Paper 2023/965

Post-Quantum Secure Over-the-Air Update of Automotive Systems

Joppe W. Bos, NXP Semiconductors, Leuven, Belgium
Alexander Dima, PiNTeam GmbH, Germany
Alexander Kiening, DENSO AUTOMOTIVE Deutschland GmbH, Germany
Joost Renes, NXP Semiconductors, Eindhoven, Netherlands

With the announcement of the first winners of the NIST Post-Quantum Cryptography (PQC) competition in 2022, the industry has now a confirmed foundation to revisit established cryptographic algorithms applied in automotive use cases and replace them with quantum-safe alternatives. In this paper, we investigate the application of the NIST competition winner CRYSTALS-Dilithium to protect the integrity and authenticity of over-the-air update packages. We show how this post-quantum secure digital signature algorithm can be integrated in AUTOSAR Adaptive Platform Update and Configuration Management framework and evaluate our approach practically using the NXP S32G vehicle network processor. We discuss two implementation variants with respect to performance and resilience against relevant attacks, and conclude that PQC has little impact on the update process as a whole.

Available format(s)
Publication info
Post-Quantum CryptographyOver-the-Air UpdateMigration
Contact author(s)
joppe bos @ nxp com
alexander dima @ pinteam eu
a kiening @ eu denso com
joost renes @ nxp com
2023-06-20: approved
2023-06-20: received
See all versions
Short URL
Creative Commons Attribution


      author = {Joppe W. Bos and Alexander Dima and Alexander Kiening and Joost Renes},
      title = {Post-Quantum Secure Over-the-Air Update of Automotive Systems},
      howpublished = {Cryptology ePrint Archive, Paper 2023/965},
      year = {2023},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.