Specification of Firewall for Classic Platform, AUTOSAR 1084, R23-11, CP
https://www.autosar.org/fileadmin/standards/23-11/CP/AUTOSAR_CP_SWS_Firewall.pdf
<この項は書きかけです。順次追記します。>
This article is not completed. I will add some words in order.
Release Overviews
Classic Platform Release Overview, AUTOSAR No.0 ,R23-11, CP
https://qiita.com/kaizen_nagoya/items/8468435185e109189ead
Foundation Release Overview, AUTOSAR 781, R23-11, FO
https://qiita.com/kaizen_nagoya/items/f249bdb8c313d8bff883
Adaptive Platform Release Overview, AUTOSAR 782, R23-11, AP
https://qiita.com/kaizen_nagoya/items/13a104606a34fe24fcf7
Terms
Short Name(Acronym, Abbreviation) | Description |
---|---|
Firewall | An automotive Ethernet firewall is a network security device that monitors incoming and outgoing network traffic and grants or rejects network access between two or more Electronic Control Units (ECU) or between network zones (e.g. vehicle domain (ADAS, infotainment, diagnostics etc), trusted/non-trusted zones). |
Firewall Rule | Pattern of expected values for a network packet together with an associated action in case a network packet matches the pattern (e.g., block or allow the network packet). |
Firewall State | The Firewall State reflects the current state of the vehicle (e.g. driving, in a diagnostic session, ...) and can be set by a user application. Based on the currently active Firewall State, a specific set of Firewall Rules matching the current vehicle state is active. |
Allowlist | Collection of Firewall Rules where the network packet is allowed in case of a pattern match. |
Blocklist | Collection of Firewall Rules where the network packet is blocked in case of a pattern match. |
OSI Layer | Network layer according to the ISO OSI model as specified in ISO/IEC 7498. |
BswM | Basic Software Mode Manager |
DDS | Data Distribution Service |
DDS-RTPS | DDS Real-Time Publish Subscribe Protocol |
DoIP | Diagnostics over IP |
EthIf | Ethernet Interface |
IDS | Intrusion Detection System |
IdsM | IDS Manager |
IdsR | IDS Reporter |
IP | Internet Protocol |
SEv | Security Event |
SOME/IP | Service oriented Middleware over IP |
TCAM | Ternary content-addressable memory |
TCP | Transmission control protocol |
UCM | Update & Configuration Management |
UDP | User datagram protocol |
Reference
[1] Glossary AUTOSAR_FO_TR_Glossary
https://www.autosar.org/fileadmin/standards/23-11/FO/AUTOSAR_FO_TR_Glossary.pdf
[2] Requirements on Firewall AUTOSAR_FO_RS_Firewall
[3] System Template AUTOSAR_CP_TPS_SystemTemplate
[4] General Specification of Basic Software Modules AUTOSAR_CP_SWS_BSWGeneral
[5] IEEE Standard for Ethernet https://ieeexplore.ieee.org/document/7428776
[6] SOME/IP Protocol Specification AUTOSAR_FO_PRS_SOMEIPProtocol
[7] SOME/IP Service Discovery Protocol Specification AUTOSAR_FO_PRS_SOMEIPServiceDiscoveryProtocol
[8] DDS Interoperability Wire Protocol, Version 2.2 http://www.omg.org/spec/DDSI-RTPS/2.2
[9] Road vehicles – Diagnostic communication over Internet Protocol (DoIP) – Part 2: Network and transport layer requirements and services (Release 2019-12) https://www.iso.org
[10] Specification of Ethernet Switch Driver AUTOSAR_CP_SWS_EthernetSwitchDriver
文書履歴(document history)
ver. 0.01 初稿 20231203
最後までおよみいただきありがとうございました。
いいね 💚、フォローをお願いします。
Thank you very much for reading to the last sentence.
Please press the like icon 💚 and follow me for your happy life.