Vehicle Diagnostic Protection (VDP), Diagnostic Filters & Firewall
Vehicle Diagnostic Protection (VDP)
Protection of Vehicle Diagnostics (SFD), also known as Protection of Vehicle Diagnostics (PVD), replaces the existing login & security access functionality. That means that basic functions such as reading the vehicle identification number, event data, and diagnostic trouble codes (DTCs) or sensor values will not be affected.
Advanced features such as encoding, adaptation, default settings, and/or output testing may be limited and require an SFD unlock. SFD was first introduced in the 2020 model year and was initially limited to newly introduced models and/or ECUs. There are vehicles where individual control units continue to use the classic login/security access protection, while other control units in the same vehicle use the newer SFD protection.
An auto scan with VCDS will show you if a specific control unit requires SFD unlockings for certain functions. This is indicated by the "SFD" in the VCID line.
[code] Address 09: Main Electrical (J519)
Part Number SW: 1EE 937 089 D HW: 1EE 937 089
Part: SAM_H H08 0530
ASAM Dataset: EV_SAMVW31x 005001
VCID: 43DB1062BB164BA2C69-8016 SFD
Vehicle Diagnostic Protection 2 (VDP2)
SFD2 does NOT replace the above-described SFD. Instead, it serves as an extension of the original SFD functionality to protect ECUs from unauthorized manipulation (as required by law). This primarily targets driver assistance systems, autonomous driving, software updates, and general cybersecurity (e.g., UNECE R 155 and/or UNECE R 156).
The vehicle manufacturer must ensure that all modifications must be authorized by the manufacturer. This means that functions such as encoding and adaptation, as well as updates, etc., are only possible if they are digitally and cryptographically signed.
This restriction does not apply to most service-related functions such as service reset, particulate filter regeneration, brake pad replacement, or other typical workshop operations. These can still be carried out after a standard SFD unlock. SFD2, however, restricts/prevents most retrofits and similar efforts to activate features not originally available from the factory.
An automotive scan with VCDS will show you whether a specific control unit requires SF2-signed messages for certain functions. This is indicated by the "SFD2" entry in the VCID line:
[code] Address 19: CAN-Gateway (J533)
Part Number SW: 1EE 937 012 D HW: 1EE 937 012
Part Number: ICAS1 Host-SG 021 0411
ASAM Dataset: EV_GatewICAS1MEBUNECE 001013
VCID: 353F7EBAE5C2E51278D-8060 SFD+SFD2
See also:
Unlocking Vehicle Diagnostic Protection / Unlocking SFD 
Bookmarks
Links
Garage
FAQ, Legal Notice & Privacy
RSS Feed
Register
Login
