CAN bus flood attack detection based on communication characteristics

Yimu JI; Zhipeng JIAO; Shangdong LIU; Fei WU; Jing SUN; Na WANG; Zhiyu CHEN; Qiang BI; Penghao TIAN

网络与信息安全学报 (Feb 2020)

CAN bus flood attack detection based on communication characteristics

Yimu JI,
Zhipeng JIAO,
Shangdong LIU,
Fei WU,
Jing SUN,
Na WANG,
Zhiyu CHEN,
Qiang BI,
Penghao TIAN

Affiliations

Yimu JI
Zhipeng JIAO
Shangdong LIU
Fei WU
Jing SUN
Na WANG
Zhiyu CHEN
Qiang BI
Penghao TIAN

Journal volume & issue: Vol. 6
pp. 27 – 37

Abstract

Read online

CAN has become the most extensive fieldbus for contemporary automotive applications due to its outstanding reliability and flexibility.However,the standard CAN protocol does not provide sufficient security measures and is vulnerable to eavesdropping,replay,flooding,and denial of service attacks.In order to effectively detect whether the CAN bus is attacked,and to filter malicious messages when subjected to flooding attacks.The characteristics of vehicle CAN bus message communication were analyzed,and an intrusion detection method was proposed,which could effectively perform intrusion detection and malicious message filtering.Through experimental verification,the method can detect whether the CAN bus is attacked by 100%,and the accuracy of malicious packet filtering can reach over 99%.

CAN bus;communication characteristics;intrusion detection;malicious message filtering

Published in 网络与信息安全学报

ISSN: 2096-109X (Print)
Publisher: POSTS&TELECOM PRESS Co., LTD
Country of publisher: China
LCC subjects: Science: Mathematics: Instruments and machines: Electronic computers. Computer science
Website: http://www.infocomm-journal.com/cjnis/CN/2096-109X/home.shtml

About the journal

Abstract

Keywords