Authors:
Mohammad Hamad
;
Marinos Tsantekidis
and
Vassilis Prevelakis
Affiliation:
Institute of Computer and Network Engineering, TU Braunschweig and Germany
Keyword(s):
Security, Automotive Security, Intrusion Response System, Insrution Detection System, Red-Zone.
Related
Ontology
Subjects/Areas/Topics:
Applications and Uses
;
Sensor Networks
;
Sensor, Mesh and Ad Hoc Communications and Networks
;
Telecommunications
;
Vehicular Networks
;
Wireless Information Networks and Systems
Abstract:
Modern vehicles are increasingly equipped with highly automated control systems both for driving and for passenger comfort. An integral part of these systems are the communication channels that allow the on-board systems to interact with passenger devices (e.g. tablets), ITS systems (e.g. road-side units), and other vehicles. These advances have significantly enlarged the attack surface and we already have numerous instances of successful penetration of vehicular networks both from inside the vehicle and from the outside. Traditional mechanisms for detecting and responding to such attacks are ill-suited to the vehicular domain mainly due to the fact that the entire process of dealing with an attack must be handled automatically and in a way that does not affect safety or severely impacts the continued availability of the vehicle or its key systems. Once a security breach is suspected, the system must evaluate the circumstances in order to determine whether the threat is real (and not
a false positive) and select the optimal response through the use of an Intrusion Response System (IRS). Although IRSs have been adopted in other domains, there is a lack of such systems in the vehicular field. In this paper, we investigate the challenges and requirements for integrating such a mechanism inside a vehicle. In addition, we present an Intrusion Response System based on the Red-Zone principle which meets the identified requirements. Finally, we discuss the integration of IRS through the vehicle system development and the different aspects which support such a process.
(More)