Secure Gateway for Automotive Connectivity
Targeted to the automotive industry, SYSGO offers a complete and ready to use system for all communication needs involved in transportation. That includes vehicle to vehicle (V2V), and vehicle to infrastructure (V2X) as well as car internal communication.
In particular the communication with the outside world requires deterministic and accurate response times that can only be achieved by means of an underlying real time operating system.
The electronic systems inside a modern car are able to take control over critical systems, such as the steering and braking gear. This significantly improves the safety during the operation of car, but at the same exposes the risk of un-authorised access. As a consequence, the safety of a vehicle must be accompanied by security measures. Therefore, the connectivity platform contains a gateway utilising a robust routing system implementing a firewall and an intrusion detection system.
Especially in the automotive industry, the frequency of model changes and functionality updates is extremely high. The list of desired features is growing year by year. This usually requires the combination of existing software components with completely new and partially incompatible application programming interfaces. Maintaining a stable software basis while being able to follow the desires of the end user is a challenge. This is where virtualisation comes into play. The connectivity platform is extendable easily by adding an arbitrary number of guest operating systems without compromising safety or security.
The PikeOS operation system has been chosen as the backbone of the Secure Automotive Platform, as it naturally fulfils the substantial requirements of determinism and real-time, security, safety and virtualisation. As a Type 1 hypervisor, it directly runs on the embedded hardware and makes the overall system as performant as possible. Another performance boost comes through the multi-core support, which has proven its maturity in recent railway projects.
Gateway Interfaces
In the example of a gateway, the supported default configuration communicates to the outside world by means of a 4G/5G network. A firewall protects the vehicle internal WI-FI hotspot, which is available to the passenger’s convenience. The internal communication lines, such as CAN and Ethernet are available to the hotspot by means of dedicated and surveillance channels only. The gateway supports Virtual Local Area Networks (VLAN)
Security
The platform utilises a secure boot mechanism. Communication is assured by means of a Transport Layer Security (TLS) library. Cryptography and Storage is supported by executable binaries and configuration files that are digitally signed and stored on a secure Certified File System (CFS). The gateway’s network Intrusion Detection System (IDS) is located within a separate partition, that monitors the network traffic. In addition to security aspects, this approach demonstrates the ability of PikeOS to resolve licensing issues by means of software isolation
Over-The-Air (OTA) Updates
The platform allows the update of software and firmware components of the entire system by means of secure communication via TLS (FIPS certified). Update files are signed digitally.
Certified Base System
PikeOS Hypervisor (Separation Kernel Version 4.2.3 (build S5577)) certified according to Common Criterial EAL3+ and certifiable up to ASIL-D.
CFS
- Certifiable File System (ASIL-B)
Automotive API
- Crypto services
- Management API
- Secure Automotive Communication API
- VLAN, IPv6 and IP-Multicast
- Router supporting Firewall
- Secure OTA
IDS
- Network Intrusion Detection System
- Optional CAN Intrusion Detection System
Security Maintenance
- Security Monitoring (CVE’s)
- Long term support
Optional Guest Operating Systems
The platform supports the integration of the following guest operating systems:
- PikeOS native
- POSIX®
- Linux (generic by means of hardware virtualization)
- AGL (Automotive Grade Linux)
- ELinOS, SYSGO’s own robust Embedded Linux distribution
Development and Configuration Tools
Developing embedded applications for a partitioned system requires a state-of-the-art cross-development tool chain, well designed and easy to use configuration tools, remote debugging with OS awareness (thread states, virtual address mappings, etc.), target monitoring, remote application deployment, and timing analyses tools. With CODEO, the Eclipse-based IDE, SYSGO offers a complete environment for embedded systems covering the whole development cycle from early simulation/emulation tools to software update mechanisms for deployed systems.
Benefits
- Robust automotive development platform with API compatibility to ELinOS, PikeOS native, POSIX® or CFS
- Reduced time to market via:
- Included pre-certified components according to ISO 26262 or Common Criteria EAL 3+ or FIPS
- Pre-integrated security components such as secure boot, IDS, TLS or CFS
- Pre-configured network settings and infrastructure
- Re-use of existing legacy code from previous projects
- Enabled freedom from interference mechanisms with regards to safe/unsafe or secure/unsecure critical functions
- High performance in:
- Fast system reaction time via deterministic real time behavior
- Multi-core applications
- Task scheduling