PORTLAND, Ore., March 30, 2016 – Trusted Computing Group and members will demonstrate solutions for automotive and Internet of Things security at the April 14 SAE World Congress TechHub, Cobo Center, Detroit.
TCG previously has demonstrated trusted use cases for automotive security via the TPM (Trusted Platform Module) and its Trusted Network Communications network security specifications to ensure the integrity of transmission of data between the factory (or third parties) and vehicles and to ensure the integrity of the embedded electronic control units (ECUs) that control the car’s operation. TCG’s approach can:
1. Measure and report on the integrity of firmware and software used in the ECU
2. Create, store, and manage cryptographic keys in the ECU
3. Provide attestation and assurance of identity of the ECU
4. Support secure firmware and software updates in the ECU
5. Provide anti-rollback protection and secure configuration memory for the ECU
TCG Vehicle Services Subgroup members led by Fujitsu and others will demonstrate this approach.
Other TCG members will offer attendees insights into using trusted computing specifications and standards in other applications that potentially could be applied to vehicles and other IoT environments. These include:
• Protection of intellectual property by the TPM: Infineon and Wibu Systems
• Ensuring trust and security for devices in the IoT connected via mobile or public cloud with TNC specifications: Tempered Networks
• Scalable strong device identity in the IoT with PKI service using the TPM: GlobalSign and Infineon
• Open-source management-software for self-encrypting drives (SEDs): Drive Trust Alliance
The TPM 2.0 (Trusted Platform Module) Library Specification was recently published as ISO/IEC 11889:2015a. A new specification, the TCG TPM 2.0 Automotive Thin Profile, specifically provides key integrity, attestation, cryptographic key management and verification of digital signatures and safe remote installations. The spec recognizes automotive environment constraints and requirements including temperature, vibration, limited memory, power management limitations and long life cycles.
More information about TCG’s specifications and work groups is available at the Trusted Computing Group’s website. Follow TCG on Twitter and on LinkedIn.
Brands and trademarks are the property of their respective owners.
Tweet this: Making the car trusted & secure: TCG #SAE Congress #SAETechHub Apr. 14. Tempered NW, Infineon, Fujitsu, Wibu, DTA, GlobalSign ow.ly/Zrklz
Membership in the Trusted Computing Group is your key to participating with fellow industry stakeholders in the quest to develop and promote trusted computing technologies.
Standards-based Trusted Computing technologies developed by TCG members now are deployed in enterprise systems, storage systems, networks, embedded systems, and mobile devices and can help secure cloud computing and virtualized systems.
Trusted Computing Group announced that its TPM 2.0 (Trusted Platform Module) Library Specification was approved as a formal international standard under ISO/IEC (the International Organization for Standardization and the International Electrotechnical Commission). TCG has 90+ specifications and guidance documents to help build a trusted computing environment.