CPS: Breakthrough: Collaborative Research: Track and Fallback: Intrusion Detection to Counteract Carjack Hacks with Fail-Operational Feedback

CPS：突破：协作研究：跟踪和回退：入侵检测通过失败操作反馈来对抗劫车黑客

• 批准号: 1645987
• 负责人: Joseph Zambreno
• 金额: $ 19.04万
• 依托单位: Iowa State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2016
• 资助国家: 美国
• 起止时间: 2016-10-01 至 2020-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1645987&HistoricalAwards=false
• 关键词: CPS; Breakthrough; Collaborative; Research; Track

The security of every vehicle on the road is necessary to ensure the safety of every person on or near roadways, whether a motorist, bicyclist, or pedestrian. Features such as infotainment, telematics, and driver assistance greatly increase the complexity of vehicles: top-of-the-line cars contain over 200 computers and 100 million lines of software code. With rising complexity comes rising costs to ensure safety and security. This project investigates novel methods to improve vehicular security by detecting malicious cyber attacks against a moving automobile and responding to those attacks in a manner that ensures the safety of humans in close proximity to the vehicle.The objective of this project is to protect in-vehicle networks from remote cyber attacks. The method of protection is a distributed in-vehicle network intrusion detection system (IDS) using information flow tracking and sensor data provenance in the cyber domain with novel approaches to address the physical uncertainty and time constraints of an automotive control system. When an intrusion is detected, the IDS triggers a fail-operational mode change to provide graceful degradation of service and initiate recovery without compromising human safety. Specific research aims of this project are to explore the design space of fail-operational IDS for automotive in-vehicle networks, to evaluate security and resiliency of an automobile using a fail-operational IDS, and to generalize fundamentals of a fail-operational IDS to other cyber-physical systems.

道路上每辆车的安全对于确保道路上或道路附近每个人（无论是驾车者、骑自行车者还是行人）的安全都是必要的。信息娱乐、远程信息处理和驾驶辅助等功能大大增加了车辆的复杂性：顶级汽车包含 200 多台计算机和 1 亿行软件代码。随着复杂性的增加，确保安全的成本也随之增加。该项目通过检测针对移动汽车的恶意网络攻击并以确保车辆附近人员安全的方式响应这些攻击，研究提高车辆安全性的新方法。该项目的目标是保护车内网络免受远程网络攻击。该保护方法是一种分布式车载网络入侵检测系统（IDS），利用网络域中的信息流跟踪和传感器数据来源，并采用新颖的方法来解决汽车控制系统的物理不确定性和时间限制。当检测到入侵时，IDS 会触发故障操作模式更改，以提供服务的优雅降级并启动恢复，而不会危及人身安全。该项目的具体研究目标是探索汽车车载网络的故障操作 IDS 的设计空间，评估使用故障操作 IDS 的汽车的安全性和弹性，并将故障操作 IDS 的基本原理推广到其他网络物理系统。

项目成果

Work-in-Progress: Real-Time Modeling for Intrusion Detection in Automotive Controller Area Network

正在进行的工作：汽车控制器局域网中入侵检测的实时建模

• DOI: 10.1109/rtss.2018.00030
• 发表时间: 2018-12
• 期刊: 2018 IEEE Real-Time Systems Symposium (RTSS
• 作者: Olufowobi, Habeeb;Bloom, Gedare;Young, Clinton;Zambreno, Joseph
• 通讯作者: Zambreno, Joseph

Reverse Engineering Controller Area Network Messages using Unsupervised Machine Learning

使用无监督机器学习对控制器局域网消息进行逆向工程

• DOI: 10.1109/mce.2020.3023538
• 发表时间: 2020-09
• 期刊: IEEE Consumer Electronics Magazine
• 影响因子: 4.5
• 作者: Ezeobi, Uchenna;Olufowobi, Habeeb;Young, Clinton;Zambreno, Joseph;Bloom, Gedare
• 通讯作者: Bloom, Gedare

SAIDuCANT: Specification-Based Automotive Intrusion Detection Using Controller Area Network (CAN) Timing

SAIDuCANT：使用控制器局域网 (CAN) 时序进行基于规范的汽车入侵检测

• DOI: 10.1109/tvt.2019.2961344
• 发表时间: 2020-02-01
• 期刊: IEEE Transactions on Vehicular Technology
• 影响因子: 6.8
• 作者: Habeeb Olufowobi;C. Young;Joseph Zambreno;Gedare Bloom
• 通讯作者: Gedare Bloom

Automotive Intrusion Detection Based on Constant CAN Message Frequencies Across Vehicle Driving Modes

基于跨车辆驾驶模式的恒定 CAN 消息频率的汽车入侵检测

• DOI: 10.1145/3309171.3309179
• 发表时间: 2019-01
• 期刊: Proceedings of the ACM Workshop on Automotive Cybersecurity
• 作者: Young, Clinton;Olufowobi, Habeeb;Bloom, Gedare;Zambreno, Joseph
• 通讯作者: Zambreno, Joseph

Towards a Fail-Operational Intrusion Detection System for In-Vehicle Networks

面向车载网络的故障操作入侵检测系统

• 发表时间: 2016-11
• 期刊: Proceedings of the Workshop on Security and Dependability of Critical Embedded Real-Time Systems (CERTS
• 作者: Young, Clinton;Zambreno, Joseph;Bloom, Gedare
• 通讯作者: Bloom, Gedare