59
4.6.3 Digital Tachograph 60
4.6.4 Event Data Recorder 61
4.6.5 Electronic Log Book 62
4.6.6 Road Pricing 62
4.7 Vehicular Communication 63
4.7.1 In-Vehicle Communication 63
4.7.2 Vehicle-to-Device Communication 64
4.7.3 Vehicle-to-Infrastructure Communication 66
4.7.4 Vehicle-to-Vehicle Communication 68
4.8 Protection of Safety-Critical Applications 71
4.9 Privacy Protection 73
5 Attackers and Attacks in the Automotive Domain 77
5.1 Attackers in the Automotive Domain 77
5.2 Attacks in the Automotive Domain 80
5.2.1 Logical Attacks 82
5.2.2 Physical Attacks 86
[weiter lesen]

REGISTER | öffnen

Index
Aaccess control 96
Advanced Encryption Standard 17
attack
active 86
aggregation 84
- cryptographic 82
- denial-of-service 85, 87
- dynamic 87
- eavesdropping 84
- exploit 88
- fault 87
- impersonation 85
- injection 84
- invasive 86
- jamming 52, 85
- logical 82
- mafia 51
- man-in-the-middle 43, 129
- manipulation 84
- masquerading 85
- modification 88
- offline 81, 95
- passive 86
- penetration 88
- perturbation 87
- physical 86
- privacy 73, 85
- race condition 129
- relay 51, 85, 129
- replay 85, 129
- sidechannel 87
- software 83
- static 87
- vehicular communication 84
attacker
- classes 79
- external 78
- internal 78
- model 94
- offline 79
- online 78
authenticity 91
- controller 155
availability 92
Bbus
- CAN 150, 154
- Flex-Ray 151, 154
- LIN 150, 154
- MOST 151, 154
Ccertificate
- authority 43
- digital 44
- revocation list 44
challenge-response 44
channel
- secure 96
- trusted 96
checksum 133
cipher 3 DES 16
- AES 17
- block 14
- DES 15
- ECC 23
- OTP 15
- Rijndael 18
- RSA 22
- stream 14
- Vernam 15
collision resistance 27
component
- authentication 96
- identification 96
- protection 122
confidentiality 91
controller
- authenticity 155
communication.. 149, 152, 155
gateway 158
cooperative driving 70
cryptanalysis 13, 45
cryptography 13
- asymmetric 19
- elliptic curve 23
- hardware implementations 32
- public-key 19
- secured 37
- software implementations 31
- symmetric 14
cryptology 13
DData Encryption Standard 15
digital
- certificate 44
- fingerprint 27
- signature 21, 40, 134, 141
- tachograph 60
discrete logarithm problem 20
DSRC 69
Eelectronic
- immobilizer 50
- licence plate 59
- log book 62
elliptic curve 23
- binary fields 24
- crypto system 25
- point addition 24
- prime fields 24
- schemes 25
embedded
- security 7
- systems 6, 32
error detection 27
event data recorder 61, 93
Ffault-tolerance 4
feature activation 56
Feistel network 16
GGalois fields 23
Hhash function 27, 133
- keyed 29
hybrid encryption 21
Iimmobilizer 50
infotainment 57
integer factorization problem 20
integrity 91
intrusion
- detection 158
- response 159
Kkey
- exchange 21, 41
- lengths 26
- private 20
- public 20
- round 16, 19
- security 26
- symmetric 14
keyless entry 51
Llocation based services 67
MMAC 29, 133
- block cipher based 30
- hash function based 30
Merkle-Damgard construction 27
Nnon-repudiation 148
Oone-way function 27
organizational security .167
Pphysical security 107
physical unclonable function 125
policy
- enforcement 92
privacy 73, 85, 92, 148
protection
- component 122
- counterfeit 53
- intellectual property 53
- milage counter 58
privacy 73
- software 128
- software updates 141
- theft 49
public-key infrastructure 43
- vehicular 163
Rremote door lock 51
reverse engineering 88
Rivest Shamir Adleman 22
rolling codes 52
Ssafety 4, 71
secure
- audit 96
- authentication 125
- communication 96
- initialization 96, 132
sensor 97
software updates 141
storage 97, 146
- vehicular communication 147
security
- anchor 110
- architectures 115
- box 115
- controller 113
- economic 51, 61
- environment 94
- IT 3
- module 110
- objectives 91
- organizational 167
- physical 107
- requirements 94
schemes 40
software 128
security architecture hardware
- central 116
- distributed 117
semi-central 119
software
- hardware isolation 139
- monolithic 138
- virtualized 136
SHA-1 28
social engineering 88
software
[weiter lesen]