Secure Application Design
Table of Content
ContentThe current rapid evolvement of autonomous driving and connected cars mandate the deployment of strong IT-security functions to keep safety and security at a high level. The recent successful car-hacks have shown us that the design of current systems is not yet robust enough and a well designed security architecture for future cars will be required. The lecture will cover multiple topics: analysing the current state of automotive security, the current concepts and shortcomings, as well as approaches for implementing secure systems that build upon strong cryptographic primitives for protecting the car from malicious activities. Here is a short outline on the various topics that will most likely be covered by the lecture. * Motivation for automotive security * Architecture in cars (bus-systems etc.) * Security problems * Famous car-hacks and consequences for security * Go into details of today’s security problems * Explain attacks (Bluetooth hacks) that have been demonstrated * Show tools, sources of information that are publicly available * Bus-systems and standards: CANBUS, FLEXBUS, ODB2 etc. and current state of security * Connecting mobile apps to cars (security considerations) * Message formats, provide real-world dumps of CANBUS data * Security of bus-systems and car architecture * Cryptographic key management * Approaches for secure systems (academia, industry)
- Previous course information: SS2020
Exam: There is a (written) exam after the lecture or on request. The practical exercise is done via a programming exercise.