Vehicle-mounted intrusion detection method and system based on ECU signal characteristic identifiers

A technology of intrusion detection and signal characteristics, which is applied in the transmission system, digital transmission system, data exchange network, etc., can solve the problems of different signal levels, the short frame structure of the CAN bus cannot be supported, and the bus load is high

Active Publication Date: 2019-12-31
EAST CHINA NORMAL UNIV +1
View PDF5 Cites 7 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] The problem of message source authentication can generally be solved by using message authentication code (MAC) technology, but the short frame structure of the CAN bus cannot support the traditional MAC method
On the one hand, most of the previous solutions were to improve the MAC to apply to the CAN bus, but these methods have problems such as requiring hardware modification and excessive bus load
On the other hand, hardware differences make different ECUs generate different signal levels even if they send the same message

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Vehicle-mounted intrusion detection method and system based on ECU signal characteristic identifiers
  • Vehicle-mounted intrusion detection method and system based on ECU signal characteristic identifiers

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0060] In conjunction with the following specific embodiments and accompanying drawings, the invention will be further described in detail. The process, conditions, experimental methods, etc. for implementing the present invention, except for the content specifically mentioned below, are common knowledge and common knowledge in this field, and the present invention has no special limitation content.

[0061] Deploy the trained intrusion detection system on the gateway of the vehicle CAN bus through the traditional method, use the data frame extension format, set a fixed bit stream in the extended identifier field, and obtain the message signal in the extended identifier field from the CAN bus by sampling level. The intrusion detection system of the claimed method includes a classifier based on a bagging decision tree algorithm.

[0062] Because of the incompleteness of hardware and manufacturing process, even if each ECU sends exactly the same message, there will be slight di...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The invention provides a vehicle-mounted intrusion detection method based on ECU signal characteristic identifiers, in-vehicle electronic control unit (ECU) communication enables level changes to be generated in a CAN bus, and the level changes imply electronic characteristics which cannot be copied by an ECU. According to the method, inconsistent characteristics of signals generated by the ECU due to hardware inconsistency are considered, and the ECU is identified by utilizing the characteristics. The intrusion detection system capable of positioning and identifying the malicious ECU is realized by filling an extended identifier domain of a data extended frame with a section of fixed and same bit stream, analyzing signal characteristics in the bit stream, extracting entropy and other characteristics and message IDs, and learning by using a bagging decision tree algorithm.

Description

technical field [0001] The invention belongs to the technical field of intrusion detection, and in particular relates to a method for identifying an ECU by using signal characteristics to realize intrusion detection of a vehicle-mounted CAN bus. Background technique [0002] In the early days, electronic control units (ECUs) were proposed to control automotive components such as engines. In recent years, with the introduction of advanced electronic technology, many safety, comfort and entertainment functions have been integrated in automobiles, and a large number of ECUs have been used in automotive electronic systems to enhance driving experience. ECUs communicate through the control area network (CAN), but the CAN protocol did not consider the security features at the beginning of the design, and does not support message source authentication, which makes the communication between ECUs have certain security risks. Therefore, it is very necessary to detect and report abnor...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/24
CPCH04L41/145H04L63/1416
Inventor 刘虹卢苇倪华孙强蒲戈光
Owner EAST CHINA NORMAL UNIV
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap