Specification of Intrusion Detection System Protocol, No.981, 2021-11
AUTOSAR R21-11記事一覧はこちら。
AUTOSAR 21-11, 42文書読んだ。2022年5月中に半分到達予定。
AUTOSAR R21-11(0) 仕様ダウンロード一覧。単語帳。参考文献資料作成
用語(terms)
| term | Description |
|---|---|
| Adaptive Platform | AUTOSAR Adaptive Platform |
| BSW | Standardized AUTOSAR Software modules, which provides basic functionalities usually required in electronic control unit. |
| Controller Area Network/Controller Area Network with Flexible Data-Rate | An automotive network communication protocol. |
| Context Data | Relevant information to a SEv. It is optional data that provides a broader understanding of the security event (e.g. the corrupted data). The content and encoding of the context data is externally defined by the sensor and unknown to the IdsM module. |
| Classic Platform | AUTOSAR Classic Platform |
| Context Data Buffer | Buffer with variable sizes to fit to the needs of the context data of the SEvs. |
| ECU | Electronic Control Unit which provides functionalities in electronic system of a car, e.g. brake system or window lifter. |
| Event Buffer | Buffer to temporarily store the reported SEv. |
| Event Frame | Main frame of IDS protocol which includes the basic information like the Security Event ID. |
| Filter Chain | A set of consecutive filters which is applied to security events. The output are Qualified Security Events. |
| FlexRay | An automotive network communication protocol. |
| General Purpose I-Pdu | General Purpose Interaction Layer Protocol Data Unit. |
| Intrusion Detection System | An Intrusion Detection System is a security control which detects and processes security events. |
| Intrusion Detection System protocol | The IDS protocol specifies the message format which is used by IDS. |
| Intrusion Detection System Message | Message which is send by the IdsM with the IDS protocol. |
| Intrusion Detection System Manager | The Intrusion Detection System Manager handles security events reported by security sensors. |
| Intrusion Detection System Reporter | The Intrusion Detection System Reporter handles Qualified Security Events received from IdsM instances. |
| I-PDU Multiplexer | An AUTOSAR Basic Software module which specifies the protocol to multiplex multiple Pdus with one Protocol Control information. |
| LIN | Local Interconnect Network: serial communication bus to connect sensors and actuators. |
| Protocol Data Unit Router | An AUTOSAR component responsible for routing of messages independent from underlying communication network. |
| Protocol Requirement Specification Intrusion Detection System | The specification document which describes all elements of the IDS protocol. |
| Qualified Security Event (QSEv) | Security events which pass their filter chain are regarded as Qualified Security Events and are sent to the configured sink. |
| Security Extract | The Security Extract specifies which security events are handled by IdsM instances and their configuration parameters. |
| Security Events | Onboard security events are reported by BSW, CDD, SWC or other software components or applications to the IdsM. |
| Security Event Memory | A user defined diagnostic event memory which is independent from the primary diagnostic event memory. |
| Security Sensorsv | BSW, CDD, SWC or other software components or applications which report security events to the IdsM. |
| Security Incident and Event Management | Technology concept to collect, correlate and analyze security incidents to detect a threat. |
| Sensor | Reporting identity that informs the IdsM module about SEvs. It can be a BSW module, a proprietary CDD or a SWC Application. |
| Security Operation Centre | Security Operation Center is the Backend of the IDS in which data can be processed and analysed. |
| Socket Adapter | Socket Adaptor is a Basic Software module of AUTOSAR which creates interface between Pdu-Based communication on service level and socket based TCP/IP |
| AP | AUTOSAR Adaptive Platform |
| API | Application Programming Interface |
| BSW | Basic Software |
| CAN | Controller Area Network |
| CAN FD | Controller Area Network with Flexible Data-Rate |
| CDD | Complex Device Driver |
| CP | AUTOSAR Classic Platform |
| ECU | Electronic Control Unit |
| ID | Identifier |
| IDS | Intrusion Detection System |
| I-PDU | Interaction Layer Protocol Data Unit |
| IdsM | Intrusion Detection System Manager |
| IdsR | Intrusion Detection System Reporter |
| LIN | Local Interconnect Network |
| ms | Miliseconds |
| N-PDU | Network Layer Protocol Data Unit |
| OEM | Original Equipment Manufacturer |
| PDU | Protocol Data Unit Router |
| PRS IDS | Protocol Requirement Specification Intrusion Detection System |
| QSEv | Qualified Security Event |
| SecXT | Security Extract |
| SEv | Security Event |
| Sem | Security Event Memory |
| SIEM | Security Incident and Event Management |
| SOME/IP | Scalable service-Oriented MiddlewarE over IP |
| SOC | Security Operation Center |
| SWC | Software Component |
英日
日本語は仮訳
| no. | count | word | 日本語 |
|---|---|---|---|
| 1 | 270 | the | その |
| 2 | 192 | of | の |
| 3 | 131 | protocol | 規約 |
| 4 | 121 | ids | ids |
| 5 | 120 | byte | 束 |
| 6 | 101 | data | 与件 |
| 7 | 93 | to | に |
| 8 | 86 | is | です |
| 9 | 83 | bit | binary digit(短縮名) |
| 10 | 80 | id | id |
| 11 | 72 | context | 文脈 |
| 12 | 72 | event | 行事 |
| 13 | 71 | security | 安心 |
| 14 | 63 | and | と |
| 15 | 62 | autosar | autosar |
| 16 | 61 | system | 系 |
| 17 | 60 | in | 中に |
| 18 | 60 | message | 伝言 |
| 19 | 54 | detection | 検出 |
| 20 | 54 | for | にとって |
| 21 | 54 | intrusion | 侵入 |
| 22 | 53 | prs_ids_ | prs_ids_ |
| 23 | 53 | signature | 署名 |
| 24 | 49 | a | 一つの |
| 25 | 49 | idsm | idsm |
| 26 | 48 | timestamp | 時刻印 |
| 27 | 46 | specification | 仕様 |
| 28 | 45 | c | c |
| 29 | 44 | header | 見出し |
| 30 | 43 | be | です |
| 31 | 43 | bytes | 束 |
| 32 | 43 | length | 長さ |
| 33 | 41 | frame | 枠 |
| 34 | 40 | document | 文書 |
| 35 | 40 | instance | 実例 |
| 36 | 39 | with | と |
| 37 | 35 | by | に |
| 38 | 35 | r | r |
| 39 | 34 | can | できる |
| 40 | 32 | autosar_prs_intrusiondetectionsystem | autosar_prs_intrusiondetectionsystem |
| 41 | 32 | fo | foudation(短縮名) |
| 42 | 31 | size | 大きさ |
| 43 | 30 | separation | 分離 |
| 44 | 29 | or | また |
| 45 | 27 | events | 行事 |
| 46 | 27 | which | どの |
| 47 | 26 | qsev | qsev |
| 48 | 26 | sensor | 感知器 |
| 49 | 22 | are | です |
| 50 | 20 | d | d |
| 51 | 19 | bits | binary digits(短縮名) |
| 52 | 19 | figure | 形 |
| 53 | 19 | it | それ |
| 54 | 19 | table | 表 |
| 55 | 19 | this | これ |
| 56 | 18 | not | いいえ |
| 57 | 18 | used | 使った |
| 58 | 17 | an | 一つの |
| 59 | 17 | communication | 通信 |
| 60 | 17 | idsr | idsr |
| 61 | 17 | on | の上 |
| 62 | 17 | qualified | 資格あり |
| 63 | 16 | configured | 構成済み |
| 64 | 16 | msb | msb |
| 65 | 16 | pdu | pdu |
| 66 | 15 | count | 計数 |
| 67 | 15 | included | 含む |
| 68 | 15 | information | 情報 |
| 69 | 15 | lsb | lsb |
| 70 | 15 | no | いいえ |
| 71 | 15 | reserved | 予約済み |
| 72 | 15 | seconds | 秒 |
| 73 | 14 | as | なので |
| 74 | 14 | from | から |
| 75 | 14 | version | 版 |
| 76 | 13 | messages | 伝言 |
| 77 | 13 | option | 選択肢 |
| 78 | 12 | encoded | 符号化した |
| 79 | 12 | optional | 選択肢 |
| 80 | 12 | rs_ids_ | rs_ids_ |
| 81 | 11 | e | e |
| 82 | 11 | if | もし |
| 83 | 11 | interface | 界面 |
| 84 | 11 | network | 通信網 |
| 85 | 11 | one | 1 |
| 86 | 11 | other | 他の |
| 87 | 11 | refer | 参照 |
| 88 | 11 | set | 設定する |
| 89 | 11 | specific | 明確 |
| 90 | 11 | use | 使う |
| 91 | 10 | configuration | 構成 |
| 92 | 10 | definition | 意味 |
| 93 | 10 | format | 書式 |
| 94 | 10 | layer | 層 |
| 95 | 10 | maximum | 最大 |
| 96 | 10 | note | 覚書 |
| 97 | 10 | only | だけ |
| 98 | 10 | software | ソフトウェア |
| 99 | 10 | time | 時間 |
| 100 | 9 | all | すべて |
| 101 | 9 | any | どれか |
| 102 | 9 | dependencies | 依存関係 |
| 103 | 9 | ethernet | イーサネット |
| 104 | 9 | example | 例 |
| 105 | 9 | g | g |
| 106 | 9 | i | 私 |
| 107 | 9 | module | 部品 |
| 108 | 9 | multiple | 多数 |
| 109 | 9 | nano | ナノ |
| 110 | 9 | oem | OEM |
| 111 | 9 | platform | 枠組み |
| 112 | 9 | standard | 標準 |
| 113 | 9 | there | そこの |
| 114 | 9 | unit | 単位 |
参考(reference)
[1] Requirements on Intrusion Detection System
AUTOSAR_RS_IntrusionDetectionSystem
[2] Specification of Time Synchronization
AUTOSAR_SWS_TimeSynchronization
[3] Specification of I-PDU Multiplexer
AUTOSAR_SWS_IPDUMultiplexer
[4] Specification of FlexRay Interface
AUTOSAR_SWS_FlexRayInterface
[5] Specification of Socket Adaptor
AUTOSAR_SWS_SocketAdaptor
[6] System Template
AUTOSAR_TPS_SystemTemplate
[7] Security Extract Template
AUTOSAR_TPS_SecurityExtractTemplate
<この記事は個人の過去の経験に基づく個人の感想です。現在所属する組織、業務とは関係がありません。>
関連文書(Related document)
Specification of Intrusion Detection System Protocol, AUTOSAR R22-11, FO, No.981
文書履歴(document history)
ver. 0.01 初稿 20220528
ver. 0.02 URL追記 20221229