Software-based solutions for securing the connected vehicle will be presented by Lynx Software Technologies as a Co-Sponsor at TU Automotive Europe, 2nd-3rd November in Munich. Robert Day, Vice President of Marketing at Lynx said: “LynxSecure is an ideal platform for securing next generation automotive electronic architectures."
"Typical applications for LynxSecure include the consolidation, integration and virtualisation of ECUs and central processing on Domain Controllers and ADAS Controllers. When combined with LSA.connect (the bare-metal data-in-motion encryption), LynxSecure provides a secure foundation for enabling dynamic content and Firmware-Over-The-Air (FOTA) software updates. Using these proven technologies, Lynx can deliver solutions that address the challenges involved in developing the next generation of connected and autonomous vehicles.”
The LynxSecure Separation Kernel Hypervisor is a software platform which supports the next generation of vehicle electronic architectures and applications including Connected and Autonomous Driving, ADAS (Advanced Driver Assistance Systems), and IVI (In-Vehicle Infotainment). The core of LynxSecure is a military-grade high assurance separation kernel that hosts isolated domains, each containing a separate virtualisation stack to allow operating systems and applications to run in their own secure environments on a single hardware platform. LynxSecure supports an extensive range of environments, including non-real-time OSes (such as Android and Linux), proprietary RTOSes, AUTOSAR kernels, and bare-metal applications. LynxSecure enforces safe and secure separation of mixed criticality applications and components and is suitable for hosting safety critical applications up to ISO 26262 ASIL D. With a tiny trusted code-base, LynxSecure provides automotive systems with the protection they need by reducing the attack surface exploitable by malicious agents to an absolute minimum.
LSA.connect is a secure network encryption component built using bare-metal LynxSecure Applications (LSAs). In its simplest configuration, LSA.connect can be used to encrypt network traffic without exposing a large attack surface to malicious agents by housing the network encryption algorithms in their own secure domain, away from both the operating system connected to the internet and the encryption keys themselves. LSA.connect is also able to support multiple isolated communication domains by implementing dedicated secure encryption tunnels over a single physical network connection.