TY - JOUR
T1 - A Novel Intrusion Detection System for Next Generation In-Vehicle Networks
AU - Deng, Zhouyan
AU - Xun, Yijie
AU - Liu, Jiajia
AU - Li, Shouqing
AU - Zhao, Yilin
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022
Y1 - 2022
N2 - As emerging technologies such as mobile communication, vehicle to everything, and artificial intelligence are widely used in intelligent connected vehicles, drivers can gain a convenient and colorful driving experience. While these tech-nologies enrich the driving experience, they also bring a series of vulnerable interfaces to the vehicle. These interfaces can be used by hackers to attack other nodes of in-vehicle network that lack authentication and encryption. For this, researchers design scheme to encrypt and authenticate messages to protect in-vehicle networks, but this scheme would occupy the bandwidth resources of in-vehicle network. Therefore, researchers propose parameter monitoring-based intrusion detection system (IDS), information theory-based IDS, and fingerprint-based IDS, which do not occupy bandwidth. However, most IDSs either cannot locate the source of the attack, cannot detect aperiodic frames, or need to know the non-public mapping between electronic control units (ECUs) and identifiers (IDs) of in-vehicle network. To solve these weaknesses, we propose a novel IDS that establishes voltage fingerprints for each ID. This system can detect period and aperiodic malicious frames and locate the source of attack without knowing the mapping between ECUs and IDs. The experimental results on actual vehicles demonstrate that our scheme is robust against real scenarios.
AB - As emerging technologies such as mobile communication, vehicle to everything, and artificial intelligence are widely used in intelligent connected vehicles, drivers can gain a convenient and colorful driving experience. While these tech-nologies enrich the driving experience, they also bring a series of vulnerable interfaces to the vehicle. These interfaces can be used by hackers to attack other nodes of in-vehicle network that lack authentication and encryption. For this, researchers design scheme to encrypt and authenticate messages to protect in-vehicle networks, but this scheme would occupy the bandwidth resources of in-vehicle network. Therefore, researchers propose parameter monitoring-based intrusion detection system (IDS), information theory-based IDS, and fingerprint-based IDS, which do not occupy bandwidth. However, most IDSs either cannot locate the source of the attack, cannot detect aperiodic frames, or need to know the non-public mapping between electronic control units (ECUs) and identifiers (IDs) of in-vehicle network. To solve these weaknesses, we propose a novel IDS that establishes voltage fingerprints for each ID. This system can detect period and aperiodic malicious frames and locate the source of attack without knowing the mapping between ECUs and IDs. The experimental results on actual vehicles demonstrate that our scheme is robust against real scenarios.
UR - http://www.scopus.com/inward/record.url?scp=85146933293&partnerID=8YFLogxK
U2 - 10.1109/GLOBECOM48099.2022.10000766
DO - 10.1109/GLOBECOM48099.2022.10000766
M3 - 会议文章
AN - SCOPUS:85146933293
SN - 2334-0983
SP - 2098
EP - 2103
JO - Proceedings - IEEE Global Communications Conference, GLOBECOM
JF - Proceedings - IEEE Global Communications Conference, GLOBECOM
T2 - 2022 IEEE Global Communications Conference, GLOBECOM 2022
Y2 - 4 December 2022 through 8 December 2022
ER -