论文信息 - Lightweight authentication for secure automotive networks

Lightweight authentication for secure automotive networks

We propose a framework to bridge the gap between secure authentication in automotive networks and on the internet. Our proposed framework allows runtime key exchanges with minimal overhead for resource-constrained in-vehicle networks. It combines symmetric and asymmetric cryptography to establish secure communication and enable secure updates of keys and software throughout the lifetime of the vehicle. For this purpose, we tailor authentication protocols for devices and authorization protocols for streams to the automotive domain. As a result, our framework natively supports multicast and broadcast communication. We show that our lightweight framework is able to initiate secure message streams fast enough to meet the real-time requirements of automotive networks.

[1] John T. Kohl,et al. The Kerberos Network Authentication Service (V5 , 2004 .

[2] Hovav Shacham,et al. Comprehensive Experimental Analyses of Automotive Attack Surfaces , 2011, USENIX Security Symposium.

[3] Ran Canetti,et al. Timed Efficient Stream Loss-Tolerant Authentication (TESLA): Multicast Source Authentication Transform Introduction , 2005, RFC.

[4] Eric Rescorla,et al. The Transport Layer Security (TLS) Protocol Version 1.2 , 2008, RFC.

[5] Larry Zhu,et al. Public Key Cryptography for Initial Authentication in Kerberos (PKINIT) , 2006, RFC.

[6] Matti Valovirta,et al. Experimental Security Analysis of a Modern Automobile , 2011 .

[7] Wenhua Dou,et al. SAFE: Security-Aware FlexRay Scheduling Engine , 2014, 2014 Design, Automation & Test in Europe Conference & Exhibition (DATE).

[8] Alberto L. Sangiovanni-Vincentelli,et al. Security-aware mapping for CAN-based real-time distributed automotive systems , 2013, 2013 IEEE/ACM International Conference on Computer-Aided Design (ICCAD).

[9] Albrecht Mayer,et al. A secure but still safe and low cost automotive communication technique , 2014, 2014 51st ACM/EDAC/IEEE Design Automation Conference (DAC).