An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems

Chung Wei Lin; Shinichi Shiraishi; Baekgyu Kim

doi:10.1109/ISSREW.2016.33

An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems

Chung Wei Lin
, Shinichi Shiraishi
, Baekgyu Kim

Department of Electrical Engineering and Computer Science

Toyota InfoTechnology Center

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

As autonomous features advance, it is believed that most behaviors, including safety-critical functions, of future automotive systems will be defined by software. Due to the safety-critical nature, correctness and quality of automotive software draw more and more concerns, and software certification should integrate verification, simulation, and testing results in systematic and rigorous ways to prove the fulfillment of governments' regulations, reduce system designers' liability, and enhance customers' confidence. Expecting that software certification will become a necessary step in future automotive design, we resolve a conflict between certification issuers and software suppliers and developers in this paper. Based on the Amanat protocol [6], we address its challenges in the automotive domain and propose a protocol which guarantees authenticity to certification issuers and confidentiality to software suppliers and developers. Authenticity means that only authenticated results from compilers and analysis tools (verification, simulation, and/or testing) are considered by the certification issuers in the certification process, and confidentiality means that sensitive source codes of the software suppliers and developers are not released to certification issuers. The proposed protocol is an important step towards the realization of practical automotive software certification.

Original language	English
Title of host publication	Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	13-16
Number of pages	4
ISBN (Electronic)	9781509036011
DOIs	https://doi.org/10.1109/ISSREW.2016.33
State	Published - 16 Dec 2016
Event	27th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2016 - Ottawa, Canada Duration: 23 Oct 2016 → 27 Oct 2016

Publication series

Name	Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016

Conference

Conference	27th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2016
Country/Territory	Canada
City	Ottawa
Period	23/10/16 → 27/10/16

Bibliographical note

Publisher Copyright:
© 2016 IEEE.

Keywords

Automotive
Certification
Software

Access to Document

10.1109/ISSREW.2016.33

Cite this

Lin, C. W., Shiraishi, S., & Kim, B. (2016). An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems. In Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016 (pp. 13-16). Article 7789368 (Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ISSREW.2016.33

Lin, Chung Wei ; Shiraishi, Shinichi ; Kim, Baekgyu. / An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems. Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016. Institute of Electrical and Electronics Engineers Inc., 2016. pp. 13-16 (Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016).

@inproceedings{a9f2a803b0ce4ed1b3085faea9a0406d,

title = "An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems",

abstract = "As autonomous features advance, it is believed that most behaviors, including safety-critical functions, of future automotive systems will be defined by software. Due to the safety-critical nature, correctness and quality of automotive software draw more and more concerns, and software certification should integrate verification, simulation, and testing results in systematic and rigorous ways to prove the fulfillment of governments' regulations, reduce system designers' liability, and enhance customers' confidence. Expecting that software certification will become a necessary step in future automotive design, we resolve a conflict between certification issuers and software suppliers and developers in this paper. Based on the Amanat protocol [6], we address its challenges in the automotive domain and propose a protocol which guarantees authenticity to certification issuers and confidentiality to software suppliers and developers. Authenticity means that only authenticated results from compilers and analysis tools (verification, simulation, and/or testing) are considered by the certification issuers in the certification process, and confidentiality means that sensitive source codes of the software suppliers and developers are not released to certification issuers. The proposed protocol is an important step towards the realization of practical automotive software certification.",

keywords = "Automotive, Certification, Software",

author = "Lin, \{Chung Wei\} and Shinichi Shiraishi and Baekgyu Kim",

note = "Publisher Copyright: {\textcopyright} 2016 IEEE.; 27th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2016 ; Conference date: 23-10-2016 Through 27-10-2016",

year = "2016",

month = dec,

day = "16",

doi = "10.1109/ISSREW.2016.33",

language = "English",

series = "Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "13--16",

booktitle = "Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016",

}

Lin, CW, Shiraishi, S & Kim, B 2016, An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems. in Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016., 7789368, Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016, Institute of Electrical and Electronics Engineers Inc., pp. 13-16, 27th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2016, Ottawa, Canada, 23/10/16. https://doi.org/10.1109/ISSREW.2016.33

An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems. / Lin, Chung Wei; Shiraishi, Shinichi; Kim, Baekgyu.
Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016. Institute of Electrical and Electronics Engineers Inc., 2016. p. 13-16 7789368 (Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems

AU - Lin, Chung Wei

AU - Shiraishi, Shinichi

AU - Kim, Baekgyu

PY - 2016/12/16

Y1 - 2016/12/16

N2 - As autonomous features advance, it is believed that most behaviors, including safety-critical functions, of future automotive systems will be defined by software. Due to the safety-critical nature, correctness and quality of automotive software draw more and more concerns, and software certification should integrate verification, simulation, and testing results in systematic and rigorous ways to prove the fulfillment of governments' regulations, reduce system designers' liability, and enhance customers' confidence. Expecting that software certification will become a necessary step in future automotive design, we resolve a conflict between certification issuers and software suppliers and developers in this paper. Based on the Amanat protocol [6], we address its challenges in the automotive domain and propose a protocol which guarantees authenticity to certification issuers and confidentiality to software suppliers and developers. Authenticity means that only authenticated results from compilers and analysis tools (verification, simulation, and/or testing) are considered by the certification issuers in the certification process, and confidentiality means that sensitive source codes of the software suppliers and developers are not released to certification issuers. The proposed protocol is an important step towards the realization of practical automotive software certification.

AB - As autonomous features advance, it is believed that most behaviors, including safety-critical functions, of future automotive systems will be defined by software. Due to the safety-critical nature, correctness and quality of automotive software draw more and more concerns, and software certification should integrate verification, simulation, and testing results in systematic and rigorous ways to prove the fulfillment of governments' regulations, reduce system designers' liability, and enhance customers' confidence. Expecting that software certification will become a necessary step in future automotive design, we resolve a conflict between certification issuers and software suppliers and developers in this paper. Based on the Amanat protocol [6], we address its challenges in the automotive domain and propose a protocol which guarantees authenticity to certification issuers and confidentiality to software suppliers and developers. Authenticity means that only authenticated results from compilers and analysis tools (verification, simulation, and/or testing) are considered by the certification issuers in the certification process, and confidentiality means that sensitive source codes of the software suppliers and developers are not released to certification issuers. The proposed protocol is an important step towards the realization of practical automotive software certification.

KW - Automotive

KW - Certification

KW - Software

UR - https://www.scopus.com/pages/publications/85009740579

U2 - 10.1109/ISSREW.2016.33

DO - 10.1109/ISSREW.2016.33

M3 - Conference contribution

AN - SCOPUS:85009740579

T3 - Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016

SP - 13

EP - 16

BT - Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016

PB - Institute of Electrical and Electronics Engineers Inc.

T2 - 27th IEEE International Symposium on Software Reliability Engineering Workshops, ISSREW 2016

Y2 - 23 October 2016 through 27 October 2016

ER -

Lin CW, Shiraishi S, Kim B. An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems. In Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016. Institute of Electrical and Electronics Engineers Inc. 2016. p. 13-16. 7789368. (Proceedings - 2016 IEEE 27th International Symposium on Software Reliability Engineering Workshops, ISSREW 2016). doi: 10.1109/ISSREW.2016.33

An Amanat-Based Multi-party Certification Protocol for Outsourced Software in Automotive Systems

Abstract

Publication series

Conference

Bibliographical note

Keywords

Access to Document

Other files and links

Fingerprint

Cite this