Embedded Systems Academy publishes technology guide about Controller Area Network (CAN) security
Embedded Systems Academy (ESAcademy (R)) announces the availability of their latest technology guide „Implementing Scalable CAN Security with CANcrypt“. The guide covers various security aspects for the Controller Area Network and provides lightweight software security solutions offering authentication and encryption for CAN communication. CANcrypt is protocol independent and supports higher-layer CAN protocols including CANopen, J1939, CiA 447, NMEA-200, Energybus, CleANopen and others.
At its base, CANcrypt uses synchronized keys that are dynamically updated based on secret random values introduced. Depending on configuration, keys can be updated several times per second. All security algorithms are customizable, default implementations use variations of the Speck Cipher or AES-128.
„The CANcrypt system not only supports the reliable, active pairing and grouping of devices,“ says the author Olaf Pfeiffer „it also provides key management functionality supporting a key hierarchy.“ Such a key hierarchy allows implementing different security levels. The highest level is for the manufacturer and potential activation of bootloader functionality. Additional key levels support individual keys for system integrators, owners or last sessions.
Software examples demonstrating the different security features are available for download from ESAcademy’s webpages. The software examples may be freely copied for educational and evaluation purposes. All header files are made available using the Apache license version 2.0. These published examples are also the base for a planned bounty program to be announced later this year.
Implementation examples are based on LPC11Cxx and LPC17xx microcontrollers from NXP(R) and STM32F0xx microcontrollers from STMicroelectronics(R).
The guide is available in two editions:
ISBN 978-0-9987454-0-4: Paperback, black and white, no additional software license.
ISBN 978-0-9987454-1-1: Hardcover, full color, with a commercial software license.
For more information about CANcrypt or to download the demo software, visit www.esacademy.com/cancrypt
About Embedded Systems Academy
Embedded Systems Academy are Barsinghausen, Germany and San Jose, California based companies providing tools, training and services for planning, implementing, debugging, commissioning and testing of embedded networking technologies including CAN, CAN FD, CANopen, CiA447, J1939 and others.
Olaf Pfeiffer, email@example.com
Embedded Systems Academy, Inc.
1250 Oakmead Parkway, Suite 210
Sunnyvale, CA 94085
Embedded Systems Academy, GmbH
Bahnhof Str. 17