An Efficient Access Control Framework For Service-Oriented Architecture of Vehicle

Abstract

The static interaction method in automobile is difficult to solve the communication requirements of emerging technologies such as Advanced Driving Assistance System (ADAS) and Over-The-Air Technology (OTA). With the development of intelligence, automobiles will occupy an important position in the Internet of Things in the future. Therefore, they need to have the characteristics of openness, connectivity and self-evolution. Further, the design of Service-Oriented Architecture (SOA) is gradually introduced to provide more flexible communication and service call for the Internet of Vehicles. In traditional in-vehicle communication such as the CAN bus, a variety of security and safety mechanisms are adopted to protect the information and functional safety of vehicle. In automotive SOA, potential security threats also need be taken seriously. Aiming at the hidden dangers of unauthorized access in the automobile, we propose an efficient distributed access control architecture. And based on the message dissemination middleware-SOME/IP protocol of automotive SOA, a secure access control protocol-Security Expended SOME/IP (SE-SOME/IP) is designed, which can simultaneously have multiple security mechanisms and provide access control Function. The use of Attribute-Based Access Control and the introduction of Access Vector Cache can greatly shorten the request time of service.