The Internet of Things and Services is becoming more and more of a reality-including for networked embedded systems such as those in machines and vehicles. While this development opens up a world of new possibilities, it also requires effective protection against unauthorized access in order to prevent damage caused by manipulation-whether in the form of harming a company”s image, corporate espionage, or even compromising the safety of people and property. So, effective protection of systems with embedded software, also known as embedded security, is no longer just
a competitive edge, it”s an absolute necessity. When it comes to security, it”s always important to consider the entire security chain. Since a chain is only as strong as its weakest link, embedded security generally requires tailored solutions that take into account both a specific application and its resource-limited operational environment. The ETAS subsidiary ESCRYPT specializes in this kind of comprehensive embedded security solutions, from consulting to series operation.
One area of growing importance for which ESCRYPT provides solutions is securing automotive ECU software updates. A leading company in the automotive industry is now using a security system of this kind as a comprehensive Key Management Solution. “Our system offers a host of advantages customers just don”t get with conventional approaches,” says ESCRYPT managing director Dr. Thomas Wollinger. “It manages all the essential cryptographic keys and authorizations at one central, secure location. Before authorized developers are allowed to release a new software version using the most up-to-date cryptographic signatures, they must first identify themselves with, say, a smartcard.” On the road, the ECU uses the cryptographic key to make sure software updates come from the manufacturer and have not been tampered with-which practically rules out unauthorized manipulations and bogus updates. “We provide our customers with a very simple way to amend or revoke developer authorizations. What”s more, there is an offline version for use in situations where internet access is not available, such as during test drives,” adds Wollinger.
The ESCRYPT Key Management Solution can be operated either by customers themselves or entirely by ESCRYPT as a Managed Service. It is by no means limited to automotive applications or software updates and can be used in a variety of sectors. Applications in the Internet of Things and Services in particular benefit from the additional security. Wherever electronic embedded systems need to authenticate, release, or communicate securely, the ESCRYPT
Key Management Solution is efficient, reliable, and future ready. Bildquelle:kein externes Copyright
ETAS provides innovative solutions for the development of embedded systems for the automotive industry and other sectors of the embedded industry.
As a systems provider, ETAS supplies a multifaceted portfolio that covers the range from integrated tools and tool solutions to engineering services, consulting, training, and support. Security solutions in the area of embedded systems are offered by the ETAS subsidiary ESCRYPT. Established in 1994, ETAS GmbH is a 100-percent subsidiary of the Bosch Group, with international subsidiaries and sales offices in 13 countries in Europe, North and South America, and Asia.
+49 711 89661 240