Skip to main content

Cyber Security for Cross Domain Reliable Dependable Automated Systems

Periodic Reporting for period 2 - SECREDAS (Cyber Security for Cross Domain Reliable Dependable Automated Systems)

Berichtszeitraum: 2019-05-01 bis 2020-07-31

The aim of the 3-year SECREDAS project is to: “develop and validate multi-domain architecting methodologies, reference architectures & components for autonomous systems, combining high security and privacy protection while preserving functional-safety and operational performance”. The solution includes a reference architecture, powerful components and common approaches regarding integration and verification for the sectors of automotive, health and rail for which the automation is major challenge regarding the safety of operation, the security of persons and the privacy of citizens. The project is important for society as we move toward higher uptake of automated systems by consumers (for example in fully self-driving vehicles), more automation and autonomous decision-making within embedded systems (see for example: rail), the use of wearables with high numbers of sensors which collect and provide data to other (automated systems). The systems themselves (HW and SW) must be safeguarded against any form of unintentional and intentional tampering (eg. hacking-attemps, errors in updates/upgrades of software) whilst allowing efficient and fast internal and external communication (V2X) and also comply with European privacy policies. Only if this can be assured, are European consumers likely to trust and buy/use these autonomous systems.

The project aim was translated into 15 project objectives:
Obj. 1 Study a number of use cases with specific requirements in terms of security, safety and privacy in order to drive the development, validation & demonstration activities.
Obj. 2 Provide a methodology to include the most innovative solutions and to integrate in the future technologies enhancement and widening of automated systems.
Obj. 3 Elaborate a common design approach to comply with Safety, Security and Privacy challenges in the User Scenarios.
Obj.4 Develop design patterns for multi-concerned security-safety verification & testing.
Obj. 5 Develop and validate common technology requirements for the reference architectures.
Obj. 6 Develop & validate a next generation of secured sensing and processing components.
Obj. 7 Develop & validate a next level of secured and privacy-protecting external communication technologies (V2X, 5G).
Obj. 8 Develop & validate secured in-vehicle network technology, connected to a central gateway/VCU.
Obj. 9 Health domain: (1) develop secure connections between wearables; (2) ensure end-to-end secure, customisable heterogeneous connections enabling personal health data handling with automated privacy preservation; (3) new sensor technologies and algorithms to obtain vital signs of drivers and passengers; (4) fusion solutions; (5) application for continuous health monitoring and driver performance.
Obj. 10 Integration and validation of safety and security measures from other applications into rail applications.
Obj. 11 Demonstration of relevant user scenarios in terms of security, safety and performance aspects on the developed components.
Obj. 12 Taking an active role in international standardisation.
Obj. 13 Creating a multi-stakeholder dialogue to prove the value of the technology in public use cases, steer legislation and create awareness.
Obj. 14 Performing end user data collection activities.
Obj. 15 Raising public and industrial awareness that secure solutions exist.
During the 1st project year, the main body of work concerned the definition and development of Use Cases, threat scenarios and various technical component requirements. The following results were achieved:

* Existing CTEs have been improved for use in other WPs and new CTEs have been added.
* Methods to ensure safety, security and privacy have been analysed and evaluated.
* Shared common understanding on Cooperative ITS standards and their applicability to SECREDAS.
* Technical progress on radar 5G, V2X security threat detection.
* Synchronisation of Security, Safety and privacy requirement analysis with Use Case definition and CTE design.
* Enhancement of a simulation tool to validate research question about safety.
* Enablement of a cross-domain methodology for reference architectures.
* FPGA prototype and concept verified for Secure CAN.
* Simulation environment and model for secure microcontroller available.
* Final set of six Scenarios, Use Cases and Demonstrators available.
* Assessment of the standards landscape around highly automated systems and identification of major standardization topics and related “Windows of Opportunity”.
* Development of perturbation, augmentation and evaluation tools for image-based perception of the vehicle.
* Development of a prototype LIDAR demonstrator board SPAD detector VCSEL illuminator.
* Development of a multi-vehicle testbed using UAVs for testing under real conditions collision avoidance systems.
* Health demonstrator has been defined, consisting of two parts: (1) Personal health monitoring, (2) driver performance monitoring.

During the 2nd project year, the emphasis has been on the production of 1st release stand-alone demonstrators and initial integration of components into systems that can be used for the three main WP9 demonstration cycles. Further solutions that cannot be included into WP9, will be tested and validated within the respective work packages. Thus far, 46 demonstrator recordings have been produced and work is ongoing on their integration into systems. The project is on budget and more-or-less on schedule despite the COVID19 pandemic.
Year 1 of the project brought together security, safety and privacy aspects related to the protection of automated systems. These are usually treated as separate domains, each with its own set of assumptions, approaches, processes and standards. SECREDAS has led to an in-depth overview of the inter-relations of the three domains toward the further development and roll-out of automated system projects. It has highlighted gaps in approaches (eg. neither domain feeling responsible) and gaps in standards. The identified technical issues are now being addressed holistically. This increases development efficiency and reduces risks of errors/gaps that might become risks to future consumers. Year 1 was a steep learning experience for partners from the different domains and has led to an agreed set of realistic Use Cases and Threat Scenarios which will be typical for consumers. Based on these, partners established clear technical development frameworks. This has not been done before and should be considered a significant improvement beyond the state-of-the-art. In the first year, eight publications were prepared on threat assessments and threat modeling, certification/standards in the industry, the use of blockchain, improvement in LIDAR and in vehicle sensing. Year 2 has seen the actual development of technical demonstrators and 1st release integrated systems. 46 demonstrator recordings have been produced and 16 new scientific publications. The demonstrators will now move toward the main on-road Demonstration cycles for validation and to create end-user trust and acceptance ofthe solutions.