Normal and Malicious Sliding Windows Similarity Analysis Method for Fast and Accurate IDS Against DoS Attacks on In-Vehicle Networks

Ohira, Shuji; Desta, Araya Kibrom; Arai, Ismail; Inoue, Hiroyuki; Fujikawa, Kazutoshi

doi:10.1109/access.2020.2975893

Cited by 22 publications

(9 citation statements)

References 19 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In 2020, Ohira et al [ 18 ] used the offline learning phase to determine the similarity values for various window sizes. They demonstrated that changing the sliding window size affects the similarity values.…”

Section: Resultsmentioning

confidence: 99%

“…However, most IDS have not selected the optimal values for these parameters for intrusion detection. Motivated by this, we investigated into obtaining optimally tuned IDS parameters in order to maximize IDS detection and address the limitations in [ 18 , 19 , 20 , 21 , 22 , 23 ]. We focus on a system model in which ECUs take measurements in real-time and send the results to a service-oriented gateway via different types of CAN buses.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Intrusion Detection System CAN-Bus In-Vehicle Networks Based on the Statistical Characteristics of Attacks

Khan

Lim

Kim

2023

Sensors

View full text Add to dashboard Cite

For in-vehicle network communication, the controller area network (CAN) broadcasts to all connected nodes without address validation. Therefore, it is highly vulnerable to all sorts of attack scenarios. This research proposes a novel intrusion detection system (IDS) for CAN to identify in-vehicle network anomalies. The statistical characteristics of attacks provide valuable information about the inherent intrusion patterns and behaviors. We employed two real-world attack scenarios from publicly available datasets to record a real-time response against intrusions with increased precision for in-vehicle network environments. Our proposed IDS can exploit malicious patterns by calculating thresholds and using the statistical properties of attacks, making attack detection more efficient. The optimized threshold value is calculated using brute-force optimization for various window sizes to minimize the total error. The reference values of normality require a few legitimate data frames for effective intrusion detection. The experimental findings validate that our suggested method can efficiently detect fuzzy, merge, and denial-of-service (DoS) attacks with low false-positive rates. It is also demonstrated that the total error decreases with an increasing attack rate for varying window sizes. The results indicate that our proposed IDS minimizes the misclassification rate and is hence better suited for in-vehicle networks.

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

Intrusion Detection System CAN-Bus In-Vehicle Networks Based on the Statistical Characteristics of Attacks

Khan

Lim

Kim

2023

Sensors

View full text Add to dashboard Cite

show abstract

“…However, most of these studies focus only on the detection accuracy and do not take into account the computational constraints which are crucial in the context of automotive embedded platforms -these constraints are the main focus in our work. In what follows we survey more than twenty-five papers related to the development of in-vehicle IDS, but only a small amount of them, namely [18], [19], [20], [21] and [22] are using embedded development boards. Also, a comparison between invehicle controllers and Android units that are now common in cars is missing from related works.…”

Section: B Related Workmentioning

confidence: 99%

“…The proposed mechanism was implemented and validated on a Raspberry Pi, using the one-class support vector machine and the isolation forest algorithms for intrusion detection. The authors of [22] present a method to detect DoS attacks using the similarity of sliding windows. This method improves prior approaches that detect DoS attacks based on the entropy in a sliding window.…”

Section: B Related Workmentioning

confidence: 99%

Android Head Units vs. In-Vehicle ECUs: Performance Assessment for Deploying In-Vehicle Intrusion Detection Systems for the CAN Bus

et al. 2022

View full text Add to dashboard Cite

Following the numerous attacks that exploited vulnerabilities of Controller Area Networks (CAN), intrusion detection systems have become a topic of prime importance for in-vehicle buses. Newer in-vehicle communication layers, such as CAN-FD, despite the larger payloads which can easily integrate cryptographic elements, need similar attention. But detecting intrusions may call for demanding algorithms that are not computationally cheap while timely detection is necessary in order to process frames in realtime and take the appropriate actions. In this work we evaluate the performance of several binary classifiers on traditional in-vehicle Electronic Control Units (ECUs) and compare them to modern Android devices which have become widespread inside cars with the adoption of Android-capable infotainment systems. Needless to say, these modern devices benefit from higher computational and memory resources while cloud connectivity may alleviate computational costs even further. Contrasting between traditional controllers and Android devices has become necessary and so far there have been little efforts in this direction. To create a realistic testbed, we use collected in-vehicle CAN bus traffic from an SUV as well as more demanding logs from Advanced Driver-assistance Systems (ADAS) implemented on CAN-FD which we augment with adversarial activity.

show abstract

“…Meanwhile, the MITM attack occurs in the communication links [151]. In the case of signal jamming, which may lead to an interruption in transmitting the signals, this attack is known as DoS attack [152].…”

Section: Analysis and Impact Of Cyber-attacks Vulnerability On mentioning

confidence: 99%

CPS Attacks Mitigation Approaches on Power Electronic Systems With Security Challenges for Smart Grid Applications: A Review

et al. 2021

View full text Add to dashboard Cite

This paper presents an inclusive review of the cyber-physical (CP) attacks, vulnerabilities, mitigation approaches on the power electronics and the security challenges for the smart grid applications. With the rapid evolution of the physical systems in the power electronics applications for interfacing renewable energy sources that incorporate with cyber frameworks, the cyber threats have a critical impact on the smart grid performance. Due to the existence of electronic devices in the smart grid applications, which are interconnected through communication networks, these networks may be subjected to severe cyber-attacks by hackers. If this occurs, the digital controllers can be physically isolated from the control loop. Therefore, the cyber-physical systems (CPSs) in the power electronic systems employed in the smart grid need special treatment and security. In this paper, an overview of the power electronics systems security on the networked smart grid from the CP perception, as well as then emphases on prominent CP attack patterns with substantial influence on the power electronics components operation along with analogous defense solutions. Furthermore, appraisal of the CPS threats attacks mitigation approaches, and encounters along the smart grid applications are discussed. Finally, the paper concludes with upcoming trends and challenges in CP security in the smart grid applications.

show abstract

Normal and Malicious Sliding Windows Similarity Analysis Method for Fast and Accurate IDS Against DoS Attacks on In-Vehicle Networks

Cited by 22 publications

References 19 publications

Intrusion Detection System CAN-Bus In-Vehicle Networks Based on the Statistical Characteristics of Attacks

Intrusion Detection System CAN-Bus In-Vehicle Networks Based on the Statistical Characteristics of Attacks

Android Head Units vs. In-Vehicle ECUs: Performance Assessment for Deploying In-Vehicle Intrusion Detection Systems for the CAN Bus

CPS Attacks Mitigation Approaches on Power Electronic Systems With Security Challenges for Smart Grid Applications: A Review

Contact Info

Product

Resources

About