John Anderson, Qiqing Huang, Long Cheng, Hongxin Hu
{"title":"A Zero-Trust Architecture for Connected and Autonomous Vehicles","authors":"John Anderson, Qiqing Huang, Long Cheng, Hongxin Hu","doi":"10.1109/MIC.2023.3304893","DOIUrl":null,"url":null,"abstract":"Connected and autonomous vehicles (CAVs) are the future of personal and public transportation, but many security issues exist related to the communication and activity of such transportation means. Beyond the obvious, these security issues raise important safety concerns for a CAV’s human occupants. Our focus is on the ubiquitous use of controller area network (CAN) bus technology for internal vehicle networks (IVNs) and how we can secure them with the rigid implementation of zero trust. Through an analysis of current threat vectors, we propose a zero-trust architecture to fundamentally protect the individual components that make up a CAV’s sensor and control network through the use of the CAN bus. We use a simulated environment to show how our architectural approach provides net benefits and offer thoughts on the application of the architecture to IVN use cases but also how it might be expanded to inter-CAV communication in the future.","PeriodicalId":13121,"journal":{"name":"IEEE Internet Computing","volume":" ","pages":"7-14"},"PeriodicalIF":3.7000,"publicationDate":"2023-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet Computing","FirstCategoryId":"94","ListUrlMain":"https://doi.org/10.1109/MIC.2023.3304893","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, SOFTWARE ENGINEERING","Score":null,"Total":0}
引用次数: 0
Abstract
Connected and autonomous vehicles (CAVs) are the future of personal and public transportation, but many security issues exist related to the communication and activity of such transportation means. Beyond the obvious, these security issues raise important safety concerns for a CAV’s human occupants. Our focus is on the ubiquitous use of controller area network (CAN) bus technology for internal vehicle networks (IVNs) and how we can secure them with the rigid implementation of zero trust. Through an analysis of current threat vectors, we propose a zero-trust architecture to fundamentally protect the individual components that make up a CAV’s sensor and control network through the use of the CAN bus. We use a simulated environment to show how our architectural approach provides net benefits and offer thoughts on the application of the architecture to IVN use cases but also how it might be expanded to inter-CAV communication in the future.
期刊介绍:
This magazine provides a journal-quality evaluation and review of Internet-based computer applications and enabling technologies. It also provides a source of information as well as a forum for both users and developers. The focus of the magazine is on Internet services using WWW, agents, and similar technologies. This does not include traditional software concerns such as object-oriented or structured programming, or Common Object Request Broker Architecture (CORBA) or Object Linking and Embedding (OLE) standards. The magazine may, however, treat the intersection of these software technologies with the Web or agents. For instance, the linking of ORBs and Web servers or the conversion of KQML messages to object requests are relevant technologies for this magazine. An article strictly about CORBA would not be. This magazine is not focused on intelligent systems. Techniques for encoding knowledge or breakthroughs in neural net technologies are outside its scope, as would be an article on the efficacy of a particular expert system. Internet Computing focuses on technologies and applications that allow practitioners to leverage off services to be found on the Internet.
京公网安备 11010802042870号
京ICP备2023020795号-1
分享
求助内容:
应助结果提醒方式:
扫码关注我们
