【免费】JasPar规范-RequirementsSpecificationforMessageAuthentication资源-CSDN文库

需积分: 0 167 浏览量 2024-01-19 13:39:03 上传评论收藏 1.39MB PDF 举报

资源推荐

资源详情

资源评论

JASPAR Standards: ST-CSP-6

Copyrights for this specification belong to the General Incorporated Association JASPAR.

Unauthorized copying and reproduction is prohibited by copyright.

General Incorporated Association JASPAR

ST-CSP-6

JASPAR Requirements Specification

for Message Authentication

Ver. 2.11

Issued on December 11, 2020

Cyber Security Promotion WG

JASPAR Requirements Specification for Message Authentication Ver.2.11 ST-CSP-6

- 2 -

Unauthorized copying and reproduction is prohibited by copyright.

Revision History

Version

Changes

Changed by

1.0

Newly created

Cyber

Security

Promotion

2.0

Added segment [VerifyStart] where MAC verification is not performed

for a certain time after an ECU starts

Cyber

Security

Promotion

Added whether or not to increment the trip counter at IG-ON as a

variation

Changed so that the reset flag is generated from the LSB of the reset

counter

Changed so that the reset flag is included as a freshness value

Added behaviors for when the freshness value reaches the maximum

value

Added “Multi FV management master” to the system configuration

Changed so that the same procedure as discarding the message with the

authenticator is performed when the sync message verification fails

Described in Scope that the presence of vulnerabilities shall be

examined when using this specification

Changed the target for associating the freshness value from the

protected data to the message ID

Corrected errors.

- SecOcFreshnessValueSyncAttempts

→ SecOCFreshnessValueSyncAttempts

Deleted unused design values

- AuthInfoLength

- SecOCFreshnessValueLength

- AccumulativeFailCntLength

- MACKeyNumber

Changed to enable selection of whether to discard or accept the received

message when verification of the received message fails

Deleted the following variations

- Freshness value structure

- Key group

Changed the lower limit of ResetFlagLength from 1 to 0 to support

variations without reset flag

2.1

Deleted the sending start conditions for a message with the

authenticator from the requirements and added them to the variation

support

Cyber

Security

Promotion

Made the following changes in padding operation for structure of

authentication data

 Deleted description because adjustment of the block length is

performed during CMAC calculation

 Added requirement for adjustment in byte units

Changed so that MAC verification is performed even within the

[VerifyStart] time for determining whether the freshness value

(previously received value) needs to be stored based on the verification

result

Changed to include the case when the accumulative verification fail

counter is implemented by an application

Separated the requirements on processes when retrieving of the trip

counter has failed

JASPAR Requirements Specification for Message Authentication Ver.2.11  ST-CSP-6   
 
 
- 4 - 
Unauthorized copying and reproduction is prohibited by copyright. 
Table of Contents 
 Introduction ........................................................................................................................................ 6 
 Message authentication ...................................................................................................................... 8 
2.1.  Single FV management master ................................................................................................. 9 
2.2.  Multi FV management master .................................................................................................. 9 
2.3.  Requirements for each entity .................................................................................................. 10 
 MAC Processing ................................................................................................................................ 12 
3.1.  Message authentication processing determination................................................................ 14 
3.2.  Getting message ID .................................................................................................................. 14 
3.3.  Getting MAC key ...................................................................................................................... 15 
3.4.  Getting FV ................................................................................................................................ 15 
3.5.  Construction of the authentication data ................................................................................. 15 
3.6.  MAC generation ....................................................................................................................... 15 
3.7.  Generation of the message with the authenticator ................................................................ 16 
4.1.  Message authentication processing determination................................................................ 17 
4.2.  Getting Message ID .................................................................................................................. 18 
4.3.  FV comparison .......................................................................................................................... 18 
4.4.  Getting MAC key ...................................................................................................................... 19 
4.5.  Getting freshness value for verification.................................................................................. 19 
4.6.  Construction of the authentication data ................................................................................. 19 
4.7.  Generation of the MAC for verification .................................................................................. 19 
4.8.  MAC verification ...................................................................................................................... 20 
5.1.  Re-verification .......................................................................................................................... 21 
5.2.  Notification of verification result ............................................................................................ 21 
5.3.  Message reception .................................................................................................................... 21 
5.4.  Accumulative verification fail counter .................................................................................... 22 
 Management of freshness value ........................................................................................................ 23 