Extending AUTOSAR's Counter-based Solution for Freshness of Authenticated Messages in Vehicles
Paper i proceeding, 2019

Nowadays vehicles have an internal network consisting of more than 100 microcontrollers, so-called Electronic Control Units (ECUs), which control core functionalities, active safety, diagnostics, comfort and infotainment. The Controller Area Network (CAN) bus is one of the most widespread bus technologies in use, and thus is a primary target for attackers. AUTOSAR, an open system platform for vehicles, introduced in version 4.3 SecOC Profile 3, a counter-based solution to provide freshness in authenticated messages to protect the system against replay attacks. In this paper, we analyse and assess this method regarding safety constraints and usability, and discuss design considerations when implementing such a system. Furthermore, we propose a novel security profile addressing the identified deficiencies which allows faster resynchronisation when only truncated counter values are transmitted. Finally, we evaluate our solution in an experimental setup in regard to communication overhead and time to synchronise the freshness counter.

message au-thentication

security

freshness

cyber-physical systems

automotive

Författare

Thomas Rosenstatter

Chalmers, Data- och informationsteknik, Nätverk och system

Christian Sandberg

Volvo Group

Tomas Olovsson

Chalmers, Data- och informationsteknik, Nätverk och system

Proceedings of Pacific Rim International Symposium on Dependable Computing (PRDC)

1555-094X (ISSN) 2473-3105 (eISSN)

1-109

2019 IEEE 24th Pacific Rim International Symposium on Dependable Computing (PRDC)
Kyoto, Japan,

Holistiskt angreppssätt att förbättra datasäkerhet (HoliSec)

VINNOVA, 2016-04-01 -- 2019-03-31.

Styrkeområden

Informations- och kommunikationsteknik

Transport

Ämneskategorier

Elektroteknik och elektronik

Inbäddad systemteknik

DOI

10.1109/PRDC47002.2019.00012

Mer information

Skapat

2020-01-15