Automotive Security through New Communication Lockdown
Security
Core
Full validity
check
Interface
Transceivers
Initial validity
check
Network 1
CAN
CAN
Host
CPU
FPGA
FPGA MOST
Switch
Network 2
MOST
Ethernet
Xilinx Zynq SoC
Network N
Ethernet
Approved Message
Dictionary
Communication Lockdown System ECU
Figure 4: Communication Lockdown System ECU
Secure Updates
Role of Data Analytics and Machine
Learning
Secure delivery, authentication of sender
and verification of data integrity, bug fixes,
improved user experience as well as new
functionality can be introduced safely and
securely to address current and future
needs, increasing the value of the product to
the customer, while reducing development
and integration costs.
Utilizing FPGA has other performance
related benefits as well, advance Artificial
Intelligence (AI) and analytics can be
implemented in hardware.
Preprocessing can be done on the endpoint
(in this case the G platform SNO™) in order
to save bandwidth by offloading and
distilling data to only what is necessary for
the cloud application.
The firmware image (both hardware and
software) can be encrypted and signed at
the vendor's site and delivered to devices
securely at all times and by any means.
The platform also enables secure end-to-end
connection to a cloud infrastructure.
Afterwards, the cloud can be used for use
cases such:
Predictive Maintenance
Fleet health monitoring
Xilinx Zynq SoC decrypts and authenticates
the firmware image prior or during first boot
ensuring no unauthorized hardware
configuration or software can be loaded and
executed on the device.
- 65 -
March 2019