Publications
The modern vehicle is facing a fundamental problem: the more connected it gets, the more cybersecurity threats it faces.
Data link reliability or bandwidth changes caused by roaming also make it much harder to reliably push car sensor data to the cloud.
This presentation is about implementing a reliable Vehicle to Cloud (V2C) scheme in the AGL ecosystem.
It starts with lessons learned from real-world use cases: sending data from thousands of sensors to a cloud backend served by a choppy connection.
It then describes how the AGL microservice framework and its security model, coupled with RedisTimeSeries, can be used to securely and selectively funnel data from the target to the cloud.
The talk concludes with a proposal on how this infrastructure could be integrated into the core of AGL to benefit the community at large.
This talk was presented at the AGL All Member Virtual Meeting 2021.
Slides: [click here]
Video: [click here]
This talk given at the AGL All Member Metting [VIRTUAL] of Spring 2021 presents how the application framework and its core components can shift from being based on Smack to SELinux.
The Linux kernel has many security mechanisms: capabilities, credentials, cgroups, namespaces, security modules, SELinux, AppArmor, Smack, ...
The talk reviews their benefits. As of today, the AGL application framework leverages these security features in order to achieve safety, security and privacy of the system, applications and users.
The talk summarizes the current state of the application framework.
Finally, the talk presents the work done in replacing Smack with SELinux and shows the designs that make the transition transparent to application developers while providing the same level of security.
Slides: [click here]
Video: [click here]
This video is a short introduction of the redpesk® factory WebUI.
As you can see, the following features are available :
- easy workflow to create a new project and an application
- team and user management
- integrated specfile editor
- automated CI tests based on virtual lab / targets
The main objective of this paper is to implement an Intrusion Detection System (IDS) over the Controller Area Network (CAN) data buses. In order to achieve this, we will first study the architecture of CAN buses in the automotive industry and then develop a detection method plan in order to treat various attacks.
Paper: [click here]
IoT.bzh investigated on lazy object synchronization techniques combined with an appropriate serialization format and shows that performance can be improved by a ratio from 10 to 100 depending on use cases. This benefits to low-latency and/or high-throughput applications: High frequency sensors, fast CAN messaging, realtime applications, ...
Changing serialization format may provide a performance gain from 20% to 50%. To go further, the only solution is to reduce drastically the number of (de)serializations. This can be achieved by adopting a dual internal and external representation for objects coupled with new transport mechanisms between bindings.
This talk presents the benchmark results obtained by our team and proposes new ways to boost performance in the AGL Application Framework, including a new binding API v4 compatible with current API v3.
Slides: [click here]
Video: [click here]
Archived Publications
-
2022
-
2021
- Testing Continuously Applications Using a Cloud Based Infrastructure Using Virtualization and Real Hardware in the Loop
- Connected ships and data flows: from the on-board sensor to the cloud
- Cross debugging on Linux : A history, current state of the art and coming improvements
- Release of redpesk Arz 1.0
- Introduction to SMACK and SELinux
- From embedded Linux boat sensors to the cloud, a data journey
- Running Zephyr and Linux on the same SoC: making both worlds live together !
- Hardware Isolation Running RTOS Concurrently with AGL on Renesas R-Car
- Data continuity, from vehicle sensors to cloud databases in the AGL ecosystem
- From Smack To SELinux
- redpesk® factory demo video
-
2020
-
2019
- Embedded Linux, case of AGL. Lesson at ENSTA 2019
- Current Market Conditions for Automotive Supply Implies Long Term Support
- Cloud based test infrastructure to enhance software quality assurance (SQA) in AGL application developments
- Current market condition for automotive supply implies Long Term Support
- AGL-Supervision : From AGL Supervisor to platform global data collection
- AGL-µBinder : a fast, secure and seamless option to connect AGL to small ECUs?
- Wlroots : a potential foundation for Next Generation of AGL Wayland Compositor
- L4RE hypervisor consolidating multiple AGL profiles
-
2018
- Updated overview of AGL signaling
- Cybersecurity for Connected Vehicle with AGL (Automotive Grade Linux)
- Skim down AGL Application Framework to bridge AGL with hard realtime subsystems
- AGL application design
- 4A (Audio Advanced Architecture) Kickstart with AGL/FF
- Moving AGL toward production with the latest test/monitoring tools.
- From Connected Cars to Connected Boats
- Presentation of AGL
- AGL Development Tools, what's new in FF
- AGL & Real Time: Architecture Options
- Véhicule Connecté Cybersécurité et Open Source
- Projet Etudiant ENSIBS - Analyseurs Statiques de code
- Binding API version 3
- X(cross) Development System update - April 2018
- Vehicle 2 Cloud - Telematics and Data collection - April 2018
- AGL 4a and audio roadmap - April 2018
- Vehicle 2 Cloud - Signaling and Data collection - April 2018
- Industrialisation of applications build in embedded environment
- AGL Audio Advanced Architecture
- IoT.bzh and AGL presentation to ENSIBS' students
- Updated AGL Security Blueprint
-
2017
- Cybersecurity a fundamental challenge for connected cars
- Deploy AGL OS and SDK as a Binary Packaging Distribution for Developer
- AGL integration of systemd and user management
- The AGL Swiss Knife for Quick Application Prototyping
- X(cross) Development System - make AGL app development easier
- Vehicle to Cloud: Connecting Cars to Non-Automotive Internet Services
- Low level CAN binding for AGL: a generic way to handle CAN signals
- AGL Development Kit - Features and Roadmap
- Vehicule Signaling Leveraging OpenXC
- AGL Security Framework Review
- Homescreen a New AGL Platform Service
-
2016
- Cybersécurité et Véhicules Connectés
- Ostro Project Analysis
- AGL 2.0 - BSP Development Kit
- Connected cars & Security challenges
- Writing secure HTML5 applications for automotive systems
- Secure Boot - Secure Software Updates
- AGL-2.0 Security Architecture Proposal
- Automotive Grade Linux Security White Paper
- AGL Kickstart on Renesas Porter Board
- SDK for Application - Kickstart
- AGL Software Development Kit
- Leveraging Docker in Automotive projects based on AGL/GENIVI
-
2015