Towards safe and secure autonomous and cooperative vehicle ecosystems

CPS-SPC 2016 - Proceedings of the 2nd ACM Workshop on Cyber-Physical Systems Security and PrivaCy, co-located with CCS 2016

Volumn , Issue , 2016, Pages 59-70

  Lima, António ^a   Rocha, Francisco ^a   Völp, Marcus ^a   Esteves Verissimo, Paulo ^a  

^a UNIVERSITY OF LUXEMBOURG   (Luxembourg)

Author keywords

Autonomous vehicles; Connected vehicles; Cyber physical systems security; Vehicle ecosystems; Vehicle security; Vehicle threat vectors

Indexed keywords

ECOLOGY; ECOSYSTEMS; EMBEDDED SYSTEMS; PERSONAL COMPUTING;

AUTONOMOUS VEHICLES; COOPERATIVE VEHICLES; CYBER PHYSICAL SYSTEMS (CPSS); HOLISTIC ANALYSIS; POSITION PAPERS; POTENTIAL RISKS; SAFETY AND SECURITIES; VEHICLE SECURITY;

VEHICLES;

EID: 85001833235     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1145/2994487.2994489     Document Type: Conference Paper

References (82)

1. AUTOSAR: Automotive open system architecture. Accessed: 2016-07-22.
2. Media oriented systems transport. http://www.mostcooperation.com/.
3. Motor vehicles increasingly vulnerable to remote exploits. https://www.ic3.gov/media/2016/160317.aspx. Accessed: 2016-03-21.
4. Second tesla autopilot crash under federal scrutiny. http://money.cnn.com/2016/07/06/autos/tesla-autopilot-accident/. Accessed: 2016-07-08.
5. Tesla's autopilot has had its first deadly crash. https://www.wired.com/2016/06/teslas-autopilot-first-deadly-crash/. Accessed: 2016-07-05.
6. Google self-driving car project. Monthly Report, Feb. 2016.
7. N. H. T. S. Administration et al. Preliminary statement of policy concerning automated vehicles. Washington, DC, 2013.
8. D. Agrawal, S. Baktir, D. Karakoyunlu, P. Rohatgi, and B. Sunar. Trojan detection using ic fingerprinting. In 2007 IEEE Symposium on Security and Privacy (SP '07), pages 296-310, May 2007.
9. M. S. Al-Kahtani. Survey on security attacks in vehicular ad hoc networks (VANETs). In 6th International Conference on Signal Processing and Communication Systems (ICSPCS), pages 1-9. IEEE, 2012.
10. S. Al-Sultan, M. M. Al-Doori, A. H. Al-Bayatti, and H. Zedan. A comprehensive survey on vehicular ad hoc network. Journal of network and computer applications, 37:380-392, 2014.
11. L. Apvrille, R. El Khayari, O. Henniger, Y. Roudier, H. Schweppe, H. Seudié, B. Weyl, and M. Wolf. Secure automotive on-board electronics network architecture. In FISITA 2010 World Automotive Congress, Budapest, Hungary, volume 8, 2010.
12. N. Asmussen, M. Völp, B. Nöthen, H. Härtig, and G. Fettweis. M3: A hardware/operating-system co-design to tame heterogeneous manycores. In 21st Int. Conf. on Architectural Support for Programming Languages and Operating Systems, ASPLOS '16, pages 189-203, New York, NY, USA, 2016. ACM.
13. G. T. Becker, F. Regazzoni, C. Paar, and W. P. Burleson. Stealthy dopant-level hardware trojans. In Proceedings of the 15th International Conference on Cryptographic Hardware and Embedded Systems, CHES'13, pages 197-214, Berlin, Heidelberg, 2013. Springer-Verlag.
14. R. Bril, J. Lukkien, R. Davis, and A. Burns. Message response time analysis for ideal controller area network (CAN) refuted. In Proc. of the 5th International Workshop on Real-Time Networks (RTN '06), 2006.
15. G. Buja, A. Zuccollo, and J. Pimentel. Overcoming babbling-idiot failures in the FlexCAN architecture: a simple bus-guardian. In 10th IEEE conference on Emerging Technologies and Factory Automation (ETFA), volume 2, 2005.
16. A. Casimiro, J. Kaiser, E. M. Schiller, P. Costa, J. Parizi, R. Johansson, and R. Librino. The Karyon project: Predictable and safe coordination in cooperative vehicular systems. In 43rd Annual IEEE/IFIP Conference on Dependable Systems and Networks Workshop (DSN-W), pages 1-12, 2013.
17. A. Casimiro, J. Kaiser, and P. Verissimo. An architectural framework and a middleware for cooperating smart components. In 1st Conference on Computing Frontiers, pages 28-39, Ischia, Italy, 2004. ACM.
18. CBSNEWS. Toyota "unintended acceleration" has killed 89. http://www.cbsnews.com/news/toyotaunintended-acceleration-has-killed-89/. Accessed: 2016-07-22.
19. S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, S. Savage, K. Koscher, A. Czeskis, F. Roesner, T. Kohno, et al. Comprehensive experimental analyses of automotive attack surfaces. In USENIX Security Symposium. San Francisco, 2011.
20. F. Consortium et al. Flexray communications system-protocol specification. Version, 2(1):198-207, 2005.
21. V. Costan and S. Devadas. Intel SGX explained. Technical report, Massachusetts Institute of Technology, 2016. https://eprint.iacr.org/2016/086.pdf (Accessed: 2016-07-22).
22. R. Di Pietro, S. Guarino, N. V. Verde, and J. Domingo-Ferrer. Security in wireless ad-hoc networks-a survey. Comp. Comm., 51:1-20, 2014.
23. J. R. Douceur. The Sybil attack. In Peer-to-peer Systems, pages 251-260. Springer, 2002.
24. E. Enterprise. Erika enterprise 3. http://erika.tuxfamily.org/drupal/content/erikaenterprise-3. Accessed: 2016-07-22.
25. M. Garcia, A. Bessani, I. Gashi, N. Neves, and R. Obelheiro. OS diversity for intrusion tolerance: Myth or reality? In IEEE/IFIP 41st International Conference on Dependable Systems & Networks (DSN), pages 383-394, 2011.
26. M. Ghaderi, D. Goeckel, A. Orda, and M. Dehghan. Efficient wireless security through jamming, coding and routing. In Sensor, Mesh and Ad Hoc Communications and Networks (SECON), New Orleans, USA, June 2013. IEEE.
27. M. Ghaderi, D. Towsley, and J. Kurose. Reliability gain of network coding in lossy wireless networks. In IEEE INFOCOM, Phoenix, USA, April 2008.
28. J. Greene. Intel Trusted Execution Technology - Hardware-based Technology for Enhancing Server Platform Security, 2010. http://www.intel.de/content/dam/www/public/us/en/documents/white-papers/trusted-executiontechnology-security-paper.pdf (Accessed: 2016-07-22).
29. M. Hamad, J. Schlatow, V. Prevelakis, and R. Ernst. A communication framework for distributed access control in microkernel-based systems. In 12th Annual Workshop on Operating Systems Platforms for Embedded Real-Time Applications (OSPERT16), pages 11-16, Toulouse, France, July 2016.
30. J. Hauswald, M. A. Laurenzano, Y. Zhang, C. Li, A. Rovinski, A. Khurana, R. G. Dreslinski, T. Mudge, V. Petrucci, L. Tang, et al. Sirius: An open end-to-end voice and vision personal assistant and its implications for future warehouse scale computers. In Architectural Support for Programming Languages and Operating Systems (ASPLOS), pages 223-238. ACM, 2015.
31. J. L. Herman, C. J. Kenna, M. S. Mollison, J. H. Anderson, and D. M. Johnson. Rtos support for multicore mixed-criticality systems. In 18th IEEE Real Time and Embedded Technology and Applications Symposium, pages 197-208, April 2012.
32. A. Herzberg, S. Jarecki, H. Krawczyk, and M. Yung. Proactive secret sharing or: How to cope with perpetual leakage. In Advances in Cryptology - CRYPT0 95, pages 339-352. Springer, 1995.
33. T. Hoppe, S. Kiltz, and J. Dittmann. Security threats to automotive CAN networks-practical examples and selected short-term countermeasures. In Computer Safety, Reliability, and Security, pages 235-248. Springer, 2008.
34. Y.-C. Hu, A. Perrig, and D. B. Johnson. Wormhole attacks in wireless networks. IEEE Jour. on Selected Areas in Communications, 24(2):370-380, 2006.
35. J.-P. Hubaux and A. Juels. Privacy is dead, long live privacy. Commun. ACM, 59(6):39-41, May 2016.
36. S. Kato, K. Lakshmanan, R. Rajkumar, and Y. Ishikawa. Timegraph: Gpu scheduling for real-time multi-tasking environments. In USENIX Annual Technical Conference (ATC). USENIX, 2011.
37. S. Khandelwal and A. Abhale. Topology base routing attacks in vehicular ad hoc network - survey. International Journal of Advanced Research in Computer Science and Software Engineering, 3(11), Nov. 2013.
38. R. Kirk. Cars of the future: the Internet of Things in the automotive industry. Network Security, 2015(9):16-18, 2015.
39. P. Koopman and C. Szilagyi. Integrity in embedded control networks. IEEE Security & Privacy, 11(3):61-63, 2013.
40. H. Kopetz and P. Veríssimo. Distributed Systems, chapter Real-Time and Dependability Concepts. ACM-Press, Addison-Wesley, 2nd edition, 1993.
41. K. Koscher, A. Czeskis, F. Roesner, S. Patel, T. Kohno, S. Checkoway, D. McCoy, B. Kantor, D. Anderson, H. Shacham, et al. Experimental security analysis of a modern automobile. In IEEE Symposium on Security and Privacy (SP), pages 447-462, 2010.
42. L. Lamport, R. Shostak, and M. Pease. The Byzantine generals problem. ACM Trans. on Progr. Languages and Systems, 4(3):382-401, 1982.
43. J. Lewis. A smart bomb in every garage? Driverless cars and the future of terrorist attacks. https://www.start.umd.edu/news/smart-bomb-everygarage-driverless-cars-and-future-terrorist-attacks. Accessed: 2016-03-21.
44. J. Li and J. Lach. At-speed delay characterization for ic authentication and trojan horse detection. In Hardware-Oriented Security and Trust, 2008. HOST 2008. IEEE International Workshop on, pages 8-14, June 2008.
45. H. Lu, J. Li, and M. Guizani. A novel ID-based authentication framework with adaptive privacy preservation for vanets. In Computing, Communications and Applications Conference (ComComAp), pages 345-350. IEEE, 2012.
46. P. Ludivig. Detection of faces for mobile robots. Master's thesis, Faculty of Science, Technology and Communication - University of Luxembourg, Aug. 2015. Sec. 5.6: Face Pixelation.
47. M. N. Mejri, J. Ben-Othman, and M. Hamdi. Survey on VANET security challenges and possible cryptographic solutions. Vehicular Communications, 1(2):53-66, 2014.
48. C. Miller and C. Valasek. Remote exploitation of an unaltered passenger vehicle. Black Hat USA, 2015.
49. B. Mokhtar and M. Azab. Survey on security issues in vehicular ad hoc networks. Alexandria Engineering Journal, 54(4):1115-1126, 2015.
50. J. Newsome, E. Shi, D. Song, and A. Perrig. The Sybil attack in sensor networks: analysis & defenses. In 3rd International Symposium on Information processing in sensor networks, pages 259-268. ACM, 2004.
51. C. of Oklahoma County. Bookout vs toyota. http://www.safetyresearch.net/Library/Bookout v Toyota Barr REDACTED.pdf. Accessed: 2016-07-22.
52. B. Parno. Bootstrapping trust in a "trusted" platform. In Proceedings of the 3rd Conference on Hot Topics in Security, HOTSEC'08, pages 9:1-9:6, Berkeley, CA, USA, 2008. USENIX Association.
53. K. Pazul. Controller area network (CAN) basics. Microchip Techn. Inc, 1999.
54. D. Perez and J. Pico. A practical attack against GPRS/EDGE/UMTS/ HSPA mobile data communications. Black Hat DC, 2011.
55. J. Petit and S. E. Shladover. Potential cyberattacks on automated vehicles. IEEE Trans. on Intelligent Transportation Systems, 16(2):546-556, 2015.
56. J. Petit, B. Stottelaar, M. Feiri, and F. Kargl. Remote attacks on automated vehicles sensors: Experiments on camera and lidar. In Black Hat Europe, 2015.
57. V. Prevelakis and M. Hammad. A policy-based communications architecture for vehicles. In International Conference on Information Systems Security and Privacy, Angers, France, Feb. 2015.
58. M. Raya and J.-P. Hubaux. Securing vehicular ad hoc networks. Journal of Computer Security, 15(1):39-68, 2007.
59. M. Ruff. Evolution of local interconnect network (LIN) solutions. In 58th Vehicular Tech. Conf. (VTC 2003-Fall), volume 5, pages 3382-3389. IEEE, 2003.
60. J. Rufino, N. Pedrosa, J. Monteiro, P. Verissimo, and G. Arroz. Hardware support for can fault-tolerant communication. In Proceedings of the 5th IEEE International Conference on Electronics, Circuits and Systems, Lisboa, Portugal, September 1998, Sept. 1998.
61. A. Sabelfeld and A. C. Myers. Language-based information-flow security. IEEE J.Sel. A. Commun., 21(1):5-19, Sept. 2006.
62. K. Sampigethaya, L. Huang, M. Li, R. Poovendran, K. Matsuura, and K. Sezaki. CARAVAN: Providing location privacy for VANET. Technical report, DTIC Document, 2005.
63. J. Schlatow, R. Ernst, M. Nolte, and M. Maurer. Contract-based automated integration for complex component-based systems. Design, Automation and Test in Europe - Demo, March 2016.
64. J. Schlatow, M. Moestl, and R. Ernst. An extensible autonomous reconfiguration framework for complex component-based embedded systems. In IEEE International Conference on Autonomic Computing (ICAC), pages 239-242, July 2015.
65. A. Shamir. How to share a secret. Comm. of the ACM, 22(11):612-613, 1979.
66. P. Sousa, A. N. Bessani, M. Correia, N. F. Neves, and P. Verissimo. Highly available intrusion-tolerant services with proactive-reactive recovery. IEEE Trans. on Parallel & Distributed Systems, pages 452-465, 2009.
67. J. Staggs. How to hack your mini cooper: Reverse engineering CAN messages on passenger automobiles. Institute for Information Security, 2013.
68. F. Stumpf, C. Meves, B. Weyl, and M. Wolf. A security architecture for multipurpose ECUs in vehicles. In 25th Joint VDI/VW Automotive Security Conference, Ingolstadt, Germany, 2009.
69. Sysgo. Pikeos. https://www.sysgo.com/solutions/industrysolutions/automotive/. Accessed: 2016-07-22.
70. C. Szegedy, W. Zaremba, I. Sutskever, J. Bruna, D. Erhan, I. Goodfellow, and R. Fergus. Intriguing properties of neural networks. arXiv preprint arXiv:1312.6199, 2013.
71. K. Tindell, H. Hansson, and A. J. Wellings. Analysing real-time communications: Controller area network (CAN). In Proc. of the 15th Real-Time Systems Symposium (RTSS'94), 1994.
72. T. Ungerer, F. Cazorla, P. Sainrat, G. Bernat, Z. Petrov, C. Rochange, E. Quinones, M. Gerdes, M. Paolieri, J. Wolf, H. Casse, S. Uhrig, I. Guliashvili, M. Houston, F. Kluge, S. Metzlaff, and J. Mische. Merasa: Multicore Execution of Hard Real-Time Applications Supporting Analyzability. IEEE Micro, 30(5):66-75, 2010.
73. P. E. Verissimo, N. F. Neves, C. Cachin, J. Poritz, D. Powell, Y. Deswarte, R. Stroud, and I. Welch. Intrusion-tolerant middleware: the road to automatic security. IEEE Security Privacy, 4(4):54-62, July 2006.
74. E. Villani, N. Fathollahnejad, R. Pathan, R. Barbosa, and J. Karlsson. Reliability analysis of consensus in cooperative transport systems. In M. Roy, editor, SAFECOMP 2013 - Workshop ASCoMS (Architecting Safety in Collaborative Mobile Systems) of the 32nd International Conference on Computer Safety, Reliability and Security, Toulouse, France, Sept. 2013.
75. Windriver. Vxworks. http://windriver.com/products/vxworks/. Accessed: 2016-07-22.
76. M. Wolf and T. Gendrullis. Design, implementation, and evaluation of a vehicular hardware security module. In Information Security and Cryptology-ICISC 2011, pages 302-318. Springer, 2011.
77. M. Wolf, A. Weimerskirch, and C. Paar. Secure in-vehicle communication. In Embedded Security in Cars, pages 95-109. Springer, 2006.
78. Y. Xu, R. Wang, T. Li, M. Song, L. Gao, Z. Luan, and D. Qian. Scheduling tasks with mixed timing constraints in gpu-powered real-time systems. In Proceedings of the 2016 International Conference on Supercomputing, page 30. ACM, 2016.
79. K. Yang, M. Hicks, Q. Dong, T. Austin, and D. Sylvester. A2: Analog malicious hardware. In IEEE Security and Privacy (SP), 2016.
80. J. Yoshida. Can bus can be encrypted, says trillium. http://www.eetimes.com/document.asp?doc id=1328081, Oct. 2015. Accessed: 2016-07-22.
81. K. Zaidi, Y. Rahulamathavan, and M. Rajarajan. Diva-digital identity in vanets: A multi-authority framework for vanets. In 19th IEEE International Conference on Networks (ICON), pages 1-6, 2013.
82. L. Zhou, F. B. Schneider, and R. Van Renesse. COCA: A secure distributed online certification authority. ACM Transactions on Computer Systems (TOCS), 20(4):329-368, 2002.