Konferenzen und Rahmenprogramm
Multi-Level CAN (FD) Security, Combining Available Technologies
Securing existing industrial communication protocols like Controller Area Network - CAN (FD) - requires a look at all protocol layers. Although security solutions are known for most individual layers, there are practical limits to their application such as resource constraints. Our paper examines how existing security solutions for individual layers can be combined to best complement each other in a real-world CAN/CANopen system. The discussed security mechanisms are: €¢ black- and white-list filtering of CAN (FD) frames, transfer rates limitation and secure configuration €¢ secure grouping and authentication with CANcrypt €¢ end-to-end security protocols like TLS to typically secure remote end-to-end security, e.g. for diagnostics We look at the entire lifecycle of a system, also adding/removing devices, key distribution and diagnostics and service. We show how with a smart combination of security mechanisms they can complement each other and significantly improve overall system security.
--- Datum: 25.02.2020 Uhrzeit: 10:00 - 10:30 Uhr Ort: Conference Counter NCC Ost