Publisher DOI: | 10.48550/arXiv.2310.10336 | Title: | A multilayered security infrastructure for connected vehicles : first lessons from the field | Language: | English | Authors: | Häckel, Timo Meyer, Philipp Stahlbock, Lukas Langer, Falk Eckhardt, Sebastian A. Korf, Franz Schmidt, Thomas C. |
Issue Date: | 16-Oct-2023 | Publisher: | Arxiv.org | Journal or Series Name: | De.arxiv.org | Abstract: | Connected vehicles are vulnerable to manipulation and a broad attack surface can be used to intrude in-vehicle networks from anywhere on earth. In this work, we present an integrated security infrastructure comprising network protection, monitoring, incident management, and counteractions, which we built into a prototype based on a production car. Our vehicle implements a Software-Defined Networking Ethernet backbone to restrict communication routes, network anomaly detection to make misbehavior evident, virtual controller functions to enable agile countermeasures, and an automotive cloud defense center to analyse and manage incidents on vehicle fleets. We present first measurements and lessons learned from operating the prototype: many network attacks can be prevented through software-defined access control in the backbone; anomaly detection can reliably detect misbehavior but needs to improve on false positive rate; controller virtualization needs tailored frameworks to meet in-car requirements; and cloud defence enables fleet management and advanced countermeasures. Our findings indicate attack mitigation times in the vehicle from 257 ms to 328 ms and from 2,168 ms to 2,713 ms traversing the cloud. |
URI: | http://hdl.handle.net/20.500.12738/14870 | Review status: | Only preprints: This version has not yet been reviewed | Institute: | Department Informatik Fakultät Technik und Informatik |
Type: | Preprint | Additional note: | Presented at the BROAD workshop at the 2022 IEEE Intelligent Vehicles Symposium (IV) in Aachen, Germany. |
Appears in Collections: | Publications without full text |
Show full item record
Add Files to Item
Note about this record
Export
Items in REPOSIT are protected by copyright, with all rights reserved, unless otherwise indicated.