Assessing the Security of Internal Automotive Networks

University essay from Göteborgs universitet/Institutionen för data- och informationsteknik

Abstract: Context In order to address the growing need for connectivity in today’s cars, thein-vehicle network has increased in complexity, now consisting of over 100 electricalcontrol units. Balancing the level of security with high performance is non-trivial,and current networks have shown to sacrifice security measures for performance,therefore leaving the networks sensitive to both manipulation and information re trieval.Objective The first objective of this thesis was to assess the security of in-vehiclenetworks and identify potential security threats that may be exercised with commodity hardware and without expert knowledge in vehicular networking. Secondly,propose solutions to identified security vulnerabilities that act as a defence againstthe exercised attacks.Method The project was executed with the Design Science Research methodology, where an artefact is developed and evaluated through iterations. The artefactconsists of commodity hardware and open software as well as our approach to simulate an attack of an uninitiated tamperer. The applying artefact was evaluated bytesting it on vehicle test beds. The evaluation was also the basis for the assessmentand in extension the proposed solutions.Results The in-vehicle network was susceptible to multiple attacks such as Man in-the-middle and Replay attacks. For instance, multiple components in the networkwere successfully manipulated through replay attacks on the network. The replay attacks were conducted in combination with a minimization algorithm which enabledreverse engineering of specific functions with high precision. This made it possibleto not only take full control but to block user input. Moreover, Man-in-the-middleattacks on the Ethernet traffic yielded raw data indicating a lack of encryption andalso enabled us to map the network topology. To resolve the aforementioned issues,this thesis proposes solutions at varying security levels that would have preventedour attacks; such as CAN bus message counters, MACsec for low-level protectionagainst sniffing and TLS encryption for the confidentiality of raw data.Conclusions The project has shown that it is indeed possible to extract andmanipulate data even with the limitations enforced in this project. In addition, itshowed that the tested in-vehicle networks lack resilience against unauthorized accessand manipulation. The proposed solutions protect against exercised attacks but aresubject to future research in terms of implementation and overhead measurements.

  AT THIS PAGE YOU CAN DOWNLOAD THE WHOLE ESSAY. (follow the link to the next page)