E-safety vehicle intrusion protected applications

Acronym of the case:

EVITA

Web address of the case:

http://evita-project.org/

Country of the case:

Belgium , France , Germany , Sweden , United Kingdom

Posting Date:

26 November 2009

Last Edited Date:

26 November 2009

Author:

Olaf Henniger (Fraunhofer Institute SIT)

security | intelligent car | hardware security module

Type of initiative

Project or service

Case Abstract

The objective of the EVITA project is to design, verify, and create a prototype of a secure architecture for automotive on-board electronics networks. Thus, EVITA will provide a basis for the secure deployment of electronic safety aids based on vehicle-to-vehicle and vehicle-to-infrastructure communication.

Description of the case

Domain

eGovernment

Topic

eIdentity and eSecurity

Sector

Communication (infrastructure) | Travel, Transports and Motoring

Date

July 2008 to June 2011

Target Users

Business (industry)

Target Users Description

The intended primary beneficiaries of the EVITA results are car, truck, and motorcycle manufacturers, automotive electronics suppliers, and semi-conductor manufacturers. Also industry consortia such as the Car 2 Car Communication Consortium and other organisations dedicated to electronic car safety aids are intended to benefit from the EVITA results. In a broader sense, by helping to reduce road transport problems, the EVITA results are intended to benefit the society as a whole. Secondary beneficiaries of EVITA results are all industries that have to cope with communication security problems similar to that in the automotive sector. Similarly complex communication networks are embedded in systems such as airplanes, power stations, robots, and house control systems.

Scope

International

Status

Research

Language(s)

English

Policy Context and Legal Framework

EVITA is co-funded by the European Commission within the Seventh Framework Programme for research and technological development.Focussing on on-board network protection, EVITA complements other e-safety related projects that focus on protecting the communication of vehicles with the outside.

Project Size and Implementation

Type of initiative

IT infrastructures and products

Overall Implementation approach

Private sector

Technology choice

Mainly (or only) open standards

Funding source

Public funding EU

Project size

Implementation: €5,000,000-10,000,000

Yearly cost:

€1,000,000-5,000,000

Technology solution

Starting from relevant use cases and security threat scenarios, EVITA specifies security requirements for automotive on-board networks and considers also legal requirements on privacy, data protection, and liability issues. Based on these security requirements and the automotive constraints, EVITA designs a secure on-board architecture and secure on-board communications protocols. The security functions are partitioned between software and hardware. The root of trust is placed in hardware security modules realised as extensions to automotive controllers.

In order to ensure that the identified requirements are satisfied, EVITA models and verifies selected parts of the secure on-board architecture and the communications protocols using model-based verification tools.

For prototyping, FPGA's will be used to extend standard automotive controllers with the functionality of cryptographic coprocessors. The secure on-board network will be deployed inside a lab car demonstrating e-safety applications based on vehicle-to-vehicle and vehicle-to-infrastructure communication.