MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems
The automotive industry has seen a dynamic transformation from traditional hardware-defined to software-defined architecture enabling higher levels of autonomy and connectivity, better safety and security features, as well as new in-vehicle experiences and richer functions through software and ongoi...
Main Authors: | , , |
---|---|
Format: | Article |
Language: | English |
Published: |
MDPI AG
2023-08-01
|
Series: | Applied Sciences |
Subjects: | |
Online Access: | https://www.mdpi.com/2076-3417/13/16/9397 |
_version_ | 1797585633294680064 |
---|---|
author | Abir Bazzi Adnan Shaout Di Ma |
author_facet | Abir Bazzi Adnan Shaout Di Ma |
author_sort | Abir Bazzi |
collection | DOAJ |
description | The automotive industry has seen a dynamic transformation from traditional hardware-defined to software-defined architecture enabling higher levels of autonomy and connectivity, better safety and security features, as well as new in-vehicle experiences and richer functions through software and ongoing updates of both functional and safety-critical features. Service-oriented architecture plays a pivotal role in realizing software-defined vehicles and fostering new business models for OEMs. Such architecture evolution demands new development paradigms to address the increasing complexity of software. This is crucial to guarantee seamless software development, integration, and deployment—all the way from cloud or backend repositories to the vehicle. Additionally, it calls for enhanced collaboration between car manufacturers and suppliers. Simultaneously, it introduces challenges associated with the necessity for ongoing updates and support ensuring vehicles remain safe and up to date. Current approaches to software updates have primarily been implemented for traditional vehicle architectures, which mostly comprise specialized electronic control units (ECUs) designed for specific functions. These ECUs are programmed with a single comprehensive executable that is then flashed onto the ECU all at once. Different approaches should be considered for new software-based vehicle architectures and specifically for ECUs with multiple independent software packages. These packages should be updated independently and selectively for each ECU. Thus, we propose a new scheme for software updates based on a Merkle tree approach to cope with the complexity of the new software architecture while addressing safety and security requirements of real-time and resource-constrained embedded systems in the vehicle. The Merkle-tree-based software updates over the air (MT-SOTA) proposal enables secure updates for individual software clusters. These clusters are developed and integrated by diverse entities with varying release timelines. Our study demonstrates that the MT-SOTA scheme can enhance the speed of software update execution without significantly increasing the process overhead. Additionally, it offers necessary defense against potential cyberthreats. The results of the performed technical analysis and experiments of the MT-SOTA implementation are presented in this paper. |
first_indexed | 2024-03-11T00:08:48Z |
format | Article |
id | doaj.art-b68b411835814246ae1f81a559b18974 |
institution | Directory Open Access Journal |
issn | 2076-3417 |
language | English |
last_indexed | 2024-03-11T00:08:48Z |
publishDate | 2023-08-01 |
publisher | MDPI AG |
record_format | Article |
series | Applied Sciences |
spelling | doaj.art-b68b411835814246ae1f81a559b189742023-11-19T00:09:09ZengMDPI AGApplied Sciences2076-34172023-08-011316939710.3390/app13169397MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive SystemsAbir Bazzi0Adnan Shaout1Di Ma2Department of Electrical and Computer Engineering, Dearborn, MI 48128, USADepartment of Electrical and Computer Engineering, Dearborn, MI 48128, USADepartment of Computer and Information Science, Dearborn, MI 48128, USAThe automotive industry has seen a dynamic transformation from traditional hardware-defined to software-defined architecture enabling higher levels of autonomy and connectivity, better safety and security features, as well as new in-vehicle experiences and richer functions through software and ongoing updates of both functional and safety-critical features. Service-oriented architecture plays a pivotal role in realizing software-defined vehicles and fostering new business models for OEMs. Such architecture evolution demands new development paradigms to address the increasing complexity of software. This is crucial to guarantee seamless software development, integration, and deployment—all the way from cloud or backend repositories to the vehicle. Additionally, it calls for enhanced collaboration between car manufacturers and suppliers. Simultaneously, it introduces challenges associated with the necessity for ongoing updates and support ensuring vehicles remain safe and up to date. Current approaches to software updates have primarily been implemented for traditional vehicle architectures, which mostly comprise specialized electronic control units (ECUs) designed for specific functions. These ECUs are programmed with a single comprehensive executable that is then flashed onto the ECU all at once. Different approaches should be considered for new software-based vehicle architectures and specifically for ECUs with multiple independent software packages. These packages should be updated independently and selectively for each ECU. Thus, we propose a new scheme for software updates based on a Merkle tree approach to cope with the complexity of the new software architecture while addressing safety and security requirements of real-time and resource-constrained embedded systems in the vehicle. The Merkle-tree-based software updates over the air (MT-SOTA) proposal enables secure updates for individual software clusters. These clusters are developed and integrated by diverse entities with varying release timelines. Our study demonstrates that the MT-SOTA scheme can enhance the speed of software update execution without significantly increasing the process overhead. Additionally, it offers necessary defense against potential cyberthreats. The results of the performed technical analysis and experiments of the MT-SOTA implementation are presented in this paper.https://www.mdpi.com/2076-3417/13/16/9397cyber physical systemsdigital signaturesdistributed software developmentMerkle treesafety-critical systemssoftware over the air updates |
spellingShingle | Abir Bazzi Adnan Shaout Di Ma MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems Applied Sciences cyber physical systems digital signatures distributed software development Merkle tree safety-critical systems software over the air updates |
title | MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems |
title_full | MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems |
title_fullStr | MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems |
title_full_unstemmed | MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems |
title_short | MT-SOTA: A Merkle-Tree-Based Approach for Secure Software Updates over the Air in Automotive Systems |
title_sort | mt sota a merkle tree based approach for secure software updates over the air in automotive systems |
topic | cyber physical systems digital signatures distributed software development Merkle tree safety-critical systems software over the air updates |
url | https://www.mdpi.com/2076-3417/13/16/9397 |
work_keys_str_mv | AT abirbazzi mtsotaamerkletreebasedapproachforsecuresoftwareupdatesovertheairinautomotivesystems AT adnanshaout mtsotaamerkletreebasedapproachforsecuresoftwareupdatesovertheairinautomotivesystems AT dima mtsotaamerkletreebasedapproachforsecuresoftwareupdatesovertheairinautomotivesystems |