The Security Aspects of Automotive Over-the-Air Updates

Date

2020-03

Advisors

Journal Title

Journal ISSN

ISSN

1947-3435

Volume Title

Publisher

IGI-Global

Type

Article

Peer reviewed

Yes

Abstract

Over-the-air (OTA) update is a method for vehicle manufacturers to remotely distribute maintenance updates, performance, and feature enhancements through the vehicle's lifespan. Recalls of vehicles cost the manufactures a lot of money. OTA solves the recall issue, while allowing consumers to pay for services and features via an update. The OTA ecosystem includes the coders who first developed the firmware, the 1st Tier suppliers, the vehicle manufacturers, and the vehicle itself. Currently, manufacturers designed the networks for speed and responsiveness, and not security. This article examines these elements and drills into the security available for each. The slowest and one of the most vulnerable parts of the system is the communications within the vehicle. The vehicle networks must ensure the integrity and authenticity of messages transmitted to guarantee software programmed onto ECUs are authorized and tamper-free. Specialist hardware within the vehicle makes this possible in an operation environment, such as hardware security modules.

Description

The file attached to this record is the Publisher's final version.

Keywords

Cyber Security

Citation

Howden, J.C., Maglaras, L., Ferrag, M.A., (2020) The Security Aspects of Automotive Over-the-Air Updates. International Journal of Cyber Warfare and Terrorism, 10(2),

Rights

Research Institute