摘要
随着车载网络的发展,汽车面临越来越多的网络攻击,车载网络安全愈发重要。控制器域网(Controller Area Network,CAN)总线是目前广泛使用的车载控制网络标准。根据车用CAN网络,基于信号设计的特性,提出了一种基于信号的入侵检测和防御框架。通过通信矩阵文件将车载CAN网络分解成多个信号再组成系统,在信号层面检测和监控网络数据和网络状态识别非法消息和检测网络异常。设计的框架能够搭建入侵检测与防御系统,并通过CAN网络和控制器域网开放环境Controller Area Network open environment(CANoe)模拟攻击展示了它的适用性和有效性。
With the development of the Internet of vehicles,vehicle is facing the risk of network intrusion,so the security of the vehicle network has become particularly important.Controller Area Network(CAN)bus is the most widely used vehicle contr ol network at present.According to the characteristics of vehicle CAN network based on signal design,we put forward an intrusion detection and prevention framework based on signal.We decompose the vehicle CAN network into a system consisted of many signals with the help of communication matrix file.Then we detect and monitor the network data and network status from the signal level,to identify illegal messages and detect network anomalies.Finally,an intrusion detection and prevention system based on our framework is developed,and the applicability and efficiency of proposed framework demonstrated through a simple CAN network and an attacker simulated using Controller Area Network open environment(CANoe).
作者
方熙宇
韩培欣
刘霞
王柏征
FANG Xiyu;HAN Peixin;LIU Xia;WANG Baizheng(CATARC Automotive Test Center(Tianjin)Co.,Ltd.,Tianjin 300300,China;College of Computer Science and Engineering(College of Cyberspace Security),University of Electronic Science and Technology of China,Chengdu Sichuan 611731,China;China Automotive Technology and Research Center Co.,Ltd.,Tianjin 300300,China)
出处
《信息与电脑》
2022年第17期229-232,共4页
Information & Computer
基金
科技部国家重点研发计划(项目编号:2020YFB1600204)。
