summaryrefslogtreecommitdiffstats
path: root/sec-blueprint
diff options
context:
space:
mode:
Diffstat (limited to 'sec-blueprint')
-rw-r--r--sec-blueprint/01-overview.md22
-rw-r--r--sec-blueprint/02-plateform-security.md33
-rw-r--r--sec-blueprint/03-security-concepts.md25
-rw-r--r--sec-blueprint/04-adversaries.md25
-rw-r--r--sec-blueprint/04-threat-analysis.md48
-rw-r--r--sec-blueprint/06-attack-surfaces.md36
-rw-r--r--sec-blueprint/index.md22
7 files changed, 211 insertions, 0 deletions
diff --git a/sec-blueprint/01-overview.md b/sec-blueprint/01-overview.md
new file mode 100644
index 0000000..a9f6d95
--- /dev/null
+++ b/sec-blueprint/01-overview.md
@@ -0,0 +1,22 @@
+---
+
+title : Security BluePrint Overview
+date : 2016-07-06
+category: security
+tags: security, architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## Introduction
+
+## Scope
+
+## Glossary
+
+
diff --git a/sec-blueprint/02-plateform-security.md b/sec-blueprint/02-plateform-security.md
new file mode 100644
index 0000000..ae29818
--- /dev/null
+++ b/sec-blueprint/02-plateform-security.md
@@ -0,0 +1,33 @@
+---
+
+title : platform Security
+date : 2016-06-30
+categories: architecture, automotive
+tags: architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## Platform Definition
+
+## Secure boot
+
+## Certificate and Key Management
+
+## Resource Management
+
+## Trust Zone
+
+## Platform Software Update
+
+## Critical Resource Protection
+
+## Update
+
+## cloud service infrastructure
+
diff --git a/sec-blueprint/03-security-concepts.md b/sec-blueprint/03-security-concepts.md
new file mode 100644
index 0000000..af50a8c
--- /dev/null
+++ b/sec-blueprint/03-security-concepts.md
@@ -0,0 +1,25 @@
+---
+
+title : Application Security Concepts
+date : 2016-06-30
+categories: architecture, automotive
+tags: architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## Security Principles
+
+## Access Control
+
+## Secure Boot
+
+## Applications
+
+## Process Management
+
diff --git a/sec-blueprint/04-adversaries.md b/sec-blueprint/04-adversaries.md
new file mode 100644
index 0000000..acf3764
--- /dev/null
+++ b/sec-blueprint/04-adversaries.md
@@ -0,0 +1,25 @@
+---
+
+title : Adversaries
+date : 2016-06-30
+categories: architecture, automotive
+tags: architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## Authorised malicious project admin/developer
+
+## Malware developer
+
+## Organised crime
+
+## Authorised device/cloud user
+
+## Network mass attacker
+
diff --git a/sec-blueprint/04-threat-analysis.md b/sec-blueprint/04-threat-analysis.md
new file mode 100644
index 0000000..c2e4372
--- /dev/null
+++ b/sec-blueprint/04-threat-analysis.md
@@ -0,0 +1,48 @@
+---
+
+title : Treat Analysis & Coverage
+date : 2016-06-30
+categories: architecture, automotive
+tags: architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## Factory/Dealer installed applications
+
+## Factory/Dealer installed application updates
+
+## Factory/Dealer installed application removal
+
+## User installed applications
+
+## User installed application update
+
+## User installed application removal
+
+## Application Data security
+
+## Application Data upgrades
+
+## Vehicle bus write access by Factoy applications
+
+## Vehicle bus write access by User applications
+
+## Vehicle bus read access by Factoy applications
+
+## Vehicle bus read access by User applications
+
+## Platform software update failure due to corrupted update package
+
+## Platform software update failure due to corrupted invalid package
+
+## Attack from the Cloud
+
+## Man in the middle
+
+## Malicious CAN / USB devices
diff --git a/sec-blueprint/06-attack-surfaces.md b/sec-blueprint/06-attack-surfaces.md
new file mode 100644
index 0000000..b82efe1
--- /dev/null
+++ b/sec-blueprint/06-attack-surfaces.md
@@ -0,0 +1,36 @@
+---
+
+title : Attack Surfaces
+date : 2016-06-30
+categories: architecture, automotive
+tags: architecture, automotive, linux
+layout: techdoc
+
+---
+
+**Table of Content**
+
+1. TOC
+{:toc}
+
+## OS installation at factory Key leak risk
+
+## OS boot
+
+## OS upgrade
+
+## Device bus (static and autodetection) USB
+
+## "Wireless connections (Wifi## Bluetooth## ...)"
+
+## "Wired connection (Can## Serial## Eth ...)"
+
+## OS-Device file system
+
+## User data (local & cloud)
+
+## Application FW
+
+## Application Store
+
+## Application data (local & Cloud)
diff --git a/sec-blueprint/index.md b/sec-blueprint/index.md
new file mode 100644
index 0000000..9135a43
--- /dev/null
+++ b/sec-blueprint/index.md
@@ -0,0 +1,22 @@
+---
+
+title : Security BluePrint Overview
+date : 2016-07-06
+category: security
+tags: security, architecture, automotive, linux
+layout: techdoc
+
+---
+
+
+## [Overview](./01-overview.html)
+
+## [Plateform Security](./02-plateform-security.html)
+
+## [Security Concepts](./03-security-concepts.html)
+
+## [Adversaries](./04-adversaries.html)
+
+## [Threat Analysis](./04-threat-analysis.html)
+
+## [Attack Surfaces](./06-attack-surfaces.html)