Connected Vehicle Helen Xu Infineon Technologies July 17th, 2015 Shanghai
Agenda Future Mobility Requires Reliability, Safety & Security Safety Security Page 2
Cars have to be considered as one element in traffic system to reach next mobility level Page 3
Efficiency Electrification, ADAS and interconnectivity facilitate a smart mobility vision Automotive MOSFET in ultra low R DS(on) H-PSOF package Advanced Driver Assistance Integrated safety systems Sensor Fusion Electrification of Powertrain, Body e.g. Electrical Power Steering Interconnectivity V2x Security Interconnected Sub-Systems Adaptive cruise control Lane keeping assist Autonomous Driving Interconnectivity Vehicle to Vehicle / Infrastructure Convoy/Automated Road Train Smart traffic management Smart Mobility Improved Road Safety Component Sub-System System-Car Traffic Page 4
Dependability (as defined by IFIP WG 10.4) Reliability Security Dependability Availability Safety IFIP: International Federation for Information Processing http://www.ifip.org/ Page 5
Convergence of Safety and Security within Automotive Context Safety Wrong Calculations Focus on: Protection against unintentional errors, malfunctions and anomalies Uncontrolled behavior of Safety related systems HW Fails within Lifetime Security Protection against intentional errors, malfunctions and anomalies Theft Hacking Tuning Focus on: Page 6
Agenda Future Mobility Requires Reliability, Safety & Security Safety Security Page 7
Innovations for Driver-, Road- and Pedestrian Safety Key Semiconductor Innovation for Safety Integrated safety systems Sensor Fusion Interconnectivity V2x Security Zero deaths from traffic accidents Dual Chip 79GHz Radar System Advanced Driver Assistance 24/77-79GHz radar Radar : Antenna in Package Side Airbag Sensor Tire Pressure AIRBAG SoC Driver IC for EPS Dual Chip 24GHz Radar System MultiCore Microcontroller Family for Safety & Security Reactive Safety Active Safety Proactive Safety Preventive Safety 1990 Today > 2020 Semiconductor IC dedicated for Safety Semiconductors to enable Functional Safety Systems and Security Functionalities Page 8
Expected Safety Levels from 2014 onwards Airbag Safety Domain Control and Sensor Fusion Systems Electronic Power Steering Brake Systems Engine Control Advanced Driver Assistant Systems Transmission Control Hybrid & Electric Vehicle Safety level requirements are defined by OEMs depending on their application. Above target levels represent Infineon s expectation based on customer feedback. Page 9
Key Safety Component: Microcontrollers Microcontrollers are a complex system component which needs to run safe Sense System-on-a-chip (SOC) with many components (CPU, memory, bus systems, peripherals, interfaces) Compute a central system control unit which needs to make sure that other system components run safe System brain running the application software and controlling the system condition Actuate Safety is a System Requirement Page 10
ISO 26262 Impact on Automotive Companies Development Process must follow ISO Requirements Organization must follow ISO Requirements Sense Supporting Process must be implemented following ISO Compute Safety Analysis must be done according to ISO Actuate Documentation must be done according to ISO Safety is a System Requirement Page 11
Agenda Future Mobility Requires Reliability, Safety & Security Safety Security Page 12
Overall Security Architecture inside the car & with controlled interfaces to the outside world Software Update Traffic Information HACKER ATTACK Remote Diagnostics Car Repair Shop Infotainment Apps Payment Systems ecall Internet Services Unwanted access must be denied Engine Management Infotainment Brake Airbag Steering Tablet & Smartphone Toll Control Prioritization of Emergency Services Traffic Jam Detection Accident Avoidance Page 13
Security Alerts Fraud & Theft Unjustified Warranty Claims Cyber War and Terrorism Page 14
Drivers and Market Intelligence Automotive Security Legislation US: Willingness for regulation announced (2014). Regulation: 2017. Expectation: ~ 2019 mandatory deployment. Enforcement by after sales components on old cars: No US OEMs: Starting 1H 2014. EU: no regulation announced yet. Germany, Dutch and Austria committed to support PKI Infrastructure in certain regions Japan: Proprietary FM Radio with locally transmission existing ITS existing. Also regulation expected. Korea:? Considering using V2V as tolling systems China:? OEM Feature Differentiation Seen by leading German OEMs therefore introduction of V2V independent of regulation Page 15
Automotive Security Architecture 2018+ Gateway / Firewall Powertrain Domain Controller Chassis Domain Controller Body Domain Controller Infotainment Domain Controller Engine Control Car2Car Com Seat control Head Unit Transmission ABS/ESP Door Module E-Call/cell wireless Battery Management ACC Air Condition Connectivity ECU Immobilizer Trust anchors Protected Execution Environments hosting Key storage and related cryptographic operation Security Applications 1 2 Integrated on MCU High speed Secure Onboard Communication Logical security Discrete Security Controller External communication Protecting high value By certified hardware security Enabling the root of trust for internal and external communication Page 16
Hardware Security Solutions Protect sensitive data, components & IP Trusted Execution Environment Flexibility Security Automotive Environment Quality Crypto Performance Page 17
Enabling System Security in Automotive Forecast for cars with ecall System Design Consideration [units m] 3 11 34 56 2010 2013 2016 2019 Source: Strategy Analytics; active and inactive systems, cumulative Applications subject to hacker attacks Threat & Attack Scenario Analysis Scalable HW & SW Security Solution Security-Certified Concept, Design and Development Process Security-Certified Production Secure Personalization Large Portfolio of Common Criteria Certified Products Internet E-Call Navigation Microcontrollers with Integrated Security Trust Anchor Local-based services & advertisement Maintenance updates Traffic alerts / V2V Automatic toll collection Power on demand Secure Elements for Telematics & V2x Page 18