Secured Open Source Embedded Software

Publications

CAN but also Lin, FlexRay, Ethernet and many other communication buses are used to carry all sort of signals within vehicles. It is obvious that in order to reduce cost and foster innovation AGL should provide a generic and efficient mechanism to read/write vehicle signals. This model should not only provide an encoding/decoding of binary messages in such a way that it is easy for application and process them. It should also provide an abstraction model that allow not to reveal binary encodings when those one are not public. Last not not least it should be secured by design. This talk proposes a model to build CAN or other bus agents that leverage AGL framework for transport and security and Ford OpenXC for encoding/decoding binary messages.

Download PDF presentation:  [here]

The framework is presented in its current state of January 2017: its history, its features and its goals: opening securely AGL to as many companies as possible. Then, focus will turn to the expected state of the framework at end of 2017, browsing the remaining tasks and giving an agenda. This includes at least these items, reviewed technically and logistically: integration with systemd (cgroup handling, tiny namespacing, ...), permission policy and enforcement, cryptography and PKI for domain protection.

Slideshow of the presentation at AGL AMM Winter 2017 Tokyo : [here]

Keeping user experience control is critical for every OEM. To enable an easy way to tailor UI and user experience, AGL in general and homescreen in particular should provide a clear separation in between business logic and graphic rendering. This talk propose a new homescreen architecture. In this new approach the homescreen is a platform service accessible through a set of normalized API. Every OEM/Tier1 should be able to easily reshape user experience by simply connecting a new UI on a platform provided homescreen service. The new architecture should support not only both HTML5 & QT user interface, but should also support multi-screens, multi-users, local & remote screens and obviously should implement security built in by design.

Download PDF presentation:  [here]

The hundreds of millions of cars on our roads every day is a unique source of highly valuable data. While technically, connected car already makes those data available outside the vehicle, this export raises serious questions on how to secure the process. Connected cars raise premium challenges for the integrity of vehicle global security.

This document presents a quick analysis of Ostro Project and describes some methods
and components that could be reused in AGL project:

  • Yocto layers
  • Security mechanisms
  • Software update
  • Components: Connman, MRAA, UPM ...

Download here: OstroProjectAnalysis.pdf

  1. AGL 2.0 - BSP Development Kit
  2. Connected cars & Security challenges
  3. Writing secure HTML5 applications for automotive systems
  4. Secure Boot - Secure Software Updates
  5. AGL-2.0 Security Architecture Proposal

Archived Publications

About us

Our redpesk® product: a software factory in a white box enabling you to speed up and control your embedded developments from the initial design cycle to your product end of life.

Contact information

IoT.bzh

Halles St Louis,
    rue Docteur Bodelio
56100 Lorient
02 57 62 02 47