Specification of Intrusion Detection System Protocol, No.981, 2021-11
AUTOSAR R21-11記事一覧はこちら。
AUTOSAR 21-11, 42文書読んだ。2022年5月中に半分到達予定。
AUTOSAR R21-11(0) 仕様ダウンロード一覧。単語帳。参考文献資料作成
用語(terms)
term | Description |
---|---|
Adaptive Platform | AUTOSAR Adaptive Platform |
BSW | Standardized AUTOSAR Software modules, which provides basic functionalities usually required in electronic control unit. |
Controller Area Network/Controller Area Network with Flexible Data-Rate | An automotive network communication protocol. |
Context Data | Relevant information to a SEv. It is optional data that provides a broader understanding of the security event (e.g. the corrupted data). The content and encoding of the context data is externally defined by the sensor and unknown to the IdsM module. |
Classic Platform | AUTOSAR Classic Platform |
Context Data Buffer | Buffer with variable sizes to fit to the needs of the context data of the SEvs. |
ECU | Electronic Control Unit which provides functionalities in electronic system of a car, e.g. brake system or window lifter. |
Event Buffer | Buffer to temporarily store the reported SEv. |
Event Frame | Main frame of IDS protocol which includes the basic information like the Security Event ID. |
Filter Chain | A set of consecutive filters which is applied to security events. The output are Qualified Security Events. |
FlexRay | An automotive network communication protocol. |
General Purpose I-Pdu | General Purpose Interaction Layer Protocol Data Unit. |
Intrusion Detection System | An Intrusion Detection System is a security control which detects and processes security events. |
Intrusion Detection System protocol | The IDS protocol specifies the message format which is used by IDS. |
Intrusion Detection System Message | Message which is send by the IdsM with the IDS protocol. |
Intrusion Detection System Manager | The Intrusion Detection System Manager handles security events reported by security sensors. |
Intrusion Detection System Reporter | The Intrusion Detection System Reporter handles Qualified Security Events received from IdsM instances. |
I-PDU Multiplexer | An AUTOSAR Basic Software module which specifies the protocol to multiplex multiple Pdus with one Protocol Control information. |
LIN | Local Interconnect Network: serial communication bus to connect sensors and actuators. |
Protocol Data Unit Router | An AUTOSAR component responsible for routing of messages independent from underlying communication network. |
Protocol Requirement Specification Intrusion Detection System | The specification document which describes all elements of the IDS protocol. |
Qualified Security Event (QSEv) | Security events which pass their filter chain are regarded as Qualified Security Events and are sent to the configured sink. |
Security Extract | The Security Extract specifies which security events are handled by IdsM instances and their configuration parameters. |
Security Events | Onboard security events are reported by BSW, CDD, SWC or other software components or applications to the IdsM. |
Security Event Memory | A user defined diagnostic event memory which is independent from the primary diagnostic event memory. |
Security Sensorsv | BSW, CDD, SWC or other software components or applications which report security events to the IdsM. |
Security Incident and Event Management | Technology concept to collect, correlate and analyze security incidents to detect a threat. |
Sensor | Reporting identity that informs the IdsM module about SEvs. It can be a BSW module, a proprietary CDD or a SWC Application. |
Security Operation Centre | Security Operation Center is the Backend of the IDS in which data can be processed and analysed. |
Socket Adapter | Socket Adaptor is a Basic Software module of AUTOSAR which creates interface between Pdu-Based communication on service level and socket based TCP/IP |
AP | AUTOSAR Adaptive Platform |
API | Application Programming Interface |
BSW | Basic Software |
CAN | Controller Area Network |
CAN FD | Controller Area Network with Flexible Data-Rate |
CDD | Complex Device Driver |
CP | AUTOSAR Classic Platform |
ECU | Electronic Control Unit |
ID | Identifier |
IDS | Intrusion Detection System |
I-PDU | Interaction Layer Protocol Data Unit |
IdsM | Intrusion Detection System Manager |
IdsR | Intrusion Detection System Reporter |
LIN | Local Interconnect Network |
ms | Miliseconds |
N-PDU | Network Layer Protocol Data Unit |
OEM | Original Equipment Manufacturer |
PDU | Protocol Data Unit Router |
PRS IDS | Protocol Requirement Specification Intrusion Detection System |
QSEv | Qualified Security Event |
SecXT | Security Extract |
SEv | Security Event |
Sem | Security Event Memory |
SIEM | Security Incident and Event Management |
SOME/IP | Scalable service-Oriented MiddlewarE over IP |
SOC | Security Operation Center |
SWC | Software Component |
英日
日本語は仮訳
no. | count | word | 日本語 |
---|---|---|---|
1 | 270 | the | その |
2 | 192 | of | の |
3 | 131 | protocol | 規約 |
4 | 121 | ids | ids |
5 | 120 | byte | 束 |
6 | 101 | data | 与件 |
7 | 93 | to | に |
8 | 86 | is | です |
9 | 83 | bit | binary digit(短縮名) |
10 | 80 | id | id |
11 | 72 | context | 文脈 |
12 | 72 | event | 行事 |
13 | 71 | security | 安心 |
14 | 63 | and | と |
15 | 62 | autosar | autosar |
16 | 61 | system | 系 |
17 | 60 | in | 中に |
18 | 60 | message | 伝言 |
19 | 54 | detection | 検出 |
20 | 54 | for | にとって |
21 | 54 | intrusion | 侵入 |
22 | 53 | prs_ids_ | prs_ids_ |
23 | 53 | signature | 署名 |
24 | 49 | a | 一つの |
25 | 49 | idsm | idsm |
26 | 48 | timestamp | 時刻印 |
27 | 46 | specification | 仕様 |
28 | 45 | c | c |
29 | 44 | header | 見出し |
30 | 43 | be | です |
31 | 43 | bytes | 束 |
32 | 43 | length | 長さ |
33 | 41 | frame | 枠 |
34 | 40 | document | 文書 |
35 | 40 | instance | 実例 |
36 | 39 | with | と |
37 | 35 | by | に |
38 | 35 | r | r |
39 | 34 | can | できる |
40 | 32 | autosar_prs_intrusiondetectionsystem | autosar_prs_intrusiondetectionsystem |
41 | 32 | fo | foudation(短縮名) |
42 | 31 | size | 大きさ |
43 | 30 | separation | 分離 |
44 | 29 | or | また |
45 | 27 | events | 行事 |
46 | 27 | which | どの |
47 | 26 | qsev | qsev |
48 | 26 | sensor | 感知器 |
49 | 22 | are | です |
50 | 20 | d | d |
51 | 19 | bits | binary digits(短縮名) |
52 | 19 | figure | 形 |
53 | 19 | it | それ |
54 | 19 | table | 表 |
55 | 19 | this | これ |
56 | 18 | not | いいえ |
57 | 18 | used | 使った |
58 | 17 | an | 一つの |
59 | 17 | communication | 通信 |
60 | 17 | idsr | idsr |
61 | 17 | on | の上 |
62 | 17 | qualified | 資格あり |
63 | 16 | configured | 構成済み |
64 | 16 | msb | msb |
65 | 16 | pdu | pdu |
66 | 15 | count | 計数 |
67 | 15 | included | 含む |
68 | 15 | information | 情報 |
69 | 15 | lsb | lsb |
70 | 15 | no | いいえ |
71 | 15 | reserved | 予約済み |
72 | 15 | seconds | 秒 |
73 | 14 | as | なので |
74 | 14 | from | から |
75 | 14 | version | 版 |
76 | 13 | messages | 伝言 |
77 | 13 | option | 選択肢 |
78 | 12 | encoded | 符号化した |
79 | 12 | optional | 選択肢 |
80 | 12 | rs_ids_ | rs_ids_ |
81 | 11 | e | e |
82 | 11 | if | もし |
83 | 11 | interface | 界面 |
84 | 11 | network | 通信網 |
85 | 11 | one | 1 |
86 | 11 | other | 他の |
87 | 11 | refer | 参照 |
88 | 11 | set | 設定する |
89 | 11 | specific | 明確 |
90 | 11 | use | 使う |
91 | 10 | configuration | 構成 |
92 | 10 | definition | 意味 |
93 | 10 | format | 書式 |
94 | 10 | layer | 層 |
95 | 10 | maximum | 最大 |
96 | 10 | note | 覚書 |
97 | 10 | only | だけ |
98 | 10 | software | ソフトウェア |
99 | 10 | time | 時間 |
100 | 9 | all | すべて |
101 | 9 | any | どれか |
102 | 9 | dependencies | 依存関係 |
103 | 9 | ethernet | イーサネット |
104 | 9 | example | 例 |
105 | 9 | g | g |
106 | 9 | i | 私 |
107 | 9 | module | 部品 |
108 | 9 | multiple | 多数 |
109 | 9 | nano | ナノ |
110 | 9 | oem | OEM |
111 | 9 | platform | 枠組み |
112 | 9 | standard | 標準 |
113 | 9 | there | そこの |
114 | 9 | unit | 単位 |
参考(reference)
[1] Requirements on Intrusion Detection System
AUTOSAR_RS_IntrusionDetectionSystem
[2] Specification of Time Synchronization
AUTOSAR_SWS_TimeSynchronization
[3] Specification of I-PDU Multiplexer
AUTOSAR_SWS_IPDUMultiplexer
[4] Specification of FlexRay Interface
AUTOSAR_SWS_FlexRayInterface
[5] Specification of Socket Adaptor
AUTOSAR_SWS_SocketAdaptor
[6] System Template
AUTOSAR_TPS_SystemTemplate
[7] Security Extract Template
AUTOSAR_TPS_SecurityExtractTemplate
<この記事は個人の過去の経験に基づく個人の感想です。現在所属する組織、業務とは関係がありません。>
関連文書(Related document)
Specification of Intrusion Detection System Protocol, AUTOSAR R22-11, FO, No.981
文書履歴(document history)
ver. 0.01 初稿 20220528
ver. 0.02 URL追記 20221229