Post-quantum secure boot on vehicle network processors
- The ability to trust a system to act safely and securely strongly relies on the integrity of the software that it runs. To guarantee authenticity of the software one can include cryptographic data such as digital signatures on application images that can only be generated by trusted parties. These are typically based on cryptographic primitives such as Rivest-Shamir-Adleman (RSA) or Elliptic-Curve Cryptography (ECC), whose security will be lost whenever a large enough quantum computer is built. For that reason, migration towards Post-Quantum Cryptography (PQC) is necessary. This paper investigates the practical impact of migrating the secure boot flow on a Vehicle Network Processor (S32G274A) towards PQC. We create a low-memory faultattack-resistant implementation of the Dilithium signature verification algorithm and evaluate its impact on the boot flow.
| Author: | Joppe W. BosGND, Brian CarlsonGND, Joost RenesGND, Marius RotaruGND, Amber SprenkelsORCiD, Geoffrey P. WatersGND |
|---|---|
| URN: | urn:nbn:de:hbz:294-93726 |
| DOI: | https://doi.org/10.13154/294-9372 |
| Parent Title (English): | 20th escar Europe - The World's Leading Automotive Cyber Security Conference (15. - 16.11.2022) |
| Document Type: | Part of a Book |
| Language: | English |
| Date of Publication (online): | 2022/10/21 |
| Date of first Publication: | 2022/10/21 |
| Publishing Institution: | Ruhr-Universität Bochum, Universitätsbibliothek |
| Tag: | Automotive Processors; Digital Signatures; Post-Quantum Cryptography; S32G274A; Secure Boot |
| First Page: | 112 |
| Last Page: | 125 |
| Dewey Decimal Classification: | Allgemeines, Informatik, Informationswissenschaft / Informatik |
| open_access (DINI-Set): | open_access |
| Konferenz-/Sammelbände: | 20th escar Europe - The World's Leading Automotive Cyber Security Conference |
| Licence (German): |  Keine Creative Commons Lizenz - es gelten die Rechteeinräumung und das deutsche Urheberrecht |
