ABOUT THE TRUST DATA MANAGEMENT SYSTEM

Set of tools for building a secure and trusted CCAM environment

The Trust Data Management System (TDMS) is a comprehensive suite of tools designed to establish a secure and trusted environment for data within collaborative and cooperative contexts, encompassing infrastructure, assets, and personal data from drivers and pedestrians. The tools within the Trust Data Management System are primarily based on advanced cryptographic algorithms and technologies.

Consisting of eight integrated tools, the Trust Data Management System focuses on preserving the privacy of shared data in Connected, Cooperative, and Automated Mobility (CCAM) while ensuring secure communication among SELFY tools.

CCAM ecosystem tools

01.

Tools that will protect sensitive data of road users while keeping the data usable

02.

Tools to guarantee the integrity, authenticity, freshness, and confidentiality of communications

03.

Methods to provide secured over-the-air updates to the SELFY toolbox

Secure and trustworthy communications

Roadside Trust Tool (RTT)

The Roadside Trust Tool (RTT) enhances the reliability of V2X communications by assessing the trustworthiness of V2X agents based on the content of their messages and anomalies detected by the Threat Evaluation Tool (TET).

By analyzing potential anomalies associated with each V2X agent, the RTT dynamically updates V2X agents’ trust scores, which indicate whether the messages from a given agent should be considered, facilitating the identification of misbehavior and triggering anomaly reports when necessary.

This tool currently detects two primary types of anomalies: Blind V2X Agents, which fail to report objects in areas where the RSU identifies them, and Hallucinating V2X Agents, which inaccurately describe objects that do not exist in the environment. By continuously monitoring and updating trust scores, the RTT plays a crucial role in ensuring safer traffic conditions and improving the overall integrity of the connected mobility ecosystem.

Post Quantum Cryptography (PQC)

The SELFY Post-Quantum Cryptography (PQC) Tool is designed to provide the necessary post-quantum algorithms for SELFY applications and the Trust Data Management System. These algorithms differ from conventional cryptographic methods in terms of properties such as key length and computational requirements.

The PQC Tool is developed using the open-source Open Quantum Safe (OQS) library, ensuring compatibility and flexibility for future cryptographic needs.

Remote attestation system (RAS)

The Remote Attestation System Box (RAS Box) is a critical tool developed to ensure the integrity verification of software components operating on vehicles and roadside units (RSUs). It consists of two key components: the verifier, which requests remote attestation, and the prover, which provides the necessary evidence to the verifier for assessing the safety of the software in question.

Both the verifier and prover play equally vital roles in the remote attestation process. The verifier is responsible for validating the correctness of the evidence received, while the prover gathers and transmits the evidence pertaining to the target software. Together, these components work seamlessly to maintain the security and integrity of the software ecosystem in connected mobility systems.

Key Exchange and key Management Service (KEMS)

The Key Exchange and Key Management Service (KEMS) is a tool designed to dynamically generate and update symmetric keys for all entities that require secure communication. Currently, the KEMS tool operates exclusively within the Remote Attestation System (RAS) tool.

The KEMS consists of two main components: the KEMS Server and the KEMS Clients. The KEMS Server is responsible for generating symmetric keys for a set of KEMS Clients. The KEMS Clients can request symmetric keys from the server.

Privacy and data anonymization

Data Anonymization Tool (DAT)

The Data Anonymization Tool (DAT) was developed to protect the privacy of road users captured by vehicle onboard cameras, including nearby pedestrians and vehicles. To address privacy concerns, the DAT detects and anonymizes sensitive data within the captured image frames.

Key features of the DAT include an AI-based model for detecting sensitive information, such as pedestrians’ faces and vehicle license plates, and the application of blurring techniques to anonymize this data.

The real-time data anonymization module operates independently onboard the vehicle, utilizing ROS2 to acquire and process raw camera images. The deep learning model, based on the YOLOv5 architecture, detects and classifies sensitive data in each image frame, applying blurring to obfuscate specific areas of interest. This ensures compliance with privacy regulations while maintaining data integrity.

Privacy-Utility Tool (PUT)

The Privacy-Utility Tool (PUT) addresses the privacy concerns that arise from the data exchange necessary for safe and autonomous cooperative driving between infrastructure and vehicles. While this data exchange is crucial for system performance, it can expose sensitive information, necessitating measures to protect privacy.

This tool is designed to ensure that private information between the infrastructure ad vehicles remains protected, while still maintaining the utility of the data for effective cooperative and autonomous driving.

V2X Privacy Tool (VPT)

The V2X Privacy Tool (VPT) is designed to enhance privacy features in V2X communications within the SELFY framework. The VPT ensures that the infrastructure can effectively manage changes in vehicle identities. When a vehicle alters its identity, the infrastructure must detect this change and assign a new tracking identifier for inclusion in the CPM messages it generates.

This mechanism prevents the correlation of previous and new identities, safeguarding against potential privacy breaches. Ultimately, the V2X Privacy Tool aims to minimize the risk of identity exposure while allowing for effective tracking and communication within V2X systems.

Secure updates

Secured Over The Air Software Update tool (SOTA)

The Secured Over The Air Software Update Tool is designed to facilitate secure and efficient remote software updates for a vehicle’s Electronic Control Units (ECUs). This capability is essential for maintaining the integrity, safety, and performance of vehicles without the need for inconvenient trips to the dealership.

By enabling the robust and secure implementation of the latest cybersecurity measures, this tool effectively supports addressing vulnerabilities and enhancing vehicle safety features.