SelfTrust – A practical approach for trust establishment 2020-01-0720
In recent years, with increase in external connectivity (V2X, Telematics, mobile projection, BYOD) the automobile is becoming a target of cyberattacks and intrusions. Any such intrusion reduces customer trust in connected cars and negatively impacts brand image (like the recent Jeep Cherokee hack).
To protect against intrusion, a number of mechanisms are available: which can vary from a simple scheme like secure CAN to specialized software like symbiote defense. Few systems (Like V2X) also plan to implement detection of an intrusion (defined as a misbehaving entity). However, most of the mechanisms require a system wide change, adds to the cost and negatively impacts the performance.
In this paper, we are proposing a practical and scalable approach of intrusion detection. Use of existing security mechanisms like TrustZone® and watermarking, little or no impact on cost and performance are some of the benefits of our approach. In addition, our approach is scalable and does not require any system wide changes.
To detect intrusions, we propose a combination of TrustZone® secure space approach along with a mechanism of static and dynamic watermarks. The current scope of research is restricted to architectures which provide a secure space to execute software. The research is an enhancement over the current TrustZone® implementation for device control post intrusion.
In conclusion, the proposed approach is a simple and scalable mechanism for detection and control of intrusion.