VSS in NDN (Named Data Networking) from Ted Guild on 2021-09-27 (public-automotive@w3.org from September 2021)

From: Ted Guild <edwardguild@geotab.com>
Date: Mon, 27 Sep 2021 10:16:16 -0400
To: public-automotive <public-automotive@w3.org>
Message-ID: <CANVf9zJ=2gR7DrLQNonOQW0dBdtROnf1BaBzE5dg-E7DrPq60g@mail.gmail.com>

One of the researchers, Christos Papadopoulos, Glenn and I have known for
years has been pursuing alternate architectures for data exchanges,
eliminating a number of attack vectors of traditional TCP/IP. It is also
more dynamic in nature instead of brittle, static linkage resulting in 404s.

I am pleased to share a whitepaper of his, accepted at the Vehicle
Networking Conference.

NDN could work well for in-vehicle networks and should be considered before
the industry moves too far into ethernet and the issues that come with it.

VSS' hierarchical design is a good match for NDN which is why it
is leveraged in this whitepaper.

I hope we can find an appropriate venue, future GENIVI AMM or workshop
perhaps, to for a presentation and discussion on this topic.

Abstract:

Forthcoming automotive cybersecurity standards such as ISO 21434 and
regulation such as WP.29, make it imperative that automakers establish
cybersecurity-by-design practices. Vehicle communication cybersecurity
(both in- and out- of-vehicle) is crucial in achieving this goal. With the
adoption of automotive Ethernet, automakers are turning to the Internet
protocol suite (IP) to achieve the desired cybersecurity properties.
However, security was always an add-on to Internet protocols, resulting in
well-known security weaknesses such as spoofing, denial of service attacks,
lack of authentication and more. Such weaknesses may unwittingly be brought
to the automotive space.

In this position paper we take the position that the automotive industry
should consider other networking architectures besides IP as they move away
from existing architectures such as CAN. Specifically, we advocate Named
Data Networking (NDN), an architecture that incorporates unified
security-by-design from the network to the application layers. While NDN
has not yet been applied to the automotive domain, our position is that its
superiority to IP, especially in security, makes it a strong candidate.
Unlike IP, which secures the communication channel between two entities,
NDN secures the content through digital signatures that cryptographically
bind a name to the content, ensuring both authentication and integrity of
the data. NDN is analogous to a pub-sub model and can be implemented
directly over L1, L2 or L3 layers.

-- 

Ted Guild (he, him, his)
Geotab

Connectivity Standards Lead

Direct
Toll-free

Visit

+1 (207) 831-2665
+1 (877) 431-8221
www.geotab.com

Twitter <https://twitter.com/geotab> | Facebook
<https://www.facebook.com/Geotab> | YouTube
<https://www.youtube.com/user/MyGeotab> | LinkedIn
<https://www.linkedin.com/company/geotab/>

Attachments

application/pdf attachment: 1570748661_paper.pdf

Received on Monday, 27 September 2021 14:17:44 UTC