CPS: Breakthrough: Collaborative Research: Track and Fallback: Intrusion Detection to Counteract Carjack Hacks with Fail-Operational Feedback

CPS：突破：协作研究：跟踪和回退：入侵检测通过失败操作反馈来对抗劫车黑客

• 批准号: 1645987
• 负责人: Joseph Zambreno
• 金额: $ 19.04万
• 依托单位: Iowa State University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2016
• 资助国家: 美国
• 起止时间: 2016-10-01 至 2020-09-30
• 项目状态: 已结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=1645987&HistoricalAwards=false
• 关键词: CPS; Breakthrough; Collaborative; Research; Track

The security of every vehicle on the road is necessary to ensure the safety of every person on or near roadways, whether a motorist, bicyclist, or pedestrian. Features such as infotainment, telematics, and driver assistance greatly increase the complexity of vehicles: top-of-the-line cars contain over 200 computers and 100 million lines of software code. With rising complexity comes rising costs to ensure safety and security. This project investigates novel methods to improve vehicular security by detecting malicious cyber attacks against a moving automobile and responding to those attacks in a manner that ensures the safety of humans in close proximity to the vehicle.The objective of this project is to protect in-vehicle networks from remote cyber attacks. The method of protection is a distributed in-vehicle network intrusion detection system (IDS) using information flow tracking and sensor data provenance in the cyber domain with novel approaches to address the physical uncertainty and time constraints of an automotive control system. When an intrusion is detected, the IDS triggers a fail-operational mode change to provide graceful degradation of service and initiate recovery without compromising human safety. Specific research aims of this project are to explore the design space of fail-operational IDS for automotive in-vehicle networks, to evaluate security and resiliency of an automobile using a fail-operational IDS, and to generalize fundamentals of a fail-operational IDS to other cyber-physical systems.

道路上每辆车的安全性对于确保道路上或道路附近的每个人的安全都是必要的，无论是驾驶员，骑自行车的人还是行人。信息娱乐、远程信息处理和驾驶员辅助等功能大大增加了车辆的复杂性：顶级汽车包含200多台计算机和1亿行软件代码。随着复杂性的增加，确保安全和保障的成本也在上升。本项目研究通过检测针对行驶中的汽车的恶意网络攻击，并以确保车辆附近人员安全的方式对这些攻击做出响应，从而提高车辆安全性的新方法。本项目的目标是保护车载网络免受远程网络攻击。保护的方法是一个分布式的车载网络入侵检测系统（IDS），使用信息流跟踪和传感器数据的出处在网络域与新的方法来解决物理的不确定性和时间限制的汽车控制系统。当检测到入侵时，IDS会触发故障操作模式更改，以提供适度的服务降级并启动恢复，而不会危及人员安全。该项目的具体研究目标是探索汽车车载网络的故障操作IDS的设计空间，使用故障操作IDS评估汽车的安全性和弹性，并将故障操作IDS的基本原理推广到其他网络物理系统。

项目成果

Work-in-Progress: Real-Time Modeling for Intrusion Detection in Automotive Controller Area Network

正在进行的工作：汽车控制器局域网中入侵检测的实时建模

• DOI: 10.1109/rtss.2018.00030
• 发表时间: 2018
• 期刊: 2018 IEEE Real-Time Systems Symposium (RTSS
• 作者: Olufowobi, Habeeb;Bloom, Gedare;Young, Clinton;Zambreno, Joseph
• 通讯作者: Zambreno, Joseph

SAIDuCANT: Specification-Based Automotive Intrusion Detection Using Controller Area Network (CAN) Timing

• DOI: 10.1109/tvt.2019.2961344
• 发表时间: 2020-02-01
• 期刊: IEEE TRANSACTIONS ON VEHICULAR TECHNOLOGY
• 影响因子: 6.8
• 作者: Olufowobi, Habeeb;Young, Clinton;Bloom, Gedare
• 通讯作者: Bloom, Gedare

Survey of Automotive Controller Area Network Intrusion Detection Systems

• DOI: 10.1109/mdat.2019.2899062
• 发表时间: 2019-02
• 期刊: IEEE Design & Test
• 影响因子: 2
• 作者: C. Young;Joseph Zambreno;Habeeb Olufowobi;Gedare Bloom

Reverse Engineering Controller Area Network Messages Using Unsupervised Machine Learning

• DOI: 10.1109/mce.2020.3023538
• 发表时间: 2022-01-01
• 期刊: IEEE CONSUMER ELECTRONICS MAGAZINE
• 影响因子: 4.5
• 作者: Ezeobi, Uchenna;Olufowobi, Habeeb;Bloom, Gedare
• 通讯作者: Bloom, Gedare

Towards Reverse Engineering Controller Area Network Messages Using Machine Learning

使用机器学习对控制器局域网消息进行逆向工程

• DOI: 10.1109/wf-iot48130.2020.9221383
• 发表时间: 2020
• 期刊: Proceedings of the IEEE World Forum on Internet of Things (WF-IoT
• 作者: Young, Clinton;Svoboda, Jordan;Zambreno, Joseph
• 通讯作者: Zambreno, Joseph