About the course

🧠 Course Title:

Integrating Cryptography in Automotive Systems using AUTOSAR MCAL Crypto Driver, SHE, and HSM
(With Hands-on Implementation on NXP S32K1xx and S32K3xx MCUs)

---

🎯 Course Objective:

This course aims to equip automotive software engineers, embedded developers, and security architects with core concepts, practical skills, and hands-on experience required to use cryptography in modern automotive systems. With a strong focus on AUTOSAR Crypto MCAL Driver integration, the course provides deep insights into using SHE and HSM hardware security modules in real automotive microcontrollers like NXP S32K144 and S32K344.

---

📘 Course Description:

🔐 1. Understanding Cryptography in Automotive Context

What is Cryptography?
A foundational overview of cryptography — its history, role in digital systems, and its critical need in automotive applications.

Cryptography Basics
Learn the three fundamental building blocks of cryptography:

• Symmetric Encryption (AES, CMAC)
• Asymmetric Encryption (RSA, ECC)
• Hashing Algorithms (SHA variants)

Cryptographic Ciphers and Crypto Keys

• Block and stream ciphers
• Key sizes, key types (public/private/symmetric)
• Key lifecycle: generation, storage, export/import

 

Cryptographic Pillars (CIA + NR):

• Confidentiality – Protecting sensitive data using encryption
• Integrity – Verifying data hasn’t been tampered using MACs & Hashes
• Authenticity – Ensuring identity of sender using signatures
• Non-Repudiation – Enforcing sender accountability

Understand the 4 core objectives of cryptography:

---

🚘 2. Use Cases of Cryptography in Automotive Systems

We break down real-world automotive applications of cryptography into focused modules:

 

Secure Boot & Secure Firmware Update
Learn how digital signatures and encryption ensure only trusted firmware runs on the ECU.

In-Vehicle Secure Communication (CAN, LIN, Ethernet)
Understand how MACs and symmetric encryption protect data exchange between ECUs.

Cryptographic Device Authentication
Explore key exchange protocols like ECDH, and symmetric mutual authentication between ECUs and peripherals.

---

🧱 3. Understanding Crypto Peripherals in Automotive MCUs

🔧 Introduction to Hardware Security Modules:

SHE (Secure Hardware Extension)
A lightweight symmetric security engine for basic encryption and MAC operations in cost-sensitive ECUs.

HSM (Hardware Security Module)
A full-fledged secure subsystem supporting asymmetric operations (RSA/ECC), key lifecycle management, and secure debug access.

🧪 Practical Exploration:

 

Exploration of SHE Peripheral in NXP S32K1xx MCUs (e.g., S32K144):

• Overview of memory layout and key slots
• How to perform key loading and CMAC generation
• Understanding security flags and functional architecture
• Chronology of Operation

1. Initialize crypto driver
2. Load keys to memory
3. Call specific cryptographic operations

• Learn the step-by-step execution flow:
• Functional Concepts Simplified:
• Key Management, Message Authentication, Secure Storage, etc., explained visually and through analogy.

---

🧰 4. Working with AUTOSAR MCAL Crypto Drivers

📦 Introduction to AUTOSAR Crypto Stack

• What is the AUTOSAR Crypto Service Layer?

• Where does MCAL Crypto Driver fit in?

• Mapping of functional requirements to AUTOSAR modules

🧑‍💻 Using the MCAL Crypto Driver in Software Stack:

• Configuration using NXP’s AutoMCAL GUI Tool

  • Step-by-step walkthrough of GUI layout

  • Configuring keys, algorithms, buffers, and operations

• Detailed Guide to Crypto MCAL APIs:

  • API function breakdown: Init, LoadKey, Encrypt, Decrypt, GenerateMAC, VerifyMAC, etc.

  • Parameter list explanation: What each argument means

  • Chronology of API calls: Correct sequence to follow

• Hands-on Coding Demonstrations

  • Implement AES Encryption & Decryption

  • Perform CMAC Generation & Verification

  • Load and Use SHE Keys in code

  • Create a Secure Boot demo with signature verification

---

👨‍🏫 Who Should Take This Course?

• Automotive software engineers aiming to meet ISO 21434 cybersecurity standards

• Embedded system designers working on secure ECU applications

• Developers using NXP S32K1xx or S32K3xx series with security subsystems

• Engineering students building career-ready automotive security skills

---

🛠️ Tools and Platforms Used:

• NXP S32 Design Studio + AutoMCAL Configuration Tool

• S32K144EVB / S32K344EVB hardware boards

• AUTOSAR BSW modules (Crypto + MCAL)

• C programming + hands-on project templates

---

🎓 Outcome:

By the end of this course, you’ll be able to:
✅ Understand and apply cryptographic principles
✅ Configure and use SHE/HSM hardware peripherals
✅ Use AUTOSAR Crypto MCAL Driver effectively
✅ Integrate cryptographic operations in real-world automotive use cases