Presentation is loading. Please wait.

Presentation is loading. Please wait.

GDP and SOTA Arthur Taylor May 10th, 2017 | Status and Next Steps

Published byJulie Cole Modified over 5 years ago

Similar presentations

Presentation on theme: "GDP and SOTA Arthur Taylor May 10th, 2017 | Status and Next Steps"— Presentation transcript:

1 GDP and SOTA Arthur Taylor May 10th, 2017 | Status and Next Steps
CTO & Co-Founder, ATS Advanced Telematic Systems GmbH

2 Recent GENIVI Work

3 Recent GENIVI Work - Community OTA Server
sota.genivi.org SOTA Server GDP 12 aktualizr RVI Protocol SWLM rvi_lib RVI Server Node Mostly GENIVI-funded development as part of GENIVI Challenge Grant Programme 3 | May 10th, | Copyright © GENIVI Alliance 2017

4 https://github.com/genivi/rvi_sota_server
Recent GENIVI Work - Community OTA Server Launched server at sota.genivi.org Running on GENIVI infrastructure HTTPS Admin web-interface User Authentication with GENIVI LDAP logins RVI Server Node running - sota.genivi.org: Device Authentication using RVI device certificates (x.509) 4 | May 10th, | Copyright © GENIVI Alliance 2017

5 https://github.com/advancedtelematic/aktualizr
Recent GENIVI Work - Community OTA Server Integrated C++ SOTA Client - aktualizr aktualizr development kicked-off by ATS in December RVI support with JLR's C-based rvi_lib Using GENIVI SWLM APIs to install software via DBus notifications aktualizr upstreamed to GDP 12 5 | May 10th, | Copyright © GENIVI Alliance 2017

6 Recent GENIVI Work - Lessons Learned
GDP Upstreaming GDP has very high standards for pull requests ATS underestimated the effort to get changes merged GENIVI Software Loading Manager SWLM PoC packaged for Yocto / GDP by ATS Had to drop some dependencies (GTK+/X11) RVI Encountered issues with expired development certificates Encountered issues with maximum message size 6 | May 10th, | Copyright © GENIVI Alliance 2017

7 Recent ATS Work

8 Recent ATS Work Uptane Implementation of Uptane security framework
Connect GENIVI SOTA to ATS implementations of Uptane repositories Uptane Image repository - offline image signing keys Uptane Director repository - online metadata signing keys Extend aktualizr and rvi_sota_client to implement Uptane / TUF APIs 3rd-party security audit of implementation running on ATS Garage 8 | May 10th, | Copyright © GENIVI Alliance 2017

9 https://ostree.readthedocs.io/
Recent ATS Work OSTree, TreeHub OSTree support in aktualizr, rvi_sota_client Transactional installation and rollback of full-filesystem updates Automatic delta generation, automatic client-server version negotiation Support for compressed deltas with bsdiff Compatible with standard OSTree tools - ostree admin OSTree integration layer for Yocto builds - meta-updater TreeHub server for remote OSTree pull / push OSTree support integrated into AGL 9 | May 10th, | Copyright © GENIVI Alliance 2017

10 Multi-ECU Update Campaigns
Recent ATS Work Multi-ECU Update Campaigns Campaigns that include multiple images / firmwares Addressing / targeting ECUs inside vehicles Distributing software inside vehicles - CAN / UDS, Ethernet / DoIP Collecting installation reports from bus-connected ECUs Sending signed software manifests back to server 10 | May 10th, | Copyright © GENIVI Alliance 2017

11 Automatic Provisioning
Recent ATS Work Automatic Provisioning Per-account or per-device group provisioning certificate Provisioning certificate bootstraps device-specific x.509 negotiation Include generic certificate in all images / SD-cards Securely generate and share per-device x.509 public key for mutual TLS Device Gateway Mutual-TLS endpoint for HTTPS RESTful JSON APIs TLS credential exchanged on the server-side for OAuth2 token Device never sees OAuth2 token Possible model for RVI-EG provisioning work? 11 | May 10th, | Copyright © GENIVI Alliance 2017

12 Roadmap

13 Roadmap ⚫ Implemented ⚪ Supported ✕ Not supported ⬥ Planned Feature
GENIVI SOTA ATS Garage Aktualizr rvi_sota_client End-to-end updates RVI transport and Authz/c Mutual TLS LDAP user accounts OAuth2 / OpenID Connect OSTree Yocto Integration Device Auto-Provisioning TUF Image Repo Uptane Director Repo Uptane Compliant Multi-ECU / FOTA Updates Static Deltas (various formats) Map data updates 13 | May 10th, | Copyright © GENIVI Alliance 2017

14 Multi-ECU - Extend SWLM Module Loader API?
Roadmap Compliance relevant Multi-ECU - Extend SWLM Module Loader API? Uptane - Significant SOTA / SWLM API impact Deltas - Some SOTA / SWLM API impact Map Data - Significant SOTA API impact Compliance Neutral - GDP / User Experience OSTree / Yocto 14 | May 10th, | Copyright © GENIVI Alliance 2017

15 Configuration management / Telecoding Safety critical systems
Longer-term AUTOSAR Adaptive Configuration management / Telecoding Safety critical systems User / Group Management? GDP CI integration? 15 | May 10th, | Copyright © GENIVI Alliance 2017

16 Q&A / Roadmap Discussion

17 Thank you! Visit GENIVI at or Contact us: Copyright © GENIVI Alliance 2017.

Download ppt "GDP and SOTA Arthur Taylor May 10th, 2017 | Status and Next Steps"

Similar presentations

New Release Announcements and Product Roadmap Chris DiPierro, Director of Software Development April 9-11, 2014

New Release Announcements and Product Roadmap Chris DiPierro, Director of Software Development April 9-11, 2014
Oracle IDM at First National Bank

Oracle IDM at First National Bank
Content Overview Update Process Additional Tools.

Content Overview Update Process Additional Tools.
WSO2 Identity Server Road Map

WSO2 Identity Server Road Map
Fraser Technical Solutions, LLC

Fraser Technical Solutions, LLC
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Distributed Web Security for Science Gateways Jim Basney In collaboration with: Rion Dooley Jeff Gaynor

Distributed Web Security for Science Gateways Jim Basney In collaboration with: Rion Dooley Jeff Gaynor
C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.

C Copyright © 2009, Oracle. All rights reserved. Appendix C: Service-Oriented Architectures.
1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!

1 Multi Cloud Navid Pustchi April 25, 2014 World-Leading Research with Real-World Impact!
Registration Processing for the Wireless Internet Ian Gordon Director, Market Development Entrust Technologies.

Registration Processing for the Wireless Internet Ian Gordon Director, Market Development Entrust Technologies.
Openid Connect https://store.theartofservice.com/the-openid-connect-toolkit.html.

Openid Connect
Microsoft Management Seminar Series SMS 2003 Change Management.

Microsoft Management Seminar Series SMS 2003 Change Management.
IETF Provisioning of Symmetric Keys (keyprov) WG Update WG Chairs: Phillip Hallam-Baker Hannes Tschofenig Presentation by Mingliang Pei 05/05/2008.

IETF Provisioning of Symmetric Keys (keyprov) WG Update WG Chairs: Phillip Hallam-Baker Hannes Tschofenig Presentation by Mingliang Pei 05/05/2008.
SoftUpdate 3.0.3 New features and management technique.

SoftUpdate New features and management technique.
Bootstrapping Key Infrastructures

Bootstrapping Key Infrastructures
TUF: Secure Software Updates Justin Cappos NYU Poly Computer Science and Engineering.

TUF: Secure Software Updates Justin Cappos NYU Poly Computer Science and Engineering.
Wireless Security - Encryption Joel Jaeggli For AIT Wireless and Security Workshop.

Wireless Security - Encryption Joel Jaeggli For AIT Wireless and Security Workshop.
WebYaST Remote Web Based System Management

WebYaST Remote Web Based System Management
Munix Bus WiFi Authentication, Log Management, Internet Security, Content Filter & VPN Service Internet Gateway & Business Intelligence www.munixlive.com.

Munix Bus WiFi Authentication, Log Management, Internet Security, Content Filter & VPN Service Internet Gateway & Business Intelligence
ArcGIS for Server Security: Advanced

ArcGIS for Server Security: Advanced

Similar presentations

Ads by Google