| Given the demand for new functions such as Advanced Driving Assistance System(ADAS),high-quality entertainment,and Over-the-Air Technology(OTA),the demand for network bandwidth has exploded.This demand has exceeded the limit capacity of the traditional in-vehicle network,prompting the in-vehicle Ethernet to become a member of the in-vehicle network,and then develop the in-vehicle network architecture with the in-vehicle Ethernet as the backbone network.On the one hand,the development of in-vehicle Ethernet communication technology has prompted the migration of Service-Oriented Architecture(SOA)technology from the traditional IT field to the vehicle field.And the Service-Oriented Communication(SOC)solution with the Scalable service-Oriented Middlewar E over IP(SOME/IP)protocol has provided an effective way for the realization of complex functions such as emerging In-vehicle infotainment,in-vehicle navigation,and assisted driving,and massive message interaction.On the other hand,the high-frequency large-scale data transmission of the In-vehicle Ethernet puts for-ward higher requirements for communication performance.And the transmission of a large amount of sensitive data and the characteristics of vehicle network security closely related to personal and property safety also bring new challenges to the communication security technology of vehicle Ethernet.This thesis starts with the secure communication technology for automotive Ethernet and then analyzes the current security threats and existing security solutions in the automotive Ethernet communication stack.Then it proposes a new solution to the shortcomings of the existing solutions.Finally,the Secure Scalable Service-Oriented Middlewar E over IP(S-SOME/IP)protocol is designed and implemented based on SOME/IP protocol specification.Based on the realization of service-oriented communication,the protocol adds a security mechanism,which defines different security levels and advanced autho-rization rules,using service instances as a unit to provide appropriate security protection for the message transmission of different service instances.At the end of this thesis,the S-SOME/IP protocol is tested and evaluated from two perspectives of function and per-formance.The evaluation results show that the functional requirements of S-SOME/IP are fully realized,and the performance is good.The S-SOME/IP protocol implemented in this paper is of great significance to the im-provement of the secure-communication technology based on in-vehicle Ethernet.First,S-SOME/IP is an important practice of SOA in the automotive field,providing a high-level service-oriented abstraction.Second,the security mechanism of S-SOME/IP is oriented to a single service instance,thus providing sufficiently detailed security-protection granularity and sufficiently flexible security configuration.Third,S-SOME/IP makes an appropriate trade-off between communication performance and security performance to achieve better performance and lower resource overhead.Fourth,by offering the lowest security level,S-SOME/IP maintains good compatibility with applications that use standard SOME/IP for communication. |
PDF Full Text Request