论文信息 - OBD_SecureAlert: An Anomaly Detection System for Vehicles

OBD_SecureAlert: An Anomaly Detection System for Vehicles

Vehicles can be considered as a specialized form of Cyber Physical Systems with sensors, ECU''s and actuators working together to produce a coherent behavior. With the advent of external connectivity, a larger attack surface has opened up which not only affects the passengers inside vehicles, but also people around them. One of the main causes of this increased attack surface is because of the advanced systems built on top of old and less secure common bus frameworks which lacks basic authentication mechanisms. To make such systems more secure, we approach this issue as a data analytic problem that can detect anomalous states. To accomplish that we collected data flowing between different components from real vehicles and using a Hidden Markov Model, we detect malicious behaviors and issue alerts, while a vehicle is in operation. Our evaluations using single parameter and two parameters together provide enough evidence that such techniques could be successfully used to detect anomalies in vehicles. Moreover our method could be used in new vehicles as well as older ones.

[1] André Weimerskirch,et al. State of the Art: Embedding Security in Vehicles , 2007, EURASIP J. Embed. Syst..

[2] Ziv Bar-Joseph,et al. Analyzing time series gene expression data , 2004, Bioinform..

[3] Ingrid Verbauwhede,et al. CANAuth - A Simple, Backward Compatible Broadcast Authentication Protocol for CAN bus , 2011 .

[4] Yingjian Zhang,et al. PREDICTION OF FINANCIAL TIME SERIES WITH HIDDEN MARKOV MODELS , 2004 .

[5] A. Hazem,et al. LCAP - A Lightweight CAN Authentication Protocol for Securing In-Vehicle Networks , 2012 .

[6] Ingrid Verbauwhede,et al. LiBrA-CAN , 2017, ACM Trans. Embed. Comput. Syst..

[7] Matti Valovirta,et al. Experimental Security Analysis of a Modern Automobile , 2011 .

[8] Hovav Shacham,et al. Comprehensive Experimental Analyses of Automotive Attack Surfaces , 2011, USENIX Security Symposium.

[9] Jana Dittmann,et al. Security threats to automotive CAN networks - Practical examples and selected short-term countermeasures , 2008, Reliab. Eng. Syst. Saf..

[10] Ying Guo,et al. Using accelerometer, high sample rate GPS and magnetometer data to develop a cattle movement and behaviour model , 2009 .

[11] M. Ruta,et al. A Mobile Knowledge-based System for On-Board Diagnostics and Car Driving Assistance , 2010 .