Development Background
Intelligent connected vehicles are booming in the world, and the resulting automobile network connection has gradually become an important development direction of future automobiles. The same information security issues brought about by networking also exist in connected vehicles, and automakers and design developers will have to implement demanding information security measures in the vehicle electronic and electrical architecture. In 2009, European automakers such as Audi and BMW released the Security Hardware Extension(SHE) standard (Figure 1), and in 2011, some major Tier 1 and automotive semiconductor companies released HSM hardware specifications based on the SHE specification. The 2016 SAE addresses the entire life cycle of production, operation, maintenance, and obsolescence of vehicles. Published SAE J3061.2020, a process framework and guidance for vehicle cybersecurity, ISO 21434 is a standard based on SAE J3061 for the entire vehicle lifecycle. This would be the same heavyweight standard as ISO 26262 for functional safety.
At the end of 2018, ZC began to invest resources to develop the HSM kernel and interface functions that meet the SHE standard and are compatible with AUTOSAR 4.2.2/4.4.0. After unremitting efforts, the first information security software library based on Infineon TC3xx was finally released in September 2020 - MuNiu CryptoLibrary.
The MuNiu CryptoLibrary developed by ZC for Infineon's TC3xx series (such as TC39x, TC38x, TC37x, etc.) includes the kernel firmware (zHSM CORE) of the Hardware Security Module (HSM) and the customer application interface functions (SHE CD). Besides meeting the regular SHE functions (key injection, symmetric encryption and decryption, Message Authentication Code generation and verification, random number generation, and secure boot, etc.), the kernel firmware can also be extended with various algorithms, such as HASH, ECC256, ECDSA, and ED25519. In addition to meeting the requirements of AUTOSAR4.2.2, the SHE CD interface functions can be
upgraded to the higher - version AUTOSAR 4.4.0. Moreover, it can even be integrated as a separate complex driver in a non - AUTOSAR environment.
In short, MuNiu CryptoLibrary is flexibly applicable to all AURIX 2G products. It has high expandability, can be upgraded, configured and re - developed according to different customer project requirements, and ultimately meet the information security needs of different customers.
MuNiu CryptoLibrary is mainly applied to controllers with information security requirements. As shown in Figure 2, this product is suitable for the following components in the automotive electrical and electronic architecture: Powertrain Domain Controller, Body Domain Controller, Safety Domain Controller, and Information Domain Controller.
Users can meet the information security functions required for automotive electronic control units as specified in the SHE standard by integrating MuNiu CryptoLibrary into TC3xx - based automotive electronic control units.
The software of MuNiu CryptoLibrary is mainly divided into two parts (Figure 3):
1) Firmware of HSM (Hardware Security Module) (zHSM CORE)
2) SHE Complex Driver for Tricore Main Core (zSHE CD)
The zSHE CD contains three sub - modules: the zCRY module which is the interface with CSM, the zHSM COM and the zHSM MCAL module which communicate with HSM. The function descriptions of each module are shown in Table 1.
MuNiu CryptoLibrary supports the SHE standard. Compared with the standard SHE, CryptoLibrary has some functional expansions. The main functions and differences are shown in Tables 2 and 3.
Click to download the product manual