Skapa referens, olika format (klipp och klistra)
Harvard
Bresch, M. och Salman, N. (2017) Design and implementation of an intrusion detection system (IDS)for in-vehicle networks. Göteborg : Chalmers University of Technology
BibTeX
@mastersthesis{
Bresch2017,
author={Bresch, Marco and Salman, Noräs},
title={Design and implementation of an intrusion detection system (IDS)for in-vehicle networks},
abstract={The Controller Area Network (CAN) was specified with no regards to security mechanisms
at all. This fact in combination with the widespread adoption of the CAN
standard for connecting more than a hundred Electrical Control Units (ECUs),
which control almost every aspect of modern cars, makes the CAN bus a valuable
target for adversaries. As vehicles are safety-critical systems and the physical
integrity of the driver has the highest priority, it is necessary to invent suitable
countermeasures to limit CAN’s security risks. As a matter of fact, the close resemblances
of in-vehicle networks to traditional computer networks, enables the use of
conventional countermeasures, e.g. Intrusion Detection Systems (IDS).
We propose a software-based light-weight IDS relying on properties extracted from
the signal database of a CAN domain. Further, we suggest two anomaly-based
algorithms based on message cycle time analysis and plausibility analysis of messages
(e.g. speed messages). We evaluate our IDS on a simulated setup, as well as a real
in-vehicle network, by performing attacks on different parts of the network. Our
evaluation shows that the proposed IDS successfully detects malicious events such
as injection of malformed CAN frames, unauthorized CAN frames, speedometer
plausibility detection and Denial of Service (DoS) attacks.
Based on our experience of implementing an in-vehicle IDS, we discuss potential
challenges and constraints that engineers might face during the process of implementing
an IDS system for in-vehicle networks. We believe that the results of this
work can contribute to more advanced research in the field of intrusion detection
systems for in-vehicle networks and thereby add to a safer driving experience.},
publisher={Institutionen för data- och informationsteknik (Chalmers), Chalmers tekniska högskola},
place={Göteborg},
year={2017},
keywords={Controller area network, in-vehicle network, embedded security, intrusiondetection system, engineering, project, thesis.},
note={88},
}
RefWorks
RT Generic
SR Electronic
ID 251871
A1 Bresch, Marco
A1 Salman, Noräs
T1 Design and implementation of an intrusion detection system (IDS)for in-vehicle networks
YR 2017
AB The Controller Area Network (CAN) was specified with no regards to security mechanisms
at all. This fact in combination with the widespread adoption of the CAN
standard for connecting more than a hundred Electrical Control Units (ECUs),
which control almost every aspect of modern cars, makes the CAN bus a valuable
target for adversaries. As vehicles are safety-critical systems and the physical
integrity of the driver has the highest priority, it is necessary to invent suitable
countermeasures to limit CAN’s security risks. As a matter of fact, the close resemblances
of in-vehicle networks to traditional computer networks, enables the use of
conventional countermeasures, e.g. Intrusion Detection Systems (IDS).
We propose a software-based light-weight IDS relying on properties extracted from
the signal database of a CAN domain. Further, we suggest two anomaly-based
algorithms based on message cycle time analysis and plausibility analysis of messages
(e.g. speed messages). We evaluate our IDS on a simulated setup, as well as a real
in-vehicle network, by performing attacks on different parts of the network. Our
evaluation shows that the proposed IDS successfully detects malicious events such
as injection of malformed CAN frames, unauthorized CAN frames, speedometer
plausibility detection and Denial of Service (DoS) attacks.
Based on our experience of implementing an in-vehicle IDS, we discuss potential
challenges and constraints that engineers might face during the process of implementing
an IDS system for in-vehicle networks. We believe that the results of this
work can contribute to more advanced research in the field of intrusion detection
systems for in-vehicle networks and thereby add to a safer driving experience.
PB Institutionen för data- och informationsteknik (Chalmers), Chalmers tekniska högskola,PB Institutionen för data- och informationsteknik (Chalmers), Chalmers tekniska högskola,
LA eng
LK http://publications.lib.chalmers.se/records/fulltext/251871/251871.pdf
OL 30
