On Securing the Connected Car - Methods and Protocols for Secure Vehicle Diagnostics
Doktorsavhandling, 2015

Software has been the enabler for the last decades of innovation in new vehicle functions. It is now an integrated part of today's cars and the maintenance and update of this software have become a costly process for the automotive industry. As wireless communication to vehicles is being introduced, vehicular maintenance can greatly be improved and many other new applications can be brought to the vehicles. However, the vehicle was not designed with security in mind. Since the vehicle is safety-critical, it is vital that such new remote services do not violate the safety and security requirements of the vehicle and that appropriate security mechanisms are implemented in the vehicle to prevent malicious vehicle manipulations. In this thesis, approaches to secure the connected car and in particular mechanisms and protocols to secure administrative services for vehicle diagnostics and software download are presented. First, the landscape of the connected car and its infrastructure is investigated. A survey of current mechanisms to secure the in-vehicle network is made and a description of possible communication methods with vehicles is given together with a taxonomy of current entities involved in such communication. The usefulness of the taxonomy is demonstrated by two examples. Then, security analyses of vehicle maintenance in repair shops are conducted. Generic mechanisms and protocols are proposed to secure vehicle diagnostics, which are independent of the diagnostics protocol being used. The proposed protocol prevents unauthorised access to vehicles and it has been formally verified to ensure its correctness. Finally, security mechanisms for in-vehicle communication is addressed, where analyses are performed to design better in-vehicle network architectures that support both safety and security. To conclude, this thesis contributes with new approaches to perform secure maintenance of future connected cars using wireless communication and to prevent unauthorised manipulations of the vehicle.

in-vehicle networks.

connected car

vehicular services

security mechanisms

remote diagnostics

Room VK, Sven Hultins gata 6, Göteborg
Opponent: Prof. Dr. Frank Kargl, Universität Ulm, Germany

Författare

Pierre Kleberger

Chalmers, Data- och informationsteknik, Nätverk och system

Security aspects of the in-vehicle network in the connected car

IEEE Intelligent Vehicles Symposium, Proceedings. Baden-Baden, 5-9 June 2011,; (2011)p. 528-533

Paper i proceeding

An In-Depth Analysis of the Security of the Connected Repair Shop

The Seventh International Conference on Systems and Networks Communications (ICSNC), Proceedings. Lisbon, 18-23 November, 2012. IARIA.,; (2012)p. 99-107

Paper i proceeding

A Framework for Assessing the Security of the Connected Car Infrastructure

The Sixth International Conference on Systems and Networks Communications (ICSNC), Proceedings. Barcelona, 23-29 October 2011. IARIA.,; (2011)p. 236-241

Paper i proceeding

Protecting Vehicles Against Unauthorised Diagnostics Sessions Using Trusted Third Parties

Lecture Notes in Computer Science,; Vol. Lecture Notes in Computer Science(2013)p. 70-81

Paper i proceeding

Securing Vehicle Diagnostics in Repair Shops

Lecture Notes in Computer Science,; Vol. 8666(2014)p. 93-108

Paper i proceeding

Towards designing secure in-vehicle network architectures using community detection algorithms

IEEE Vehicular Networking Conference (VNC), Proceedings. Paderborn, 3-5 Dec. 2014,; Vol. 2015-January(2015)p. 69-76

Paper i proceeding

Styrkeområden

Transport

ISBN

978-91-7597-241-1

Doktorsavhandlingar vid Chalmers tekniska högskola. Ny serie: 3922

Technical report D - Department of Computer Science and Engineering, Chalmers University of Technology and Göteborg University: 120D

Room VK, Sven Hultins gata 6, Göteborg

Opponent: Prof. Dr. Frank Kargl, Universität Ulm, Germany