SIMULATED ATTACKS ON CAN BUSES: VEHICLE VIRUS

摘要

Contemporary vehicles contain a number of electronic controlrnunits (ECUs), which are connected in a network andrnprovide various vehicle functionalities. The firmware onrnthe ECUs need to be kept up-to-date to provide better andrnsafer functionalities. An upcoming trend for automotivernmanufacturers is to create seamless interaction between thernvehicle and fleet management to provide remote diagnosticsrnand firmware updates over the air. To allow this, thernpreviously isolated in-vehicle network must connect to anrnexternal network, and is thus exposed to a whole new rangernof threats, collectively known as cyber attacks. In this paperrnwe have evaluated the ability of the current in-vehiclernnetwork to withstand cyber attacks by simulating a set ofrnplausible attacks targeting the ECUs on the CAN bus. Thernresults show that the network lacks sufficient protectionrnagainst these attacks, and we therefore extensively discussrnthe future security needs for preventing, detecting, counteringrnand recovering from such attacks.