Наредни састанак Семинара биће одржан у уторак, 18. фебруара 2025. године, у сали 301ф Математичког института САНУ са почетком у 14.15.
Предавач: Ана Ковачевић, Универзитет у Београду – Факултет организационих наука и Zentrix Lab
Наслов предавања: ENHANCING SECURITY OF AUTOMOTIVE OTA FIRMWARE UPDATES VIA DECENTRALIZED IDENTIFIERS AND DISTRIBUTED LEDGER TECHNOLOGY
Апстракт: The increasing connectivity and complexity of automotive systems require enhanced mechanisms for firmware updates to ensure security and integrity. Traditional methods are insufficient for modern vehicles that require seamless over-the-air (OTA) updates. Current OTA mechanisms often lack robust security measures, leaving vehicles vulnerable to attacks. This paper proposes an innovative approach based on the use of decentralized identifiers (DIDs) and distributed ledger technology (DLT) for secure OTA firmware updates of on-vehicle software. By utilizing DIDs for unique vehicle identification, as well as verifiable credentials (VCs) and verifiable presentations (VPs) for secure information exchange and verification, the solution ensures the integrity and authenticity of software updates. It also allows for the revocation of specific updates, if necessary, thereby improving overall security. The security analysis applied the STRIDE methodology, which enabled the identification of potential threats, including spoofing, tampering, and privilege escalation. The results showed that our solution effectively mitigates these threats, while a performance evaluation indicated low latency during operations.
This research was partially funded by the European Commission under the framework of Horizon Europe CONFIDENTIAL6G project (Grant Agreement No. 101096435).
Напомена: Предавања на Семинару се снимају и преносе уживо. Све информације могу се наћи на страници
https://miteam.mi.sanu.ac.rs/asset/qGapAHyEBad2FDwXR