In-Vehicle Network Attacks and Countermeasures: Challenges and Future Directions

Li, Jiajia; Zhang, Shubin; Sun, Wen; Shi, Yongpeng

doi:10.1109/mnet.2017.1600257

Cited by 215 publications

(101 citation statements)

References 10 publications

Supporting

Mentioning

101

Contrasting

Order By: Relevance

“…In this Section, an overview of attack techniques and examples is provided. Following the work by Liu et al [12], the typical attack scheme includes an initial phase in which a physical (e.g., OBD) or wireless (e.g., Bluetooth) car interface is exploited in order to access the in-vehicle network. The most common interface to access it is OBD, but several works leverage different entry points: Checkoway et al [2] succeeded in sending arbitrary CAN frames through a modified WMA audio file burned onto a CD.…”

Section: Attack Scenariosmentioning

confidence: 99%

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

Scalas

Giacinto

2019

2019 2nd International Conference on New Trends in Computing Sciences (ICTCS)

View full text Add to dashboard Cite

The automotive industry is experiencing a serious transformation due to a digitalisation process and the transition to the new paradigm of Mobility-as-a-Service. The next-generation vehicles are going to be very complex cyber-physical systems, whose design must be reinvented to fulfil the increasing demand of smart services, both for safety and entertainment purposes, causing the manufacturers' model to converge towards that of IT companies. Connected cars and autonomous driving are the preeminent factors that drive along this route, and they cause the necessity of a new design to address the emerging cybersecurity issues: the "old" automotive architecture relied on a single closed network, with no external communications; modern vehicles are going to be always connected indeed, which means the attack surface will be much more extended. The result is the need for a paradigm shift towards a secure-by-design approach.In this paper, we propose a systematisation of knowledge about the core cybersecurity aspects to consider when designing a modern car. The major focus is pointed on the in-vehicle network, including its requirements, the current most used protocols and their vulnerabilities. Moreover, starting from the attackers' goals and strategies, we outline the proposed solutions and the main projects towards secure architectures. In this way, we aim to provide the foundations for more targeted analyses about the security impact of autonomous driving and connected cars.

show abstract

Section: Attack Scenariosmentioning

confidence: 99%

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

Scalas

Giacinto

2019

2019 2nd International Conference on New Trends in Computing Sciences (ICTCS)

View full text Add to dashboard Cite

show abstract

“…To enhance In-Vehicle Network Security [8], authentication and encryption is one of the most effective way to provide secureness to a controller are network (CAN) frame. Before that, there is four important issues that needs to be considered.…”

Section: Related Workmentioning

confidence: 99%

RSSI and Public Key Infrastructure based Secure Communication in Autonomous Vehicular Networks

Kuhanraj¹,

Abdulrazak²,

Khan³

et al. 2018

ijacsa

View full text Add to dashboard Cite

Autonomous Vehicular Ad hoc Networks (A-VANET) is also known as intelligent transportation systems. A-VANET ensures timely and accurate communications between vehicle to vehicle and Vehicle to Roadside Unit (RSU) to improve road safety and enhance the efficiency of traffic flow. Due to open wireless boundary and high mobility, A-VANET is vulnerable to several security threats especially impersonation, denial of service, pollution attacks. This paper presents a novel Received Signal Strength Indicator (RSSI) based public key infrastructure (PKI) to address the above-mentioned attacks. Each incoming signal will be authenticated based on RSSI value and digital signal (obtained using PKI) is utilized for cryptography and communication within the insecure channel. The proposed solution is verified with and without the presence of attacker by evaluating the packet delivery ratio and packet overhead.

show abstract

“…According to the 2019 industry survey [6], safety and security are the highest short-term and mid-term challenges for the automotive industry. Therefore, extensive studies have been carried out to find possible solutions [7,8] to the vulnerabilities of CAN. Some of these studies have performed successful experimental attacks on passenger cars [9][10][11][12][13][14] and heavy-duty vehicles [15,16].…”

Section: Introductionmentioning

confidence: 99%

Evaluation of CAN Bus Security Challenges

Bozdal

Samie

Aslam

et al. 2020

Sensors

127

View full text Add to dashboard Cite

The automobile industry no longer relies on pure mechanical systems; instead, it benefits from many smart features based on advanced embedded electronics. Although the rise in electronics and connectivity has improved comfort, functionality, and safe driving, it has also created new attack surfaces to penetrate the in-vehicle communication network, which was initially designed as a close loop system. For such applications, the Controller Area Network (CAN) is the most-widely used communication protocol, which still suffers from various security issues because of the lack of encryption and authentication. As a result, any malicious/hijacked node can cause catastrophic accidents and financial loss. This paper analyses the CAN bus comprehensively to provide an outlook on security concerns. It also presents the security vulnerabilities of the CAN and a state-of-the-art attack surface with cases of implemented attack scenarios and goes through different solutions that assist in attack prevention, mainly based on an intrusion detection system (IDS).

show abstract

In-Vehicle Network Attacks and Countermeasures: Challenges and Future Directions

Cited by 215 publications

References 10 publications

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

Automotive Cybersecurity: Foundations for Next-Generation Vehicles

RSSI and Public Key Infrastructure based Secure Communication in Autonomous Vehicular Networks

Evaluation of CAN Bus Security Challenges

Contact Info

Product

Resources

About