This project focuses on developing a Public Key Infrastructure (PKI)-based solution to enhance the security of IoT devices in automotive applications. It includes the generation and management of digital certificates to establish secure communication between in-vehicle components such as Electronic Control Units (ECUs). The solution ensures data integrity, authentication, and confidentiality, addressing key challenges in securing in-vehicle communication and protecting against cyber threats in modern software-defined vehicles. 

The project incorporates periodic certificate verification for critical ECUs and equips automotive devices with firmware to generate key pairs and embed certificates for secure communication. It demonstrates the complete lifecycle of digital certificate management, ensuring robust security and seamless communication across the automotive network.

ECU authentication

After market ECU integration

Software Updates or OTA

Reissuance of certification or revocation.

Heterogeneous certificate management

PKI based security framework

Digital certificate management

Secure key storage

Secure communication

Device authentication

Over-the-air (OTA) updates

Algorithms: RSA, ECDSA for key pair generation and digital signatures.

Certificate Standards: X.509 digital certificates.

Secure Transport: TLS 1.2/1.3 for encrypted communication.

Certificate Management: Certificate Authority (CA) for issuing, revoking, and renewing certificates, Certificate Revocation List (CRL) and Online Certificate Status Protocol (OCSP) for certificate status verification.

Hardware Support: Compatible with ECUs and embedded systems.

Language: Python and C for cryptographic operations and system integration.

Libraries: OpenSSL for cryptographic functions.

Secure Storage: Secure chip for crypto operations and key storage

Name : Dr. Karthika V

E-mail Id : vkarthika@cdac.in