RISS 학술연구정보서비스

검색
다국어 입력

http://chineseinput.net/에서 pinyin(병음)방식으로 중국어를 변환할 수 있습니다.

변환된 중국어를 복사하여 사용하시면 됩니다.

예시)
  • 中文 을 입력하시려면 zhongwen을 입력하시고 space를누르시면됩니다.
  • 北京 을 입력하시려면 beijing을 입력하시고 space를 누르시면 됩니다.
닫기
    인기검색어 순위 펼치기

    RISS 인기검색어

      A Practical Intrusion Detection and Defense Mechanism for In-Vehicle CAN Using Differential Voltage

      한글로보기

      https://www.riss.kr/link?id=T17411629

      • 0

        상세조회
      • 0

        다운로드
      서지정보 열기
      • 내보내기
      • 내책장담기
      • 공유하기
      • 오류접수

      부가정보

      다국어 초록 (Multilingual Abstract) kakao i 다국어 번역

      The In-Vehicle network consists of dozens of Electronic Control Units (ECUs) that communicate in real time to manage essential vehicle functions, most of which rely on the Controller Area Network (CAN) protocol. However, CAN was originally designed without fundamental security mechanisms such as transmitter authentication, encryption, and access control. As a result, it remains vulnerable to various attacks, including message replay and identifier monopolization. With the growing integration of external connectivity, these security threats have emerged as critical issues that may lead to severe accidents. Consequently, the demand for effective and practical defense mechanisms has significantly increased. This paper proposes a defense framework for strengthening the security of In-Vehicle CAN communication by exploiting the distinct characteristics of physical-layer signals. First, we introduce an ECU identification method that analyzes differential-voltage features arising from inherent hardware variations across ECUs. Unlike software-based approaches, this technique enables accurate recognition of ECU-specific electrical signal patterns using only a low-cost circuit, without requiring expensive measurement equipment or extensive training. The method demonstrates high identification accuracy against impersonation and replay attacks, thereby addressing the detection limitations of existing intrusion detection systems (IDSs). Second, we extend the concept of Moving Target Defense (MTD) to the physical layer of In-Vehicle communication and propose a dynamic obfuscation mechanism that periodically alters the differential voltage values used during CAN transmission. This approach prevents adversaries from persistently tracking or mimicking the electrical signal patterns of legitimate ECUs, thereby reducing system predictability and raising the difficulty of successful attacks. The proposed mechanism is compatible with existing CAN protocols and transceiver hardware, ensuring practical applicability without compromising real-time performance. To validate the feasibility and effectiveness of the proposed techniques, we implemented them on an experimental test-bed and conducted a series of performance evaluations. Metrics such as ECU identification accuracy, attack detection rate, false positive rate, and communication latency were measured and compared against conventional security solutions. The experimental results show that the proposed defense achieves superior detection performance against replay and impersonation attacks while maintaining system stability. Overall, this work presents a novel physical-layer-based security approach for automotive networks and is expected to contribute to the development of lightweight, multi-layered In-Vehicle security architectures.
      번역하기

      The In-Vehicle network consists of dozens of Electronic Control Units (ECUs) that communicate in real time to manage essential vehicle functions, most of which rely on the Controller Area Network (CAN) protocol. However, CAN was originally designed wi...

      The In-Vehicle network consists of dozens of Electronic Control Units (ECUs) that communicate in real time to manage essential vehicle functions, most of which rely on the Controller Area Network (CAN) protocol. However, CAN was originally designed without fundamental security mechanisms such as transmitter authentication, encryption, and access control. As a result, it remains vulnerable to various attacks, including message replay and identifier monopolization. With the growing integration of external connectivity, these security threats have emerged as critical issues that may lead to severe accidents. Consequently, the demand for effective and practical defense mechanisms has significantly increased. This paper proposes a defense framework for strengthening the security of In-Vehicle CAN communication by exploiting the distinct characteristics of physical-layer signals. First, we introduce an ECU identification method that analyzes differential-voltage features arising from inherent hardware variations across ECUs. Unlike software-based approaches, this technique enables accurate recognition of ECU-specific electrical signal patterns using only a low-cost circuit, without requiring expensive measurement equipment or extensive training. The method demonstrates high identification accuracy against impersonation and replay attacks, thereby addressing the detection limitations of existing intrusion detection systems (IDSs). Second, we extend the concept of Moving Target Defense (MTD) to the physical layer of In-Vehicle communication and propose a dynamic obfuscation mechanism that periodically alters the differential voltage values used during CAN transmission. This approach prevents adversaries from persistently tracking or mimicking the electrical signal patterns of legitimate ECUs, thereby reducing system predictability and raising the difficulty of successful attacks. The proposed mechanism is compatible with existing CAN protocols and transceiver hardware, ensuring practical applicability without compromising real-time performance. To validate the feasibility and effectiveness of the proposed techniques, we implemented them on an experimental test-bed and conducted a series of performance evaluations. Metrics such as ECU identification accuracy, attack detection rate, false positive rate, and communication latency were measured and compared against conventional security solutions. The experimental results show that the proposed defense achieves superior detection performance against replay and impersonation attacks while maintaining system stability. Overall, this work presents a novel physical-layer-based security approach for automotive networks and is expected to contribute to the development of lightweight, multi-layered In-Vehicle security architectures.

      더보기

      목차 (Table of Contents)

      • Ⅰ. Introduction 1
      • 1.1 Research Background 1
      • 1.2 Motivation 3
      • 1.3 Contribution 5
      • 1.4 Outline of Dissertation 8
      • Ⅰ. Introduction 1
      • 1.1 Research Background 1
      • 1.2 Motivation 3
      • 1.3 Contribution 5
      • 1.4 Outline of Dissertation 8
      • Ⅱ. Background 10
      • 2.1 In-Vehicle Network Architecture and Characteristics 10
      • 2.2 Security Vulnerability Analysis of CAN 27
      • Ⅲ. Related Work 31
      • 3.1 Hacking Incidents and Cyberattack Cases in CAN 31
      • 3.2 Intrusion Detection Systems (IDS) for Automotive Networks 36
      • 3.3 MTD–Based Automotive Security Techniques 40
      • 3.4 Comparative Overview of CAN Defense Techniques 42
      • Ⅳ. System and Security Model 45
      • 4.1 System Model 45
      • 4.2 Adversary Model 47
      • 4.3 Scope of Attack type 49
      • Ⅴ. Design of Differential-Voltage-Based ECU Characterization Method ·· 51
      • 5.1 Analyzing Electrical Characteristics in CAN Transceivers 51
      • 5.2 Design and Development of an ECU Identification Tool Using Differential Voltage 60
      • Ⅵ. Moving Target Defense–Based CAN Security Mechanism 67
      • 6.1 Allocation of differential voltage usage intervals 69
      • 6.2 Assignment of Unique Physical-Layer Signatures to ECUs 72
      • 6.3 Attack Detection 78
      • 6.4 Deployment policy(Key Management) 80
      • Ⅶ. Design and Evaluation of an Integrated Security Mechanism 81
      • 7.1 Experimental environment 81
      • 7.2 Verification Scenario 85
      • 7.3 Experiment Results 87
      • Ⅷ. Conclusion 90
      • Reference 92
      더보기

      분석정보

      View

      상세정보조회

      0

      Usage

      원문다운로드

      0

      대출신청

      0

      복사신청

      0

      EDDS신청

      0

      동일 주제 내 활용도 TOP

      더보기

      주제

      연도별 연구동향

      연도별 활용동향

      연관논문

      연구자 네트워크맵

      공동연구자 (7)

      유사연구자 (20) 활용도상위20명

      이 자료와 함께 이용한 RISS 자료

      나만을 위한 추천자료

      해외이동버튼