Automotive Cybersecurity

Automotive On-board Cybersecurity Solutions

We offer a unique combination of proven engineering assets and expert services to secure your automotive systems.

Our Engineering Assets

TLS 1.3 AUTOSAR Compatible Implementation

  • TLS Client support
  • Integrates with 3rd party TCP/IP stacks
  • Integrates with 3rd party crypto and certificate managements stacks
  • AUTOSAR and non-AUTOSAR integration
  • Optimized for resource-constrained environments

Note: This asset is dependent on 3rd party TCP/IP and Crypto libraries

AUTOSAR Compatible PKI-based UDS 0x29 Authentication CDD

  • UDS 0x29 PKI based unidirectional authentication support
  • Seamless integration with 3rd party Dcm modules
  • Sub-function 0x4 TransmitCertificate support
  • Certificate chain validation
  • OCSP validation and revocation checking
  • Roles and whitelist extraction
  • Root certificate install, update, and storage management

Note: Designed for integration with 3rd party Dcm and Crypto modules

Development PKI Tooling

  • Complete PKI generation pipeline
  • OCSP responder implementation
  • Integrations with Python based diagnostics tester logic
  • Customizable for specific OEM requirements

Note: Can be tailored to meet specific organizational needs

Customizable Freshness Value Manager CDD

  • AUTOSAR interface implementation
  • Integration with SecOC from 3rd party vendors
  • CMAC support for message authentication
  • Single FV master and FV slave support
  • Message, trip, reset counters support
  • Counter update and Non-volatile storage support
  • Message/PDU-Key association support
  • Rollover and counter window profile
  • JASPAR compatible implementation

Note: Can be customized to meet specific OEM anti-replay requirements, diagnostics interface, key provisioning, key storage, and more.

Our Cybersecurity Capabilities

EV Charging Communication Security

Combining our PKI tooling and TLS implementation with specialized V2G protocol expertise, we provide complete security solutions for EV charging communications with customization services tailored to specific charging infrastructure projects.

Core Assets:

Services:

  • ECU side V2G PKI keys and certificates secure resource management design and implementation
  • Certificate/key installation and update workflow design and implementation
  • Development PKI generation for development time verification
  • TLS and Crypto integration
  • End-to-end verification of TLS and Plug and Charge function
Learn more about our charging security services

Secure On-board Communication

We support the development and integration of secure in-vehicle networking and anti replay attacks protection into your AUTOSAR based ECUs.

Core Assets:

  • TLS 1.3 AUTOSAR-compatible implementation
  • Customizable Freshness Value Manager CDD

Services:

  • Expert integration of AUTOSAR extracts with Secured I-PDU
  • SecOC module configuration and integration
  • Custom FVM development for OEM-specific anti-replay attack protection requirements
  • Verification and testing for secure CAN and Ethernet communication

Our Freshness Value Manager engineeng asset can be extended and customized to meet specific requirements from various OEMs and industry standards like JASPAR.

Secure Diagnostics via UDS 0x29 PKI-based Authentication

Built on our UDS 0x29 authentication CDD and HSM integration expertise, we provide specialized development and integration services, adapted to your specific secure diagnostics requirements.

Core Assets:

  • AUTOSAR Compatible PKI-based UDS 0x29 Authentication CDD
  • Development PKI Tooling

Services:

  • Customization of UDS 0x29 CDD for specific OEM requirements
  • AUTOSAR DEXT and Dcm integration
  • HSM secure storage resource design and optimization
  • HSM integration
  • Hardware-specific optimizations
  • Development PKI generation for development time verification of authentication and access control using roles and whitelists
  • Verification and testing including creation of conformance test suites for the secure diagnostics feature

AUTOSAR & Non-AUTOSAR Crypto Integration

We provide comprehensive cryptographic services integration for both AUTOSAR and non-AUTOSAR architectures, with expert customization to meet your specific performance and security requirements.

Core Assets:

  • TLS 1.3 implementation

Services:

  • TCP/IP stack integration
  • Intrusion Detection System (IDS) design and integration
  • AUTOSAR Crypto stack integration for HSM and Software crypto library deployment scenarios
  • HSM integration
  • Performance and security testing

Development PKI Tooling

Based on our PKI tooling assets, we provide comprehensive, development time, certificate management solutions with customization services that adapt to your specific organizational requirements and security policies.

Core Assets:

  • Development PKI Tooling

Services:

  • Configuration of certificate chains and certificate profiles
  • Generation of development PKI keys and certificates from configuration
  • Design and development of certificate/key update workflows including UDS service integration and communication with the ECU on CAN and Ethernet
  • Custom PKI policy implementation
  • OEM-specific adaptations
  • Security training and documentation

Ready to Secure Your Automotive Systems?

Partner with Alefbits for comprehensive automotive cybersecurity solutions and expert services.

Contact Our Team
Contact Our Team