The In-Vehicle network consists of dozens of Electronic Control Units (ECUs) that communicate in real time to manage essential vehicle functions, most of which rely on the Controller Area Network (CAN) protocol. However, CAN was originally designed wi...
The In-Vehicle network consists of dozens of Electronic Control Units (ECUs) that communicate in real time to manage essential vehicle functions, most of which rely on the Controller Area Network (CAN) protocol. However, CAN was originally designed without fundamental security mechanisms such as transmitter authentication, encryption, and access control. As a result, it remains vulnerable to various attacks, including message replay and identifier monopolization. With the growing integration of external connectivity, these security threats have emerged as critical issues that may lead to severe accidents. Consequently, the demand for effective and practical defense mechanisms has significantly increased. This paper proposes a defense framework for strengthening the security of In-Vehicle CAN communication by exploiting the distinct characteristics of physical-layer signals. First, we introduce an ECU identification method that analyzes differential-voltage features arising from inherent hardware variations across ECUs. Unlike software-based approaches, this technique enables accurate recognition of ECU-specific electrical signal patterns using only a low-cost circuit, without requiring expensive measurement equipment or extensive training. The method demonstrates high identification accuracy against impersonation and replay attacks, thereby addressing the detection limitations of existing intrusion detection systems (IDSs). Second, we extend the concept of Moving Target Defense (MTD) to the physical layer of In-Vehicle communication and propose a dynamic obfuscation mechanism that periodically alters the differential voltage values used during CAN transmission. This approach prevents adversaries from persistently tracking or mimicking the electrical signal patterns of legitimate ECUs, thereby reducing system predictability and raising the difficulty of successful attacks. The proposed mechanism is compatible with existing CAN protocols and transceiver hardware, ensuring practical applicability without compromising real-time performance. To validate the feasibility and effectiveness of the proposed techniques, we implemented them on an experimental test-bed and conducted a series of performance evaluations. Metrics such as ECU identification accuracy, attack detection rate, false positive rate, and communication latency were measured and compared against conventional security solutions. The experimental results show that the proposed defense achieves superior detection performance against replay and impersonation attacks while maintaining system stability. Overall, this work presents a novel physical-layer-based security approach for automotive networks and is expected to contribute to the development of lightweight, multi-layered In-Vehicle security architectures.