Security design of OTA upgrade for intelligent connected vehicle

With the interlocking of the car network, the intelligent unpleasant exhibition, the car network function has gradually entered the public vision as the standard item of the new car. The public data shows that the vehicle networking configuration accounts for 21% in the new car listed in 2017, which is 16% of the listing of new cars in 2016. With the launch of new models, the car assembly ratio will continue to improve, in accordance with the consistency of the industry, to 2020 OTA will enter a large-scale application state, China's car network users will grow from existing 7 million to 2020 Around 44 million, China's car network market will reach nearly $ 33.8 billion. In this process, the vehicle operation is more convenient, and the use process becomes more intimate. All of this comes from the gradual improvement of vehicle enterprises' functionality. Among them, the real-time networking update of the vehicle electronic control unit (especially entertainment interactive system) is used in real time. The increasing number of automotive electronics, vehicles are facing more controller upgrade requirements after the R & D phase and SOP. Under the management method of existing vehicle electronic control components, the controller upgrade must be upgraded by the product engineer with special equipment or by 4S shop maintenance engineers to upgrade the special diagnostic. In recent years, the increase in electric control components has more and more cases requiring vehicles to be upgraded after the factory, whereby OTA technology came into being. Here, OTA technology specially refers to software / firmware upgrades for the in-vehicle electronic control unit (ECU) through wireless communication technology. With the rapid development of the vehicle industry in the direction of intelligence, connectivity and electrification, the number of Electronic Control Unit (ECU) is increasing in the automotive system. Updates and iterations for the vehicle and ECU have been realized by software updates (OTA) instead of physical approaches. At present, hacking incidents targeting on vehicles happen frequently. As a significant function of intelligent connected vehicles, the OTA function becomes a key target of hackers. Hijacking, tampering, replacing and other methods are used to attack the OTA upgrade link of vehicles. This paper proposes a design of a safe OTA upgrade scheme through the security analysis based on the current OTA upgrade architecture of intelligent connected vehicles to improve security of OTA upgrade.