• Mehrschichtige Schutzkonzepte

    Multi-layered protection concepts

    Modern vehicles are a nodal point in the Internet of Things. While this increases convenience and versatility, it also presents a significantly bigger target for cyber attackers. Successfully minimizing the risks associated with manipulation and data abuse calls for multilevel protection concepts that take into account the complexity of modern vehicle architecture.

Schutzkonzept

An integrated solution for secure vehicle architecture is based on interlocking and complementing protective measures on all relevant system levels. Each of these levels presents its specific challenges with regard to potential attacks and their impact, and therefore requires a dedicated protection concept. ESCRYPT’s “defense in depth” approach integrates several defense levels with specific products and services to create an overall concept.

updates

Multiple lines of defense

 

1 Secure control units: protecting data and firmware

Security begins at the control unit level – this is the vehicle’s nerve center. ECUs produce, process, and exchange large amounts of sensitive data over the on-board network, which can become a target of cyber-attacks. Solutions for secure booting, secure debugging, software signing, and hardware security modules help to protect data and firmware at the ECU level.

2 Secure on-board network: protecting the integrity and confidentiality of critical network signals

Communication between the individual control units must be protected against manipulation, data theft, and attacks from potentially compromised ECUs. This requires secure protocols, strong key management, and secure on-board communication (SecOC).

3 Secure E/E architecture: domain separation and secure gateways

Network domains need to be isolated so that network components such as interfaces, the infotainment system, and safety-critical systems remain separate and therefore protected. Firewalls block any attempt by unauthorized external parties to send commands to individual devices or to the entire network. An intrusion detection system (IDS) reports anomalies in the network communication, allowing extensive prevention measures to be rolled out across the entire vehicle fleet.

4 Securely connected vehicle: protecting the interfaces

The vehicle is connected to the outside world via a number of interfaces. Secure communication protocols protect the connection to the cloud, a firewall shields the vehicle network, and vehicle-specific certificates protect firmware updates.

Sales Germany
Christian Schleiffer
Christian Schleiffer
Phone: +49-234-43870-276 Contact
Sales France
Ignace Paraiso
Ignace Paraiso
Phone: +33-1-75-34-50-60 Contact
Sales Italy
Francesco Vaia
Francesco Vaia
Phone: +39-011-3285-141 Contact
Sales America
Kevin Leonard
Kevin Leonard
Phone: +1-734-548-4711 Contact
Sales China
Xingwang Lu
Xingwang Lu
Phone: +86 21 2218-6251 Contact
Sales Korea
Haeseung Lee
Haeseung Lee
Phone: Tel. +82 31 326-6220 Contact
Sales India
Khushwant Pawar
Khushwant Pawar
Phone: +91 20 6725-4814 Contact
Sales Japan
Ayumu Yokouchi
Ayumu Yokouchi
Phone: +81-45-222-0974 Contact
Auto Shanghai 2021
Auto Shanghai 2021: Holistic Security for connected vehicles
read more
CycurIDS-ETH
CycurIDS-ETH: Intrusion detection for Ethernet-based E/E architectures
read more
escar Europe 2021
escar Europe 2021: Call for Papers now open
read more
CASAT Workshop Automotive Security
Online workshop: Automotive security
read more
CycurHSM CCC Digital Key
CycurHSM supports cybersecurity for CCC Digital Key
read more
Interview AUTOSAR-IDS
“Securing vehicles permanently and in a multilayered way”
read more
UN R155 & UN R156
UN R155 and UN R156 set framework for automotive cybersecurity
read more
Post-quantum cryptography
Post-quantum cryptography: White paper, consulting, recorded webinar
read more
security lifecycle management
AUTOSAR for security lifecycle management
read more
automotive ethernet congress 2021
Automotive Ethernet Congress: Security in zone-based E/E architectures
read more
escar USA
escar USA 2021: Call for Papers now open
read more
CES 2021
CES 2021: Securing V2X communications
read more
TISAX certification
ESCRYPT passes TISAX certification with flying colors
read more
Incident Response Service
Incident Response Service: Rapid assistance against cyberattacks
read more
AUTOSAR-VRTE
AUTOSAR Adaptive: Cybersecurity included
read more
engineer at keihin desktop computer
Keihin automotive ECUs: ESCRYPT cybersecurity included
read more
Language:
ISO 9001:2015 Home