Service discovery protocol and risks

Service discovery over some IP is one of the most used protocols in automotive ethernet networks right now because it gives the flexibility of service-oriented communication instead of the normal fixed communication.

It also provides a way to communicate between different automotive stacks “e.g. classic AUTOSAR, adaptive AUTOSAR, GENIVI, etc …”

Service discovery protocol works in decentralized mode in communication mode:

(a) Publish/Subscribe to needed data “events”

(b) Request/Response “methods with return value”

How it works

Server can offer the service and the client(s) will subscribe to service data then, the server will send the data to only clients subscribed to it.

In the end we can see multiple services offered by different ECUs and every service is consumed/subscribed-to by different ECUs as consumers for the service data.

In classic Autosar world this is done by the help of service discovery “SD” and socket adapter “SoAd” modules.

SD controls SoAd socket connections to open and close them as needed based on server or client state.

If service A is offered from the server and consumed from client A/B, SD on server side will open socket connection responsible for service data Tx path and SD on clients side will do the same for Rx path so the data can be forwarded to upper layers and application to use the data.

This efficient approach allows transmission and reception of only needed data to relevant clients reducing network bandwidth and ECUs Computational power.

Security Analysis:

However, the protocol is widely used and hugely efficient, but it lacks a very important aspect of automotive communication, which is security.

The protocol currently is working in plain text mode, and it lacks very important features like authenticity of the sender, integrity of the data and data confidentiality.

The protocol itself does not specify any security measures, but it also make it difficult to implement other security protocols because of its implementation.

SD is a decentralized protocol using mainly UDP protocol, multicast, and N:M communication, so protocols like TLS cannot be used effectively here since it needs 1:1 session setup over TCP.

Anyone who can have access to the ethernet network with proper tools can spy on the bus to understand SD services running in the car then starts to inject packets in same car or another one of the same model.

Available workaround which affects data throughput

For data transfer using TCP, the requesting client must establish a connection with the server. in this case TLS can be used, However the date throughput will be reduced as the server has to manually pull on all the clients to send the data.

Datenschutzrichtlinie

IntroductionAt VxLabs, we are committed to protecting the privacy of our employees, suppliers, and customers.
PurposeThis Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.
What is personal information?“Personal information” means any information or opinion, whether true or not, and whether recorded in a material form or not, about an identified individual or an individual who is reasonably identifiable. In general terms, this includes information or an opinion that personally identifies you either directly (e.g., your name) or indirectly.
Data Controller VxLabs acts as the data controller for the personal data collected from employees, suppliers, and customers.
information we collect.
We may collect and process the following types of personal data:
- Identity Data: This includes names, job titles, employee IDs, and contact details.
- Contact Data: This includes email addresses, postal addresses, and phone numbers.
- Financial Data: For suppliers and B2B customers, we may collect financial information necessary for payment processing and invoicing.
- Transaction Data: This includes details about services provided, orders, and payments.
- Professional Data: For employees, we may collect information related to employment history, qualifications, and performance.
- Technical Data: This includes information about devices used to access our systems and services, IP addresses, and browsing behavior.
- Marketing and Communication Data: This includes preferences for receiving marketing communications.
How do we collect your data?We may collect your personal data through various methods, including:
- Information provided directly to us during the hiring process, supplier onboarding, or business engagement.
- Information collected automatically through our systems and services when you interact with them.
- Information we receive from third-party sources, such as background checks for employment purposes or credit reference agencies for suppliers.
How we use your Data?
We use your personal data for the following purposes:
- Employee Management: To manage employment-related matters, including recruitment, payroll, benefits, and performance evaluation.
- Supplier and Customer Management: To manage business relationships, payments, and contract administration.
- Communication: To communicate with you regarding our products, services, or business operations.
- Compliance: To comply with legal obligations and regulatory requirements.
- Business Operations: To improve our services and optimize our business operations.
- Marketing: To send marketing communications if you have opted-in to receive them.
Legal Basis for Data Processing We rely on the following legal bases for processing your personal data:
- Performance of a Contract: For employees, processing is necessary for the performance of the employment contract. For suppliers and customers, it is necessary for the performance of a contractual agreement.
- Legitimate Interests: We may process your data based on our legitimate interests, such as business management and marketing, as long as it does not override your fundamental rights and freedoms.
- Compliance with Legal Obligations: We may process your data to comply with applicable laws and regulations.
- Consent: In some cases, we may seek your consent before processing your personal data.
Data Sharing and Disclosure
We may share your personal data with:
- Service providers and business partners who assist us in delivering our services.
- Government authorities and regulators to comply with legal obligations.
- Third parties if required in the context of a business transaction, such as a merger, acquisition, or asset sale.
- Other parties with your consent or as permitted by law.
International Data TransfersIf your personal data is transferred to countries outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place to protect your data, as required by the GDPR.
Data RetentionVxLabs will retain your personal data for as long as necessary to fulfill the purposes outlined in this Privacy Policy or as required by law. The retention periods may vary depending on the type of data and legal requirements. VxLabs will also take reasonable steps to ensure that the personal information that we hold about you is kept confidential and secure.
Online activity[Cookies]The VxLabs website uses cookies. A cookie is a small file of letters and numbers the website puts on your device if you allow it. These cookies recognize when your device has visited our website(s) before, so we can distinguish you from other users of the website. This improves your experience and the VxLabs website(s).We do not use cookies to identify you, just to improve your experience on our website(s). If you do not wish to use the cookies, you can amend the settings on your internet browser so it will not automatically download cookies. However, if you remove or block cookies on your computer, please be aware that your browsing experience and our website’s functionality may be affected.][Website analytics]Our website uses [insert relevant analytics service] to help us better understand visitor traffic, so we can improve our services. Although this data is mostly anonymous, it is possible that under certain circumstances, we may connect it to you.
Rights to access and correct your personal information.
As an employee, supplier, or customer, you have certain rights under the GDPR, including:
- The right to access and obtain a copy of your personal data.
- The right to rectify inaccurate or incomplete data.
- The right to erasure (right to be forgotten) under certain circumstances.
- The right to restrict the processing of your data under certain conditions.
- The right to object to the processing of your data for specific purposes.
- The right to data portability, where applicable.
To exercise your rights or if you have any questions regarding the processing of your personal data, please contact us using the details provided at the end of this Privacy Policy.
Links to third party sitesVxLabs website(s) may contain links to websites operated by third parties. If you access a third-party website through our website(s), personal information may be collected by that third party website. We make no representations or warranties in relation to the privacy practices of any third-party provider or website and we are not responsible for the privacy policies or the content of any third-party provider or website. Third party providers / websites are responsible for informing you about their own privacy practices and we encourage you to read their privacy policies.
Contact us!If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:Email:datenschutz@vxlabs.de

Cookie	Dauer	Beschreibung
cookielawinfo-checkbox-analytics	11 Monate	Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt. Das Cookie wird verwendet, um die Benutzereinwilligung für die Cookies in der Kategorie "Analytics" zu speichern.
cookielawinfo-checkbox-functional	11 Monate	Das Cookie wird von GDPR Cookie Consent gesetzt, um die Benutzereinwilligung für die Cookies in der Kategorie "Funktional" aufzuzeichnen.
cookielawinfo-checkbox-necessary	11 Monate	Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt. Die Cookies werden verwendet, um die Benutzereinwilligung für die Cookies in der Kategorie „Notwendig“ zu speichern.
cookielawinfo-checkbox-others	11 Monate	Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt. Das Cookie wird verwendet, um die Benutzereinwilligung für die Cookies in der Kategorie „Sonstiges“ zu speichern.
cookielawinfo-checkbox-performance	11 Monate	Dieses Cookie wird vom GDPR Cookie Consent Plugin gesetzt. Das Cookie wird verwendet, um die Benutzereinwilligung für die Cookies in der Kategorie "Performance" zu speichern.
viewed_cookie_policy	11 Monate	Das Cookie wird vom GDPR Cookie Consent Plugin gesetzt und wird verwendet, um zu speichern, ob der Benutzer der Verwendung von Cookies zugestimmt hat oder nicht. Es speichert keine personenbezogenen Daten.

How it works

Security Analysis:

Available workaround which affects data throughput

Share this content Diesen Inhalt teilen

Das könnte Dir auch gefallen

Unlocking Efficiency and Value: The Importance of Asset Management in the Service-Oriented Automotive Industry

Datenschutzrichtlinie

Haftungsausschluss

Haftungsbeschränkung für interne Inhalte

Haftungsbeschränkung für externe Links

Copyright

Datenschutz

Impressum

Diesen Inhalt teilen