Unlock instant, AI-driven research and patent intelligence for your innovation.

Vehicle-mounted intrusion detection method and system based on CAN bus

A technology of CAN bus and intrusion detection, which is applied in the field of network security and can solve problems such as modifying the CAN protocol

Inactive Publication Date: 2020-06-30
EAST CHINA NORMAL UNIV +1
View PDF2 Cites 6 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

Among the centralized solutions that have been proposed, most of them need to modify the CAN protocol and have their own loopholes

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Vehicle-mounted intrusion detection method and system based on CAN bus
  • Vehicle-mounted intrusion detection method and system based on CAN bus
  • Vehicle-mounted intrusion detection method and system based on CAN bus

Examples

Experimental program
Comparison scheme
Effect test

Embodiment

[0032] The main goal of the adversary is to transmit malicious CAN messages to intentionally cause vehicle malfunctions. Adversaries can remotely compromise ECUs through numerous attack surfaces and methods. An adversary is only susceptible to intentional malfunctions if they have access to the vehicle's CAN network. According to this situation, the present invention classifies and detects different attack modes, and about the vehicle-mounted intrusion network detection method based on the CAN bus, it is specifically as follows:

[0033] Step 1: Electrical CAN signal measurement and preprocessing;

[0034] Step 2: Perform feature extraction on the preprocessed signal, extract the electrical characteristics, and consider all possibilities;

[0035] Step 3: For masquerading attack detection, detect masquerading attacks by creating a multi-class classifier, where the number of classes is equal to the number of ECUs in the vehicle CAN network;

[0036] Step 3.1: In the training...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention provides an automobile intrusion detection system based on a CAN network. The automobile intrusion detection system comprises the following steps that 1, electrical CAN signals are measured and preprocessed; 2, feature extraction is performed on the preprocessed signals, electrical characteristics in the preprocessed signals are extracted, and all possibilities are considered; 3, forcamouflage attack detection, a multi-class classifier is created to detect camouflage attacks, and the class number is equal to the number of ECUs in the vehicle-mounted CAN network; 4, for bus closing attack detection, a simple threshold-based method is executed to detect unknown signals; and 5, because the voltage signals are sensitive to environmental factors, incremental learning is adopted,so that VoltageIDs have adaptability to the environmental factors. According to the invention, the intrusion of the vehicle-mounted CAN network can be detected based on the unique characteristics of the CAN electric signals. Because only the monitoring unit needs to be installed on the CAN bus network and the current ECU does not need to be modified at all, the method can be directly applied to the current vehicle.

Description

technical field [0001] The invention relates to the technical field of network security, in particular to a vehicle-mounted intrusion detection method and system based on a CAN bus. Background technique [0002] Today, with the popularization of Internet technology, due to the proliferation of computer functions that enhance driver safety and convenience, the number of vehicles has increased accordingly. The main reason is that the controller area network protocol does not support message authentication. Among the centralized solutions that have been proposed, most of them need to modify the CAN protocol and have their own loopholes. [0003] The investigation found that VoltageIDs (Automotive Intrusion Detection System) does not require modifications to the current system and is the first method that can distinguish between masquerading attacks and bus shutdown attacks. Contents of the invention [0004] Based on the above findings, the present invention realizes automob...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06H04L12/40
CPCH04L63/1408H04L63/1416H04L2012/40215H04L2012/40273
Inventor 刘虹黄非易蒲戈光
Owner EAST CHINA NORMAL UNIV