Brake failure + privacy leaks, how can Tesla's car safety concerns be dispelled?

According to data from the Passenger Federation, with the continuous fermentation of a series of "accidents", Tesla's domestic sales of new energy passenger vehicles in April fell by 30% year-on-year. Although Tesla has made corresponding remedial measures after experiencing "brake failure incidents", "charging abnormal incidents" and "privacy safety incidents," the series of incidents brought Chinese car users to the car. Further attention to functional safety and information security.

Frequently talked about frequently new functional safety

Nowadays, the news of brake failure and abnormal acceleration of electric vehicles from time to time has caused people to worry about potential safety hazards of vehicles. In this regard, Chen Li, the field application manager of ON Semiconductors China automotive market, said that if the brake failure and abnormal acceleration are caused by the automatic driving systems judgment of the actual traffic information, then it is necessary to develop better algorithms and improve the performance of the car. Intelligent perception ability, improve functional safety level, etc. If this abnormal phenomenon stems from the competition between automatic driving and manual driving for control of the vehicle, then the driver must regulate his own driving habits. At the same time, OEMs also need to add driver monitoring systems to keep driving records.

In order to ensure autonomous driving, many electric vehicles are now equipped with many sensors, such as cameras, millimeter-wave radar, and lidar. Chen Li mentioned that this is the redundancy of the perception ability of autonomous driving. With the advantages of various sensors, the all-weather perception ability is enhanced. For example, the Xiaopeng P5 is equipped with the lidar of DJI's Lanwo Technology, but the mass production of lidar has always been a problem. Chen Li believes that the current stage of lidar involves laser generation, beam orientation, photosensitive processing, and corresponding back-end algorithms, and it will take time for the entire ecosystem to mature. The current bottleneck of mass production is that performance, cost and reliability have not yet reached a good balance point.

Another type of redundancy is a complete system backup. When the main system is abnormal and cannot be restored for a short time, the backup system can be seamlessly switched. This is also related to the functional safety level requirements of the system. Dual-system redundancy can meet the design requirements of functional safety automotive safety integrity level D (ASIL D). This redundant design has been used in many automotive ADAS or autonomous driving systems, such as Waymo's critical safety system. Waymo has added backups to its computing, braking, steering, collision detection, and obstacle avoidance systems. After one system fails, the second system can be seamlessly switched.

Another major potential safety hazard for the car is the power supply of the car. Previously, a Nanchang Tesla owner could not start because of charging. Tesla has also recently been claimed in Norway for reducing battery capacity and charging speed for guaranteeing battery life. Power management has become a safety issue that cannot be ignored in new energy vehicles.

Peng Chao, the field application manager of ON Semiconductor's China automotive market, mentioned that the intelligence of smart cars is supported by powerful computing power, but computing power is proportional to power consumption. Therefore, the processor on the VCU side needs a safe, high-power, and fast-response battery management system. The current major development breakthroughs in this area are functional safety and increased power density. ON Semiconductor also provides a first-level PMU, a second-level multi-phase step-down controller, and an intelligent power stage that meets different levels of functional safety ASIL. The multi-phase controller supporting the smart power stage solution can significantly reduce the PCB area and improve the reliability compared to the discrete power device solution. It has been used in mainstream computing platforms. Since the second quarter of last year, these solutions have been mass-produced. The model was launched. In addition, ON Semiconductor has introduced an integrated sensor-side power supply solution for the distributed power supply required by image sensors.

Pivotal information security

Part of the provisions of the "Several Provisions on the Management of Automobile Data Security (Draft for Soliciting Comments)" / Cyberspace Administration

The Cyberspace Administration of China recently issued the "Several Provisions on the Management of Vehicle Data Security (Draft for Comment)", which mentioned that the data provided outside the vehicle should be as anonymous and desensitized as possible. Article 12 of the draft opinion adds that personal information or important data should be stored within the country in accordance with the law, and if it is really necessary to provide it overseas, it should pass the data exit security assessment organized by the national cyberspace administration. That is to say, in order to facilitate the development of the domestic automobile business, Tesla's best way is to build a Tesla version of "Guizhou on the Cloud" automobile data center in China like Apple.

After the release of the opinion draft, Tesla issued a supporting response as soon as possible. On May 25th, Tesla officially issued an announcement announcing that it has established a data center in China to store data locally, only for measurements sold in the Chinese mainland market. In the future, Tesla will add more local data centers and open a vehicle information query platform to car owners.

Nationz Technology mentioned in an interview with that the data desensitization mentioned in the opinion draft refers to the technical processing of sensitive fields in the original data without affecting the accuracy of the data analysis results to reduce its data. Sensitivity, thereby reducing the risk of personal privacy exposure data processing technology. The purpose of desensitization is achieved through technical means such as replacement, filtering, encryption, masking, or deletion, and the technical means used in anonymization or de-identification processing are also similar. Encryption is a very critical and effective technical means.

When it comes to encryption, security chips are naturally indispensable. Car security chips with powerful hardware encryption capabilities can quickly encrypt user information or vehicle sensitive information. National Technologys N32S032 security chip has obtained EAL5+ high-level security certification and AEC-Q100 Grade 2 vehicle certification at the same time, supports national and international encryption algorithms, and provides complete protection for security and confidentiality of intelligently networked car information and measurement of user privacy.

In addition to the desensitization and encryption of car information, information protection is also the top priority of car safety. With the addition of intelligent automotive electronic units such as IVI, T-Box, and ADAS, the original automotive electronic chips have begun to appear bottlenecks in computing resources and security capabilities. The attacker can easily attack and control the car system through the Internet of Vehicles equipment. This also requires security mechanisms such as data encryption technology and digital signature technology to protect the safe operation of the vehicle. The N32G/N32L series of general-purpose security MCUs from National Technology integrates more than ten kinds of national and international cryptographic algorithm hardware acceleration engines and security units, which are used in multiple vehicle scenarios such as IVI, navigation, and driving recorder.


Even if a perfect plan is made for functional safety and information security, it cannot completely circumvent the safety problems of the car in use, and the human factor is still the biggest safety hazard. The existence of these programs is not to make drivers completely dependent, but to minimize the impact of human factors on safety. While we are facing car safety squarely, car companies must also improve their own feedback systems to provide car owners with transparent safety data while ensuring privacy.