An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network

Communication in modern cars is managed by a controller area network (CAN) bus protocol and its extensions for electronic control units (ECUs). The CAN bus is a preferred method for reliable real-time broadcast communication. However, unprotected CAN communications make the vehicles vulnerable to a...

Ausführliche Beschreibung

Gespeichert in:

Bibliographische Detailangaben
Veröffentlicht in:	IEEE transactions on information forensics and security 2020, Vol.15, p.3107-3122
Hauptverfasser:	Palaniswamy, Basker, Camtepe, Seyit, Foo, Ernest, Pieprzyk, Josef
Format:	Artikel
Sprache:	eng
Schlagworte:	Australia Authentication Automobiles CAN security car hacking Computer simulation Control equipment control system security Controller area network Controllers Electronic control Encryption IVN security Protocols Security security protocols vehicle cybersecurity Wireless communication
Online-Zugang:	Volltext bestellen
Tags:	Tag hinzufügen Keine Tags, Fügen Sie den ersten Tag hinzu!

container_end_page	3122
container_issue
container_start_page	3107
container_title	IEEE transactions on information forensics and security
container_volume	15
creator	Palaniswamy, Basker Camtepe, Seyit Foo, Ernest Pieprzyk, Josef
description	Communication in modern cars is managed by a controller area network (CAN) bus protocol and its extensions for electronic control units (ECUs). The CAN bus is a preferred method for reliable real-time broadcast communication. However, unprotected CAN communications make the vehicles vulnerable to a variety of practical malicious wired/wireless attacks. In this work, we analyze the existing frame-level authentication protocol and identify weaknesses and limitations. To address this, we provide a protocol suite for entity authentication, key management, a secure message flow for remote transmission request frames and session key update to be applied for vehicle connection with external devices. We prove the security of our protocol in the random oracle model and assess its resistance against known attacks. We formally verify the security of our protocol using the Tamarin tool. Our simulation results indicate that our protocol improves efficiency.
doi_str_mv	10.1109/TIFS.2020.2983285
format	Article
fullrecord	<record><control><sourceid>proquest_RIE</sourceid><recordid>TN_cdi_proquest_journals_2391260937</recordid><sourceformat>XML</sourceformat><sourcesystem>PC</sourcesystem><ieee_id>9046809</ieee_id><sourcerecordid>2391260937</sourcerecordid><originalsourceid>FETCH-LOGICAL-c293t-f700be9ff008e408c3cbcce61751d11666b003738b90887b6e7b932459328a613</originalsourceid><addsrcrecordid>eNo9kFFLwzAUhYMoOKc_QHwJ-Nx5k7Rp8ljGpoMxHzZ9DW28YZ1dM9MU8d_bsbGXey6Xc86Fj5BHBhPGQL9sFvP1hAOHCddKcJVdkRHLMplI4Oz6sjNxS-66bgeQpkyqEVkVLZ05V9sa20iLPm4HrW0Za9_Std3iHqnzgS7aGMrkE7e17Zsy0KkfDr5pMNAiYElXGH99-L4nN65sOnw465h8zGeb6VuyfH9dTItlYrkWMXE5QIXaOQCFKSgrbGUtSpZn7IsxKWUFIHKhKg1K5ZXEvNKCp9kwVCmZGJPnU-8h-J8eu2h2vg_t8NJwoRmXoIf4mLCTywbfdQGdOYR6X4Y_w8AcsZkjNnPEZs7YhszTKVMj4sWvIZVq6PwHeAJnnA</addsrcrecordid><sourcetype>Aggregation Database</sourcetype><iscdi>true</iscdi><recordtype>article</recordtype><pqid>2391260937</pqid></control><display><type>article</type><title>An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network</title><source>IEEE Electronic Library (IEL)</source><creator>Palaniswamy, Basker ; Camtepe, Seyit ; Foo, Ernest ; Pieprzyk, Josef</creator><creatorcontrib>Palaniswamy, Basker ; Camtepe, Seyit ; Foo, Ernest ; Pieprzyk, Josef</creatorcontrib><description>Communication in modern cars is managed by a controller area network (CAN) bus protocol and its extensions for electronic control units (ECUs). The CAN bus is a preferred method for reliable real-time broadcast communication. However, unprotected CAN communications make the vehicles vulnerable to a variety of practical malicious wired/wireless attacks. In this work, we analyze the existing frame-level authentication protocol and identify weaknesses and limitations. To address this, we provide a protocol suite for entity authentication, key management, a secure message flow for remote transmission request frames and session key update to be applied for vehicle connection with external devices. We prove the security of our protocol in the random oracle model and assess its resistance against known attacks. We formally verify the security of our protocol using the Tamarin tool. Our simulation results indicate that our protocol improves efficiency.</description><identifier>ISSN: 1556-6013</identifier><identifier>EISSN: 1556-6021</identifier><identifier>DOI: 10.1109/TIFS.2020.2983285</identifier><identifier>CODEN: ITIFA6</identifier><language>eng</language><publisher>New York: IEEE</publisher><subject>Australia ; Authentication ; Automobiles ; CAN security ; car hacking ; Computer simulation ; Control equipment ; control system security ; Controller area network ; Controllers ; Electronic control ; Encryption ; IVN security ; Protocols ; Security ; security protocols ; vehicle cybersecurity ; Wireless communication</subject><ispartof>IEEE transactions on information forensics and security, 2020, Vol.15, p.3107-3122</ispartof><rights>Copyright The Institute of Electrical and Electronics Engineers, Inc. (IEEE) 2020</rights><lds50>peer_reviewed</lds50><woscitedreferencessubscribed>false</woscitedreferencessubscribed><citedby>FETCH-LOGICAL-c293t-f700be9ff008e408c3cbcce61751d11666b003738b90887b6e7b932459328a613</citedby><cites>FETCH-LOGICAL-c293t-f700be9ff008e408c3cbcce61751d11666b003738b90887b6e7b932459328a613</cites><orcidid>0000-0002-1917-6466 ; 0000-0001-6353-8359 ; 0000-0002-3661-6048</orcidid></display><links><openurl>$$Topenurl_article</openurl><openurlfulltext>$$Topenurlfull_article</openurlfulltext><thumbnail>$$Tsyndetics_thumb_exl</thumbnail><linktohtml>$$Uhttps://ieeexplore.ieee.org/document/9046809$$EHTML$$P50$$Gieee$$H</linktohtml><link.rule.ids>314,777,781,793,4010,27904,27905,27906,54739</link.rule.ids><linktorsrc>$$Uhttps://ieeexplore.ieee.org/document/9046809$$EView_record_in_IEEE$$FView_record_in_$$GIEEE</linktorsrc></links><search><creatorcontrib>Palaniswamy, Basker</creatorcontrib><creatorcontrib>Camtepe, Seyit</creatorcontrib><creatorcontrib>Foo, Ernest</creatorcontrib><creatorcontrib>Pieprzyk, Josef</creatorcontrib><title>An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network</title><title>IEEE transactions on information forensics and security</title><addtitle>TIFS</addtitle><description>Communication in modern cars is managed by a controller area network (CAN) bus protocol and its extensions for electronic control units (ECUs). The CAN bus is a preferred method for reliable real-time broadcast communication. However, unprotected CAN communications make the vehicles vulnerable to a variety of practical malicious wired/wireless attacks. In this work, we analyze the existing frame-level authentication protocol and identify weaknesses and limitations. To address this, we provide a protocol suite for entity authentication, key management, a secure message flow for remote transmission request frames and session key update to be applied for vehicle connection with external devices. We prove the security of our protocol in the random oracle model and assess its resistance against known attacks. We formally verify the security of our protocol using the Tamarin tool. Our simulation results indicate that our protocol improves efficiency.</description><subject>Australia</subject><subject>Authentication</subject><subject>Automobiles</subject><subject>CAN security</subject><subject>car hacking</subject><subject>Computer simulation</subject><subject>Control equipment</subject><subject>control system security</subject><subject>Controller area network</subject><subject>Controllers</subject><subject>Electronic control</subject><subject>Encryption</subject><subject>IVN security</subject><subject>Protocols</subject><subject>Security</subject><subject>security protocols</subject><subject>vehicle cybersecurity</subject><subject>Wireless communication</subject><issn>1556-6013</issn><issn>1556-6021</issn><fulltext>true</fulltext><rsrctype>article</rsrctype><creationdate>2020</creationdate><recordtype>article</recordtype><sourceid>RIE</sourceid><recordid>eNo9kFFLwzAUhYMoOKc_QHwJ-Nx5k7Rp8ljGpoMxHzZ9DW28YZ1dM9MU8d_bsbGXey6Xc86Fj5BHBhPGQL9sFvP1hAOHCddKcJVdkRHLMplI4Oz6sjNxS-66bgeQpkyqEVkVLZ05V9sa20iLPm4HrW0Za9_Std3iHqnzgS7aGMrkE7e17Zsy0KkfDr5pMNAiYElXGH99-L4nN65sOnw465h8zGeb6VuyfH9dTItlYrkWMXE5QIXaOQCFKSgrbGUtSpZn7IsxKWUFIHKhKg1K5ZXEvNKCp9kwVCmZGJPnU-8h-J8eu2h2vg_t8NJwoRmXoIf4mLCTywbfdQGdOYR6X4Y_w8AcsZkjNnPEZs7YhszTKVMj4sWvIZVq6PwHeAJnnA</recordid><startdate>2020</startdate><enddate>2020</enddate><creator>Palaniswamy, Basker</creator><creator>Camtepe, Seyit</creator><creator>Foo, Ernest</creator><creator>Pieprzyk, Josef</creator><general>IEEE</general><general>The Institute of Electrical and Electronics Engineers, Inc. (IEEE)</general><scope>97E</scope><scope>RIA</scope><scope>RIE</scope><scope>AAYXX</scope><scope>CITATION</scope><scope>7SC</scope><scope>7SP</scope><scope>7TB</scope><scope>8FD</scope><scope>FR3</scope><scope>JQ2</scope><scope>KR7</scope><scope>L7M</scope><scope>L~C</scope><scope>L~D</scope><orcidid>https://orcid.org/0000-0002-1917-6466</orcidid><orcidid>https://orcid.org/0000-0001-6353-8359</orcidid><orcidid>https://orcid.org/0000-0002-3661-6048</orcidid></search><sort><creationdate>2020</creationdate><title>An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network</title><author>Palaniswamy, Basker ; Camtepe, Seyit ; Foo, Ernest ; Pieprzyk, Josef</author></sort><facets><frbrtype>5</frbrtype><frbrgroupid>cdi_FETCH-LOGICAL-c293t-f700be9ff008e408c3cbcce61751d11666b003738b90887b6e7b932459328a613</frbrgroupid><rsrctype>articles</rsrctype><prefilter>articles</prefilter><language>eng</language><creationdate>2020</creationdate><topic>Australia</topic><topic>Authentication</topic><topic>Automobiles</topic><topic>CAN security</topic><topic>car hacking</topic><topic>Computer simulation</topic><topic>Control equipment</topic><topic>control system security</topic><topic>Controller area network</topic><topic>Controllers</topic><topic>Electronic control</topic><topic>Encryption</topic><topic>IVN security</topic><topic>Protocols</topic><topic>Security</topic><topic>security protocols</topic><topic>vehicle cybersecurity</topic><topic>Wireless communication</topic><toplevel>peer_reviewed</toplevel><toplevel>online_resources</toplevel><creatorcontrib>Palaniswamy, Basker</creatorcontrib><creatorcontrib>Camtepe, Seyit</creatorcontrib><creatorcontrib>Foo, Ernest</creatorcontrib><creatorcontrib>Pieprzyk, Josef</creatorcontrib><collection>IEEE All-Society Periodicals Package (ASPP) 2005-present</collection><collection>IEEE All-Society Periodicals Package (ASPP) 1998-Present</collection><collection>IEEE Electronic Library (IEL)</collection><collection>CrossRef</collection><collection>Computer and Information Systems Abstracts</collection><collection>Electronics & Communications Abstracts</collection><collection>Mechanical & Transportation Engineering Abstracts</collection><collection>Technology Research Database</collection><collection>Engineering Research Database</collection><collection>ProQuest Computer Science Collection</collection><collection>Civil Engineering Abstracts</collection><collection>Advanced Technologies Database with Aerospace</collection><collection>Computer and Information Systems Abstracts Academic</collection><collection>Computer and Information Systems Abstracts Professional</collection><jtitle>IEEE transactions on information forensics and security</jtitle></facets><delivery><delcategory>Remote Search Resource</delcategory><fulltext>fulltext_linktorsrc</fulltext></delivery><addata><au>Palaniswamy, Basker</au><au>Camtepe, Seyit</au><au>Foo, Ernest</au><au>Pieprzyk, Josef</au><format>journal</format><genre>article</genre><ristype>JOUR</ristype><atitle>An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network</atitle><jtitle>IEEE transactions on information forensics and security</jtitle><stitle>TIFS</stitle><date>2020</date><risdate>2020</risdate><volume>15</volume><spage>3107</spage><epage>3122</epage><pages>3107-3122</pages><issn>1556-6013</issn><eissn>1556-6021</eissn><coden>ITIFA6</coden><abstract>Communication in modern cars is managed by a controller area network (CAN) bus protocol and its extensions for electronic control units (ECUs). The CAN bus is a preferred method for reliable real-time broadcast communication. However, unprotected CAN communications make the vehicles vulnerable to a variety of practical malicious wired/wireless attacks. In this work, we analyze the existing frame-level authentication protocol and identify weaknesses and limitations. To address this, we provide a protocol suite for entity authentication, key management, a secure message flow for remote transmission request frames and session key update to be applied for vehicle connection with external devices. We prove the security of our protocol in the random oracle model and assess its resistance against known attacks. We formally verify the security of our protocol using the Tamarin tool. Our simulation results indicate that our protocol improves efficiency.</abstract><cop>New York</cop><pub>IEEE</pub><doi>10.1109/TIFS.2020.2983285</doi><tpages>16</tpages><orcidid>https://orcid.org/0000-0002-1917-6466</orcidid><orcidid>https://orcid.org/0000-0001-6353-8359</orcidid><orcidid>https://orcid.org/0000-0002-3661-6048</orcidid></addata></record>
fulltext	fulltext_linktorsrc
identifier	ISSN: 1556-6013
ispartof	IEEE transactions on information forensics and security, 2020, Vol.15, p.3107-3122
issn	1556-6013 1556-6021
language	eng
recordid	cdi_proquest_journals_2391260937
source	IEEE Electronic Library (IEL)
subjects	Australia Authentication Automobiles CAN security car hacking Computer simulation Control equipment control system security Controller area network Controllers Electronic control Encryption IVN security Protocols Security security protocols vehicle cybersecurity Wireless communication
title	An Efficient Authentication Scheme for Intra-Vehicular Controller Area Network
url	https://sfx.bib-bvb.de/sfx_tum?ctx_ver=Z39.88-2004&ctx_enc=info:ofi/enc:UTF-8&ctx_tim=2025-01-18T14%3A29%3A12IST&url_ver=Z39.88-2004&url_ctx_fmt=infofi/fmt:kev:mtx:ctx&rfr_id=info:sid/primo.exlibrisgroup.com:primo3-Article-proquest_RIE&rft_val_fmt=info:ofi/fmt:kev:mtx:journal&rft.genre=article&rft.atitle=An%20Efficient%20Authentication%20Scheme%20for%20Intra-Vehicular%20Controller%20Area%20Network&rft.jtitle=IEEE%20transactions%20on%20information%20forensics%20and%20security&rft.au=Palaniswamy,%20Basker&rft.date=2020&rft.volume=15&rft.spage=3107&rft.epage=3122&rft.pages=3107-3122&rft.issn=1556-6013&rft.eissn=1556-6021&rft.coden=ITIFA6&rft_id=info:doi/10.1109/TIFS.2020.2983285&rft_dat=%3Cproquest_RIE%3E2391260937%3C/proquest_RIE%3E%3Curl%3E%3C/url%3E&disable_directlink=true&sfx.directlink=off&sfx.report_link=0&rft_id=info:oai/&rft_pqid=2391260937&rft_id=info:pmid/&rft_ieee_id=9046809&rfr_iscdi=true