Versions Compared

Old Version 47

changes.mady.by.user Philippe Robin

Saved on

compared with

New Version 48

changes.mady.by.user Philippe Robin

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Time

Day 1

09.00

Welcome, logistics (e.g. IT) and agenda review


Vehicle HAL Security design (owner) (duration)
09:30-10:00

Access control and permissions in Android (Stefan) (30mn)

  • Build connection VSS to Android permissions model
  • How to verify permissions
10:00-10:30

External service approach - how to use Adaptive AUTOSAR Identity & Access Management (IAM)  (Alexander - TBC) (30mn)

  • = which authentication methods exist and could be used ?
  • Adaptive Autosar Identity and Access management has a general philosophy, defined names and concepts.  It is a basis for discussion because it describes a model  around interaction between entities (not details or protocols).
  • /TODO/ Alexander sync with Giovanni Vergine on Adaptive Autosar IAM prior to the F2F WIP
10:30-10:45Break
10:45-11:30

VSS Layers (Gunnar) (45mn)

  • concept could be used to put signals into access control groups
  • how to map the concept to Android permissions (how it will be done on the Android side)

11:30-12:00

Users vs. permissions - presentation of the zone concept in Android 10 (Piotr) (30mn)

  • Different users could have different permissions
    • For example audio zones...  Some users should not be able to control the audio.
    • But can this simply be built into the application rather ? is this only controlled based on the  application identity ?
12:00-12:30

Security design backlog review & update

  • Vectors of attack
    • as a recap following the discussion on solutions
    • brainstorming on which attacks are targeted with the solutions discussed ?
    • follow the attack tree modeling method ? (topic likely for a later stage / F2F)
  • recap on the morning outcome

12.30

Lunch, at BMW office


Vehicle HAL Technical proposals Proposals - further refinement (owner, duration)
13:30-14:15

Android internal service (Some signal-connecting library using VSS standard) (Stefan) (45mn)

  • VSS to standard Vehicle HAL - detailed design  can be done right away.
    • Focus on:  "Easiest way" to expose data to Android applications
14:15-15:00

External services - SOME/IP (Gunnar) (45mn)

  • how to use SOME/IP to communicate with Adaptive AUTOSAR and/or Classic AUTOSAR ?
15:00-15:15Break
15:15-16:00

External services - VISS, REST/Web sockets (Gunnar - TBC) (45mn)

  • relevance of topic depends on OEM requirements
  • Gunnar can lead the discussion but needs inputs on whether REST/Web sockets are in scope)
  • /TODO/ Sachin, Alex, others provide inputs prior to the F2F

16:00-16:45

Compatibility Android and non-Android systems - common solutions (TBD) (45mn)

  • brainstorming needed prior to the F2F
  • /TODO/ Alexander sync with Giovanni Vergine and Piotr Krawczyk on FARACON project prior to the F2F WIP
  • Tool chains:   VSS (or Franca) to Android IDLs translation ?
16:45-17:15

Technical proposals - Backlog review & update

  • Decision point:  Which design to use (develop), or at least prioritize
    • ....Decide how the application layer should be fueliing the connection - e.g. direct socket connection or bound through android service
    • Once we have agreed on which design to follow , what parts are missing and need to be developed?
  • signal-to-service specification in AR 19-11
  • introduction to Android CDD (Sachin) (30mn TBC)
  • recap on the afternoon outcome

17:15

end of Day 1

...