ISO 21434 Compliant Automotive Cybersecurity Development: Ensuring Secure-By-Design

Ans: ISO 21434 standard has recently been published. However, our cybersecurity team has been closely following the various stages that the standard has gone through. Hence, we have a fair understanding of the standard.

We have been delivering cybersecurity related projects before the release of ISO 21434 standard, primarily based on its draft version. Since, the standard is now published, we follow the automotive cybersecurity guidelines as prescribed in the standard for all cybersecurity related projects.

Ans: Yes, we can make your existing automotive solution compliant to automotive cybersecurity. The process requires gap analysis and an assessment of existing cybersecurity measures. After the gap analysis, we will lay down the requirements and make changes in the solution. The changes might affect the entire system architecture, introduce new validation and verification methods and more depending on various factors.

Ans: Diagnosing a vehicle remotely has emerged as a convenient for the customer as well as the service center. But it also opens up a potential threat of unauthorized access to the vehicle function. We have a ready-to-deploy DoIP protocol software that enables remote ECU diagnostics. It is made secure by the Transport Layer Security module (TLS module) among other features such as Secure Socket Layer (SSL) and IP security.

Ans: We have delivered FOTA solution to our customers with security features as required by the projects’ specifications.

Let’s look at all security features implemented:

• Code signing to ensure trustworthiness (data integrity & source authentication) of the firmware image to be updated.
• Integration of Wi-Fi/Bluetooth/GPRS/GSM modules for secure communication between the FOTA server and the target devices.
• Integration of the firmware with IoT protocols such as MQTT, CoAP; HTTPS & SSL for secure data exchange
• We have chosen specific encryption methods to check the sanity of the update package

Ans: We equip our Secure Bootloader solution with AES-128, CRC32, HMS Drivers, Digital Signature and Secondary Bootloader (SBL) features. These components make sure that that the data transmission between ECUs is completely secure.

A snapshot of our Flash Bootloader’s security features:

• Cybersecurity is implemented as per the project’s requirement and in case of an ISO 26262 compliant project, the ASIL grade assigned to the solution.
• Secondary Bootloader also helps in securing Bootloader software. follows the following sequence:
• Our secure Bootloader solution uses SHA 256 Algorithm for Digital. ECU validates this digital signature before downloading the image file for ECU flashing.
• Data Integrity is validated using CRC32, an error detecting code part of the platform software of the Bootloader solution.
• Few microcontrollers come with built-in HSM module that implements security for the Bootloader. We develop the HSM device driver for the Bootloader Software to access the HSM module of the microcontroller.

• With the connected cars and SDV approaches, the software composition in the vehicle is ever increasing. An automotive vehicle is technically now a software on wheels with an increased vulnerability to cyber threats.
• Hence many countries around the world have adopted/ planning to adopt UNECE WP.29 regulations which requires automotive manufacturers to provide proof of cybersecurity measures for vehicle type approval.
• The Automotive-SPICE 4.0 also has now incorporated cybersecurity process group setting the expectations on the industry, especially for the automotive suppliers involved in product development.