Fingerprinting electronic control units for vehicle intrusion detection

Proceedings of the 25th USENIX Security Symposium

Volumn , Issue , 2016, Pages 911-927

  Cho, Kyong Tak ^a   Shin, Kang G ^a  

^a UNIVERSITY OF MICHIGAN   (United States)

Author keywords

[No Author keywords available]

Indexed keywords

CLOCKS; COMPUTER CRIME; CONTROL SYSTEMS; INDUSTRIAL ELECTRONICS; INTRUSION DETECTION; NETWORK SECURITY; SAFETY ENGINEERING; SERVOMECHANISMS; VEHICLES;

ANOMALY BASED INTRUSION DETECTION SYSTEMS; ELECTRONIC CONTROL UNITS; FALSE POSITIVE RATES; IDENTIFICATION ERRORS; IN-VEHICLE MESSAGES; RECURSIVE LEAST SQUARES ALGORITHMS; ROOT CAUSE ANALYSIS; VEHICLE ELECTRONICS;

PALMPRINT RECOGNITION;

EID: 85074463893     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: None     Document Type: Conference Paper

References (42)

1. Microchip MCP2515 Datasheet. [Online] Available: www.microchip.com/MCP2515.
2. Microchip TB078, PLL Jitter and Its Effects in the CAN Protocol.
3. On-Board Diagnostic System [Online] http://www.obdii.com.
4. CAN Specification v2.0. Robert Bosch GmbH (1991).
5. CAN with Flexible Data-Rate Specification Version 1.0. Robert Bosch GmbH (2012).
6. Infineon: CAN FD Success Goes at Expense of FlexRay. [Online] http://www.eetimes.com/. EETimes (Feb. 2015).
7. Hackers Remotely Kill a Jeep on the Highway - With Me in It. [Online] http://www.wired.com.
8. BASSEVILLE, M., AND NIKIFOROV, I. Detection of abrupt changes: Theory and application. In Prentice Hall information and system sciences series (1993).
9. CHECKOWAY, S., MCCOY, D., KANTOR, B., ANDERSON, D., SHACHAM, H., SAVAGE, S., KOSCHER, K., CZESKIS, A., ROESNER, F., AND KOHNO, T. Comprehensive Experimental Analyses of Automotive Attack Surfaces. In USENIX Security (2011).
10. CHO, K. T., PARK, T., AND SHIN, K. G. CPS Approach to Checking Norm Operation of a Brake-by-Wire System. In ICCPS (2015).
11. DAILY, J. Analysis of critical speed yaw scuffs using spiral curves. In SAE Technical Paper 2012-01-0606 (2012).
12. DAVIS, R., KOLLMANN, S., POLLEX, V., AND SLOMKA, F. Controller area network (can) schedulability analysis with fifo queues. ECRTS (2011).
13. FOSTER, I., PRUDHOMME, A., KOSCHER, K., AND SAVAGE, S. Fast and Vulnerable: A Story of Telematic Failures. In WOOT (2015).
14. HAYKIN, S. Adaptive filter theory. In 2nd ed. Prentice-Hall (1991).
15. HERREWEGE, A., SINGELEE, D., AND VERBAUWHEDE, I. Canauth - a simple, backward compatible broadcast authentication protocol for can bus. In ECRYPT Workshop on Lightweight Cryptography (2011).
16. HOPPE, T., KILTZ, S., AND DITTMANN, J. Security threats to automotive can networks - practical examples and selected short-term countermeasures. In Reliability Engineering and System Safety (Jan. 2011).
17. JANA, S., AND KASERA, S. K. On fast and accurate detection of unauthorized wireless access points using clock skews. In ACM MobiCom (2008).
18. KHAN, D., BRIL, R., AND NAVET, N. Integrating hardware limitations in can scbedulability analysis. In WFCS (May. 2010).
19. KOHNO, T., BROIDO, A., AND CLAFFY, K. Remote physical device fingerprinting. In IEEE Symposium on Security and Privacy (2005).
20. KOSCHER, K., CZESKIS, A., ROESNER, F., PATEL, S., KOHNO, T., CHECKOWAY, S., MCCOY, D., KANTOR, B., ANDERSON, D., SHACHAM, H., AND SAVAGE, S. Experimental security analysis of a modern automobile. In IEEE Security and Privacy (2010).
21. LEEN, G., AND HEFFERNAN, D. Ttcan: a new time-triggered controller area network. In Elsevier Microprocessors and Microsystems (2002).
22. MILBREDT, P., HORAUER, M., AND STEININGER, A. An investigation of the clique problem in flexray. SIES (2008).
23. MILLER, C., AND VALASEK, C. Adventures in automotive networks and control units. Defcon 21 (2013).
24. MILLER, C., AND VALASEK, C. A survey of remote automotive attack surfaces. Black Hat USA (2014).
25. MILLER, C., AND VALASEK, C. Remote exploitation of an unaltered passenger vehicle. Black Hat USA (2015).
26. MILLS, D. L. Network time protocol: Specification, implemenation, and analysis. RFC 1305.
27. MOHALIK, S., RAJEEV, A. C., DIXIT, M. G., RAMESH, S., SUMAN, P. V., PANDYA, P. K., AND JIANG, S. Model checking based analysis of end-to-end latency in embedded, real-time systems with clock drifts. In DAC (2008).
28. MONTGOMERY, D. Introduction to statistical quality control. In 4th edition, Wiley (2000).
29. MOON, S. B., SKELLY, P., AND TOWSLEY, D. Estimation and removal of clock skew from network delay measurements. In INFOCOM (1999).
30. MUTER, M., AND ASAJ, N. Entropy-based anomaly detection for in-vehicle networks. IEEE IVS (2011).
31. MUTER, M., GROLL, A.,, AND FREILING, F. C. A structured approach to anomaly detection for in-vehicle networks. In Information Assurance and Security (IAS), Sixth International Conference (2010).
32. NATALE, M. D., ZENG, H., GIUSTO, P., AND GHOSAL, A. Understanding and using the controller area network communication protocol: Theory and practice. In Springer Science & Business Media (2012).
33. NILSSON, D., LARSON, D., AND JONSSON, E. Efficient In-Vehicle Delayed Data Authentication Based on Compound Message Authentication Codes. In VTC-Fall (2008).
34. PASZTOR, A., AND VEITCH, D. Pc based precision timing without gps. In ACM SIGMETRICS (2002).
35. PAXSON, V. On calibrating measurements of packet transit times. In SIGMETRICS (1998).
36. RUTH, R., BARTLETT, W., AND DAILY, J. Accuracy of event data in the 2010 and 2011 Toyota camry during steady state and braking conditions. In SAE International Journal on Passenger Cars (2012).
37. RYANA, C., HEFFERNANB, D., AND LEENA, G. Clock synchronisation on multiple ttcan network channels. In Elsevier Microprocessors and Microsystems (2004).
38. SZILAGYI, C., AND KOOPMAN, P. Low cost multicast network authentication for embedded control systems. In Proceedings of the 5th Workshop on Embedded Systems Security (2010).
39. TALBOT, S. C., AND REN, S. Comparison of fieldbus systems, can, ttcan, flexray and lin in passenger vehicles. In ICDCSW (2009).
40. VEITCH, D., BABU, S., AND PASZTOR, A. Robust synchronization of software cclock across the internet. In IMC (2004).
41. WOODALL, W. H., AND ADAMS, B. The statistical design of cusum charts. In Quality Engineering, 5(4), (1993).
42. ZANDER, S., AND MURDOCH, S. An improved clock-skew measurement technique for revealing hidden services. In USENIX Security (2008).