Secured Open Source Embedded Software

This presentation was given at International Cybersecurity Forum (FIC) in Lille / France.

While the automotive industry has specific constrains and requirements that OpenID Connect (OIDc) did not dig in, OIDc can still be used to secure vehicle to cloud connection, in car communications or smart-cities interactions.

This talk introduces how proposes to use OIDc inside Automotive Grade Linux (AGL) to secure the interaction in between car infotainment, instrument cluster, telematic unit or cloud operations.

Download slides [click here]


This slideshow was used as support for a lesson given at "École nationale supérieure de techniques avancées Bretagne (ENSTA Bretagne)" (Univisersity of Britany).

It presents many aspect of AGL, its security and its framework. It can be used as starter overview browsing every AGL feature.

Download [here]


This presentation was given at DevOps Wold / Jenkins World in Lisbona.

As today automotive software capabilities are one of the main motivation to choose one model over an other. Thus a modern car easily runs 50 to 100 millions lines of code distributed on more than one hundred SoC/ECU connected by ten or more different networks. At the same time, automotive remains a very strongly cost driven market where short term profits are impossible. This imposes OEMs to keep running the same hardware platform for a minimum of 5 years. OEMs have to both apply security patches and add as many new functionality as expected by the market while having little or even no margin to improve hardware. This conflict of inovation versus stability is only possible with ten years or more long term maintenance contract and a very strict test and continuous software integration process.

This talk details the reasons why these new trends are key for automotive and many other industries. It exposes how based on lessons learn proposes a solution to fulfill embedded software long term support. How to scale it to very complex systems with “in production” multiple software versions, multiple hardware revisions, thousands of components coming from multiple sources and last but not least hundreds of developers.

Download slides [click here]


This presentation was given at AGL All Member Meeting in Monte Carlo, Monaco.

In the embedded world, the tricky part of development is often located at the hardware/software interface. Indeed, directly testing software on the final target is not always possible. So, it can lead to an increase in time-to-market.

Virtualization ensures early code integration in a target, but existing tools are either incomplete or require hardware virtualization knowledge. This is why is evaluating open-source solutions, allowing AGL application developers to remotely test code easily on emulated and real boards.

So, this presentation outlines the results of this study. Then focuses on the different possible targets given to developers to test their code : QEMU, specific SystemC emulated boards and real hardware boards, all running an AGL stack.

Download slides [click here]


This presentation was given at AGL All Member Meeting in Monte Carlo, Monaco.

Cars remain expensive, customers expect long warranty and strong aftersales services. For OEMs car development costs increase making short term profits impossible. They must leverage software update to add new features while keeping same hardware during minimum 5 years of serial life. So, OEMs LTS contract requirements may quickly extend to 20 years.

Cybersecurity legislation moves. Following European Cybersecurity Act, the ENISA passed a cybersecurity certification schema. If until now OEMs had limited interest in this topic, they will be forced to take seriously into consideration these new legal constraints and propose security patches during the whole vehicle lifetime.

This talk details the reasons why these new trends are important for OEMs and exposes how based on lessons learnt proposes a solution to fulfill LTS and cybersecurity certifications requirements.

Download slides [click here]

Show Redpesk Video [click here]


Archived Publications

About us

Our redpesk® product: a software factory in a white box enabling you to speed up and control your embedded developments from the initial design cycle to your product end of life.

Contact information

Halles St Louis,
    rue Docteur Bodelio
56100 Lorient
02 57 62 02 47