Kyungho Joo scite author profile

Recently, the traditional way to unlock car doors has been replaced with a keyless entry system which proves more convenient for automobile owners. When a driver with a key fob is in the vicinity of the vehicle, doors automatically unlock on user command. However, unfortunately, it has been shown that these keyless entry systems are vulnerable to signal-relaying attacks. While it is evident that automobile manufacturers incorporate preventative methods to secure these keyless entry systems, they continue to be vulnerable to a range of attacks. Relayed signals result in valid packets that are verified as legitimate, and this makes it is difficult to distinguish a legitimate door unlock request from a malicious signal. In response to this vulnerability, this paper presents an RF-fingerprinting method (coined "HOld the DOoR", HODOR) to detect attacks on keyless entry systemsthe first attempt to exploit the RF-fingerprint technique in the automotive domain. HODOR is designed as a sub-authentication method that supports existing authentication systems for keyless entry systems and does not require any modification of the main system to perform. Through a series of experiments, the results demonstrate that HODOR competently and reliably detects attacks on keyless entry systems. HODOR achieves both an average false positive rate (FPR) of 0.27% with a false negative rate (FNR) of 0% for the detection of simulated attacks, corresponding to current research on keyless entry car theft. Furthermore, HODOR was also observed under environmental factors: temperature variation, non-line-of-sight (NLoS) conditions, and battery aging. HODOR yields a false positive rate of 1.32% for the identification of a legitimated key fob even under NLoS conditions. Based on the experimental results, it is expected that HODOR will provide a secure service for keyless entry systems, while remaining convenient.

show abstract

An Enhanced Method for Reverse Engineering CAN Data Payload

Choi

Lee

Joo

et al. 2021

IEEE Trans. Veh. Technol.

View full text Add to dashboard Cite

Catch ID if You CAN: Dynamic ID Virtualization Mechanism for the Controller Area Network

et al. 2019

View full text Add to dashboard Cite

The controller area network (CAN) is the most widely used in-vehicle network to communicate among electronic control units. However, the CAN does not provide security functionalities, such as encryption or message authentication. Attackers can analyze CAN logs and inject valid messages based on the analysis to cause malfunctions. Thus, security functions appropriate to the CAN environment are required to prevent attacks. In this paper, we propose a dynamic identifier (ID) virtualization method that prevents CAN logs from being analyzed and makes it difficult for attackers to generate valid messages. We implement a virtualization module to perform dynamic ID virtualization and measure the delay and computational overhead caused by the proposed method. Additionally, we demonstrate the security of the proposed method.INDEX TERMS Controller area network, vehicular security, network security, in-vehicle network.

show abstract

Hold the Door! Fingerprinting Your Car Key to Prevent Keyless Entry Car Theft

Joo¹,

Choi²,

Lee³

2020

Preprint

View full text Add to dashboard Cite

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Kyungho Joo

VoltageIDS: Low-Level Communication Characteristics for Automotive Intrusion Detection System

Hold the Door! Fingerprinting Your Car Key to Prevent Keyless Entry Car Theft

An Enhanced Method for Reverse Engineering CAN Data Payload

Catch ID if You CAN: Dynamic ID Virtualization Mechanism for the Controller Area Network

Hold the Door! Fingerprinting Your Car Key to Prevent Keyless Entry Car Theft

Contact Info

Product

Resources

About