Infineon Technologies AG and ESCRYPT GmbH are offering a new coordinated hardware-software solution in automotive security. The interaction between the second generation of the multicore microcontroller family AURIX™ (TC3xx – AURIX™2G) and specifically tailored CycurHSM security software impedes manipulation of in-vehicle electronic control units and improves IT security for applications like Software-Update-Over-the-Air (SOTA) and automated driving.
AURIX™2G (TC3xx) microcontrollers steer communication processes, perform monitoring and security tasks and support security protocols. Every AURIX™2G (TC3xx) microcontroller has an integrated Hardware Security Module (HSM). It generates and stores the keys. This permits secure booting, flashing and debugging. Additionally, the HSM improves protection against malware, unauthorized software updates and manipulation of vehicle software or data transmission.
With CycurHSM, ESCRYPT is offering a software stack specifically tailored to AURIX and HSM. CycurHSM facilitates hardware-based security functions, such as data encryption and authentication, true random number generators (TRNG) and secured flash memory. Added to this come innovative security functions like runtime manipulation detection, which monitors the authenticity of application software during runtime.
Compared to a purely software-based solution, this hardware-software approach consisting of AURIX and CycurHSM is significantly more powerful. Since the HSM security functions are physically encapsulated, the ECU host controller is able to fully focus on its actual tasks. Additionally, ECU manufacturers will find this hardware-software solution particularly easy to implement. It is AUTOSAR-compatible. Instead of developing further security functions, configuration of CycurHSM is all that is needed. With this “turnkey” solution, the development expenditure for IT security in vehicle communication can be reduced up to 90 per cent.