Security in Automotive Networks

Author:

Mundhenk Philipp1,Paverd Andrew2,Mrowca Artur1,Steinhorst Sebastian1,Lukasiewycz Martin1,Fahmy Suhaib A.3,Chakraborty Samarjit4

Affiliation:

1. TUM CREATE Limited, Singapore

2. Aalto University, Espoo, Finland

3. University of Warwick, Coventry, United Kingdom

4. Technische Universität München, Germany

Abstract

With the increasing amount of interconnections between vehicles, the attack surface of internal vehicle networks is rising steeply. Although these networks are shielded against external attacks, they often do not have any internal security to protect against malicious components or adversaries who can breach the network perimeter. To secure the in-vehicle network, all communicating components must be authenticated, and only authorized components should be allowed to send and receive messages. This is achieved through the use of an authentication framework. Cryptography is widely used to authenticate communicating parties and provide secure communication channels (e.g., Internet communication). However, the real-time performance requirements of in-vehicle networks restrict the types of cryptographic algorithms and protocols that may be used. In particular, asymmetric cryptography is computationally infeasible during vehicle operation. In this work, we address the challenges of designing authentication protocols for automotive systems. We present Lightweight Authentication for Secure Automotive Networks (LASAN), a full lifecycle authentication approach. We describe the core LASAN protocols and show how they protect the internal vehicle network while complying with the real-time constraints and low computational resources of this domain. By leveraging the fixed structure of automotive networks, we minimize bandwidth and computation requirements. Unlike previous work, we also explain how this framework can be integrated into all aspects of the automotive product lifecycle, including manufacturing, vehicle maintenance, and software updates. We evaluate LASAN in two different ways: First, we analyze the security properties of the protocols using established protocol verification techniques based on formal methods. Second, we evaluate the timing requirements of LASAN and compare these to other frameworks using a new highly modular discrete event simulator for in-vehicle networks, which we have developed for this evaluation.

Funder

Singapore National Research Foundation

Research Excellence And Technological Enterprise

Publisher

Association for Computing Machinery (ACM)

Subject

Electrical and Electronic Engineering,Computer Graphics and Computer-Aided Design,Computer Science Applications

Cited by 57 articles. 订阅此论文施引文献 订阅此论文施引文献,注册后可以免费订阅5篇论文的施引文献,订阅后可以查看论文全部施引文献

1. Efficient Secure Mechanisms for In-Vehicle Ethernet in Autonomous Vehicles;Electronics;2024-09-12

2. Secure and Low-Delay CAN-FD Communication in Embedded Microcontroller: A Cooperative Swapping Approach;IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems;2024-08

3. ViSE: Digital Twin Exploration for Automotive Functional Safety and Cybersecurity;Journal of Hardware and Systems Security;2024-05-17

4. SMT-based Control Safety Property Checking in Cyber-Physical Systems under Timing Uncertainties;2024 37th International Conference on VLSI Design and 2024 23rd International Conference on Embedded Systems (VLSID);2024-01-06

5. A Multilevel Electronic Control Unit Re-Encryption Scheme for Autonomous Vehicles;IEEE Transactions on Intelligent Transportation Systems;2024-01

同舟云学术

1.学者识别学者识别

2.学术分析学术分析

3.人才评估人才评估

"同舟云学术"是以全球学者为主线,采集、加工和组织学术论文而形成的新型学术文献查询和分析系统,可以对全球学者进行文献检索和人才价值评估。用户可以通过关注某些学科领域的顶尖人物而持续追踪该领域的学科进展和研究前沿。经过近期的数据扩容,当前同舟云学术共收录了国内外主流学术期刊6万余种,收集的期刊论文及会议论文总量共计约1.5亿篇,并以每天添加12000余篇中外论文的速度递增。我们也可以为用户提供个性化、定制化的学者数据。欢迎来电咨询!咨询电话:010-8811{复制后删除}0370

www.globalauthorid.com

TOP

Copyright © 2019-2024 北京同舟云网络信息技术有限公司
京公网安备11010802033243号  京ICP备18003416号-3