Security aspects of the in-vehicle network in the connected car

IEEE Intelligent Vehicles Symposium, Proceedings

Volumn , Issue , 2011, Pages 528-533

  Kleberger, Pierre ^a   Olovsson, Tomas ^a   Jonsson, Erland ^a  

^a CHALMERS UNIVERSITY OF TECHNOLOGY   (Sweden)

Author keywords

[No Author keywords available]

Indexed keywords

ARCHITECTURAL SECURITY; HONEYPOTS; IN-VEHICLE NETWORKS; INTRUSION DETECTION SYSTEMS; PROBLEM DEFINITION; SECURITY SOLUTIONS; THREATS AND ATTACKS;

INTELLIGENT VEHICLE HIGHWAY SYSTEMS; INTRUSION DETECTION; RESEARCH;

VEHICLES;

EID: 79960771504     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/IVS.2011.5940525     Document Type: Conference Paper

References (33)

1. M. Shavit, A. Gryc, and R. Miucic, "Firmware Update Over The Air (FOTA) for Automotive Industry," in 14th Asia Pacific Automotive Engineering Conference. Hollywood, CA, USA: SAE, 2007.
2. S. You, M. Krage, and L. Jalics, "Overview of Remote Diagnosis and Maintenance for Automotive Systems," in 2005 SAE World Congress, Detroit, MI, USA, 2005.
3. K. Koscher, A. Czeskis, F. Roesner, S. Patel, T. Kohno, S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, and S. Savage, "Experimental Security Analysis of a Modern Automobile," in Proc. of the 31st IEEE Symposium on Security and Privacy, 2010, pp. 447-462.
4. M. Wolf, A. Weimerskirch, and T. Wollinger, "State of the Art: Embedding Security in Vehicles," EURASIP Journal on Embedded Systems, vol. 2007, 2007.
5. M. Jenkins and S. M. Mahmud, "Security Needs for the Future Intelligent Vehicles," in 2006 SAE World Congress. Detroit, MI, USA: SAE, 2006.
6. P. Kocher, R. Lee, G. McGraw, and A. Raghunathan, "Security as a New Dimension in Embedded System Design," in Proc. of the 41st annual Design Automation Conference. New York, NY, USA: ACM, 2004, pp. 753-760.
7. R. Brooks, S. Sander, J. Deng, and J. Taiber, "Automobile Security Concerns," Vehicular Technology Magazine, IEEE, vol. 4, no. 2, pp. 52-64, Jun. 2009.
8. J. D. Howard and T. A. Longstaff, "A Common Language for Computer Security Incidents," no. Sandia Report: SAND98-8667, 1998.
9. U. E. Larson and D. K. Nilsson, "Securing Vehicles against Cyber Attacks," in CSIIRW '08: Proc. of the 4th annual workshop on Cyber security and information intelligence research. New York, NY, USA: ACM, 2008, pp. 30:1-30:3.
10. D. K. Nilsson and U. E. Larson, "A Defense-in-Depth Approach to Securing the Wireless Vehicle Infrastructure," Journal of Networks, vol. 4, no. 7, pp. 552-564, Sep. 2009.
11. "E-safety Vehicle Intrusion Protected Applications (EVITA)." [Online]. Available: http://www.evita-project.org/
12. "Secure Vehicle Communication (SeVeCOM)." [Online]. Available: http://www.sevecom.org/
13. D. K. Nilsson, U. E. Larson, and E. Jonsson, "Creating a Secure Infrastructure for Wireless Diagnostics and Software Updates in Vehicles," in Proc. of the 27th International Conference on Computer Safety, Reliability, and Security (SAFECOMP '08). Newcastle upon Tyne, UK: Springer-Verlag, 2008, pp. 207-220.
14. T. Hoppe, S. Kiltz, and J. Dittmann, "Security Threats to Automotive CAN Networks - Practical Examples and Selected Short-Term Countermeasures, " in Proc. of the 27th International Conference on Computer Safety, Reliability, and Security (SAFECOMP '08). Newcastle upon Tyne, UK: Springer-Verlag, 2008, pp. 235-248.
15. D. K. Nilsson and U. E. Larson, "Simulated Attacks on CAN Buses: Vehicle Virus," in Proc. of the 5th IASTED Int. Conference on Communication Systems and Networks. ACTA Press, 2008, pp. 66-72.
16. D. K. Nilsson, U. E. Larson, F. Picasso, and E. Jonsson, "A First Simulation of Attacks in the Automotive Network Communications Protocol FlexRay," in Proc. of the International Workshop on Computational Intelligence in Security for Information Systems (CISIS'08). Springer Berlin / Heidelberg, 2009, vol. 53, pp. 84-91.
17. A. Lang, J. Dittmann, S. Kiltz, and T. Hoppe, "Future Perspectives: The Car and Its IP-Address - A Potential Safety and Security Risk Assessment," in Proc. of the 26th International Conference on Computer Safety, Reliability, and Security (SAFECOMP '07). Nuremberg, Germany: Springer-Verlag, 2007, pp. 40-53.
18. M. Wolf, A. Weimerskirch, and C. Paar, "Security in Automotive Bus Systems," in Workshop on Embedded IT-Security in Cars, Bochum, Germany, Nov. 2004.
19. T. Hoppe and J. Dittmann, "Sniffing/Replay Attacks on CAN Buses: A simulated attack on the electric window lift classified using an adapted CERT taxonomy," in Proc. of the 2nd Workshop on Embedded Systems Security (WESS), Salzburg, Austria, 2007.
20. T. Hoppe, S. Kiltz, and J. Dittmann, "Automotive IT-Security as a Challenge: Basic Attacks from the Black Box Perspective on the Example of Privacy Threats," in Proc. of the 28th International Conference on Computer Safety, Reliability, and Security (SAFECOMP '09). Hamburg, Germany: Springer-Verlag, 2009, pp. 145-158.
21. M. L. Chávez, C. H. Rosete, and F. R. Henríguez, "Achieving Confidentiality Security Service for CAN," in Proc. of the 15th International Conference on Electronics, Communications and Computers, 2005. CONIELECOMP 2005., Feb. 2005, pp. 166-170.
22. D. K. Nilsson, U. E. Larson, and E. Jonsson, "Efficient In-Vehicle Delayed Data Authentication Based on Compound Message Authentication Codes," in Proc. of the 68th IEEE Vehicular Technology Conference (VTC 2008-Fall). IEEE, 2008, pp. 1-5.
23. A. Groll and C. Ruland, "Secure and Authentic Communication on Existing In-Vehicle Networks," in Proc. of the IEEE Intelligent Vehicles Symposium, 2009, pp. 1093-1097.
24. H. Oguma, A. Yoshioka, M. Nishikawa, R. Shigetomi, A. Otsuka, and H. Imai, "New Attestation-Based Security Architecture for In-Vehicle Communication," in Proc. of IEEE Global Telecommunications Conference (GLOBECOM). New Orleans, LA: IEEE, 2008, pp. 1-6.
25. C. Szilagyi and P. Koopman, "A Flexible Approach to Embedded Network Multicast Authentication," in 2nd Workshop on Embedded Systems Security (WESS), 2008.
26. S. Schulze, M. Pukall, G. Saake, T. Hoppe, and J. Dittmann, "On the Need of Data Management in Automotive Systems," in 13. Fachtagung des GI-Fachbereichs "Datenbanken und Informationssysteme" (DBIS), vol. 144, Münster, Germany, 2009.
27. U. E. Larson, D. K. Nilsson, and E. Jonsson, "An Approach to Specification-based Attack Detection for In-Vehicle Networks," in Proc. of the IEEE Intelligent Vehicles Symposium, 2008, pp. 220-225.
28. T. Hoppe, S. Kiltz, and J. Dittmann, "Adaptive Dynamic Reaction to Automotive IT Security Incidents Using Multimedia Car Environment," in Proc. of the 4th International Conference on Information Assurance and Security (ISIAS '08), Sep. 2008, pp. 295-298.
29. -, "Applying Intrusion Detection to Automotive IT - Early Insights and Remaining Challenges," Journal of Information Assurance and Security, vol. 4, no. 3, pp. 226-235, 2009.
30. V. Verendel, D. K. Nilsson, U. E. Larson, and E. Jonsson, "An Approach to using Honeypots in In-Vehicle Networks," in Proc. of the 68th IEEE Vehicular Technology Conference (VTC), 2008, pp. 1-5.
31. L. R. Hamle and R. K. Bauer, "AINT Misbehaving - A Taxonomy of anti-intrusion techniques," in Proc. of the 18th National Information Systems Security Conference, 1995, pp. 163-172.
32. G. Lee, H. Oguma, A. Yoshioka, R. Shigetomi, A. Otsuka, and H. Imai, "Formally Verifiable Features in Embedded Vehicular Security Systems," in Vehicular Networking Conference (VNC), IEEE, Oct. 2009, pp. 1-7.
33. C. Szilagyi and P. Koopman, "Flexible Multicast Authentication for Time-Triggered Embedded Control Network Applications," in Dependable Systems Networks. IEEE/IFIP Int. Conf. on, 2009, pp. 165-174.