Paper 2020/026

Post-Quantum Secure Architectures for Automotive Hardware Secure Modules

Wen Wang and Marc Stöttinger


The rapid development of information technology in the automotive industry has driven increasing requirements on incorporating security functionalities in the in-vehicle architecture, which is usually realized by adding a Hardware Secure Module (HSM) in the Electronic Central Unit (ECU). Therefore, secure communications can be enforced by carrying out secret cryptographic computations within the HSM by use of the embedded hardware accelerators. However, there is no common standard for designing the architecture for an automotive HSM. A future design of a common automotive HSM is desired by the automotive industry which not only fits to the increasing performance demand, but also further defends against future attacks by attackers exploiting large-scale quantum computers. The arrival of future quantum computers motivates the investigation into post-quantum cryptography (PQC), which will retain the security of an HSM in the future. We analyzed the candidates in NIST's PQC standardization process, and proposed new sets of hardware accelerators for the future generation of the automotive HSMs. Our evaluation results show that building a post-quantum secure automotive HSM is feasible and can meet the hard requirements imposed by a modern vehicle ECU.

Available format(s)
Publication info
Preprint. MINOR revision.
Post-Quantum CryptographySoftware-Hardware Co-DesignHardware AcceleratorsHardware Security ModuleElectronic Central UnitAutomotive SecurityFPGA
Contact author(s)
wen wang ww349 @ yale edu
2020-10-16: last of 2 revisions
2020-01-09: received
See all versions
Short URL
Creative Commons Attribution


      author = {Wen Wang and Marc Stöttinger},
      title = {Post-Quantum Secure Architectures for Automotive Hardware Secure Modules},
      howpublished = {Cryptology ePrint Archive, Paper 2020/026},
      year = {2020},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.