Mehmet Mueller: Automotive Authentication with DANCE

Automotive Group Key Agreement and Client Authentication with DANCE
  • When Apr 23, 2024 from 04:00 PM to 05:00 PM (Europe/Berlin / UTC200)
  • Where R 460
  • Contact Name
  • Add event to calendar iCal

Cars will be able to interact with their environment via V2X to improve driver experience and safety. Future cars are expected to operate a Service-Oriented Architecture (SOA) to become more adaptable and manageable. SOME/IP by AUTOSAR is an automotive middleware for SOA architectures and Automotive Ethernet that lacks security mechanisms. DNSSEC with DANE is a mature Internet standard that ensures the integrity and authenticity for service parameters and certificates bound to names. Traffic encryption in automotive networks require group key agreement protocols to prevent eavesdropping of personal data. In this paper, we augment the SOME/IP SD with client authenticity and a group key agreement protocol based on DNSSEC and DANE. Further, we evaluate a distributed and contributory group key agreement protocol, and implement a distributed approach into the SOME/IP SD. Next, we evaluate our prototype implementation together with service and client authentication, and a group key agreement protocol in the emulation framework Mininet with common group sizes in an automotive network of a production vehicle. We find practical performance results, especially when encryption key updates are considered while the car is not operating (e.g., parking, idling, reconfiguration).