Smart Tachographs: New Security Features Joint Research Centre - - PowerPoint PPT Presentation

smart tachographs new security features
SMART_READER_LITE
LIVE PREVIEW

Smart Tachographs: New Security Features Joint Research Centre - - PowerPoint PPT Presentation

Oct 05, 2023 318 likes •433 views

Smart Tachographs: New Security Features Joint Research Centre (JRC) The European Commissions in -house science service www.jrc.ec.europa.eu Serving society - Stimulating innovation - Supporting legislation The New Digital Tachograph System

slide-1
SLIDE 1

Smart Tachographs: New Security Features

www.jrc.ec.europa.eu

Serving society - Stimulating innovation - Supporting legislation

Joint Research Centre (JRC)

The European Commission’s in-house science service

slide-2
SLIDE 2

The New Digital Tachograph System

2

Remote Early Detection (DSRC) External GNSS (optional)

  • New communication links to be secured
  • All component certified according to the

Common Criteria security scheme

slide-3
SLIDE 3

Security Mechanisms

3

  • Introduced mechanism to secure new communications links
  • Existing security model kept for communication links already present

Pairing and secure communication Mutual authentication and secure communication Digital signatures on downloaded data

External GNSS (optional) VU MS Cards Remote Early Detection (DSRC)

Secure communication

slide-4
SLIDE 4

New Cryptographic Algorithms

4

  • Cryptographic algorithms to secure the communication links completely renewed
  • Public key cryptography  Elliptic Curve Cryptography (ECC), Symmetric-key cryptography

 AES, Hash  SHA-2

  • New format for digital certificates

Pairing and secure communication Mutual authentication and secure communication Digital signatures on downloaded data

External GNSS (optional) VU MS Cards Early Remote Detection (DSRC)

Secure communication

ECC, SHA-2, AES, Digital Certificates AES AES, SHA-2 ECC, SHA-2, Digital Certificates

slide-5
SLIDE 5

New Digital Certificates format

5

slide-6
SLIDE 6

Cryptographic Keys and Digital Certificates Validity

6

  • All keys and certificates have an end of validity
  • No cryptographic objects with undefined end of validity in the system
slide-7
SLIDE 7

Cryptographic Infrastructure

7

  • As before three layers infrastructure: ERCA, MSCA, DT components
  • Two purposes:
  • public key infrastructure (PKI) with certificates and public/private key pairs
  • secret keys distribution
  • New component in the infrastructure: external GNSS facility

ERCA Member State

slide-8
SLIDE 8

Cryptographic Infrastructure: PKI

8

  • Now MSCAs issue two certificates for VUs and Cards
  • One for authentication and one for digital signatures
  • (signature certificate in VUs and Driver and Workshop card only)
  • Now MSCAs issue certificates for the external GNSS facility as well

ERCA Member State

ERCA Cert. ERCA.PuK Card.MA.C Card.M.PuK Mem.Stat.C. VU-EGF MS.V.PuK VU.MA.C. VU.M.PuK Mem.Stat.C. Card MS.C.PuK VU.Sign.C. VU.S.PuK GNSS.MA.C. VU.M.PuK Card.Sign.C Card.S.PuK

slide-9
SLIDE 9

Cryptographic Infrastructure: Secret Keys Distribution

9

  • Now also the secret keys to secure the DSRC channels are distributed
  • MSCAs receives the DSRC master key providing it for Control and

Worlshop cards

  • MSCAs generates specific DSRC keys for each VU

ERCA Member State

MS Keys MS Crypto Data MS VU Key MS WC Key DSRC Key MS Keys DSRC Key DSRC Key DSRC ENC Key DSRC MAC Key

slide-10
SLIDE 10

Thank you for your attention! Joint Research Centre (JRC) Web: www.jrc.ec.europa.eu