• Mehrschichtige Schutzkonzepte

    Multi-layered protection concepts

    Modern vehicles are a nodal point in the Internet of Things. While this increases convenience and versatility, it also presents a significantly bigger target for cyber attackers. Successfully minimizing the risks associated with manipulation and data abuse calls for multilevel protection concepts that take into account the complexity of modern vehicle architecture.

Schutzkonzept

An integrated solution for secure vehicle architecture is based on interlocking and complementing protective measures on all relevant system levels. Each of these levels presents its specific challenges with regard to potential attacks and their impact, and therefore requires a dedicated protection concept. ESCRYPT’s “defense in depth” approach integrates several defense levels with specific products and services to create an overall concept.

updates

Multiple lines of defense

 

1 Secure control units: protecting data and firmware

Security begins at the control unit level – this is the vehicle’s nerve center. ECUs produce, process, and exchange large amounts of sensitive data over the on-board network, which can become a target of cyber-attacks. Solutions for secure booting, secure debugging, software signing, and hardware security modules help to protect data and firmware at the ECU level.

2 Secure on-board network: protecting the integrity and confidentiality of critical network signals

Communication between the individual control units must be protected against manipulation, data theft, and attacks from potentially compromised ECUs. This requires secure protocols, strong key management, and secure on-board communication (SecOC).

3 Secure E/E architecture: domain separation and secure gateways

Network domains need to be isolated so that network components such as interfaces, the infotainment system, and safety-critical systems remain separate and therefore protected. Firewalls block any attempt by unauthorized external parties to send commands to individual devices or to the entire network. An intrusion detection system (IDS) reports anomalies in the network communication, allowing extensive prevention measures to be rolled out across the entire vehicle fleet.

4 Securely connected vehicle: protecting the interfaces

The vehicle is connected to the outside world via a number of interfaces. Secure communication protocols protect the connection to the cloud, a firewall shields the vehicle network, and vehicle-specific certificates protect firmware updates.

Sales Germany
Christian Schleiffer
Christian Schleiffer
Phone: +49-234-43870-276 Contact
Sales France
Ignace Paraiso
Ignace Paraiso
Phone: +33-1-75-34-50-60 Contact
Sales Italy
Francesco Vaia
Francesco Vaia
Phone: +39-011-3285-141 Contact
Sales America
Kevin Leonard
Kevin Leonard
Phone: +1-734-548-4711 Contact
Sales China
Yi Tang
Yi Tang
Phone: +86 21 2218-6251 Contact
Sales Korea
Sangjun Park
Sangjun Park
Phone: Tel. +82 31 326-6220 Contact
Sales India
Khushwant Pawar
Khushwant Pawar
Phone: +91 20 6725-4814 Contact
Sales Japan
Ayumu Yokouchi
Ayumu Yokouchi
Phone: +81-45-222-0974 Contact
Martin Emele
Auto-ISAC appoints Dr. Martin Emele new European Regional Director
read more
ETAS new office US
New corporate home in the U.S.: State-of-the-art security lab
read more
ASRG-Webinar Security Testing
ASRG webinar: Seven golden rules of automotive security testing
read more
Podcast Automotive Cybersecurity Talk
Now as a podcast! Secure boot, Automotive Ethernet, standards and regu…
read more
Security automated driving
Automated driving: When safety meets security
read more
Podcast Automotive Ethernet
Podcast: The Ins and Outs of Automotive Ethernet
read more
Podcast Cybersecurity Talk
Podcast: Secure Boot – What you need to know
read more
Security Training
Security training 'ISO/SAE 21434': From engineering to management
read more
PROOF in Alyne
Software-supported management system for automotive cybersecurity
read more
Securiyt Monitoring
Security monitoring: Keeping an eye on the fleet
read more
APT Response Service Provider
BSI recommends ESCRYPT as APT response service provider
read more
ESCRYPT_Bosch_eAxle
Invented for life, secured by ESCRYPT
read more
Auto Shanghai 2021
Auto Shanghai 2021: Holistic Security for connected vehicles
read more
CycurIDS-ETH
CycurIDS-ETH: Intrusion detection for Ethernet-based E/E architectures
read more
escar Europe 2021
escar Europe 2021: Call for Papers now open
read more
CASAT Workshop Automotive Security
Online workshop: Automotive security
read more
Language:
ISO 9001:2015 Home