Towards a centralized security architecture for SOME/IP automotive services

Hamza Khemissa; Pascal Urien

doi:10.1109/CCNC51644.2023.10059950

Towards a centralized security architecture for SOME/IP automotive services

Hamza Khemissa
, Pascal Urien

Telecom Paris

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

Connected and autonomous vehicles (CAVs) consist of a number of networked computer components, called Electronic Control Units (ECUs). Scalable service-Oriented MiddlewarE over IP (SOME/IP) is a communication middleware standardized used to exchange various services between disjoint applications on distinct ECUs. However, it presents lack of authentication and confidentiality features. In this paper, we propose a centralized security architecture for SOME/IP automotive services. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyedhash message authentication code (HMAC). Then, we define the security parameters between the different ECUs for the invehicle Ethernet-based communications.

Original language	English
Title of host publication	2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	977-978
Number of pages	2
ISBN (Electronic)	9781665497343
DOIs	https://doi.org/10.1109/CCNC51644.2023.10059950
Publication status	Published - 1 Jan 2023
Event	20th IEEE Consumer Communications and Networking Conference, CCNC 2023 - Las Vegas, United States Duration: 8 Jan 2023 → 11 Jan 2023

Publication series

Name	Proceedings - IEEE Consumer Communications and Networking Conference, CCNC
Volume	2023-January
ISSN (Print)	2331-9860

Conference

Conference	20th IEEE Consumer Communications and Networking Conference, CCNC 2023
Country/Territory	United States
City	Las Vegas
Period	8/01/23 → 11/01/23

Keywords

CAVs
ECU
SOME/IP
authentication
data confidentiality
security

Access to Document

10.1109/CCNC51644.2023.10059950

Cite this

Khemissa, H., & Urien, P. (2023). Towards a centralized security architecture for SOME/IP automotive services. In 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023 (pp. 977-978). (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC; Vol. 2023-January). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/CCNC51644.2023.10059950

@inproceedings{937502357c6a4742a45d1511e7afaf42,

title = "Towards a centralized security architecture for SOME/IP automotive services",

abstract = "Connected and autonomous vehicles (CAVs) consist of a number of networked computer components, called Electronic Control Units (ECUs). Scalable service-Oriented MiddlewarE over IP (SOME/IP) is a communication middleware standardized used to exchange various services between disjoint applications on distinct ECUs. However, it presents lack of authentication and confidentiality features. In this paper, we propose a centralized security architecture for SOME/IP automotive services. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyedhash message authentication code (HMAC). Then, we define the security parameters between the different ECUs for the invehicle Ethernet-based communications.",

keywords = "CAVs, ECU, SOME/IP, authentication, data confidentiality, security",

author = "Hamza Khemissa and Pascal Urien",

note = "Publisher Copyright: {\textcopyright} 2023 IEEE.; 20th IEEE Consumer Communications and Networking Conference, CCNC 2023 ; Conference date: 08-01-2023 Through 11-01-2023",

year = "2023",

month = jan,

day = "1",

doi = "10.1109/CCNC51644.2023.10059950",

language = "English",

series = "Proceedings - IEEE Consumer Communications and Networking Conference, CCNC",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "977--978",

booktitle = "2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023",

}

Khemissa, H & Urien, P 2023, Towards a centralized security architecture for SOME/IP automotive services. in 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023. Proceedings - IEEE Consumer Communications and Networking Conference, CCNC, vol. 2023-January, Institute of Electrical and Electronics Engineers Inc., pp. 977-978, 20th IEEE Consumer Communications and Networking Conference, CCNC 2023, Las Vegas, United States, 8/01/23. https://doi.org/10.1109/CCNC51644.2023.10059950

Towards a centralized security architecture for SOME/IP automotive services. / Khemissa, Hamza; Urien, Pascal.
2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023. Institute of Electrical and Electronics Engineers Inc., 2023. p. 977-978 (Proceedings - IEEE Consumer Communications and Networking Conference, CCNC; Vol. 2023-January).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Towards a centralized security architecture for SOME/IP automotive services

AU - Khemissa, Hamza

AU - Urien, Pascal

PY - 2023/1/1

Y1 - 2023/1/1

N2 - Connected and autonomous vehicles (CAVs) consist of a number of networked computer components, called Electronic Control Units (ECUs). Scalable service-Oriented MiddlewarE over IP (SOME/IP) is a communication middleware standardized used to exchange various services between disjoint applications on distinct ECUs. However, it presents lack of authentication and confidentiality features. In this paper, we propose a centralized security architecture for SOME/IP automotive services. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyedhash message authentication code (HMAC). Then, we define the security parameters between the different ECUs for the invehicle Ethernet-based communications.

AB - Connected and autonomous vehicles (CAVs) consist of a number of networked computer components, called Electronic Control Units (ECUs). Scalable service-Oriented MiddlewarE over IP (SOME/IP) is a communication middleware standardized used to exchange various services between disjoint applications on distinct ECUs. However, it presents lack of authentication and confidentiality features. In this paper, we propose a centralized security architecture for SOME/IP automotive services. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyedhash message authentication code (HMAC). Then, we define the security parameters between the different ECUs for the invehicle Ethernet-based communications.

KW - CAVs

KW - ECU

KW - SOME/IP

KW - authentication

KW - data confidentiality

KW - security

U2 - 10.1109/CCNC51644.2023.10059950

DO - 10.1109/CCNC51644.2023.10059950

M3 - Conference contribution

AN - SCOPUS:85150617738

T3 - Proceedings - IEEE Consumer Communications and Networking Conference, CCNC

SP - 977

EP - 978

BT - 2023 IEEE 20th Consumer Communications and Networking Conference, CCNC 2023

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 20th IEEE Consumer Communications and Networking Conference, CCNC 2023

Y2 - 8 January 2023 through 11 January 2023

ER -

Towards a centralized security architecture for SOME/IP automotive services

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this