GB/T 42193.7-2022 Road vehicles—Communication between vehicle and external equipment for emissions-related diagnostics—Part 7: Data link security (English Version)
1 Scope
This document gives guidelines for protecting road vehicle modules from unauthorized access through vehicle diagnostic data chains, providing guidance on protecting vehicles from unauthorized access through vehicle diagnostic connections. These security measures provide vehicle manufacturers with the flexibility to tailor security policies to their specific needs and do not preclude other additional measures.
This document applies to the control module of a vehicle where changes can be made to the solidified memory information through the diagnostic data communication link. Changes to such stored information may damage the vehicle's electronics or other components, thereby jeopardizing its compliance with government regulations or the vehicle manufacturer's rights and interests in safety.
2 Normative references
The contents of the following documents constitute essential provisions for the suspension of this document through normative references in the text. Among them, note the date of the reference documents, only the date of the corresponding version applies to this document; do not note the date of the cited form of the actual documents, the latest version (including all the revision of the list) applies to this document.
ISO 9141-2 Road vehicle diagnostic systems Part 2: CARB requiremeis for interchange of digital information (Road vehicles - D-agnostic systems - Part 2: CARB requiremeis for interchange of digital information)
ISO 11898-1 Road vehicles - Controller area network (CAN) Part 1: Data link layer and physical signalling (Road vehicles - Controller area network (CAN - Part 1: Data link layer and physical signalling)
Note:GB/T 41588.1-2022 Road vehicles - Controller area network (CAN) Part 1: Data link layer and physical signalling (ISO 11898-1,2015,IDT)
ISO 11898-2 Road vehicles Controller area network (CAN) Part 2: High-speed medium access unit (Road vehicles - Controller area network (CAN) - Part 2: High-speed medium access unit)
Note:GB/T 41588.2-2022 Road vehicles - Controller area network (CAN) Part 2: High-speed medium access unit (ISO 11898-2016,IDT)
ISO 14229-2 Road vehicles - Unifieddiagnostic services (UDS) - Part 2: Session layer services (Road vehicles - Unifieddiagnostic services (UDS) - Part 2: Session layer services)
Note: GB/T 40822-2021 Unified diagnostic services for road vehicles [ISO 14229-1:2020, ISO 14229-2.2013, ISO 14229-3.2013, ISO 14229-4;2012, ISO 14229-5.2013, ISO 14229-6;2013, ISO 14229-7,2015,ISO 14229-8;202oMOD]
ISO 14230-1 Road vehicles-Diagnosticcommunication over K-Line (DoK-Line) - Part 1: Physical layer
Note:GB/T 41590.1-2022 Road vehicles-Diagnosticcommunication over K-Line Part 1: Physical layer (ISO 14230-1:2012, IDT)
3 Terms and definitions, abbreviations
3.1 Terminology and definitions
The terms and definitions defined in ISO 15031-2 and the following terms and definitions apply to this document.
3.1.1
Unsecured functions
A standard diagnostic function provided by the vehicle manufacturer and controlled and protected by the on-board controller. Example: Reprogramming of selected items (e.g., clearing fault codes).
3.1.2
Secured functions
Restricted functions that require unlocking the on-board controller to access.
Example: Programming of vehicle emission systems (e.g., fuel/ignition mapping, anti-theft system, and odometer).
3.1.3
Seedseed
Pseudo data values sent from the on-board controller to an external test device are processed by a security algorithm to produce a key.
3.1.4
Key key
The response seed, sent from the external test device to the on-board controller, is given to access the data value of the security function.
3.1.5
False access attemptFAA
The on-board controller receives the error key.
3.1.6
delay timcDT
The time inserted during the access attempt.
3.2 Abbreviations
The following abbreviations apply to this document.
4 Conventions
ISO 15031 follows the conventions in the OSI Services Convention (ISO/IEC 10731) that apply to diagnostic services.
5 Document overview
Figure 1 depicts the referenced documents for emission-related OBD on ISO 15765-4, SAE J1850, ISO 9141-2, and ISO 14230-4. The protocol initialization identifies whether ISO 15765-4 DoCAN, SAEJ1850, ISO 14230-4 DoK-Line or ISO 9141-2 is the supported data link layer for the vehicle. international standards referenced by ISO 15031 are used as the available data links for emission related OBD.
6 Technical Requirements
6.1 General requirements
Unlocking the on-board controller shall be a prerequisite for accessing certain key on-board control functions. Note: This document does not specify the functions and information that need to be protected, leaving it to the vehicle manufacturer to set.
When a function is locked, access to the on-board controller should only be allowed through proprietary product software, thus allowing the software to protect itself and protect other vehicle control systems from unauthorized access. Different in-vehicle functions may be protected by their own seed-key combinations.
Security measures should not interfere with normal diagnostic communications between external devices and the on-board controller.
Bibliography
GB/T 42193.7-2022 Road vehicles—Communication between vehicle and external equipment for emissions-related diagnostics—Part 7: Data link security (English Version)
Standard No.
GB/T 42193.7-2022
Status
valid
Language
English
File Format
PDF
Word Count
7000 words
Price(USD)
210.0
Implemented on
2023-7-1
Delivery
via email in 1~3 business day
Detail of GB/T 42193.7-2022
Standard No.
GB/T 42193.7-2022
English Name
Road vehicles—Communication between vehicle and external equipment for emissions-related diagnostics—Part 7: Data link security
1 Scope
This document gives guidelines for protecting road vehicle modules from unauthorized access through vehicle diagnostic data chains, providing guidance on protecting vehicles from unauthorized access through vehicle diagnostic connections. These security measures provide vehicle manufacturers with the flexibility to tailor security policies to their specific needs and do not preclude other additional measures.
This document applies to the control module of a vehicle where changes can be made to the solidified memory information through the diagnostic data communication link. Changes to such stored information may damage the vehicle's electronics or other components, thereby jeopardizing its compliance with government regulations or the vehicle manufacturer's rights and interests in safety.
2 Normative references
The contents of the following documents constitute essential provisions for the suspension of this document through normative references in the text. Among them, note the date of the reference documents, only the date of the corresponding version applies to this document; do not note the date of the cited form of the actual documents, the latest version (including all the revision of the list) applies to this document.
ISO 9141-2 Road vehicle diagnostic systems Part 2: CARB requiremeis for interchange of digital information (Road vehicles - D-agnostic systems - Part 2: CARB requiremeis for interchange of digital information)
ISO 11898-1 Road vehicles - Controller area network (CAN) Part 1: Data link layer and physical signalling (Road vehicles - Controller area network (CAN - Part 1: Data link layer and physical signalling)
Note:GB/T 41588.1-2022 Road vehicles - Controller area network (CAN) Part 1: Data link layer and physical signalling (ISO 11898-1,2015,IDT)
ISO 11898-2 Road vehicles Controller area network (CAN) Part 2: High-speed medium access unit (Road vehicles - Controller area network (CAN) - Part 2: High-speed medium access unit)
Note:GB/T 41588.2-2022 Road vehicles - Controller area network (CAN) Part 2: High-speed medium access unit (ISO 11898-2016,IDT)
ISO 14229-2 Road vehicles - Unifieddiagnostic services (UDS) - Part 2: Session layer services (Road vehicles - Unifieddiagnostic services (UDS) - Part 2: Session layer services)
Note: GB/T 40822-2021 Unified diagnostic services for road vehicles [ISO 14229-1:2020, ISO 14229-2.2013, ISO 14229-3.2013, ISO 14229-4;2012, ISO 14229-5.2013, ISO 14229-6;2013, ISO 14229-7,2015,ISO 14229-8;202oMOD]
ISO 14230-1 Road vehicles-Diagnosticcommunication over K-Line (DoK-Line) - Part 1: Physical layer
Note:GB/T 41590.1-2022 Road vehicles-Diagnosticcommunication over K-Line Part 1: Physical layer (ISO 14230-1:2012, IDT)
3 Terms and definitions, abbreviations
3.1 Terminology and definitions
The terms and definitions defined in ISO 15031-2 and the following terms and definitions apply to this document.
3.1.1
Unsecured functions
A standard diagnostic function provided by the vehicle manufacturer and controlled and protected by the on-board controller. Example: Reprogramming of selected items (e.g., clearing fault codes).
3.1.2
Secured functions
Restricted functions that require unlocking the on-board controller to access.
Example: Programming of vehicle emission systems (e.g., fuel/ignition mapping, anti-theft system, and odometer).
3.1.3
Seedseed
Pseudo data values sent from the on-board controller to an external test device are processed by a security algorithm to produce a key.
3.1.4
Key key
The response seed, sent from the external test device to the on-board controller, is given to access the data value of the security function.
3.1.5
False access attemptFAA
The on-board controller receives the error key.
3.1.6
delay timcDT
The time inserted during the access attempt.
3.2 Abbreviations
The following abbreviations apply to this document.
4 Conventions
ISO 15031 follows the conventions in the OSI Services Convention (ISO/IEC 10731) that apply to diagnostic services.
5 Document overview
Figure 1 depicts the referenced documents for emission-related OBD on ISO 15765-4, SAE J1850, ISO 9141-2, and ISO 14230-4. The protocol initialization identifies whether ISO 15765-4 DoCAN, SAEJ1850, ISO 14230-4 DoK-Line or ISO 9141-2 is the supported data link layer for the vehicle. international standards referenced by ISO 15031 are used as the available data links for emission related OBD.
6 Technical Requirements
6.1 General requirements
Unlocking the on-board controller shall be a prerequisite for accessing certain key on-board control functions. Note: This document does not specify the functions and information that need to be protected, leaving it to the vehicle manufacturer to set.
When a function is locked, access to the on-board controller should only be allowed through proprietary product software, thus allowing the software to protect itself and protect other vehicle control systems from unauthorized access. Different in-vehicle functions may be protected by their own seed-key combinations.
Security measures should not interfere with normal diagnostic communications between external devices and the on-board controller.
Bibliography
