This content is not included in your SAE MOBILUS subscription, or you are not logged in.
Security Mechanism and Verification of Vehicle Network Based on Message Authentication
ISSN: 0148-7191, e-ISSN: 2688-3627
Published November 4, 2019 by SAE International in United States
Annotation ability available
In view of the relatively bare network environment of the current car controller area network (CAN) and the high-performance requirements of most existing security mechanisms for electronic control units (ECUs), based on a new and faster network transmission protocol, a lightweight car bus authentication method using Message Authentication Code (MAC) is proposed. In this case, the vehicle network is modularized in dependence on the different functional requirements of each part of the bus, calculation tasks are processed by the gateway of the corresponding network segment, the confidentiality and correctness of the vehicle network can be guaranteed by synchronizing the message authentication tables in all nodes, and the transmission rate gets obvious improvement under CAN FD (flexible data-rate) protocol as well. In this paper, the security and real-time performance of the vehicle network are verified by hardware experiments, and the impact of the encryption method on the performance in the network is verified by software simulation. The CAN FD bus is formally designed in the MATLAB environment with finite state machine. The state machine model can dynamically display the communication behavior of the bus system during simulation, and is suitable for building an optimized simulation platform for the CAN FD bus network. Therefore, simulations on this platform are conducted, and comparisons between different performance parameters of CAN and CAN FD network are carried out.
CitationWang, B., Pi, D., Xie, B., Wang, H. et al., "Security Mechanism and Verification of Vehicle Network Based on Message Authentication," SAE Technical Paper 2019-01-5028, 2019, https://doi.org/10.4271/2019-01-5028.
- Nishimura, R., Kurachi, R., Ito, K., Miyasaka, T., Yamamoto, M., and Mishima, M. , “Implementation of the CAN-FD Protocol in the Fuzzing Tool beSTORM,” In 2016 IEEE International Conference on Vehicular Electronics and Safety (ICVES), Beijing, 2016, 1-6, doi:10.1109/ICVES.2016.7548161.
- Happel, A. , “Secure Communication for CAN FD,” CAN Newsletter 4:52-55, 2014.
- Zeltwanger, H. , “Mapping of J1939 to CAN FD,” CAN Newsletter 2:31-32, 2016.
- Islinger, T., Yasuhiro, M., and Jennifer, N. , “Autosar SecOC for CAN FD,” CAN Newsletter 1:44-45, 2017.
- Aidin, A. , Adding Security to Control Area Network of Vehicles by Using SHA-3 (Rochester Institute of Technology, 2017).
- Ann Bruton, J. , “Securing CAN Bus Communication: An Analysis of Cryptographic Approaches,” NUI Galway OE Gaillimh, 2014.
- Shin, J.W., Oh, J.H., Lee, S.M., and Lee, S.E. , “CAN FD Controller for In-Vehicle System,” 2016 International SoC Design Conference (ISOCC), Jeju, 2016, 227-228.
- Carel, G., Isshiki, R., Kusaka, T., Nogami, Y., and Araki, S. , “Design of a Message Authentication Protocol for CAN FD Based on Chaskey Lightweight MAC,” In 2018 Sixth International Symposium on Computing and Networking Workshops (CANDARW), Takayama, 2018, 267-271, doi:10.1109/CANDARW.2018.00057.