Hardware and Software Constraints for Automotive Firewall Systems?
Why this work is in the frame
A frame that forgets how it found something cannot be audited. These are the routes that admitted this work.
Bibliographic record
Abstract
<div class="section abstract"><section id="s_1" class="section"><h2 class="title">Introduction</h2><div class="htmlview paragraph">The introduction of Ethernet and Gigabit Ethernet [<span class="xref">2</span>] as the main invehicle network infrastructure is the technical foundation for different new functionalities such as piloted driving, minimizing the CO<sub>2</sub>- footprint and others. The high data rate of such systems influences also the used microcontrollers due the fact that a big amount of data has to be transferred, encrypted, etc.</div><figure id="F1" class="figure"><div class="graphic-wrapper"><img class="article-figure figure" src="2016-01-0063_fig0001.jpg" alt="Motivation - Vehicles will become connected to uncontrolled networks"/></div><span class="label">Figure 1</span><figcaption class="caption"><span class="title">Motivation - Vehicles will become connected to uncontrolled networks</span></figcaption></figure><div class="htmlview paragraph">The usage of Ethernet as the in-vehicle-network enables the possibility that future road vehicles are going to be connected with other vehicles and information systems to improve system functionality. These previously closed automotive systems will be opened up for external access (see <span class="xref">Figure 1</span>). This can be Car2X connectivity or connection to personal devices. Allowing vehicle systems to communicate with other systems that are not within their physical boundaries impose a previously non-existing security problem. Any external communication with the vehicle system must be considered as a potential security threat, which may impact the system functionality or any of the safety properties.</div><div class="htmlview paragraph">This may result in new vulnerabilities that could be exploited by malicious attackers [<span class="xref">1</span>, <span class="xref">3</span>]. Any external access to the system must be authorized and firewalled, so that only trustworthy users and services can make use of the functionality.</div><div class="htmlview paragraph">In order to achieve a high level of security a holistic security concept is highly essential. A holistic security concept is based on the following basic building block:</div><ul class="list disc"><li class="list-item"><div class="htmlview paragraph">Physical Security (tamper proof)</div></li><li class="list-item"><div class="htmlview paragraph">Network Security</div></li><li class="list-item"><div class="htmlview paragraph">Secure System Software (ECU Hardening)</div></li><li class="list-item"><div class="htmlview paragraph">Application Hardening</div></li></ul><div class="htmlview paragraph">In order to archive a high level of confidence for the internal secure network communication a firewall concept is required. A holistic firewall approach includes firewalls in different ECU with different firewall functionalities.</div><div class="htmlview paragraph">This paper addresses the hardware and software architecture patterns for building automotive firewall systems.</div><div class="htmlview paragraph">In the first chapter state-of-the-art firewall concepts will be shortly presented and afterwards special automotive requirements will be introduced.</div><div class="htmlview paragraph">In following chapters the basic requirements for a firewall system from the OEM point of view will be discussed. It is followed by having a closer look on the hardware aspects which come along with automotive requirements.</div><div class="htmlview paragraph">The paper finishes with some software aspects about realizing firewalls.</div></section></div>
Fetched live from OpenAlex and de-inverted. Abstracts are not stored in this database: the inverted indexes are 8.6 GB of the frame’s 9.3 GB of text, and the host has 13 GB free.
Full frame distilled prediction
Teacher imitationNot calibrated prevalence, not ground truth. Human validation pending. Learned from the 10,348 direct Codex labels and 10,348 direct Gemma labels. Candidate is the union of thresholded teacher heads; consensus is their intersection. These outputs are machine_predicted_unvalidated and are not human labels or direct frontier model labels.
Codex and Gemma teacher scores by category
| Category | Codex | Gemma |
|---|---|---|
| Metaresearch | 0.001 | 0.003 |
| Meta-epidemiology (narrow) | 0.001 | 0.001 |
| Meta-epidemiology (broad) | 0.001 | 0.000 |
| Bibliometrics | 0.000 | 0.001 |
| Science and technology studies | 0.001 | 0.002 |
| Scholarly communication | 0.000 | 0.002 |
| Open science | 0.002 | 0.001 |
| Research integrity | 0.001 | 0.001 |
| Insufficient payload (model declined to judge) | 0.000 | 0.000 |
Machine scores (provisional)
The two teacher heads of the student model, read on this work. A score orders the frame for review; it never asserts a category, and the validation status ships verbatim with every row.
Baseline scores from an immature model (maturity gate not passed, 7 training rounds). Scores rank; they never assert a category.
score_only:v0-immature-baseline · verbatim from the scoring run: score_only means the number may rank works, and no category label ships from it