As electric vehicle adoption accelerates and Vehicle-to-Grid (V2G) ecosystems mature, the cybersecurity of Electric Vehicle Supply Equipment (EVSE) has become critical. Most charging stations today run on general-purpose Linux, exposing a wide attack surface.
This repository hosts the technical whitepaper titled:
“Securing EV Charging Infrastructure: A QNX-Based Approach for High-Assurance Systems”
As electric vehicle adoption accelerates and Vehicle-to-Grid (V2G) ecosystems mature, the cybersecurity of Electric Vehicle Supply Equipment (EVSE) has become critical. Most charging stations today run on general-purpose Linux, exposing a wide attack surface.
This whitepaper proposes an alternative: a high-assurance architecture based on the QNX Neutrino RTOS, designed for safety-critical environments and enhanced with post-quantum cryptography (PQC).
It includes:
- Threat mapping across OCPP 2.1, ISO 15118-20, and grid/cloud interfaces
- QNX microkernel architecture for EVSE security
- Integration of Kyber/Dilithium-based hybrid cryptography
- Compliance alignment with IEC 62443, EU AFIR, and ISO 21434
- OTA, secure boot, HSM/TPM design, and runtime integrity checks
🔐 Status: Architectural concept. Not yet field-tested or certified.
You can download the full PDF here:
This whitepaper is intended for research, design exploration, and discussion. It has not undergone field deployment or certification. Readers should adapt the ideas to their own environments and perform independent validation before production use.
- ISO 15118-20:2022
- IEC 62443 Industrial Cybersecurity
- EU AFIR Regulation
- OCPP 2.1 - Open Charge Alliance
- NIST PQC Standards
Sumit Chouhan
TMIET | Enterprise and Automotive Cybersecurity
📧 insanemechanic@proton.me
🌐 www.sumitchouhan.com
Contributions, suggestions, and testing collaborations are welcome.
Please open an issue or reach out via email.