Andreas Lentz
Technical Director Automotive Security
CTO Businesses
NXP Semiconductors

| Keynote 1 |

Can test bridge the last gap between safety and security?

Traditionally, safety and security were two separate fields of research and development, were applied in separate fields of application, and were even considered to be adverse to each other.
While automotive systems and especially automotive systems that are deployed in an autonomous driving context need to comply with the highest safety standards, for a long time, security in automotive systems was mainly employed for IP protection. However, in recent years, several hacker attempts targeted autonomous driving systems and became publicly visible. This has made undoubtably clear that security of a system is an inevitable pre-requisite for safe operation.
At NXP, the safety and security culture is deeply embedded within the company. Combining safety and security solutions in one system, leveraging expertise from both fields and tackling the aforementioned adversary is NXP’s key for market acceptance of future mobility trends.
The first part of this talk discusses why safety and security have to go hand in hand in upcoming automotive systems. Based on this, we will dive into the commonalities and differences between the two domains in terms of definitions, standards, and processes.
Next, we will describe current implementations of security and safety as co-existing features within one automotive system. Along this system, we elaborate several use cases to illustrate the derivation of mechanisms ensuring the safety of the overall system. Subsequently, we will explain the derivation of security target levels for hardening the same system. We will close this section of the presentation with describing how the two domains security and safety may interact on system level.
Finally, we will shed a light on the key open problems for next generation systems, where safety and security should be fully integrated with each other to minimize system overheads. Here, we will mainly focus on the role that test can play to bridge the last gap.

Andreas Lentz is part of NXP's automotive security team. NXP is the global technology leader in the secure connected car with a market leading product portfolio in radar, car infotainment, secure car access, body and in-vehicle networking, safety, and powertrain. In his role in NXP, Andreas is responsible for embedded automotive security architectures, technology, solutions, and processes.
Working over 10 years in the Smartcard business Andreas gained deep experience in high-level security architectures, end-to-end protection, attacks scenarios and their related counter measures. Since 2017 he is focusing on security in the automotive context, being secure communication, data and SW IP protection and their relation to safety.
Andreas received the MSc degree in Electrical Engineering from the Technical University in Kaiserslautern.

Frank Sill Torres
Head of the Department
Department of Resilience of Maritime Systems
Institute for the Protection of Maritime Infrastructures
German Aerospace Center (DLR)

| Keynote 2 |

Model-based resilience in the context of complex socio-technical systems

From a technical perspective, resilience focuses on the ability of a system to anticipate and to resist external and internal disruptions and disturbances as well as to recover and to learn from such events. This view led to a new paradigm, i.e. away from the classical design criteria fail-safe towards safe-to-fail systems. The former emphasizes the achievement of reliability by pursuing absolute protection and control of system change, while the latter rather aims at the capacity to recover from hazardous events. This talk will show that both concepts must not be contradicting and can be thought together when developing reliable and resilient systems. Therefore, an introduction into the concept of resilience is given, followed by the discussion of theoretical and practical solutions.

Frank Sill Torres received the Diploma and Dr.-Ing. degrees in Electrical Engineering from the University of Rostock, Germany, in 2002 and 2007, respectively. From 2007 to 2010, he worked as a post-doctoral fellow at the Federal University of Minas Gerais (UFMG), Brazil. From 2010 to 2018, he has been professor at the Department of Electronic Engineering at the UFMG, where he also coordinated the ASIC Reliability Group. From 2018 to 2019, he was with the German Research Center for Artificial Intelligence (DFKI) in Bremen, Germany.
Since 2019, he is the Head of the Department for Resilience of Maritime Systems at the Institute for the Protection of Maritime Infrastructures of the German Aerospace Center (DLR) in Bremerhaven, Germany. His current research interests include resilience, security, maritime systems and emerging integrated technologies.