Towards a distributed secure in-vehicle communication architecture for modern vehicles

Computers and Security

Volumn 40, Issue , 2014, Pages 60-74

  Patsakis, Constantinos ^a   Dellios, Kleanthis ^b   Bouroche, Mélanie ^a  

^a TRINITY COLLEGE DUBLIN   (Ireland)

^b UNIVERSITY OF PIRAEUS   (Greece)

Author keywords

Authentication; ECM; ECU; Immobilizer; In vehicle communication; Security

Indexed keywords

DISTRIBUTED SECURITY; ECU; IMMOBILIZER; IN-VEHICLE COMMUNICATION; INDUSTRY STANDARDS; MOBILE INFORMATION SYSTEMS; MUTUAL AUTHENTICATION; SECURITY;

AUTHENTICATION; AUTOMOTIVE INDUSTRY; COMMUNICATION; MILITARY ELECTRONIC COUNTERMEASURES; SECURITY OF DATA; SECURITY SYSTEMS; VEHICLES;

VEHICLE TO VEHICLE COMMUNICATIONS;

EID: 84889061810     PISSN: 01674048     EISSN: None     Source Type: Journal    
DOI: 10.1016/j.cose.2013.11.003     Document Type: Article

References (52)

1. D. Bailey War texting: identifying and interacting with devices on the telephone network Black Hat (USA 2010) 2010
2. E. Biham, O. Dunkelman, S. Indesteege, N. Keller, and B. Preneel How to steal cars - a practical attack on keeloq CRYPTO 2007 2010
3. B. Blanchet, V. Cheval, X. Allamigeon, and B. Smyth Proverif: cryptographic protocol verifier in the formal model 2012 www.proverif.ens.fr
4. M. Bonnick Automotive computer controlled systems, diagnostic tools and techniques 2001 Butterworth-Heinemann
5. S. Bono, M. Green, A. Stubblefield, A. Juels, A. Rubin, and M. Szydlo Security analysis of a cryptographically-enabled rfid device USENIX Security 2007
6. CAN Bosch specification of can-bus 1991 http://www.semiconductors.bosch. de/media/pdf/canliteratur/can2spec.pdf
7. M.L. Chavez, C.H. Rosete, and F.R. Henriguez Security and privacy vulnerabilities of in-car wireless networks: a tire pressure monitoring system case study Proceedings of the 15th International conference on electronics, communications and computers (CONIELECOMP) 2005 166 170
8. S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, and S. Savage Comprehensive experimental analyses of automotive attack surfaces Proceedings of the 20th USENIX conference on security. USENIX Association 2011 p. 6-6.
9. C. Cremers Scyther 2012 people.inf.ethz.ch/cremersc/scyther/index.html
10. C. Cremers, S. Mauw, E. de Vink, C.J.F. Cremers, and S. Mauw Defining authentication in a trace model 2003
11. T. Eisenbarth, T. Kasper, A. Moradi, C. Paar, S. Mu, and M. Shalmani Physical cryptanalysis of keeloq code hopping applications 2008 http://eprint.iacr.org/2008/058
12. FBO Cyber security and safety of motor vehicles equipped with electronic control systems, solicitation number: Dtrt57-11-ss-00007 Tech. rep. 2011 Federal Business Opportunities
13. A. Ferreira, D. Chadwick, P. Farinha, R. Correia, G. Zao, and R. Chilro How to securely break into rbac: the btg-rbac model Computer security applications conference, 2009. ACSAC'09. Annual, IEEE 2009 23 31
14. A. Fuhs Hybrid vehicles and the future of personal transportation 2009 CRC Press
15. J. Garay, C. Givens, and R. Ostrovsky Broadcast-efficient secure multiparty computation 2012 Cryptology ePrint Archive Report 2012/130 http://eprint.iacr.org/
16. A. Groll, and C. Ruland Secure and authentic communication on existing in-vehicle networks Proceedings of the IEEE Intelligent vehicles symposium 2009 1093 1097
17. H. Heisler Advanced vehicle technology 2002 Butterworth-Heinemann
18. O. Henniger Secure automotive on-board networks-basis for secure vehicle-to-x communication Workshop Staufrei von Holland nach Hessen 2010 (From Holland to Hesse without traffic jam)
19. T. Hoppe, and J. Dittman Sniffing/replay attacks on can buses: a simulated attack on the electric window lift classified using an adapted cert taxonomy Workshop on embedded systems security 2007 66 72
20. T. Hoppe, S. Kiltz, and J. Dittman Security threats to automotive can networks - practical examples and selected short-term countermeasures Proceedings of computer safety, reliability, and security (SAFECOMP) 2008 235 248
21. T. Hoppe, S. Kiltz, and J. Dittmann Adaptive dynamic reaction to automotive it security incidents using multimedia car environment Proceedings of the 4th International conference on information assurance and security (ISIAS) 2008 295 298
22. T. Hoppe, S. Kiltz, and J. Dittmann Applying intrusion detection to automotive it - early insights and remaining challenges J Inf Assur Secur 4 2009 226 235
23. S. Indesteege, N. Keller, O. Dunkelman, E. Biham, and B. Preneel A practical attack on keeloq EUROCRYPT'08 Proceedings of the theory and applications of cryptographic techniques 2008 1 18 (Pubitemid 351762820)
24. H. Kikuchi, and J. Nakazato Modint: a compact modular arithmetic java class library for cellular phones, and its application to secure electronic voting Security and protection in information processing systems IFIP International Federation for Information Processing Vol. 147 2004 Springer Boston 177 192
25. P. Kleberger, T. Olovsson, and E. Jonsson Security aspects of the in-vehicle network in the connected car IEEE Intelligent vehicles symposium 2011 528 533
26. K. Koscher, A. Czeskis, F. Roesner, S. Patel, T. Kohno, and S. Checkoway Experimental security analysis of a modern automobile IEEE Symposium on security and privacy, Oakland, CA 2010 447 462
27. Larmtjanst. Electronic theft prevention: the immobilizer project Tech. rep. 2007 Swedish Insurance Federation Company
28. U.E. Larson, D.K. Nilsson, and E. Jonsson An approach to specification-based attack detection for in-vehicle networks Proceedings of the IEEE Intelligent vehicles symposium 2008 220 225
29. K. Lemke, C. Paar, and M. Wolf Embedded security in cars, securing current and future automotive IT applications 2006 Springer-Verlag
30. H.-T. Liaw A secure electronic voting protocol for general elections J Comput Secur 23 2 2004 107 119
31. G. Lowe A hierarchy of authentication specifications 1997 IEEE Computer Society Press 31 43
32. McAfee Caution: Malware ahead Tech. rep. 2011 McAfee
33. R.W. McGraw Risk-adaptable access control (radac) Privilege (Access) management Workshop 2009 NIST-National Institute of Standards and Technology-Information Technology Laboratory
34. N. Naver, and F. Simonot-Lion Automotive embedded systems handbook: industrial information technology 2009 CRC Press
35. D.K. Nilsson, and U.E. Larson Simulated attacks on can buses: vehicle virus IASTED International conference on communication systems and networks (AsiaCSN) 2008 66 72
36. D.K. Nilsson, U.E. Larson, and E. Jonsson Efficient in-vehicle delayed data authentication based on compound message authentication codes Proceedings of the 68th IEEE vehicular technology conference (VTC 2008-Fall) 2008 1 5
37. K. Nohl Car immobilizer security ESCAR 2010 2010
38. H. Oguma, A. Yoshioka, M. Nishikawa, R. Shigetomi, A. Otsuka, and H. Imai New attestation based security architecture for in-vehicle communication IEEE GLOBECOM 2008 1909 1914
39. L. Overview LIN concept, LIN administration 2012 http://www.lin-subbus. org/index.php?pid=5\&lang=en\&sid=7978e50790ccd16bb12bf6307eae5a74
40. C. Patsakis, and K. Dellios Securing in-vehicle communication and redefining the role of automotive immobilizer International conference on security and cryptography (SECRYPT), Rome, Italy 2012
41. J. Pelzl, T. Wolf, and M. Wollinger Virtualization technologies for cars Tech. rep. 2008 Escrypt GmbH - Embedded Security
42. J. Pelzl, M. Wolf, and T. Wollinger Virtualization technologies for cars: solutions to increase safety and security of vehicular ecus Proceedings of the embedded world conference, Nyremberg 2009
43. W.B. Ribbens, N.P. Mansour, G. Luecke, C.W. Battle, E.C. Jones, and L.E. Mansir Understanding automotive electronics 2003 Elsevier Inc
44. I. Rouf, R. Miller, R. Mustafa, T. Taylor, S. Oh, and W. Xu Security and privacy vulnerabilities of in-car wireless networks: a tire pressure monitoring system case study Proceedings of the 19th USENIX security symposium, Washington, DC 2010 21
45. C. Szilagyi, and P. Koopman A flexible approach to embedded network multicast authentication 2nd Workshop on embedded systems security (WESS) 2008 165 174
46. C. Szilagyi, and P. Koopman Flexible multicast authentication for time-triggered embedded control network applications in dependable systems networks IEEE/IFIP Int Conf on dependable systems networks 2009 165 174
47. H. Teso Aircraft hacking, practical aero series 2013 http://conference. hitb.org/hitbsecconf2013ams/materials/D1T1-HugoTeso-AircraftHacking- PracticalAeroSeries.pdf
48. V. Verendel, D.K. Nilsson, U.E. Larson, and E. Jonsson An approach to using honeypots in in-vehicle networks Proceedings of the 68th IEEE vehicular technology conference (VTC) 2008 1 5
49. A. Weimerskirch, C. Paar, and M. Wolf Secure in-vehicle communication K. Lemke, C. Paar, M. Wolf, Embedded security in cars 2006 Springer-Verlag
50. Weimerskirch A, Wolf M, Wollinger T. State of the art: embedding security in vehicles. EURASIP J Embed Syst, [Special Issue on Embedded Systems for Intelligent Vehicles].
51. H.S.N. Wire Car immobilizers no longer a problem for car thieves Tech. rep. 2010 Homeland Security News Wire
52. M. Wolf, and T. Gendrullis Design, implementation, and evaluation of a vehicular hardware security module Proceeding of the ICISC 2011 302 318