Network Anomaly Detection in Cars based on Time-Sensitive Ingress Control

Meyer, Philipp; Häckel, Timo; Korf, Franz; Schmidt, Thomas C.

doi:10.1109/vtc2020-fall49728.2020.9348746

Cited by 11 publications

(8 citation statements)

References 32 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…2. The IVN fields and their subjects in the reviewed works Field Paper(s) Subjects Requirements of automotive TSN [6], [11], [12] List of requirements for future IVN processing platforms [13], [14] Integrate TSN with SDN with security [15] NDN [16] Graceful degradation for real-time autonomous vehicle applications [17] Improve the accuracy of the canvas [10] Reducing latency by porting it to Xronos [18] TSN-5G heterogeneous networks [19] HPVUs security [20] OTT Ethernet algorithm [21] Ethernet backbone with Zone based architecture [22] iDriving [45], [46] TSN PSFP, Protection of the TSN automotive Ethernet Security protocols for IVN [23], [24], [30], [35], [39] Review of blockchain and security attributes of IVN [34] IPSEC [36] Extensions to the SOME/IP protocol for securing SOME/IP service discovery [37] CANFD [25]- [29], [33], [38] Confidentiality, authentication, integrity [30]- [33] Blockchain in IVN [40] Structure-aware CAN Fuzzing procedure [41] Mitigations against an underactuated USV Intrusions detection systems for IVN [29], [42], [44], [47], [48], [53] Intrusion Detection Systems [49], …”

Section: Resultsmentioning

confidence: 99%

“…The TSN per-stream filtering and policing (PSFP) can be utilized as a fundamental technology for detecting malicious traffic flows in vehicles, and in this manner provide network anomaly detectors services as explained by Meyer et al [45]. They evaluated the detection systems based on backbone topology derived from a real vehicle and their traffic classification; their results showed that the detection accuracy depends on some factors such as: the corruption layer, the traffic type.…”

Section: Intrusions Detection Systems For Ivnmentioning

confidence: 99%

See 1 more Smart Citation

Automotive Ethernet architecture and security: challenges and technologies

Toghuj,

Turab

2023

IJECE

View full text Add to dashboard Cite

<span lang="EN-US">Vehicle infrastructure must address the challenges posed by today's advances toward connected and autonomous vehicles. To allow for more flexible architectures, high-bandwidth connections and scalability are needed to connect many sensors and electronic control units (ECUs). At the same time, deterministic and low latency is a critical and significant design requirement to support urgent real-time applications in autonomous vehicles. As a recent solution, the time-sensitive network (TSN) was introduced as Ethernet-based amendments in IEEE 802.1 TSN standards to meet those needs. However, it had hurdle to be overcome before it can be used effectively. This paper discusses the latest studies concerning the automotive Ethernet requirements, including transmission delay studies to improve worst-case end-to-end delay and end-to-end jitter. Also, the paper focuses on the securing Ethernet-based in-vehicle networks (IVNs) by reviewing new encryption and authentication methods and approaches.</span>

show abstract

Section: Resultsmentioning

confidence: 99%

Section: Intrusions Detection Systems For Ivnmentioning

confidence: 99%

Automotive Ethernet architecture and security: challenges and technologies

Toghuj,

Turab

2023

IJECE

View full text Add to dashboard Cite

show abstract

“…Emphasizing that the original specification for CAN lacks a central monitoring mechanism, Häckel et al [45] offers an architecture integrating TSN and SDN, in which all real-time traffic transmitted in an in-vehicle network is centrally monitored without increasing the network delay in order to prevent malicious traffic. Meyer et al [46] performs anomaly detection by using TSN and SDN technologies together in an invehicle communication network, which relies on the filtering capabilities of Per-Stream Filtering and Policing (PSFP) specified [47] proposes an anomaly detection system for invehicle networks with TSN support relying on PSFP specified in 802.1Qci in order to block the messages exceeding a customized maximum service data unit size. The authors experimentally show that the proposed system successfully identifies four different abnormal traffic events in relation with DoS attacks.…”

Section: Defense Strategies For In-vehicle Networkmentioning

confidence: 99%

IEEE 802.1 Zaman Hassas Araç-İçi Haberleşme Ağları için Siber Güvenlik: Güncel Gelişmeler ve Hizmet Reddi Saldırılarının Etki Analizi

TOPSAKAL,

CEVHER

2024

DEUFMD

View full text Add to dashboard Cite

Dedicated computers control the operation of Cyber Physical Systems such as in-vehicle architectures with the help of sensors and actuators. Securing the real-time communication technologies for in-vehicle platforms attracts the attention of the research community. IEEE 802.1 Time Sensitive Networking (TSN) task group targets the standardization of Ethernet-based deterministic communication technologies due to its high bandwidth and low cost. IEEE P802.1DG working group specifies the profile for secure and real-time automotive embedded systems relying on TSN, which is envisioned to be widely used in future in-vehicle platforms. In this paper, we present an elaborate review of the research work on the security of in-vehicle communication networks with TSN support, and define various Denial of Service (DoS) attack scenarios targeting the real-time traffic in in-vehicle networks. We evaluate the impact of our attack scenarios on the performance of two different realistic in-vehicle communication networks with varying sizes. Experimental results show that DoS attacks can lead to severe consequences disrupting the healthy operation of safety-critical functions in a TSN-compliant in-vehicle network.

show abstract

“…Anomaly detection can identify ongoing attacks in the network [39], e.g., using machine learning algorithms to detect anomalies on the CAN bus [40]. In previous work [41], we Fig. 2: Integrated network architecture of TSN and SDN.…”

Section: In-vehicle Network Securitymentioning

confidence: 99%

Secure Time-Sensitive Software-Defined Networking in Vehicles

Häckel,

Meyer,

Korf

et al. 2022

Preprint

Self Cite

View full text Add to dashboard Cite

Current designs of future In-Vehicle Networks (IVN) prepare for switched Ethernet backbones, which can host advanced LAN technologies such as IEEE Time-Sensitive Networking (TSN) and Software-Defined Networking (SDN). In this work, we present an integrated Time-Sensitive Software-Defined Networking (TSSDN) architecture that simultaneously enables control of synchronous and asynchronous real-time and besteffort traffic for all IVN traffic classes using a central SDN controller. We validate that the control overhead of SDN can be added without a delay penalty for TSN traffic, provided protocols are properly mapped. Based on our TSSDN concept, we demonstrate adaptable and reliable network security mechanisms for in-vehicle communication. We systematically investigate different strategies for integrating in-vehicle control flows with switched Ether-networks and analyze their security implications for a software-defined IVN. We discuss embeddings of control flow identifiers on different layers, covering a range from a fully exposed mapping to deep encapsulations. We experimentally evaluate these strategies in a production vehicle which we map to a modern Ethernet topology. Our findings indicate that visibility of automotive control flows on lower network layers is essential for providing isolation and access control throughout the network infrastructure. Such a TSSDN backbone can establish and survey trust zones within the IVN and reduce the attack surface of connected cars in various attack scenarios.

show abstract

Network Anomaly Detection in Cars based on Time-Sensitive Ingress Control

Cited by 11 publications

References 32 publications

Automotive Ethernet architecture and security: challenges and technologies

Automotive Ethernet architecture and security: challenges and technologies

IEEE 802.1 Zaman Hassas Araç-İçi Haberleşme Ağları için Siber Güvenlik: Güncel Gelişmeler ve Hizmet Reddi Saldırılarının Etki Analizi

Secure Time-Sensitive Software-Defined Networking in Vehicles

Contact Info

Product

Resources

About