An Approach to Specification-based Attack Detection for In-Vehicle Networks

被引:0
作者
Larson, Ulf E. [1 ]
Nilsson, Dennis K. [1 ]
Jonsson, Erland [1 ]
机构
[1] Chalmers Univ Technol, Dept Comp Sci & Engn, SE-41296 Gothenburg, Sweden
来源
2008 IEEE INTELLIGENT VEHICLES SYMPOSIUM, VOLS 1-3 | 2008年
关键词
D O I
暂无
中图分类号
TM [电工技术]; TN [电子技术、通信技术];
学科分类号
0808 ; 0809 ;
摘要
An upcoming trend for automotive manufacturers is to create seamless interaction between a vehicle and fleet management to provide remote diagnostics and firmware updates over the air. To allow this, the previously isolated in-vehicle network must be connected to an external network, and can thus be exposed to a whole new range of threats known as cyber attacks. In this paper we explore the applicability of a specification-based approach to detect cyber attacks within the in-vehicle network. We derive information to create security specifications for communication and ECU behavior from the CANopen draft standard 3.01 communication protocol and object directory sections. We also provide a set of example specifications, propose a suitable location for the attack detector, and evaluate the detection using a set of attack actions.
引用
收藏
页码:830 / 835
页数:6
相关论文
共 16 条
[1]  
[Anonymous], 2003, P ACM WORKSH SEC AD
[2]  
[Anonymous], WORKSH EMB IT SEC CA
[3]  
*BOSCH, 1991, CAN SPEC 2 0
[4]  
CHEUNG S, 2007, P SCAD SEC SCI S MIA
[5]  
*CIA, 2005, 301 CIA
[6]  
Hoppe T, 2007, P 2 WORKSHOP EMBEDDE, P1
[7]  
HOWARD JD, 1998, TRSAND988667
[8]   Execution monitoring of security-critical programs in distributed systems: A specification-based approach [J].
Ko, C ;
Ruschitzka, M ;
Levitt, K .
1997 IEEE SYMPOSIUM ON SECURITY AND PRIVACY - PROCEEDINGS, 1997, :175-187
[9]  
Ko C., 1994, Proceedings. 10th Annual Computer Security Applications Conference (Cat. No.94TH8032), P134, DOI 10.1109/CSAC.1994.367313
[10]  
Luk M, 2007, PROCEEDINGS OF THE SIXTH INTERNATIONAL SYMPOSIUM ON INFORMATION PROCESSING IN SENSOR NETWORKS, P479, DOI 10.1109/IPSN.2007.4379708
12