A Stealth, Selective, Link-Layer Denial-of-Service Attack Against Automotive Networks

Palanca, Andrea; Evenchick, Eric; Maggi, Federico; Zanero, Stefano

doi:10.1007/978-3-319-60876-1_9

Cited by 104 publications

(56 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Given the vulnerabilities of the CAN bus [13], [157], [158], a number of mechanisms have been proposed: (i) encrypting CAN messages and hiding system states to protect against selective DoS attacks [159]; (ii) use of authentication schemes (for both ECUs and CAN messages) to ensure their integrity [160]- [166]; (iii) use of asymmetric cryptography and certificates to authenticate ECUs and share symmetric keys [167]. Researchers have also studied the use of behavioral-based intrusion detection systems (IDS) for invehicle networks.…”

Section: Threats To Intra-vehicle Components and Countermeasuresmentioning

confidence: 99%

Securing Vehicle-to-Everything (V2X) Communication Platforms

Hasan

Mohan

Shimizu

et al. 2020

IEEE Trans. Intell. Veh.

177

View full text Add to dashboard Cite

Modern vehicular wireless technology enables vehicles to exchange information at any time, from any place, to any network -forms the vehicle-to-everything (V2X) communication platforms. Despite benefits, V2X applications also face great challenges to security and privacy -a very valid concern since breaches are not uncommon in automotive communication networks and applications. In this survey, we provide an extensive overview of V2X ecosystem. We also review main security/privacy issues, current standardization activities and existing defense mechanisms proposed within the V2X domain. We then identified semantic gaps of existing security solutions and outline possible open issues.We also discuss possible open issues (Section VIII), summarize multiple industry/academic/government initiatives for securing V2X communications (Section IX-A) and compare our work with related surveys (Section IX-B). II. V2X PLATFORM : AN OVERVIEWThis section provides an overview of V2X communication interfaces (Section II-A) and discuss various network/communication models (Section II-B). A. Communication InterfacesThe internal architecture of a vehicle is interconnected with ECUs (electronic control units -embedded computing platform that monitor/control automotive systems) coupled with sensors and actuators. The communication between the vehicle and the outside world such as other vehicles or roadside units (RSUs) is performed via external interfaces (see Fig. 1). These vehicular external interfaces are attached to the telematics control unit (TCU) -also referred to as on-board unit (OBU) 1 -an ECU that provides wireless connectivity [7], [8]. A vehicle control unit coordinates with the OBU to collect and disseminate vehicular data [9]. The current standards for V2X communication are DSRC (dedicated short range communication) [10] in the United States, C-ITS (cooperative intelligent transport systems) [11] in Europe and ITS Connect [12] in Japan. Both DSRC and C-ITS operating in the 5.9 GHz ITS band while ITS Connect operating in 760 MHz band (refer to Section II-B1 for details). An alternative to DSRC/C-ITS is the next generation of cellular wireless mobile telecommunications technology (see Section II-B2). OBUs can also be equipped with interfaces for long-range communication. These long-range wireless channels can be classified as broadcast channels (signals can be broadcast to multiple vehicles without knowledge of the receiver's address) and addressable channels (where messages are sent to vehicles with specific addresses.) [13]. Examples of broadcast channels include the global navigation satellite system (GNSS), traffic message/satellite radio receivers, etc. Addressable channels are typically used for long-range voice/data transmissions and are intended to be used for cellular communications for mobile broadband [8].

show abstract

Section: Threats To Intra-vehicle Components and Countermeasuresmentioning

confidence: 99%

Securing Vehicle-to-Everything (V2X) Communication Platforms

Hasan

Mohan

Shimizu

et al. 2020

IEEE Trans. Intell. Veh.

177

View full text Add to dashboard Cite

show abstract

“…The attacks implemented through the OBD port can be replicated using a malicious node. Palanca et al [11] applied a selective denial-of-service (DoS) attack on an unmodified 2012 Alfa Romeo Giulietta. The research showed that any person who has physical access to the network can disrupt it, even with a simple tool.…”

Section: Physical Access Attacksmentioning

confidence: 99%

“…Therefore, extensive studies have been carried out to find possible solutions [7,8] to the vulnerabilities of CAN. Some of these studies have performed successful experimental attacks on passenger cars [9][10][11][12][13][14] and heavy-duty vehicles [15,16]. At the same time, researchers have also proposed preventative methods for such known attacks.…”

Section: Introductionmentioning

confidence: 99%

Evaluation of CAN Bus Security Challenges

Bozdal

Samie

Aslam

et al. 2020

Sensors

127

View full text Add to dashboard Cite

The automobile industry no longer relies on pure mechanical systems; instead, it benefits from many smart features based on advanced embedded electronics. Although the rise in electronics and connectivity has improved comfort, functionality, and safe driving, it has also created new attack surfaces to penetrate the in-vehicle communication network, which was initially designed as a close loop system. For such applications, the Controller Area Network (CAN) is the most-widely used communication protocol, which still suffers from various security issues because of the lack of encryption and authentication. As a result, any malicious/hijacked node can cause catastrophic accidents and financial loss. This paper analyses the CAN bus comprehensively to provide an outlook on security concerns. It also presents the security vulnerabilities of the CAN and a state-of-the-art attack surface with cases of implemented attack scenarios and goes through different solutions that assist in attack prevention, mainly based on an intrusion detection system (IDS).

show abstract

“…DoS attack As anticipated in Section II-C, flooding the network with the highest priority frames prevents the ECUs from regularly sending their messages, therefore causing a denial of service. An example of this attack is the work by Palanca et al [17].…”

Section: Attack Scenariosmentioning

confidence: 99%

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

Scalas

Giacinto

2019

2019 2nd International Conference on New Trends in Computing Sciences (ICTCS)

View full text Add to dashboard Cite

The automotive industry is experiencing a serious transformation due to a digitalisation process and the transition to the new paradigm of Mobility-as-a-Service. The next-generation vehicles are going to be very complex cyber-physical systems, whose design must be reinvented to fulfil the increasing demand of smart services, both for safety and entertainment purposes, causing the manufacturers' model to converge towards that of IT companies. Connected cars and autonomous driving are the preeminent factors that drive along this route, and they cause the necessity of a new design to address the emerging cybersecurity issues: the "old" automotive architecture relied on a single closed network, with no external communications; modern vehicles are going to be always connected indeed, which means the attack surface will be much more extended. The result is the need for a paradigm shift towards a secure-by-design approach.In this paper, we propose a systematisation of knowledge about the core cybersecurity aspects to consider when designing a modern car. The major focus is pointed on the in-vehicle network, including its requirements, the current most used protocols and their vulnerabilities. Moreover, starting from the attackers' goals and strategies, we outline the proposed solutions and the main projects towards secure architectures. In this way, we aim to provide the foundations for more targeted analyses about the security impact of autonomous driving and connected cars.

show abstract

A Stealth, Selective, Link-Layer Denial-of-Service Attack Against Automotive Networks

Cited by 104 publications

References 11 publications

Securing Vehicle-to-Everything (V2X) Communication Platforms

Securing Vehicle-to-Everything (V2X) Communication Platforms

Evaluation of CAN Bus Security Challenges

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

Contact Info

Product

Resources

About