Visible to the public CAN FD Message Authentication Enhances Parallel in-vehicle Applications Security

TitleCAN FD Message Authentication Enhances Parallel in-vehicle Applications Security
Publication TypeConference Paper
Year of Publication2022
AuthorsZhu, Lu, Wei, Yehua, Jiang, Haoran, Long, Jing
Conference Name2022 2nd International Conference on Intelligent Technology and Embedded Systems (ICITES)
Date Publishedsep
Keywordsapplication security, authentication, automobile security, CAN FD, controller area network, Costs, Embedded systems, Human Behavior, human factors, masquerade attack, message authentication, parallel In-vehicle applications, pubcrawl, Real-time Systems, resilience, Resiliency, security, Space vehicles
AbstractController Area Network with Flexible Data-rate(CAN FD) has the advantages of high bandwidth and data field length to meet the higher communication requirements of parallel in-vehicle applications. If the CAN FD lacking the authentication security mechanism is used, it is easy to make it suffer from masquerade attack. Therefore, a two-stage method based on message authentication is proposed to enhance the security of it. In the first stage, an anti-exhaustive message exchange and comparison algorithm is proposed. After exchanging the message comparison sequence, the lower bound of the vehicle application and redundant message space is obtained. In the second stage, an enhanced round accumulation algorithm is proposed to enhance security, which adds Message Authentication Codes(MACs) to the redundant message space in a way of fewer accumulation rounds. Experimental examples show that the proposed two-stage approach enables both small-scale and large-scale parallel in-vehicle applications security to be enhanced. Among them, in the Adaptive Cruise Control Application(ACCA), when the laxity interval is 1300ms, the total increased MACs is as high as 388Bit, and the accumulation rounds is as low as 40 rounds.
DOI10.1109/ICITES56274.2022.9943655
Citation Keyzhu_can_2022