diff --git a/404.html b/404.html index 31182cbd..df166d3e 100644 --- a/404.html +++ b/404.html @@ -36,7 +36,7 @@ - + diff --git a/about/index.html b/about/index.html index 13a85b61..4d030d15 100644 --- a/about/index.html +++ b/about/index.html @@ -36,7 +36,7 @@ - + diff --git a/blog/2017/10/26/2017-10-26-oulanka/index.html b/blog/2017/10/26/2017-10-26-oulanka/index.html index 5e4833b1..f3939a39 100644 --- a/blog/2017/10/26/2017-10-26-oulanka/index.html +++ b/blog/2017/10/26/2017-10-26-oulanka/index.html @@ -36,7 +36,7 @@ - + @@ -347,7 +347,7 @@

Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -392,6 +392,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -492,6 +496,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/01/17/2018-01-17-plans/index.html b/blog/2018/01/17/2018-01-17-plans/index.html index 02a33e15..39d69172 100644 --- a/blog/2018/01/17/2018-01-17-plans/index.html +++ b/blog/2018/01/17/2018-01-17-plans/index.html @@ -36,7 +36,7 @@ - + @@ -347,7 +347,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -392,6 +392,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -492,6 +496,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/05/31/2018-05-31-roverv03/index.html b/blog/2018/05/31/2018-05-31-roverv03/index.html index 14b9ddf0..fe1b0129 100644 --- a/blog/2018/05/31/2018-05-31-roverv03/index.html +++ b/blog/2018/05/31/2018-05-31-roverv03/index.html @@ -36,7 +36,7 @@ - + @@ -353,7 +353,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -398,6 +398,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -498,6 +502,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/06/05/2018-06-05-initialcontribution/index.html b/blog/2018/06/05/2018-06-05-initialcontribution/index.html index 7ec3cd34..51c285e1 100644 --- a/blog/2018/06/05/2018-06-05-initialcontribution/index.html +++ b/blog/2018/06/05/2018-06-05-initialcontribution/index.html @@ -36,7 +36,7 @@ - + @@ -355,7 +355,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -400,6 +400,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -500,6 +504,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/06/18/2018-06-18-ecf2018/index.html b/blog/2018/06/18/2018-06-18-ecf2018/index.html index 753c7ed0..6c066f35 100644 --- a/blog/2018/06/18/2018-06-18-ecf2018/index.html +++ b/blog/2018/06/18/2018-06-18-ecf2018/index.html @@ -36,7 +36,7 @@ - + @@ -349,7 +349,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -394,6 +394,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -494,6 +498,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/08/30/2018-08-30-hack0818/index.html b/blog/2018/08/30/2018-08-30-hack0818/index.html index e35dbe7e..68cdc5bf 100644 --- a/blog/2018/08/30/2018-08-30-hack0818/index.html +++ b/blog/2018/08/30/2018-08-30-hack0818/index.html @@ -36,7 +36,7 @@ - + @@ -354,7 +354,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -399,6 +399,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -499,6 +503,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/09/18/2018-09-18-ecf2018-interview/index.html b/blog/2018/09/18/2018-09-18-ecf2018-interview/index.html index edcf1b7e..ec04f2c1 100644 --- a/blog/2018/09/18/2018-09-18-ecf2018-interview/index.html +++ b/blog/2018/09/18/2018-09-18-ecf2018-interview/index.html @@ -36,7 +36,7 @@ - + @@ -350,7 +350,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -395,6 +395,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -495,6 +499,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/10/22/2018-10-22-ece1018ese1218/index.html b/blog/2018/10/22/2018-10-22-ece1018ese1218/index.html index 82cece3d..b80b6268 100644 --- a/blog/2018/10/22/2018-10-22-ece1018ese1218/index.html +++ b/blog/2018/10/22/2018-10-22-ece1018ese1218/index.html @@ -36,7 +36,7 @@ - + @@ -348,7 +348,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -393,6 +393,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -493,6 +497,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2018/10/24/2018-10-24-ece2018-automotive-meets-iot/index.html b/blog/2018/10/24/2018-10-24-ece2018-automotive-meets-iot/index.html index 2eae8cfe..12259f91 100644 --- a/blog/2018/10/24/2018-10-24-ece2018-automotive-meets-iot/index.html +++ b/blog/2018/10/24/2018-10-24-ece2018-automotive-meets-iot/index.html @@ -36,7 +36,7 @@ - + @@ -351,7 +351,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -396,6 +396,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -496,6 +500,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/01/29/2019-01-29-hackathon0119/index.html b/blog/2019/01/29/2019-01-29-hackathon0119/index.html index 4b983606..269be11c 100644 --- a/blog/2019/01/29/2019-01-29-hackathon0119/index.html +++ b/blog/2019/01/29/2019-01-29-hackathon0119/index.html @@ -36,7 +36,7 @@ - + @@ -348,7 +348,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -393,6 +393,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -493,6 +497,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/02/15/2019-02-15-otokar-magazin/index.html b/blog/2019/02/15/2019-02-15-otokar-magazin/index.html index 32f5109f..eed0a3a8 100644 --- a/blog/2019/02/15/2019-02-15-otokar-magazin/index.html +++ b/blog/2019/02/15/2019-02-15-otokar-magazin/index.html @@ -36,7 +36,7 @@ - + @@ -352,7 +352,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -397,6 +397,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -497,6 +501,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/04/18/2019-04-18-remote-driver-anthentication/index.html b/blog/2019/04/18/2019-04-18-remote-driver-anthentication/index.html index 8c71df7c..27b227dc 100644 --- a/blog/2019/04/18/2019-04-18-remote-driver-anthentication/index.html +++ b/blog/2019/04/18/2019-04-18-remote-driver-anthentication/index.html @@ -13,7 +13,7 @@ - + @@ -36,7 +36,7 @@ - + @@ -360,7 +360,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -405,6 +405,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -505,6 +509,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/05/28/2019-05-28-when-kuksa-meets-sumo/index.html b/blog/2019/05/28/2019-05-28-when-kuksa-meets-sumo/index.html index fded8e42..3f8678f1 100644 --- a/blog/2019/05/28/2019-05-28-when-kuksa-meets-sumo/index.html +++ b/blog/2019/05/28/2019-05-28-when-kuksa-meets-sumo/index.html @@ -36,7 +36,7 @@ - + @@ -351,7 +351,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -396,6 +396,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -496,6 +500,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/07/05/2019-07-05-summerschool/index.html b/blog/2019/07/05/2019-07-05-summerschool/index.html index 98a89e25..1905e7d8 100644 --- a/blog/2019/07/05/2019-07-05-summerschool/index.html +++ b/blog/2019/07/05/2019-07-05-summerschool/index.html @@ -36,7 +36,7 @@ - + @@ -353,7 +353,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -398,6 +398,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -498,6 +502,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/09/19/2019-09-19-netas/index.html b/blog/2019/09/19/2019-09-19-netas/index.html index fe8b7a68..a006a136 100644 --- a/blog/2019/09/19/2019-09-19-netas/index.html +++ b/blog/2019/09/19/2019-09-19-netas/index.html @@ -36,7 +36,7 @@ - + @@ -346,7 +346,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -391,6 +391,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -491,6 +495,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/10/28/2019-10-28-taskit/index.html b/blog/2019/10/28/2019-10-28-taskit/index.html index 016e2682..5b9b8e47 100644 --- a/blog/2019/10/28/2019-10-28-taskit/index.html +++ b/blog/2019/10/28/2019-10-28-taskit/index.html @@ -36,7 +36,7 @@ - + @@ -417,7 +417,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -462,6 +462,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -562,6 +566,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/11/01/2019-11-01-release010/index.html b/blog/2019/11/01/2019-11-01-release010/index.html index 15562a83..74e2128b 100644 --- a/blog/2019/11/01/2019-11-01-release010/index.html +++ b/blog/2019/11/01/2019-11-01-release010/index.html @@ -36,7 +36,7 @@ - + @@ -392,7 +392,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -437,6 +437,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -537,6 +541,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/12/11/2019-12-11-questionaire/index.html b/blog/2019/12/11/2019-12-11-questionaire/index.html index 0effb614..ffa39029 100644 --- a/blog/2019/12/11/2019-12-11-questionaire/index.html +++ b/blog/2019/12/11/2019-12-11-questionaire/index.html @@ -36,7 +36,7 @@ - + @@ -347,7 +347,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -392,6 +392,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -492,6 +496,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/12/13/2019-12-13-vsmarketplace/index.html b/blog/2019/12/13/2019-12-13-vsmarketplace/index.html index 74bf6772..0028b0fe 100644 --- a/blog/2019/12/13/2019-12-13-vsmarketplace/index.html +++ b/blog/2019/12/13/2019-12-13-vsmarketplace/index.html @@ -36,7 +36,7 @@ - + @@ -349,7 +349,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -394,6 +394,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -494,6 +498,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2019/12/20/2019-12-20-idevideo/index.html b/blog/2019/12/20/2019-12-20-idevideo/index.html index 37b0f131..e2cec49c 100644 --- a/blog/2019/12/20/2019-12-20-idevideo/index.html +++ b/blog/2019/12/20/2019-12-20-idevideo/index.html @@ -36,7 +36,7 @@ - + @@ -354,7 +354,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -399,6 +399,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -499,6 +503,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2020/01/21/2020-01-21-eclipsecon19/index.html b/blog/2020/01/21/2020-01-21-eclipsecon19/index.html index 73601242..3205b551 100644 --- a/blog/2020/01/21/2020-01-21-eclipsecon19/index.html +++ b/blog/2020/01/21/2020-01-21-eclipsecon19/index.html @@ -36,7 +36,7 @@ - + @@ -359,7 +359,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -404,6 +404,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -504,6 +508,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2020/08/18/2020-08-18-dbc/index.html b/blog/2020/08/18/2020-08-18-dbc/index.html index 1be7d094..cba78470 100644 --- a/blog/2020/08/18/2020-08-18-dbc/index.html +++ b/blog/2020/08/18/2020-08-18-dbc/index.html @@ -36,7 +36,7 @@ - + @@ -363,7 +363,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -408,6 +408,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -508,6 +512,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2021/06/24/2021-06-24-eclipsesaam-scr-anti-tampering/index.html b/blog/2021/06/24/2021-06-24-eclipsesaam-scr-anti-tampering/index.html index 58e4e76b..3f673827 100644 --- a/blog/2021/06/24/2021-06-24-eclipsesaam-scr-anti-tampering/index.html +++ b/blog/2021/06/24/2021-06-24-eclipsesaam-scr-anti-tampering/index.html @@ -36,7 +36,7 @@ - + @@ -359,7 +359,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -404,6 +404,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -504,6 +508,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2022/03/24/2022-03-24-canopi/index.html b/blog/2022/03/24/2022-03-24-canopi/index.html index 7cf55856..dc3d2cbb 100644 --- a/blog/2022/03/24/2022-03-24-canopi/index.html +++ b/blog/2022/03/24/2022-03-24-canopi/index.html @@ -36,7 +36,7 @@ - + @@ -379,7 +379,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -424,6 +424,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -524,6 +528,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2023/02/17/2023-02-17-fosdem2023/index.html b/blog/2023/02/17/2023-02-17-fosdem2023/index.html index 0ab8c737..c734d375 100644 --- a/blog/2023/02/17/2023-02-17-fosdem2023/index.html +++ b/blog/2023/02/17/2023-02-17-fosdem2023/index.html @@ -36,7 +36,7 @@ - + @@ -357,7 +357,7 @@

    Categories

  • - IMPLEMENTATION (5) + IMPLEMENTATION (6)
  • @@ -402,6 +402,10 @@

    Tags

    appstore
  • +
  • + audit +
  • +
  • authentication
  • @@ -502,6 +506,10 @@

    Tags

    scr +
  • + security +
  • +
  • sumo
  • diff --git a/blog/2024/05/21/2024-05-21-audit/index.html b/blog/2024/05/21/2024-05-21-audit/index.html new file mode 100644 index 00000000..909dac42 --- /dev/null +++ b/blog/2024/05/21/2024-05-21-audit/index.html @@ -0,0 +1,630 @@ + + + + + + + + + +Security Audit for Eclipse Kuksa released + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + + + + + + + + + +
    +
    +
    +
    +

    Security Audit for Eclipse Kuksa released

    +
    +
    +
    +
    + + +
    +
    + +
    + + + +
    + + +

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + + May 21, 2024 + +

    + + +
    +

    Applications that utilize artifacts from the Kuksa project need to rely on the secure execution of these components. We are, therefore, happy to announce the publication of an external audit report carried out by Quarkslab. The audit was facilitated through OSTIF and the Eclipse Foundation and made possible by the funding the Eclipse Foundation received from the Alpha-Omega project.

    +
      +
    • The audit was scoped on the KUKSA databroker and the respective Python client SDK.
    • +
    • There were 19 findings, of which two had a high severity.
    • +
    • The KUKSA team fixed most findings before the release of the report.
    • +
    +

    In this post, we explain some of the findings and how they were addressed. The full audit report is available here

    +

    Audit process

    +

    Together with the auditors, there was an agreement to focus the analysis on the KUKSA databroker and the Python client SDK since these are the most used deliverables of the Eclipse Kuksa project. The team at Quarkslab then based their work on the derived threat model and extended this through automated and manual static analysis. In addition, they performed dynamic fuzz testing. After completing the report, the auditors shared their results with the Kuksa team. The maintainers of Eclipse Kuksa then resolved all findings with low or higher severity without another review by Quarkslab. We can now share some examples here for findings and their fixes.

    +

    Findings

    +

    There were two findings for which the auditors assigned a high severity:

    +

    Provider can crash databroker by adding new signals

    +

    In a Kuksa deployment, so-called providers update signals by retrieving the values from the vehicle bus (e.g., CAN), converting them to VSS signals (Vehicle Signal Specification), and then writing them to the databroker. With the Kuksa API ‘sdv.databroker.v1’, a provider can register new signals to extend the data model managed by the databroker during runtime. However, there was no upper limit on the number of entries a provider could add. During the investigation, the auditors registered 29 million signals to cause the operating system to stop the databroker on a computer with 32 GB of RAM. The default data model of VSS 4.0 currently consists of around 1000 signals, which gives an impression of the usual number of expected signals.

    +

    User can crash databroker with subscription query

    +

    In the ‘sdv.databroker.v1’ API, the user can subscribe to any changes to a signal. In addition, the API allows the user to register specific filters of when to get notified and when not. For instance, one could define a query where the databroker only sends a message when the signals Vehicle.Speed is above 100 kilometers per hour. The API uses SQL to express such filters, and a user could craft specific queries, which caused the databroker to crash.

    +

    Further findings

    +

    In addition, the audit report contains one finding with medium and ten findings with low severity. There were also six more recommendations with the severity level “info”.

    +

    Examples are:

    +
      +
    • Existing values could be overwritten with values with an older timestamp since the databroker did not properly compare the timestamps.
    • +
    • It was possible to set metadata entries like the version of the databroker through the ‘sdv.databroker.v1’ API
    • +
    • In the Python SDK, fuzzing detected cases where unexpected payloads caused the SDK code to crash.
    • +
    +

    Resolutions and Changes

    +

    Most findings relate to the Kuksa API ‘sdv.databroker.v1’. For several reasons, which are partially also historical, the databroker implements a second gRPC API with a smaller feature set called ‘kuksa.val.v1’. +The idea was already to support only one of the existing APIs or to design an API that combines the feature sets of both APIs. Based on the results of the audit, the Kuksa team decided to trigger and accelerate the deprecation of the ‘sdv.databroker.v1’ since many features leading to the security findings are only present in that API but not in the remaining ‘kuksa.val.v1’ API. As a result, the user now explicitly needs to enable the ‘sdv.databroker.v1’ API during the start of the databroker, or it is not active anymore. +However, some applications and frameworks like Eclipse Velocitas rely on features from that API. Because of that, it has not been removed from the code base yet to have an extended migration period. In addition, this allows the collection of feedback from the community on which of the now missing features should be part of the ‘kuksa.val.v1’ API or an upgraded future version. The short-term plan is to reference the audit findings in the documentation and make people aware of the security risks involved when actively enabling and using the ‘sdv.databroker.v1’ API.

    +

    For the other findings that did not relate to the ‘sdv.databroker.v1’ API, the Kuksa team implemented the proposed changes. For instance, in the Python SDK, they added the handling of several corner cases.

    +

    Deploy Kuksa in your setup

    +

    We want to thank OSTIF, the Eclipse Foundation, and Quarkslab for the great collaboration, the chance to go through this audit process, and the valuable feedback we received. We hope the results and fixes encourage you to try out and use the databroker in your use cases, e.g., through one of the SDKs currently available for Python, Android, and soon Rust.

    + +
    + + + +
    + + + + + + +
    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +
    + + + + +
    + + +
    + +
    + + + + + + + + + + + + + + + + +
    + + + + + + + + + + + + + + + + + + + + + diff --git a/blog/index.html b/blog/index.html index 314cf646..b1aa0383 100644 --- a/blog/index.html +++ b/blog/index.html @@ -36,7 +36,7 @@ - + @@ -63,7 +63,7 @@ - + @@ -243,6 +243,75 @@

    Blogs

    +
    +
    +
    + +
    +
    +

    Security Audit for Eclipse Kuksa released

    +
    +

    + + + + in + + Implementation + + + +

    + + + + + + + + + + + + + + + + + + + + + + + + + + + + + +

    + May 21, 2024 +

    + +
    + +

    Applications that utilize artifacts from the Kuksa project need to rely on the secure execution of these components. We are, therefore, happy to announce the publication of an external audit report carried out by Quarkslab. The audit was facilitated through OSTIF and the Eclipse Foundation and made possible by the funding the Eclipse Foundation received from the Alpha-Omega project. +The audit was scoped on the KUKSA databroker and the respective Python client SDK.

    +

    Continue reading +

    + +
    +
    +
    +
    @@ -867,75 +936,6 @@

    -
    - -
    -

    Automotive Ethernet Gateway by taskit

    -
    -

    - - - - in - - use-cases - - - -

    - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

    - October 28, 2019 -

    - -
    - -

    taskit GmbH has developed a Car2X Gateway, which enables standardized, secure access to the cloud for in-car software. It comes pre-installed with Automotive Grade Linux (AGL) and Eclipse Kuksa and supports multiple interfaces such as CAN bus and Automotive Ethernet. -The Gateway was created as a part of the APPSTACLE project. This project is creating an open de facto standard and an open-source implementation of a complete technology stack for connected car scenarios as well as an associated ecosystem of libraries, tools, business models, services and support - hosted by the Eclipse Foundation as the Eclipse Kuksa project.

    -

    Continue reading -

    - -
    -
    -

    -