An Attack-Resilient Source Authentication Protocol in Controller Area Network
Title | An Attack-Resilient Source Authentication Protocol in Controller Area Network |
Publication Type | Conference Paper |
Year of Publication | 2017 |
Authors | Kang, K., Baek, Y., Lee, S., Son, S. H. |
Conference Name | 2017 ACM/IEEE Symposium on Architectures for Networking and Communications Systems (ANCS) |
Keywords | attack resilient tree algorithm, attack-resilient source authentication protocol, authentication, automobiles, CAN, controller area network, controller area network security, controller area networks, CPS Resilience, cryptographic protocols, Cyber-Physical Systems (CPS), driver information systems, ECU, electronic control units, in-vehicle network security, invehicle network security, message authentication, pubcrawl, resilience, Resiliency, safety-critical automotive control systems, safety-critical software, trees (mathematics), V2X, vehicle to everything |
Abstract | While vehicle to everything (V2X) communication enables safety-critical automotive control systems to better support various connected services to improve safety and convenience of drivers, they also allow automotive attack surfaces to increase dynamically in modern vehicles. Many researchers as well as hackers have already demonstrated that they can take remote control of the targeted car by exploiting the vulnerabilities of in-vehicle networks such as Controller Area Networks (CANs). For assuring CAN security, we focus on how to authenticate electronic control units (ECUs) in real-time by addressing the security challenges of in-vehicle networks. In this paper, we propose a novel and lightweight authentication protocol with an attack-resilient tree algorithm, which is based on one-way hash chain. The protocol can be easily deployed in CAN by performing a firmware update of ECU. We have shown analytically that the protocol achieves a high level of security. In addition, the performance of the proposed protocol is validated on CANoe simulator for virtual ECUs and Freescale S12XF used in real vehicles. The results show that our protocol is more efficient than other authentication protocol in terms of authentication time, response time, and service delay. |
DOI | 10.1109/ANCS.2017.25 |
Citation Key | kang_attack-resilient_2017 |
- ECU
- vehicle to everything
- V2X
- trees (mathematics)
- safety-critical software
- safety-critical automotive control systems
- Resiliency
- resilience
- pubcrawl
- message authentication
- invehicle network security
- in-vehicle network security
- electronic control units
- CPS resilience
- driver information systems
- Cyber-Physical Systems (CPS)
- Cryptographic Protocols
- controller area networks
- controller area network security
- controller area network
- CAN
- automobiles
- authentication
- attack-resilient source authentication protocol
- attack resilient tree algorithm