1. Overview
1.1. Secure Hardware Extension (SHE)
基本结构:ECU里面有一块单独的Secure Zone。Secure Zone里面是SHE模块。SHE包含Control Logic, AES,PRNG, Memory。SHE模块和CPU通讯。
功能:
- Symmetric cryptography, AES-128 with ECB, CBC。
- Secure key store
- Secure boot loader
- Anthetication
- Against replay attacks
限制:
- 不能保护application software
- 没有public-key cryptography
- 不能保护 replay attacks
- 同时只能一个instance访问SHE
1.2. Hardware Security Module (HSM)
- Symmetric cryptography
- Secure key store
- Secure boot loader
- Secure memory
- Implemented within the application CPU‘s ASIC
- Support software modules
EVITA
限制:
- 需要和普通应用CPU一起集成在ASIC里面
SHE vs. HSM
EVITA full > EVITA medium > SHE > EVITA light
2. Vehicular Security Architectures
集中,分布,mix
时间: 2024-11-02 11:09:50