With the Digital Security by Design (DSbD) programme seeking business led demonstrators we propose a project within the automotive sector. We believe this is essential: road vehicles are increasingly software-based and connected. The social and economic impacts of cyber security are obvious as breaches can result in risk to life, serious injury or massive financial penalties. We will demonstrate and review the use of DSbD technologies for cyber critical and safety critical applications in the automotive sector. Specifically, four connected vehicle use cases will be developed and tested. They have been selected as they vary in safety and time criticality and therefore demonstrate the versatility of DSbD. For each, the impact of DSbD technologies on security, safety and performance will be assessed.
This project has three main goals:
The performance-vs-security trade-off manifests differently depending on the workload being processed by the system. A large part of the project is focussed on analysing, threat modelling and implementing four specific use cases.
CHERI stands for Capability Hardware Enhanced RISC Instructions. CHERI extends conventional hardware Instruction-Set Architectures (ISAs) with new architectural features to enable fine-grained memory protection and highly scalable software compartmentalization.
Memory-safe pointers: The CHERI memory-protection features allow historically memory-unsafe programming languages such as C and C++ to be adapted to provide strong, compatible, and efficient protection against many currently widely exploited vulnerabilities.
Compartmentalization: The CHERI scalable compartmentalization features enable the fine-grained decomposition of operating-system (OS) and application code, to limit the effects of security vulnerabilities in ways that are not supported by current architectures.
Morello is Arm’s implementation of CHERI on Arm v8.2 architecture. It is a development board, compiler & toolchain to allow us to write programs and run them leveraging CHERI
So for our project, Morello is the platform to prove the efficacy of CHERI in automotive domain.
Read more at the website.
Applus+ uses first-party and third-party cookies for analytical purposes and to show you personalized advertising based on a profile drawn up based on your browsing habits (eg. visited websites). You can accept all cookies by pressing the "Accept" button or configure or reject their use.. Consult our Cookies Policy for more information.
They allow the operation of the website, loading media content and its security. See the cookies we store in our Cookies Policy.
They allow us to know how you interact with the website, the number of visits in the different sections and to create statistics to improve our business practices. See the cookies we store in our Cookies Policy.