• Mehrschichtige Schutzkonzepte

    Multi-layered protection concepts

    Modern vehicles are a nodal point in the Internet of Things. While this increases convenience and versatility, it also presents a significantly bigger target for cyber attackers. Successfully minimizing the risks associated with manipulation and data abuse calls for multilevel protection concepts that take into account the complexity of modern vehicle architecture.

Schutzkonzept

An integrated solution for secure vehicle architecture is based on interlocking and complementing protective measures on all relevant system levels. Each of these levels presents its specific challenges with regard to potential attacks and their impact, and therefore requires a dedicated protection concept. ESCRYPT’s “defense in depth” approach integrates several defense levels with specific products and services to create an overall concept.

updates

Multiple lines of defense

 

1 Secure control units: protecting data and firmware

Security begins at the control unit level – this is the vehicle’s nerve center. ECUs produce, process, and exchange large amounts of sensitive data over the on-board network, which can become a target of cyber-attacks. Solutions for secure booting, secure debugging, software signing, and hardware security modules help to protect data and firmware at the ECU level.

2 Secure on-board network: protecting the integrity and confidentiality of critical network signals

Communication between the individual control units must be protected against manipulation, data theft, and attacks from potentially compromised ECUs. This requires secure protocols, strong key management, and secure on-board communication (SecOC).

3 Secure E/E architecture: domain separation and secure gateways

Network domains need to be isolated so that network components such as interfaces, the infotainment system, and safety-critical systems remain separate and therefore protected. Firewalls block any attempt by unauthorized external parties to send commands to individual devices or to the entire network. An intrusion detection system (IDS) reports anomalies in the network communication, allowing extensive prevention measures to be rolled out across the entire vehicle fleet.

4 Securely connected vehicle: protecting the interfaces

The vehicle is connected to the outside world via a number of interfaces. Secure communication protocols protect the connection to the cloud, a firewall shields the vehicle network, and vehicle-specific certificates protect firmware updates.

Sales EU
Christian Schleiffer
Christian Schleiffer
Phone: +49-234-43870-276 Contact
Sales France
Ignace Paraiso
Ignace Paraiso
Phone: +33-1-75-34-50-60 Contact
Sales America
Kevin Leonard
Kevin Leonard
Phone: +1-734-548-4711 Contact
Sales China
Xingwang Lu
Xingwang Lu
Phone: +86 21 2218-6251 Contact
Sales Korea
Haeseung Lee
Haeseung Lee
Phone: Tel. +82 31 326-6220 Contact
Sales India
Khushwant Pawar
Khushwant Pawar
Phone: +91 20 6725-4814 Contact
Sales Japan
Ayumu Yokouchi
Ayumu Yokouchi
Phone: +81-45-222-0974 Contact
ESCRYPT Webinar
View webinars now – Intrusion detection, UNECE requirements, AUTOSAR security
read more
Vehicle Security Operations Center
A constant eye on the vehicle fleet
read more
escar 2020
escar Europe 2020: Knowledge forum for automotive cybersecurity
read more
escrypt tasking security
Automotive development tools from TASKING support embedded IT security from ESCRYPT
read more
Pentesting
Penetration testing: The acid test for cybersecurity
read more
#ITconnects2020
#ITconnects2020: Unique automotive event in Berlin
read more
CycurHSM certificate
CycurHSM combines secure handling of X.509 certificates with trusted boot
read more
Security Approach
New regulations: Seeking the optimum security approach
read more
UNECE flag
UNECE regulations for automotive cybersecurity adopted
read more
sec regulations
UNECE WP.29 and ISO/SAE 21434: Automotive cybersecurity faces new challenges
read more
escar Europe 2020
escar Europe 2020 goes hybrid
read more
Webinar
View webinars now – cybersecurity management, automotive firewall, hardware security module
read more
Themenbild Testing
Putting Automotive Security to the Test
read more
vehicle fleet security
ESCRYPT and the Security division of NTT Ltd. form partnership to protect millions of vehicles from cyber attacks…
read more
automotiveIT Kongress
automotiveIT Kongress: Industry summit postponed to October
read more
CycurLIB ASIL D
ESCRYPT’s crypto library fulfills ASIL D requirements
read more
Language:
ISO 9001:2015 Home