A formal methodology applied to secure over-the-air automotive applications

Gabriel Pedroza; Muhammad Sabir Idrees; Ludovic Apvrille; Yves Roudier

doi:10.1109/VETECF.2011.6093061

A formal methodology applied to secure over-the-air automotive applications

Gabriel Pedroza
, Muhammad Sabir Idrees
, Ludovic Apvrille
, Yves Roudier

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

The expected high complexity in future automotive applications will require to frequently update electronic devices supporting those applications. Even if in-car devices are trusted, potential attacks on over the air exchanges impose stringent requirements on both safety and security. To address the formal verification of safety properties, we have previously introduced the AVATAR UML profile whose methodology covers requirement, analysis, design, and formal verification stages [1]. We now propose to extend AVATAR to support both safety and security during all methodological stages, and in the same models. The paper applies the extended AVATAR to an over the-air protocol for trusted firmware updates of in-car control units, with a special focus on design and formal verification stages.

Original language	English
Title of host publication	2011 IEEE Vehicular Technology Conference Fall, VTC Fall 2011 - Proceedings
DOIs	https://doi.org/10.1109/VETECF.2011.6093061
Publication status	Published - 23 Dec 2011
Externally published	Yes
Event	IEEE 74th Vehicular Technology Conference, VTC Fall 2011 - San Francisco, CA, United States Duration: 5 Sept 2011 → 8 Sept 2011

Publication series

Name	IEEE Vehicular Technology Conference
ISSN (Print)	1550-2252

Conference

Conference	IEEE 74th Vehicular Technology Conference, VTC Fall 2011
Country/Territory	United States
City	San Francisco, CA
Period	5/09/11 → 8/09/11

Access to Document

10.1109/VETECF.2011.6093061

Cite this

@inproceedings{56226b7f1abf45b9b2e1f316b6e5b047,

title = "A formal methodology applied to secure over-the-air automotive applications",

abstract = "The expected high complexity in future automotive applications will require to frequently update electronic devices supporting those applications. Even if in-car devices are trusted, potential attacks on over the air exchanges impose stringent requirements on both safety and security. To address the formal verification of safety properties, we have previously introduced the AVATAR UML profile whose methodology covers requirement, analysis, design, and formal verification stages [1]. We now propose to extend AVATAR to support both safety and security during all methodological stages, and in the same models. The paper applies the extended AVATAR to an over the-air protocol for trusted firmware updates of in-car control units, with a special focus on design and formal verification stages.",

author = "Gabriel Pedroza and Idrees, \{Muhammad Sabir\} and Ludovic Apvrille and Yves Roudier",

year = "2011",

month = dec,

day = "23",

doi = "10.1109/VETECF.2011.6093061",

language = "English",

isbn = "9781424483273",

series = "IEEE Vehicular Technology Conference",

booktitle = "2011 IEEE Vehicular Technology Conference Fall, VTC Fall 2011 - Proceedings",

note = "IEEE 74th Vehicular Technology Conference, VTC Fall 2011 ; Conference date: 05-09-2011 Through 08-09-2011",

}

Pedroza, G, Idrees, MS, Apvrille, L & Roudier, Y 2011, A formal methodology applied to secure over-the-air automotive applications. in 2011 IEEE Vehicular Technology Conference Fall, VTC Fall 2011 - Proceedings., 6093061, IEEE Vehicular Technology Conference, IEEE 74th Vehicular Technology Conference, VTC Fall 2011, San Francisco, CA, United States, 5/09/11. https://doi.org/10.1109/VETECF.2011.6093061

A formal methodology applied to secure over-the-air automotive applications. / Pedroza, Gabriel; Idrees, Muhammad Sabir; Apvrille, Ludovic et al.
2011 IEEE Vehicular Technology Conference Fall, VTC Fall 2011 - Proceedings. 2011. 6093061 (IEEE Vehicular Technology Conference).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A formal methodology applied to secure over-the-air automotive applications

AU - Pedroza, Gabriel

AU - Idrees, Muhammad Sabir

AU - Apvrille, Ludovic

AU - Roudier, Yves

PY - 2011/12/23

Y1 - 2011/12/23

N2 - The expected high complexity in future automotive applications will require to frequently update electronic devices supporting those applications. Even if in-car devices are trusted, potential attacks on over the air exchanges impose stringent requirements on both safety and security. To address the formal verification of safety properties, we have previously introduced the AVATAR UML profile whose methodology covers requirement, analysis, design, and formal verification stages [1]. We now propose to extend AVATAR to support both safety and security during all methodological stages, and in the same models. The paper applies the extended AVATAR to an over the-air protocol for trusted firmware updates of in-car control units, with a special focus on design and formal verification stages.

AB - The expected high complexity in future automotive applications will require to frequently update electronic devices supporting those applications. Even if in-car devices are trusted, potential attacks on over the air exchanges impose stringent requirements on both safety and security. To address the formal verification of safety properties, we have previously introduced the AVATAR UML profile whose methodology covers requirement, analysis, design, and formal verification stages [1]. We now propose to extend AVATAR to support both safety and security during all methodological stages, and in the same models. The paper applies the extended AVATAR to an over the-air protocol for trusted firmware updates of in-car control units, with a special focus on design and formal verification stages.

UR - https://www.scopus.com/pages/publications/83755181752

U2 - 10.1109/VETECF.2011.6093061

DO - 10.1109/VETECF.2011.6093061

M3 - Conference contribution

AN - SCOPUS:83755181752

SN - 9781424483273

T3 - IEEE Vehicular Technology Conference

BT - 2011 IEEE Vehicular Technology Conference Fall, VTC Fall 2011 - Proceedings

T2 - IEEE 74th Vehicular Technology Conference, VTC Fall 2011

Y2 - 5 September 2011 through 8 September 2011

ER -

A formal methodology applied to secure over-the-air automotive applications

Abstract

Publication series

Conference

Access to Document

Other files and links

Fingerprint

Cite this