MIPI Alliance Releases Camera Security Specifications for Flexible End-to-End Protection of Automotive Image Sensor Data

 MIPI Camera Security Framework delivers application-layer security services for end-to-end data protection and configurable security levels based on application requirements

 BRIDGEWATER, N.J., October 29, 2024—The MIPI Alliance, an international organization that develops interface specifications for mobile and mobile-influenced industries, today announced the release of the MIPI Camera Security Framework, which defines a flexible approach to add end-to-end security to automotive applications that leverage the MIPI Camera Serial Interface 2 (CSI-2) interface specification.

Because of the safety-critical role of image sensors in advanced driver-assistance systems (ADAS) and autonomous driving systems (ADS), protecting image-sensor data against cybersecurity risks is paramount to the security of the overall vehicle. Advanced image sensor-enabled systems must be secured from cybersecurity risks such as installation of illegitimate or substandard image sensor components, malicious manipulation of sensor data and privacy violations from unauthorized access to images and image-related metadata.

Uniquely effective in both implementation and operational flexibility, the new MIPI Camera Security Framework enables authentication of system components, data integrity protection and data encryption. It provides implementers with a choice of security protocols, cipher suites, data integrity tag modes and security controls, which together provide a high degree of flexibility to balance required security levels against processing efficiency, implementation complexity, thermal regulation and power consumption.

While other embedded interface security methods protect only the link layer, the MIPI Camera Security Framework delivers application-level protection from “silicon to silicon” —the security transcends all link-layer components to provide end-to-end CSI-2 protection from the source of sensor data in sensor silicon to the ultimate sink of that data in system-on-chip (SoC) silicon.

In this way, end-to-end CSI-2 protection is guaranteed, irrespective of the underlying communication network topology, providing complete flexibility for developers to leverage any combination of bridges, aggregators, forwarding elements and other underlying network components to achieve the most efficient solution for their particular application.

The MIPI Camera Security Framework also allows highly granular security control over the different segments of the CSI-2 image frame to enable a “sliding scale” of security levels. At the highest security level, full data integrity and encryption are applied to the whole image frame; whereas, at partial integrity levels, integrity protection is applied to a subset of data within an image frame. At the lowest security level, no data integrity is applied to the image data. The level of security is configurable on a frame-by-frame basis.

Although the framework has been designed for protection of automotive data streams, it can be applied to Internet of Things (IoT), industrial and other use cases that leverage CSI-2-based image sensors for machine-vision applications.

The MIPI Camera Security Framework currently consists of three new specifications, with a fourth to be added in the coming months:

  • MIPI Camera Service Extensions (MIPI CSE) v2.0, a companion specification to MIPI CSI-2, defines security services to enable data integrity protection and optional encryption of CSI-2 data (in addition to the functional safety services provided in CSE v1.0).
  • MIPI Camera Security v1.0, which defines system security management of MIPI CSE and the upcoming MIPI CCISE, leveraging the Distributed Management Task Force (DMTF) Security Protocol Data Model (SPDM) for authentication of system components.
  • MIPI Camera Security Profiles v1.0, which defines a set of common security profiles for the MIPI Camera Security Framework to enable interoperability, including profiling of SPDM authentication mechanisms.
  • MIPI Command and Control Interface Service Extensions (MIPI CCISE) v1.0, another companion specification to MIPI CSI-2, will define security services to enable data integrity protection and optional encryption of the MIPI Command and Control Interface (MIPI CCI) based on I2C. This specification is under development with completion expected by the end of 2024.

The new security framework is a key component of the MIPI Automotive SerDes Solutions (MASS) full stack of connectivity solutions, and the new security services within the framework are fully complementary to the functional safety services that have already been introduced.

“With the widespread use of CSI-2-based image sensors within automotive, the introduction of the MIPI Camera Security Framework significantly strengthens and simplifies the protection of camera data streams," said Sanjiv Desai, chair of MIPI Alliance. "In the past, integrators have had to rely on proprietary security solutions, but now there's a standardized approach that delivers end-to-end protection, along with the ability to flex the level of protection to suit their particular requirements."

The framework was the result of collaboration between the MIPI Security Working Group and a subgroup of the MIPI Camera Working Group. Companies participating in the effort include Intel Corporation; Introspect Technology; Mixel, Inc.; Mobileye; NVIDIA; OmniVision Technologies, Inc.; onsemi; Qualcomm Incorporated; Renesas Electronics Corporation; Robert Bosch GmbH; Sony Group Corporation; STMicroelectronics; Synopsys, Inc.; Teledyne LeCroy; Valens Semiconductor; and others.

Additional resources can be found on the MIPI Camera SecurityFramework page on the MIPI website, including a new white paper: A Guide to the MIPI Camera Security Framework for Automotive Applications, webinar recordings, conference presentations, articles and blog posts.

About MIPI Alliance

MIPI Alliance (MIPI) develops interface specifications for mobile and mobile-influenced industries. There is at least one MIPI specification in every smartphone manufactured today. The organization has over 375 member companies worldwide and more than 15 active working groups delivering specifications within the extended mobile ecosystem. Members of the organization include handset manufacturers, device OEMs, software providers, semiconductor companies, application processor developers, IP tool providers, automotive OEMs and Tier 1 suppliers, and test and test equipment companies, as well as camera, display, tablet and laptop manufacturers. For more information, please visit www.mipi.org.

×
Semiconductor IP