Gianpiero Costantino, I. Matteucci, Domenico Morales
{"title":"EARNEST: A challenge-based intrusion prevention system for CAN messages","authors":"Gianpiero Costantino, I. Matteucci, Domenico Morales","doi":"10.1109/ISSREW51248.2020.00080","DOIUrl":null,"url":null,"abstract":"Modern vehicles are computers on wheels connected to the Internet. Thus, they may be vulnerable to local and remote cyber-attacks. This paper proposes a novel Intrusion Prevention System (IPS), named EARNEST aiming at preventing that an attacker sends malicious CAN frames among different partitions of intra-vehicle network. EARNEST stands for challEnge bAsed intRusioN prEvention SysTem. Its main novelty is the usage of a challenge-based mechanism: once an ECU sends a frame from a partition to another, EARNEST challenges it. If the ECU answers correctly, then its frame is forwarded, otherwise, it is discarded. The proposed algorithm is able to address both replay and fuzzing attacks. A proof of concept implementation of the EARNEST algorithm is provided within an evaluation of its performances in a simulated environment.","PeriodicalId":202247,"journal":{"name":"2020 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2020-10-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2020 IEEE International Symposium on Software Reliability Engineering Workshops (ISSREW)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/ISSREW51248.2020.00080","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
Abstract
Modern vehicles are computers on wheels connected to the Internet. Thus, they may be vulnerable to local and remote cyber-attacks. This paper proposes a novel Intrusion Prevention System (IPS), named EARNEST aiming at preventing that an attacker sends malicious CAN frames among different partitions of intra-vehicle network. EARNEST stands for challEnge bAsed intRusioN prEvention SysTem. Its main novelty is the usage of a challenge-based mechanism: once an ECU sends a frame from a partition to another, EARNEST challenges it. If the ECU answers correctly, then its frame is forwarded, otherwise, it is discarded. The proposed algorithm is able to address both replay and fuzzing attacks. A proof of concept implementation of the EARNEST algorithm is provided within an evaluation of its performances in a simulated environment.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
