一种针对安全嵌入式系统攻击的演化式故障注入设置搜索算法

IF 0.7 4区计算机科学 Q4 COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE

Neural Network World Pub Date : 2023-01-01 DOI:10.14311/nnw.2023.33.020

Enrico Pozzobon, Nils Weiß, Jürgen Mottok, Václav Matoušek

{"title":"一种针对安全嵌入式系统攻击的演化式故障注入设置搜索算法","authors":"Enrico Pozzobon, Nils Weiß, Jürgen Mottok, Václav Matoušek","doi":"10.14311/nnw.2023.33.020","DOIUrl":null,"url":null,"abstract":"In this paper, we present a novel method for exploiting vulnerabilities in secure embedded bootloaders, which are the foundation of trust for modern vehicle software systems, by using a genetic algorithm to successfully identify the correct parameters to perform an electromagnetic fault injection attack. Specifically, we demonstrate the feasibility of code execution attacks by leveraging a combination of software and hardware weaknesses in the secure software update process of electronic control units (ECUs), which is standardized across the automotive industry. Our method utilizes an automated approach, eliminating the need for static code analysis, and does not require any hardware modifications to the targeted systems. Through our research, we successfully demonstrated our attack on three distinct ECUs from different manufacturers used in current vehicles. Our results prove that the use of a genetic algorithm for finding the fault parameters reduces the number of attempts necessary for a successful fault to obtain arbitrary code execution via \"wild jungle jumps\" by approximately 100 times compared to a naive random search.","PeriodicalId":49765,"journal":{"name":"Neural Network World","volume":"142 1","pages":"0"},"PeriodicalIF":0.7000,"publicationDate":"2023-01-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"An evolutionary fault injection settings search algorithm for attacks on safe and secure embedded systems\",\"authors\":\"Enrico Pozzobon, Nils Weiß, Jürgen Mottok, Václav Matoušek\",\"doi\":\"10.14311/nnw.2023.33.020\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper, we present a novel method for exploiting vulnerabilities in secure embedded bootloaders, which are the foundation of trust for modern vehicle software systems, by using a genetic algorithm to successfully identify the correct parameters to perform an electromagnetic fault injection attack. Specifically, we demonstrate the feasibility of code execution attacks by leveraging a combination of software and hardware weaknesses in the secure software update process of electronic control units (ECUs), which is standardized across the automotive industry. Our method utilizes an automated approach, eliminating the need for static code analysis, and does not require any hardware modifications to the targeted systems. Through our research, we successfully demonstrated our attack on three distinct ECUs from different manufacturers used in current vehicles. Our results prove that the use of a genetic algorithm for finding the fault parameters reduces the number of attempts necessary for a successful fault to obtain arbitrary code execution via \\\"wild jungle jumps\\\" by approximately 100 times compared to a naive random search.\",\"PeriodicalId\":49765,\"journal\":{\"name\":\"Neural Network World\",\"volume\":\"142 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.7000,\"publicationDate\":\"2023-01-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Neural Network World\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.14311/nnw.2023.33.020\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q4\",\"JCRName\":\"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Neural Network World","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.14311/nnw.2023.33.020","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q4","JCRName":"COMPUTER SCIENCE, ARTIFICIAL INTELLIGENCE","Score":null,"Total":0}

引用次数: 0

摘要

在本文中，我们提出了一种利用安全嵌入式引导加载程序漏洞的新方法，该漏洞是现代汽车软件系统信任的基础，通过遗传算法成功识别正确的参数来执行电磁故障注入攻击。具体来说，我们通过利用电子控制单元(ecu)的安全软件更新过程中的软件和硬件弱点组合来证明代码执行攻击的可行性，这在整个汽车行业是标准化的。我们的方法利用自动化的方法，消除了静态代码分析的需要，并且不需要对目标系统进行任何硬件修改。通过我们的研究，我们成功地展示了我们对三种不同的ecu的攻击，这些ecu来自不同的制造商，用于当前的车辆。我们的结果证明，与单纯的随机搜索相比，使用遗传算法查找故障参数减少了通过“野生丛林跳跃”获得任意代码执行所需的成功故障尝试次数约100倍。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

An evolutionary fault injection settings search algorithm for attacks on safe and secure embedded systems

In this paper, we present a novel method for exploiting vulnerabilities in secure embedded bootloaders, which are the foundation of trust for modern vehicle software systems, by using a genetic algorithm to successfully identify the correct parameters to perform an electromagnetic fault injection attack. Specifically, we demonstrate the feasibility of code execution attacks by leveraging a combination of software and hardware weaknesses in the secure software update process of electronic control units (ECUs), which is standardized across the automotive industry. Our method utilizes an automated approach, eliminating the need for static code analysis, and does not require any hardware modifications to the targeted systems. Through our research, we successfully demonstrated our attack on three distinct ECUs from different manufacturers used in current vehicles. Our results prove that the use of a genetic algorithm for finding the fault parameters reduces the number of attempts necessary for a successful fault to obtain arbitrary code execution via "wild jungle jumps" by approximately 100 times compared to a naive random search.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Neural Network World 工程技术-计算机：人工智能

CiteScore

1.80

自引率

0.00%

发文量

审稿时长

12 months

期刊介绍： Neural Network World is a bimonthly journal providing the latest developments in the field of informatics with attention mainly devoted to the problems of: brain science, theory and applications of neural networks (both artificial and natural), fuzzy-neural systems, methods and applications of evolutionary algorithms, methods of parallel and mass-parallel computing, problems of soft-computing, methods of artificial intelligence.