Secure Automotive On-Board Protocols: A Case of Over-the-Air Firmware Updates

  • Muhammad Sabir Idrees
  • Hendrik Schweppe
  • Yves Roudier
  • Marko Wolf
  • Dirk Scheuermann
  • Olaf Henniger
Part of the Lecture Notes in Computer Science book series (LNCS, volume 6596)


The software running on electronic devices is regularly updated, these days. A vehicle consists of many such devices, but is operated in a completely different manner than consumer devices. Update operations are safety critical in the automotive domain. Thus, they demand for a very well secured process. We propose an on-board security architecture which facilitates such update processes by combining hardware and software modules. In this paper, we present a protocol to show how this security architecture is employed in order to achieve secure firmware updates for automotive control units.


Security protocols security architectures over the air firmware updates software functionality 


Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.


  1. 1.
    Bar-El, H.: Intra-vehicle information security framework. In: Proceedings of the 7th escar Conference, Düsseldorf, Germany (2009)Google Scholar
  2. 2.
    Busse, M., Pleil, M.: Data exchange concepts for gateways. Technical Report Deliverable D1.2-10, EASIS Project (2006)Google Scholar
  3. 3.
    C2C-CC. Car2Car Communication Consortium,
  4. 4.
    Escherich, R., Ledendecker, I., Schmal, C., Kuhls, B., Grothe, C., Scharberth, F.: SHE – Secure Hardware Extension – Functional Specification Version 1.1Google Scholar
  5. 5.
    Ruddle, A., et al.: Security Requirements for Automotive On-Board Networks based on Dark-side Scenarios. Technical Report Deliverable D2.3, EVITA Project (2009)Google Scholar
  6. 6.
    Weyl, B., et al.: Secure On-board Architecture Specification. Technical Report Deliverable D3.2, EVITA Project (2010)Google Scholar
  7. 7.
    Schweppe, H., et al.: Secure On-Board Protocols Specification. Technical Report Deliverable D3.3, EVITA Project (2010)Google Scholar
  8. 8.
    Koscher, K., et al.: Experimental Security Analysis of a Modern Automobile. In: Proc. of the 31st IEEE Symposium on Security and Privacy (May 2010)Google Scholar
  9. 9.
    Rahmani, M., et al.: A novel network architecture for in-vehicle audio and video streams. In: IFIP – BcN (2007)Google Scholar
  10. 10.
    GST. Global systems for telematics, EU FP6 project,
  11. 11.
    Hergenhan, A., Heiser, G.: Operating Systems Technology for Converged ECUs. Embedded Security in Cars (2008)Google Scholar
  12. 12.
    Kim, J., Chou, P.H.: Remote progressive firmware update for flash-based networked embedded systems. In: ISLPED 2009, pp. 407–412 (2009)Google Scholar
  13. 13.
    Kosch, T.: Local Danger Warning based on Vehicle Ad-hoc Networks: Prototype and Simulation. In: WIT 2004, pp. 3–7 (2004)Google Scholar
  14. 14.
    Mahmud, S.M., Shanker, S., Hossain, I.: Secure software upload in an intelligent vehicle via wireless communication links. In: Proc. IEEE Intelligent Vehicles Symposium, pp. 588–593 (2005)Google Scholar
  15. 15.
    Miehling, T., Vondracek, P., Huber, M., Chodura, H., Bauersachs, G.: HIS flashloader specification version 1.1. Technical report, HIS Consortium (2006)Google Scholar
  16. 16.
    Nilsson, D.K., Larson, U.E.: Secure Firmware Updates Over the Air in Intelligent Vehicles. In: Proc. ICC Workshops (2008)Google Scholar
  17. 17.
    Nilsson, D.K., Sun, L., Nakajima, T.: A Framework for Self-Verification of Firmware Updates Over the Air in Vehicle ECUs. In: GLOBECOM (2008)Google Scholar
  18. 18.
    Nilsson, D.K., et al.: Key management and secure software updates in wireless process control environments. In: WiSec 2008 (2008)Google Scholar
  19. 19.
    Towards a secure automotive platform. White paper, secunet (2009)Google Scholar
  20. 20.
    SeVeCOM. Secure Vehicle Communication,
  21. 21.
    Shabtai, A., Fledel, Y., Kanonov, U., Elovici, Y., Dolev, S.: Google Android: A State-of-the-Art Review of Security Mechanisms (2009)Google Scholar
  22. 22.
    IEEE WAVE. Wireless Access in Vehicular Environments, IEEE standard 1609.2Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2011

Authors and Affiliations

  • Muhammad Sabir Idrees
    • 1
  • Hendrik Schweppe
    • 1
  • Yves Roudier
    • 1
  • Marko Wolf
    • 2
  • Dirk Scheuermann
    • 3
  • Olaf Henniger
    • 3
  1. 1.EURECOMFrance
  2. 2.Escrypt GmbHGermany
  3. 3.Fraunhofer SITGermany

Personalised recommendations