In-Vehicle Systems

AutoCrypt HSM

Embedded security firmware for in-vehicle systems
autocrypt hsm featured

The trust anchor for in-vehicle communications.

Over half of all new vehicles are now equipped with some form of connectivity, with features like over-the-air (OTA) updates, vehicle-to-everything (V2X) communication, onboard internet, car pay, and digital key. Although convenient, connected cars require a greater level of cybersecurity.

AutoCrypt® HSM is a software module that seamlessly integrates the hardware security module (HSM) into the AUTOSAR environment, ensuring the secure access of ECUs and acting as a trust anchor for in-vehicle communications.

AutoCrypt® HSM provides all the cryptographic algorithms and key management systems needed for vehicle controllers, and flexibly applies in-house developed ECU Security Features (ESF), Host Core security libraries, and HSM firmware according to OEM requirements.

The ECUs and in-vehicle systems in modern vehicles are no longer just communicating with one another internally, but more and more of them are now connected to external infrastructure such as the OEM cloud. As a result, conventional HSM features like data encryption and key management alone are not sufficient enough in today’s vehicular environments.

As the importance of security continues to grow, OEMs now require advanced security functions (such as Secure Boot and Secure Access) beyond the traditional HSM specifications.

AutoCrypt® HSM security features include Secure Access to prevent unauthorized application access to vehicle data, Secure Flash for safe HSM firmware updates, and Secure Boot to verify firmware integrity.

Key Features

The essential security software

autocrypt hsm architecture for autosar

AutoCrypt® HSM contains a cryptographic module that enables critical security functions such as cryptographic key generation, encryption, decryption, and authentication, preventing unauthorized access or manipulation of sensitive data.

It provides all the cryptographic algorithms and key management and goes beyond to implement more sophisticated security measures including secure boot and secure access, helping OEMs construct a secure environment for their in-vehicle systems.

AutoCrypt HSM supports both AUTOSAR Classic and legacy environments, providing an optimized solution tailored to each vehicle controller’s system. It includes a proprietary FBL Manager and Crypto Driver software stack implemented in accordance with the AUTOSAR Classic Platform, seamlessly integrated with other AUTOSAR software components. 

In legacy environments, it operates the Crypto Driver hardware via the Host Core’s Crypto CDD, enhancing data processing speed and optimizing vehicle controller performance.

Highlights

AutoCrypt HSM, core technologies

crypto algorithm thumbnail

Trust Anchor for Vehicles

  • Certified with ASPICE CL2
  • Advanced protection with future-proof security ecosystem offering 18 cryptographic algorithms
  • Provides encryption, decryption, key and certificate storage and management
icon

Add-on Security Packages

  • Provides security features based on OEM-specific needs
  • Customizable implementation based on vehicle architecture
  • Security features such as Secure Access, Secure Boot, Memory Protection, Memory Lock, and Runtime Manipulation Detection available.
icon

AUTOSAR & Legacy Environments

  • Operates in Classic AUTOSAR 4.x environments
  • Compatible with OEM legacy systems
  • Compatible with major global automotive semiconductors, with ongoing updates to expand compatible models
icon

User Interface

  • Links the Host Core to the HSM Core
  • Enables maximized efficiency and adaptability for HSM operations

Related Resources