Reinhard Kugler

A Hitchhikers Guide to Container Security - Automotive Edition 2024

Could a single container hack change your car's instrument cluster in real-time? Learn how eBPF provides kernel-level defense for the next generation of software-defined vehicles.

A Hitchhikers Guide to Container Security - Automotive Edition 2024
#1about 2 minutes

Recalling a famous remote car hack from 2015

A historical remote car hack demonstrates how attackers gained control over vehicle functions by pivoting from the infotainment system.

#2about 4 minutes

Shifting from distributed ECUs to centralized computers

The automotive industry is moving from a complex network of individual electronic control units (ECUs) to centralized high-performance computers (HPCs) to simplify updates and maintenance.

#3about 6 minutes

Running containers with access to vehicle electronics

A live demonstration shows how a containerized application can directly access and manipulate a car's internal network to control components like the instrument cluster.

#4about 5 minutes

Using eBPF to observe and secure container networking

eBPF programs can be attached to the Linux kernel to observe and filter a container's network traffic at a low level without requiring a sidecar.

#5about 2 minutes

Securing hardware update channels with eBPF policies

eBPF can trace and block unauthorized write operations to hardware interfaces like the SPI bus, preventing malicious firmware flashing from a compromised container.

#6about 2 minutes

Understanding the offensive potential of eBPF rootkits

eBPF is a dual-use technology that can also be used to create stealthy, in-memory rootkits capable of modifying network packets on the fly.

Related jobs
Jobs that call for the skills explored in this talk.

Featured Partners

Related Videos

See all videos
Into the hive of eBPF!28:20

Into the hive of eBPF!

Mohammed Aboullaite

Cybersecurity for Software Defined Vehicles22:09

Cybersecurity for Software Defined Vehicles

Henning Harbs

A solution to embed container technologies into automotive environments30:33

A solution to embed container technologies into automotive environments

Falk Langer & Lukas Stahlbock

Automotive Security Challenges: A Supplier's View58:59

Automotive Security Challenges: A Supplier's View

Davor Frkat

The best of two worlds - Bringing enterprise-grade Linux to the vehicle41:03

The best of two worlds - Bringing enterprise-grade Linux to the vehicle

Joachim Werner

Cyber Security: Small, and Large!37:32

Cyber Security: Small, and Large!

Martin Schmiedecker

Turning Container security up to 11 with Capabilities28:47

Turning Container security up to 11 with Capabilities

Mathias Tausig

Car's are Technology on Wheels - Impact of Software and IT Competence in Automotive21:47

Car's are Technology on Wheels - Impact of Software and IT Competence in Automotive

Rahima Yakoob

From learning to earning

Jobs that call for the skills explored in this talk.

Rust and GoLang

Rust and GoLang

NHe4a GmbH
Karlsruhe, Germany

Remote
55-65K
Intermediate
Senior
Go
Rust