Protection against cyber attacks for software-defined vehicles

New DSA White Paper "PRODIS.OTA - An Uptane-based OTA Solution"

Regular updates for PCs or smartphones are commonly known. Software-defined vehicles (SDVs) also contain a lot of software that needs to be updated regularly. Whether to provide new functions or to minimise cyber security risks. These updates are implemented either in the workshops or over-the-air (OTA). In a new white paper, DSA presents the OTA solution PRODIS.OTA, which enables car manufacturers to counter possible cyber attacks and manipulations.

The white paper identifies the numerous possible vulnerabilities and risks of over-the-air software updates. Starting with the installation of malicious updates or infeasible software combinations, the mixing of different software versions or the compromising of keys. The potential for compromising the vehicle's functions is wide. In order to protect the software, and thus the vehicle and its occupants, against attacks, secure processes and measures are essential. This is where the PRODIS.OTA solution outlined in the white paper comes in. The Uptane-based solution is flexibly adaptable to the architecture of a vehicle. With full integration into PRODIS.SOVD, updates are carried out via a standardised interface. In combination with the Life Cycle Management System PRODIS.LCM, a single source of truth is created for vehicle manufacturers when updating their vehicles.

Today, many OEMs and Tier 1 suppliers are already using the new framework as the de-facto standard for secure software updates in the automotive industry. Request the new white paper and find out how the Uptane software update framework provides protection against cyber-attacks on those critical servers and networks relevant to signing and deploying software updates.

Go back