A Controller Area Network Automotive Bus Alarm Gateway for Detecting Injection Attacks

A technology of automobile bus and local area network, which is applied in the direction of bus network, network connection, data exchange network, etc., and can solve problems such as accidents, CAN bus without safety components, and damage to the normal operation of the car.

Active Publication Date: 2020-11-06
CHINA JILIANG UNIV
View PDF6 Cites 0 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0007] (3) All other ECUs can receive data from a sending ECU at the same time, and all ECUs have filtering capabilities to limit the reception of unnecessary data;
[0011] (7) CAN bus has no security components, it assumes that all ECUs are legal, trustworthy and work according to their parameter settings
[0015] (3) Fuzzy attack: Randomly generate a message ID and send it to the CAN bus. The ID message may not be on the bus (the attack with the same ID on the bus is similar to a counterfeit attack), and its purpose is to destroy the normal operation of the car (the data is messed up) , not within the normal range), serious may lead to accidents

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • A Controller Area Network Automotive Bus Alarm Gateway for Detecting Injection Attacks
  • A Controller Area Network Automotive Bus Alarm Gateway for Detecting Injection Attacks
  • A Controller Area Network Automotive Bus Alarm Gateway for Detecting Injection Attacks

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0025] The present invention will be further described below in conjunction with accompanying drawing.

[0026] Since each CAN bus has a speed-matched gateway, it can monitor all messages on the CAN bus, modify its software functions, and make it determine whether there is an injection attack.

[0027] (1) Two tables

[0028] In the memory of the gateway, two tables are maintained, one is a static table and the other is a dynamic table.

[0029] Static table: This table records the IDs of messages sent by all ECUs on the CAN bus, the period T, the maximum value of the data Max, the minimum value Min, and the response time R of the response request frame. This table is sorted by ID from small to large, as shown in Table 1 Shown:

[0030] ECU ID T Max Min R ECU 1

ID 1

T 1

Max 1

Min 1

R 1

ECU 2

ID 2

T 2

Max 2

Min 2

R 2

…… …… …… …… …… …… ECU N

ID N

T N

Max N

...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

Due to a multi-master characteristic (any device accessed to the CAN bus can send messages) of a CAN (Controller Area Network) bus, injection-type attack cannot be prevented. The invention discloses a formation method for a CAN automobile bus alarm gateway detecting injection type attack. In a condition of not changing hardware and software of an ECU (Electronic Control Unit) on the CAN bus, through modifying software of the CAN bus gateway only, by utilizing ID of the ECU sending data frames in a CAN bus protocol, time for responding to other ECU requesting frames, the maximal value and the minimal value of data per se and the period for data generation, whether application in the injection-type attack such as DOS attack, disguised attack and fuzzy attack that sending counterfeit data is in presence or not is judged, so that safety technology problem in the prior CAN bus is solved.

Description

technical field [0001] The present invention relates to a kind of generation method of the CAN (Controller Area Networks) automobile bus alarm gateway of the controller local area network that detects the injection type attack, relate in particular to the electronic control unit ECU (Electronic Control Unit) hardware and software on the CAN bus without changing , by only modifying the software of the CAN bus gateway, use the ID of the data frame sent by the ECU in the CAN bus protocol, the time to respond to other ECU request frames, the maximum and minimum values ​​of the data itself, and the cycle of data generation to judge whether there is a Dos or a fake Applications in injection attacks where ECUs or newly added ECUs send out fake data. Background technique [0002] The controller area network CAN was first developed by Bosch in 1985 to build an in-vehicle network. It is an effective, reliable and fast serial transmission bus between ECUs in the car. It became an inter...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Patents(China)
IPC IPC(8): H04L29/06H04L12/66H04L12/40
CPCH04L12/40H04L12/66H04L63/1441H04L63/1458H04L63/1483H04L2012/40215H04L2012/40273
Inventor 谭劲杨红
Owner CHINA JILIANG UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap