计算机研究与发展2024,Vol.61Issue(9) :2145-2155.DOI:10.7544/issn1000-1239.202330874

基于Uptane的汽车软件在线升级优化框架

An Optimized Over-the-Air Software Update Framework Based on Uptane for Automobiles

谢勇 胡秋燕 李仁发 谢国琪 肖甫
计算机研究与发展2024,Vol.61Issue(9) :2145-2155.DOI:10.7544/issn1000-1239.202330874
  • NETL
  • NSTL
  • 万方数据

基于Uptane的汽车软件在线升级优化框架

An Optimized Over-the-Air Software Update Framework Based on Uptane for Automobiles

谢勇 1胡秋燕 2李仁发 3谢国琪 3肖甫1
扫码查看

作者信息

  • 1. 南京邮电大学计算机学院 南京 210003
  • 2. 万集科技股份有限公司 北京 100193
  • 3. 湖南大学信息科学与工程学院 长沙 410082
  • 折叠

摘要

"新四化"使得车内电子系统的复杂性骤增,因电子系统的功能安全问题和网络安全问题导致的汽车召回事件频发,这给整车厂商造成巨大的经济损失和用户体验下降.在线升级技术借助于无线网络实现自动驾驶功能更新、车载软件更新和车载安全系统升级等场景下的系统固件和软件的远程升级,可避免汽车召回造成的影响,但是如何保障在线升级的安全和高效实现是汽车行业亟待解决的关键问题.Uptane开源框架是汽车软件在线升级的行业参考规范,但该框架仍存在安全性和系统资源开销过大等不足.分别从加密算法选择和引入基于联盟链的验证机制2个方面对Uptane框架进行优化,以降低实现开销和提升安全性.通过原型实现和测试验证了所提出Uptane优化框架的安全性,并通过与原Uptane框架的对比分析可知,所提出优化框架的内存开销和时延开销分别降低了6.9%和28.6%.

Abstract

Autonomous driving,connected vehicles,electrification of the powertrain,and shared mobility lead to the rapid increasing of the complexity of automotive electronic system,and the functional safety and cyber-security problems of the automotive electronic system cause a serial of recalls frequently,which is resulting in a huge economic loss and user experience decline of the original equipment manufacturer(OEM).The over-the-air(OTA)update technology uses wireless network to achieve remote update of software and firmware in scenarios such as automatic driving function update,on-board software update and on-board safety system upgrade,thus avoiding the adverse impact of recall,but how to guarantee the cyber-security and efficient implementation of the OTA processes is a key problem needing to be resolved by auto industry.The opensource Uptane framework is an industry reference specification for OTA,but it has some cyber-security vulnerabilities and brings too large system overhead for its current reference implementation.By choosing efficient Hash and signature algorithms and introducing a new verification mechanism based on alliance chain,an optimized Uptane framework is proposed with reduced resource and time overhead and increased cyber-security.The prototype implementation verifies the cyber-security of the optimized Uptane framework,and by comparing with the original Uptane framework,the memory consumption and delay overhead of the optimized Uptane framework are reduced by 6.9%and 28.6%,respectively.

关键词

智能网联汽车/软件在线升级/系统资源优化/区块链/加密算法

Key words

intelligent connected vehicles/over-the-air software update/system resource optimization/blockchain/encryption algorithm

引用本文复制引用

基金项目

国家自然科学基金(62172234)

江苏省自然科学基金(BK20211272)

南京邮电大学"1311"人才计划()

出版年

2024
计算机研究与发展
中国科学院计算技术研究所 中国计算机学会

计算机研究与发展

CSTPCDCSCD北大核心
影响因子:2.649
ISSN:1000-1239
参考文献量2
段落导航相关论文