organisational and software anti-tampering mechanisms ... · anti-tampering mechanisms throughout...
TRANSCRIPT
Organisational and Software
Anti-Tampering Mechanisms
throughout the Testing Process
George Petelet
Business Developer, Capelec, France
2
ANTI-TAMPERING Organisational and software anti-tampering mechanisms throughout PTI process 2014 vs 1
Braking / Suspension
Direction
Park remediation
4
WHY A TECHNICAL INSPECTION?
Security
Transfer
Moralisation
Antipollution
Administrative Control
Anti-Fraud
No vehicle transformation
Trucks & articulated lorries tractors
Trails
Buses & Coaches
5
WHICH VEHICLES FOR PTI?
TRUCKS
LIGHT
VEHICLES
2-WHEELER
Passenger vehicles
Taxi
Tricycle
Motorized 2-wheelers
6
WHAT PTI APPLIES TO?
TRUCKS
LIGHT
VEHICLES
2-WHEELER
Public Transport
Transportation of dangerous goods
Braking
Direction
Pollution
Equipment
Safety
Lighting, Signalling
Structure, Body
Mechanical parts Visibility
Taxi
Vehicle Identification
7
PTI SUPERVISION
Vehicle regulation (registration)
PTI regulation
(What: control point
How: method)
Obligation &
Periodicity, (tariff)
Training:
Organisation,
Base & method
Place: agreements,
Equipment:
Homologation
Authority
(State or delegation: network)
Supervision
Audits Internal/external
Archiving
recording
Report & Follow-up
(Reparation
Second examination)
Anti-fraud mechanisms
Capelec 2011
PTI RANGE
9
Equipment
IT
Communication
Additional
Equipment
Contract
Service
Calibration
Tools
Texte
TEST PROCEDURE TO GET GAS ANALYSER APPROVED
Calibration slope
Cold Shocks and Vibrations
Repeatability
Dry heat Damp heat
Stability in the time Exactitude
Influence of gas components
Short reduction of the electric power supply
Atmospheric pressure
Discharge on the electric main supply
Response time
Electrostatic discharges
Warm-up time
Radiant Electromagnetic field
Electromagnetic field at main supply frequency
Low flow Leak
Procedure
Water trap Hexane/Propane equivalence ratio
Low tension security
Data transmission
HC
Test results printing
Design file Protection
Commissioning / service /calibration
Metrological booklet
Specific Equipment Procedure (calibration)
Specific tool & equipment for calibration and test
Regular tools:
Commissioning info Civil works Infrastructure Machine security…
Conformity certificate
Approved technical people & company
Capelec 2011
BRAKING TESTS: VISUAL CHECK AND ROLLER BRAKE TESTER CONTROL
Efficiency test Unbalance test
Roadworthy and degradation
Result transmission
Capelec 2011
SAFETY TESTS: Visual inspection and test on play detectors
Push /Stretching Movement Roadworthy and degradation
Result transmission
Capelec 2011
Pollution Tests :
Gas analysis (Petrol) Opacity measurement
(Diesel)
Result transmission
Capelec 2011
VISIBILITY AND LIGHTING:
LIGHTING Test with headlight tester VISBILITY
Visual test
Result transmission
COMMUNICATION
• Transmission mode : – RS232
– Wifi
– Bluetooth
• Concentrator module: – GIEGnet / GIEGlan
– OTClan
• Telemaintenance/remote upgrading
• Remote backup
• (CCD camera, sound, speaker, Skype)
Skype : sav.capelec
Chat
Visio Remote Access
Remote diagnostic
Anti –fraud devices
Equipment
Communication
Data collection
Process
management
Report
Government
Agency links
Phase Test
Solution for 2/3 wheelers, HGV & LGV
Management software: Mono and multi centres
Vehicle Inspection Management
18
Global architecture, various layers
Equipements
Communication
Data collection
Process Management
Report
PTI
National Agency
Vehicle Management
National Agency
Process
Process
Process
Process
Protocol
Protocol
Protocol
Data Base
Data Base
Data Base
Vehicle Inspection Mgt
Vehicle document checking Under-Car visual inspection
Visual
Inspection
Internet reservation (opt) Cash processing (opt) (Type of visit/vehicle function)
Vehicle
Identification
Vehicle identification Vehicle insertion into the test flow
Load/
Appointment
Cash
Archiving/ Centralisation Activity report Statistics
Back up
statistics
Report print-out Official documents
Report
Braking Suspension Side-slip Gas analysis and opacity Lighting
Automatic
test
Vehicle Inspection Process Software
Vehicle identification double check
5m 2m
1.5m
Active Zone
7m
AB-123-CD
Vehicle identification double check
CAP1830 Camera
swit
ch
Brake tester
OTCLan
Demande par fichier Certificat d’Immatriculation CI
RES Réponse par fichier résultats
Synchronisation (trigger)
AB-123-CD
AB-344-CA
or
22
IT
Communication
Master Station
Slave Station
Network Connection
DSL-2640B
TSP / Photo Printer: Report/Invoice
Control equipment
OTC LAN | CENTRALISATION ARCHITECTURE
swit
ch
Wired solution: Ethernet
Wireless solution: Wifi
Wired solution : CPL power line communications system
Annex II: Article 12.2.5: Make impossible all changes of the information sent by control equipment
OTCLAN : TRACEABILITY AND SECURITY
Traceability Data Vehicle
Identification
Security when data exchange
HW
• Equipment traceability
• Homologation traceability
• Calibration traceability
SW • Software traceability (version, homologation)
• Protocol traceability (version, homologation)
TEST • Test traceability (date, duration)
lntegrity
• Footprint
• Data
Encryption • RC4 encryption
Control
•Storage OTC •Controls OTC
OTCLAN : TRACEABILITY AND SECURITY
G Gas Analyser O Opacimeter F Brake tester S Suspension tester R Side-slip tester P Headlight tester A Play detector E EOBD reader D Decelerometer
Homologation: Security Exhaustiveness Compliance Interoperability
Specification SRV
DATA TRANSMISSION: OPERATING
Shared disk area between PTI PC master and equipment
File sharing & data exchange
OTCLan
Request by Vehicle ID file dropped in this file directory
CI
RES
Set of files for test results from various equipment
PTI station PC master
TEST RESULTS DATA EXCHANGE SCENARIO
Lecture des fichiers : AJ-540-FM.CI AJ-540-FM.K
PTI SATION SOFTWARE MGT TEST EQUIPMENT
AJ-540-FM.CI
New vehicle : AJ-540-FM.CI
Data footprint analysis
New vehicle to test: AJ-540-FM
AJ-540-FM.CI File data footprint
computation
Test result files from Equipment reading
Data footprint check Use of valid data
Total files transfer to OTC data base (storage &check)
Files flushing Vehicle selection
Time synchronization with PTI Master PC
Test execution and Data generation
Data footprint computation Data encryption(Data+
footprint + random data) with equipment SW key
File transfer to the RES subdirectory
OTC central database
Off line Test result check
28
EXAMPLE:
AJ540FM.CI vehicle file which starts the mechanism [CI] C001=AJ-540-FM C002=01021990 C003=ES C004=A C005=N C006=RENAULT C007=LAGUNA C008=M13333333333 C009=1500 C010=5 C011=VP C012=01012012101009 [CRC] EMPREINTE=9C00C202322D62A11766DC173A341B3ECFDADCA5
AJ-540-FM.CI
Vehicle Identification
Traceability
Security for
Data and exchange
29
EXAMPLE:
• Encryption is done on the yellow part
+ Data foot print (computed on the yellow part)
+ CONDENSAT tag
+ Random data (from the equipment)
• So on the global purple area
246EBEC227D58BFC90B2758D1E4AF336D8BFB025 CONDENSAT=
##1234567890##
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
Vehicle Identification
Traceability
HW
•Equipement traceability
•Approval traceability
•Calibration traceability
SW
•SW traceability (version, approval)
•Protocol traceability (version, approval)
TEST
•Test traceability (date, duration)
•
Security for
Data and exchange Data
30
Report PTI
National Agency
OTC Data collection Protocol
XML Stream (socket to socket)
XML Stream (socket to socket)
XML Stream (socket to socket)
XML Stream (socket to socket)
XML Stream (socket to socket)
XML Stream (socket to socket)
OTC Data Base
Process
Who, date, time, test token
Who, test token
Vehicle Data, owner, test token
Defaults, remarks, Comments, test token
Data from test equipment, Data stream, test token
Data about equipment, Brand/type Serial N°, HW/SW…
Trace Errors Retry management Log/History
Data Validity check
31
PTI
National Agency
OTC Data collection Protocol
OTC Data Base
Process
Tracks Errors Retry management Log/History
Log file of exceptions (human modification)
Statistics
Off-line Test result check
32
PTI
National Agency
OTC Data Base
Process Registrations
Results of inspections
Road side Checks base Possible data gateway
European Commission ROADWORTHINESS PACKAGE expectation
Types approval
Electronic Certificate
International Motor Vehicle Inspection Committee
2014 CITA Conference
www.cita-vehicleinspection.org
33
CITA 2014 Session xxx Workshop x:
Anti-tampering mechanisms Georges PETELET: CAPELEC, Business Developer For further information or feedback please contact : [email protected], Tel : 00 33 672 99 41 20