internet of things 2017/2018 · 30-jan-18 johan j. lukkien, [email protected] tu/e informatica,...
TRANSCRIPT
![Page 1: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/1.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking1
Intelligent Transportation Systems
Johan Lukkien
Internet of Things
2017/2018
John Carpenter, 1982
![Page 2: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/2.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking2
Overview
• In four sections
– Intelligent Transportation Systems
– Vehicle to vehicle: safety applications
– Vehicle to infra structure: information applications
– Safety, privacy and security
![Page 3: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/3.jpg)
ITS
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking3
![Page 4: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/4.jpg)
Guiding questions
• What are goals of ITS (Intelligent Transportation Systems)?
• How is the general structure of ITS?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking4
![Page 5: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/5.jpg)
Vehicles operate using networked ICT
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking5
Local
Control
Local
Control
Local
Control
In-car network
Driver
Control
![Page 6: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/6.jpg)
In-vehicle networks
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking6
• Networks of ECUs
– 40-80 in a modern car
• Designed for
– cooperative behavior
– specialist (remote)
management / diagnostics
• Gateway support for isolation
K-CAN
System
MOST K-CAN
Periphery
SI-BUS
(Byteflight)
PT-CAN
Diagnose
Gateway
BMW 7 series infrastructure
![Page 7: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/7.jpg)
Vehicles become parts of a larger whole
• Vehicle to Vehicle
(V2V) communication
– ad-hoc
– collaborative
applications
• Applications are
distributed
• Actuation may pass
by driver control
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking7
Driver
Control
Driver
Control
Driver
Control
V2V network
Accident prevention
![Page 8: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/8.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking8
Physical organization in V2V
Vehicle
RSURSU
RSU
IEEE 802.3,
(ethernet)
IEEE 802.11 (WiFi)
……
IEEE 802.16e
(WiMAX)
3G, 4G
Moving vehicles connect
ad-hoc to each other and to
access points of the
ambient infra structure
Technology: IEEE 802.11p
Road side units (RSUs,
network central devices)
are connected to the
Internet
IP-based network
with wide-area
coverage, wireless
or wired
Vehicle
Vehicle
Vehicle
Vehicle
IEEE 802.11p
![Page 9: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/9.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking9
V2V ad-hoc
Middle layer
Bottom layer
Multi hop
(ambient infra structure)
Single hop (no hop)
(access points)
Multi hop
(ad-hoc clustering)
Most general case:
moving clusters through
ambient infra structure
(V2I)
+ ad-hoc networks (V2V)
Moving clusters
connecting to access
points (V2I)
+ ad-hoc networks (V2V)
Single hop Moving nodes
connecting to ambient
infra structure
Moving nodes
connecting to access
points
![Page 10: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/10.jpg)
Multiple technologies
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking10
Access Network
GW
RSURSU
Node Server
OBU
AU
OBU
AU
OBU
AU
HS
Internet
AU Application Unit
OBU On Board Unit
GW Gateway
RSU Road Side Unit
HS Hot spot
In-Vehicle
Domain
Infrastructure
Domain
Ad-Hoc Domain
C2C-CC (Car2Car Communication Consortium initiated by six European car manufacturers) architecture (~2010)
IEEE 802.11pIEEE 802.11a/b/gOther wireless technology (full coverage)
![Page 11: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/11.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking11
3G/4G/5G
Middle layer
Bottom layer
Multi hop
(ambient infra structure)
Single hop (no hop)
(access points)
Multi hop Most general case:
moving clusters through
ambient infra structure
+ ad-hoc networks
Moving clusters
connecting to access
points
+ ad-hoc networks
Single hop Moving nodes
connecting to ambient
infra structure
Moving nodes
connecting to access
points
![Page 12: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/12.jpg)
A conceptual view
30-Jan-18
12
V2V V2V
Internet, V2I
Congestion controlRoad maintenance
Environment control
End-user applicationsCar sharing
Event management
DriverControl
DriverControl
V2V network
Accident prevention
Local Control
Local Control
Local Control
In-car network
DriverControl
(2)
(1)
(4)
(3)• Example data flows:
– (1) gather detailed driving data to
determine
• local weather
• road condition
– (2) accident prevention by direct
intervention
– (3),(4) informing driver
about upcoming road conditions
![Page 13: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/13.jpg)
Guiding questions
• What are goals of ITS (Intelligent Transportation Systems)?
• How is the general structure of ITS?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking13
![Page 14: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/14.jpg)
V2V
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking14
![Page 15: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/15.jpg)
Guiding questions
• Which V2V applications are there?
• How does V2V communication and how do applications work?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking15
![Page 16: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/16.jpg)
V2V: goals and characteristics
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking16
• Goals
• Safety
• Comfort
• Traffic efficiency
• Main characteristics
• Very high mobility of network nodes
• Fully distributed system
• IEEE 802.11p (CSMA/CA) as underlying technology
• Safety applications have strict requirements on
• Reliability
• Delay
![Page 17: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/17.jpg)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking17
from: Vehicle-to-Vehicle Communications: Readiness of V2V Technology for Applications, NHTSA, August 2014
![Page 18: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/18.jpg)
ADAS
• Equipped with a user interface these applications end up as
Advanced Driver Assistance Systems (ADAS)
– e.g. a vibrating seat or other warning
5 steps to fulll automation
• Currently under R&D:
– Collaborative Adaptive Cruise Control
• 2 or more vehicles in a platoon
– multiple CACC: merging
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking18
![Page 19: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/19.jpg)
C’est le Rushhttps://www.youtube.com/watch?v=Johmxw3cspA
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking19
![Page 20: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/20.jpg)
How does this work?
• It is cooperative, dynamic and ad-hoc
• Two different approaches, same network
technology (IEEE 802.11p)
– US: Wireless Access in Vehicular
Environments – WAVE – over Dedicated
Short Range Communications – DSRC
– EU: ETSI TC ITS standards, using
Geo-networking
• Essentially: vehicles emit periodically or
event-driven status information
– called Basic Safety Messages (BSM, US)
– and Cooperative Awareness Messages (CAM, EU)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking20
picture from the Internet
![Page 21: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/21.jpg)
IEEE 802.11p characteristics
• Part of the full IEEE 802.11 (2800page) specification
– enhancements for use in Vehicles
• Connect without BSS (BSS: stations with access point):
– no association, authentication
– just direct, ad-hoc messaging when in range
• Support prioritizing of traffic: EDCA (from 802.11e)
• Deal with high relative speeds of terminals
– speed 3-27Mbit/s per channel, typically 6Mbit/s per channel
• UTC-based timing reference for synchronizing time accurately
• Channels in the 5.9 GHz range (~300m in free field, max 1000)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking21
![Page 22: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/22.jpg)
(partial) Communication Stack: EU and US
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking22
Rate-adaptation Based Congestion Control for Vehicle Safety Communications, PhD thesis Tessa Tielert
![Page 23: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/23.jpg)
ETSI GeoNetworking
• ETSI GN
– Intended to work on different
technologies besides IEEE 802.11p
• ITS-G5:implementation
on IEEE 802.11p
– three frequency classes
• A:safety
• B: non-safety
• D: future
– control and service
channels
• common control channel:
primary channel
for unsollicited traffic
– protocols for channel
switching
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking23
ETSI ITS model
ETSI GeoNetworking
ITS-G5
![Page 24: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/24.jpg)
ETSI GeoNetworking
• ETSI GN provides ad-hoc local
connectivity
– Addressing: 48bit interface address
extended with station information
– use of a location table about neighbors
• updated by info from incoming
messages
– GN routers: role of some stations
– Services, e.g: • SHB: single hop broadcast (repeated for given
number of times or period)
• unicast: forwarding to destination
• geobroadcast: limit physical extent and limited
number of hops
– BTP: basic transport protocol, add
multiplexing to the GN services
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking24
![Page 25: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/25.jpg)
ETSI GN: Internet connectivity
• IP packet forwarded to IPv6 gateway or destination by GN protocols
(services)
• Adaptation layer provides transparency
– GN6ASL, geonetworking
to IPv6 adaptation sublayer
• IPv6 of lower importance
than safety applications
• Address assignment:
IPv6 autoconf
AU: application unit
CCU: Communication and control unit
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking25
(draft) Vehicle to Internet communications using the ETSI ITS GeoNetworking protocol
Victor Sandonis, Ignacio Soto, Maria Calderon, Manuel Urue˜na
![Page 26: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/26.jpg)
ETSI GN: safety messages
• CAM: cooperative awareness messages
– use the SHB protocol
– repeated broadcast vehicle status in one-
hop neighborhood
• DENM: decentralized environment
notification messages
– use the geocast protocol
– inform about hazards and road conditions
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking26
![Page 27: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/27.jpg)
US: WAVE/DSRC
• IEEE 1609 standardizes Wireless
Access in Vehicular Environments over
Dedicated Short Range
Communication
– 1609.1: resource management
– 1609.2: security services
– 1609.3: networking services (a.o. wave
short message protocol)
• broadcasting of basic safety messages
• define channel number and power per
message
– 1609.4; multi-channel operation
• SAE J2735
– defines the message content of WSMP
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking27
![Page 28: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/28.jpg)
Some application examples (US WAVE BSM ~SAE J2735)
Apps. Comm.type Freq. Latency Range
Lane Change Warning V2V, periodic, P2M 10Hz 100ms 150m
Collision Warning V2V, periodic, P2M 10Hz 100ms 150m
Emergency Brake
Lights
V2V, event-driven, P2M 10Hz 100ms 300m
Pre-Crash Sensing V2V, event-driven, P2P 50Hz 20ms 50m
Stop Sign Assists I2V and V2I, periodic 10Hz 100ms 250m
Left Turn Assistance I2V and V2I, periodic, P2M 10Hz 100ms 300m
Traffic Signal Violation I2V, periodic, P2M 10Hz 100ms 250m
Curve Speed Warning I2V, periodic, P2M 1Hz 1s 200m
Eight high priority vehicle safety applications as chosen by NHTSA and VSCC.
NHTSA – US National Highway Traffic Safety Administration
VSCC – Vehicle Safety Communication Consortium of CAMP (Crash Avoidance Metrics Partnership)
V2V = Vehicle to Vehicle
P2M = Point to Multipoint
I2V = Infra structure to Vehicle
28Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 29: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/29.jpg)
Combining with Internet
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking29
WSMPIP packet
Internet Apps
TCP/UDP
IPv6
PHY (IEEE 802.11p)
LLC/MAC (IEEE 802.11p with CSMA/CA) P1609.4
WAVE Apps
WAVE (Wireless Access in Vehicular Environment) standards:
IEEE 802.11p standard and 1609.x standards
1609.x
(1,2,3)
![Page 30: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/30.jpg)
Evaluation
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking30
![Page 31: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/31.jpg)
Concerns of safety
• What is the combined behavior of application components distributed
over several vehicles?
– agreements on and effects of actuations?
– which situational information needs to be taken into account?
• road condition, #passengers in other car, #vehicles in certain range, …. ?
– development and acceptance procedures for applications• https://blogs.nvidia.com/blog/2016/05/06/self-driving-cars-3/
• https://www.youtube.com/watch?v=qhUvQiKec2U
• Communication from perspective of a given vehicle
– do I know who is in my neighborhood?
• how long does it take to know this?
– are my messages received by vehicles in my neighborhood?
– do I receive the messages of vehicles in my neighborhood?
– how does this scale in function of vehicle density? of …?
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking31
![Page 32: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/32.jpg)
Periodic Broadcast in IEEE 802.11p
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking32
• Defer: waiting until channel is free; Bf: backoff; AIFS: see Networks
• For broadcast, randomization in back-off process is limited
• Point-to-point techniques for solving hidden node problems do not work
– MAC layer acknowledgement
– RTS/CTS
periodT
zerocommonatorespectwithoffsetorphaseinitial
messagekk
Tka
i
i
th
ii
defk
i
:
)(
:
)(
ai(k)
si(k) fi
(k)
AIFS + Defer + Bf
mi(k)
ai(k+1)
Ti
t
![Page 33: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/33.jpg)
Case study: scalability of periodic broadcast
• When the number of vehicles increases, message collisions will
increase as well
• Nodes will suffer losses through Near Neighbor and Hidden Node
effects
• Questions:
– what are effects on reliability, delay and fairness?
• fairness: all vehicles taking the same loss?
– what is the impact of HN, NN?
– what is the impact of the phase, and of changes therein?
– what are relevant metrics?
From: Model, Analysis, and Improvements for Inter-Vehicle Communication Using One-Hop Periodic
Broadcasting Based on the 802.11p Protocol, T.Batsuuri, R.J.Bril, J.J.Lukkien
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking33
![Page 34: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/34.jpg)
How to setup the simulation?
• Two ‘independent’ parts:
– Simulate vehicles, and vehicle movement
– Simulate communication
• how detailed should this be?
• Vehicle movement
– idealized, parameterized
– or real-world traces?
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking35
![Page 35: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/35.jpg)
Highway model
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking37
… …
72km/h
144km/h
108km/h
144km/h
108km/h
72km/h
Total path length is 3000m.
The inter-vehicle distance is changed to have different densities.
![Page 36: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/36.jpg)
Metrics
• Successful Message Ratio (SMR) – the fraction of vehicles in
Communication Range that receive a broadcast message.
– Example: if a network has vehicles with 10 neighbors on average and
on average 7 receive the message then SMR=70%
– SMR is also defined per vehicle and per message
• First Delay (FD) – the longest interval in which no message is
successfully delivered between two vehicles since they established
a link (i.e. a delay to discover each other)
• No Message Interval (NoM) – the longest interval in which no
message is successfully delivered in a link
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking39
![Page 37: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/37.jpg)
Results: overall SMR vs. Vehicle Density (VD)
• minSMR: all
phases equal
• maxSMR: optimal
scheduling
• no HN: single
broadcast domain
• significant losses
at low densities
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking40
VD = 48
SMR ~ 78%
minSMR
![Page 38: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/38.jpg)
CDF of vehicles by its SMR
• CDF: Cumulative
Distribution
Function
– y% vehicles have
at most x% SMR
• Some vehicles
have SMR of
15%,and some of
100%
– unfair!
• Ideal case: all the
same
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking41
![Page 39: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/39.jpg)
First Delay (60 simulated seconds)
• 52644 links are established ( ~36000 links between vehicles traveling in
opposite directions, ~17000 links for the same direction)
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking42
• Most vehicles see
each other within
100ms
• Some vehicles
never see each
other
![Page 40: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/40.jpg)
CDF of NoMessage Interval
• y% links have up
to x seconds NoM
• Most NoMs are
short
• However, a
positive number of
NoMs is larger
than 10s
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking43
![Page 41: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/41.jpg)
Possible adjustments
• Elastic:
– randomize the phase every er (elastice rate) messages
• appears to improve fairness
• Jitter:
– give a jitter of AJ msec (Activation Jitter) to the arrival moment
• appears to improve long delays
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking44
periodT
zerocommonatorespectwithoffsetorphaseinitial
messagekk
Tka
i
i
th
ii
defk
i
:
)(
:
)(
i
ai(k)
si(k) fi
(k)
AIFS + Defer + Bf
mi(k)
ai(k+1)
T
t
+ jitter
![Page 42: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/42.jpg)
Two solutions into one: SMR
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking46
• Neither Jitter nor Elastic
changes SMR!
• Combined:
best results
• MD: multi-domain
• Choice of er=6, AJ=20
based on
experimentation
![Page 43: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/43.jpg)
Two solutions into one
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking47
• Neither Jitter not Elastic
changes SMR!
![Page 44: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/44.jpg)
Two solutions into one
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking48
• Neither Jitter not Elastic
changes SMR!
• Combined:
best results
![Page 45: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/45.jpg)
Guiding questions
• Which V2V applications are there?
• How does V2V communication and how do applications work?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking49
![Page 46: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/46.jpg)
V2I
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking50
![Page 47: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/47.jpg)
Guiding questions
• How does V2I communication work and how is it used?
• Who are stakeholders in ITS?
• Which V2I applications are there?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking51
![Page 48: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/48.jpg)
V2I communication
• On-board-units
(OBUs) manage (IP-
based) connections
with back-offices
– via IEEE 802.11p:
not likely
– 3G/4G/5G
• Less time-
critical
applications
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking52
![Page 49: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/49.jpg)
V2I applications examples
• Users (drivers):
– traffic guidance
– road warnings
– car sharing
– event management
– parking support
– predictive maintenance
• Government
– road management
– traffic management
– vehicle behavior?
– traffic violations?
• Manufacturers
– maintenance info
– warranty evidence
– performance
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking53
![Page 50: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/50.jpg)
Data?
New functions,
new sensors!
(pictures from the Internet)• Safety• Comfort, Convenience• Driver assist• Traffic management
![Page 51: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/51.jpg)
Stakeholders & concerns for V2I
• End-Users
– manufacturers:
• obtain continuous operational data
– government:
• obtain data about road usage &
conditions & traffic,
• regulations, certification, standards
– regular users:
• user apps, safer driving
• secure data sharing, privacy
• Application developers
– facilities for creating and selling
applications
• safety & data driven applications
• Infra structure providers
– data storage, data access (cloud)
– connectivity provisioning (telecom)
• Platform maintainers
– system integration, facilitating
(enabling) other stakeholders
– standardization of equipment,
software stacks
• Car (component) manufacturers
– access to data
– responsible for implementations
within vehicles
– rules and regulations, standards
• Owner(s) of business case(s)
– all, except perhaps the end-
users
– overall architecture must support
business cases
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking55
![Page 52: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/52.jpg)
Stakeholders & scenarios
• Analogy: the smartphone market
– enabled by platform provisioning,
both hardware and software (apps,
app store)
• Each stakeholder has scenarios,
which are (sets of) interactions in
relation to the system
• System components have life cycles
• Stakeholder positions are important,
and influence the system
architecture
– example: just imagine government
would define all apps and let these
develop by invited parties
• Scenario examples
– regulations:
• testing & certification of safety
apps
• data protection
– app programming: app life
cycle of development, testing,
certification, and:
• deployment in store, loading
• deployment into vehicles
– car manufacturer: process of
data generation, collection,
access to data
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking56
![Page 53: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/53.jpg)
Example: how do manufacturers get data?
• Built into the WAVE stack
• This means that such data
would be exchanged between
RSU and OBU
– and then transported onwards
• SAE J2735 specifies
applications:
– Basic Safety Messages
transmitted periodically as
broadcast via WSMP
– Road side warnings
– Probe data (history data)
reporting vehicle state
• ‘floating car data’
• Circumventing user consent
issues
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking57
![Page 54: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/54.jpg)
Current trends
• Experimental systems and
projects in consortia
– vehicle to cloud
– CAN bus to cloud
• Individual parties recording
data from vehicles, either
proprietary or via service
provider
– fleet owners
– manufacturers
• Problem: enabling third parties
(app developers)
• Effect: groups of vehicles
connected to a ‘group owner’
• VIBe project:
– pursue a unifying API
– focus on electric vehicle
applications
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking58
![Page 55: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/55.jpg)
Outline of VIBe vision
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking59
![Page 56: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/56.jpg)
Logical organization
• Preferred: user consent / control:
– joining a group
– decide data transmitted
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking60
group 1 cloud group 2 cloud group 3 cloud
South side of API: mapping to (proprietary) databases of groups
North side of API: interface for programmers to develop apps
cro
ssin
gm
anag
erial dom
ain
s
Vehicles of group 3
Vehicles of group 2Vehicles of group 1
• Plus collection / access policies:
– access only data that is required
by an APP
![Page 57: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/57.jpg)
Concluding
• Gathering vehicle data is similar to gathering data for an app in a
smart phone
• Current tendency for vehicles:
– recording data not under control of the user
• owner and manufacturer do this
– gather all available data (and use later)
• rather than a user selecting to join an app (or group)
• Required:
– further analysis and protection of stakeholder positions
– changes in the architecture as a consequence
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking61
![Page 58: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/58.jpg)
Example: regulation is required
• What will the government do if large
databases are available, even if they
cannot access them in principle?
• What will happen with large hacks?
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking62
![Page 59: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/59.jpg)
Guiding questions
• How does V2I communication work and how is it used?
• Who are stakeholders in ITS?
• Which V2I applications are there?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking63
![Page 60: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/60.jpg)
Privacy, Safety and Security
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking64
![Page 61: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/61.jpg)
Guiding questions
• What are safety and privacy concerns and what role plays security?
• What are current solutions?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking65
![Page 62: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/62.jpg)
Privacy, Safety, and Security
• Privacy: control over personal information
• Safety: freedom from danger or risk on injury resulting from recognized but potentially hazardous events
• Security: regulating access to (electronic) assets according to some policy
– policy: allowed and disallowed actions
– security mechanisms: can be regarded as enforcing the policy
• Privacy and safety restrictions result in security policies
– security for privacy and security for safety
• In addition: security for protection of the business case
– security for the business case, quite often an availability concern
66Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 63: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/63.jpg)
Example requirements
• Safety:
– safety violations by malicious external parties must be prevented (e.g. by a policy of forbidding certain actions)
– safety must be maintained while executing regular functions (functional safety)
• Privacy:
– personal data must remain under control of the owner
– vehicle must not be tracked
• This leads to Common Criteria, to classification of functions and the development process (ISO 26262), and to certification
• We look at some examples
67Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 64: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/64.jpg)
Security to protect safety in BSM
• A vehicle could perform a (physical) action upon receiving certain
messages. This response must be on good grounds, and safe.
– authentication: does this message really come from
• that particular car?
• the car left behind me?
– authorization: what is allowed
• by this party?
• by this message?
– integrity: was this message not tampered
with?
• Further concerns regarding safety:
– are messages really delivered (and not lost or jammed)?
– functional safety
• maintain safe and responsive behavior while executing normal functions
68Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 65: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/65.jpg)
Security to protect privacy in BSM
• Communication might reveal sensitive information
– location of vehicle, one could track it
– driver identity, number of passengers
– driving behavior
• Security mechanisms might add to this
– e.g. the signing of messages reveals the
signature
• Hence:
– policies for data handling, certification of those policies
• e.g. collect only anonymous data, forbid vehicle tracking (by the
government) in mandatory services
– requirements on security mechanisms so they don’t unveil details
69Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 66: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/66.jpg)
Requirements on security
• Interoperable
• Process-able in real-time and limited in size (bandwidth)
• Identity-free
• Non-repudiation (sender cannot deny having sent a message)
• Scalable
– local: few hundreds of vehicles
– global: millions of vehicles
• Extensible, towards other applications of V2x communication
70Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 67: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/67.jpg)
Proposal (US)
• Use Public Key Infrastructure to sign messages
– authentication, integrity & non-repudiation
• Certificate associates public and private key
– decryption using the public key demonstrates:
• that the sender knows the private key,
which is associated with an identity by an authority
• and that the message was not altered
• Complex extensions to deal with the
specific concerns of these applications
– intermittent connectivity, anonymity
• provide several temporary identities (pseudonyms)
– small size keys and certificates: ECQVIC / ECDSA
• though these require 10 times more processing power
71
Certificate for ing.nl
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 68: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/68.jpg)
System outline
• Security Credentials
Management System
• Comparison: basic PKI
versus V2x design
• Main idea:
– give a vehicle several
pseudonyms, valid for a
limited period
• However, the driver’s
phone will be logged
into google et al. ….
72
from: Vehicle-to-Vehicle Communications:
Readiness of V2V Technology for Applications,
NHTSA, August 2014
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 69: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/69.jpg)
Security within the vehicle
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking73
![Page 70: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/70.jpg)
Increasing wireless connections
… and vulnerabilities
• hacking without altering the electronics
74
https://www.youtube.com/watch?v=OobLb1McxnI
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 71: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/71.jpg)
The drill…
• Attach a module to the CAN bus in order to send and receive
control messages and connect to a wireless transceiver
OR
hack into the car via the
Internet with the same
effect
• Reverse engineer the
messaging of this type of
car
• Control the car via remote access
75Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 72: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/72.jpg)
What to do about this?• Protect CAN bus
– admission control for new CAN devices
– CAN message signing and encryption
– … but who has the keys?
• Physical separation – make harmful
influence from new components physically
impossible
• Policy separation
– implement policies that restrict behavior in certain modes
• e.g. no remote access while driving
• software update only under specific circumstances, e.g., in a car shop
• (expose certain behavior while being examined ;-)
• Self monitoring – intrusion detection
76
K-CAN
System
MOST K-CAN
Periphery
SI-BUS
(Byteflight)
PT-CAN
Diagnose
Gateway
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking
![Page 73: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/73.jpg)
What about privacy?
• Adopt policies about what to collect, communicate, store, e.g.,
– collect only anonymous data
– forbid vehicle tracking in mandatory services (e.g. road side)
plus certification of these policies, access tracing, accounting, auditing
• A radically different approach to managing data
– a personal data store where dataabout a person is stored under his control
• no storage in private repositories of companies
• in fact, avoid that data leaves a managerial domain
77
![Page 74: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/74.jpg)
Next Generation Vehicle OS…
78
![Page 75: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/75.jpg)
Guiding questions
• What are safety and privacy concerns?
• What are current solutions?
• Goal:
– Study a larger example of an IoT system.
– Show how the different parts fit together.
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking79
![Page 76: Internet of Things 2017/2018 · 30-Jan-18 Johan J. Lukkien, j.j.lukkien@tue.nl TU/e Informatica, System Architecture and Networking 1 Intelligent Transportation Systems Johan Lukkien](https://reader033.vdocuments.us/reader033/viewer/2022042916/5f57c344128a89049f227f9b/html5/thumbnails/76.jpg)
Concluding
• This example has all characteristics of an IoT application
– complex physical platform
• distributed
• managerial domains – vehicle user, owner, road owner etc.
– short and long ‘cycle’• short: safety applications
• long: applications on top of collected data
– domains with different criticality and timing requirements
• and corresponding applications
– data traversing managerial domains
• from vehicle via infra structure to cloud
– concerns of security, privacy
• lack of control over data
• security for both privacy an safety
30-Jan-18
Johan J. Lukkien, [email protected]
TU/e Informatica, System Architecture and Networking80