通过后量子加密和网络分段保护车载通信

IF 4 3区计算机科学 Q1 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

Computers & Electrical Engineering Pub Date : 2025-06-13 DOI:10.1016/j.compeleceng.2025.110488

Arcangelo Castiglione, Teresa Elia

{"title":"通过后量子加密和网络分段保护车载通信","authors":"Arcangelo Castiglione, Teresa Elia","doi":"10.1016/j.compeleceng.2025.110488","DOIUrl":null,"url":null,"abstract":"<div><div>Modern vehicles rely on Electronic Control Units (ECUs) communicating via in-vehicle networks, where the Controller Area Network (CAN) protocol is the industry standard. Although CAN is efficient and robust, it lacks essential security features such as authentication, confidentiality, and integrity, leaving it vulnerable to cyberattacks. These vulnerabilities are amplified by the rise of quantum computing, which threatens traditional cryptographic methods and increases the need for more resilient security mechanisms for vehicles. This paper proposes a segmented-based CAN model that integrates Post-Quantum Cryptography. It uses the CRYSTALS-Kyber algorithm for secure session key sharing and lightweight symmetric encryption to protect CAN messages in real-time. Experimental evaluation in a simulated automotive environment shows that the model adds negligible latency and network load. The findings confirm that quantum-resistant security can be achieved without compromising the performance or reliability of existing CAN-based systems, offering a scalable and future-proof solution for automotive cybersecurity.</div></div>","PeriodicalId":50630,"journal":{"name":"Computers & Electrical Engineering","volume":"126 ","pages":"Article 110488"},"PeriodicalIF":4.0000,"publicationDate":"2025-06-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Securing in-vehicle communications through post-quantum cryptography and network segmentation\",\"authors\":\"Arcangelo Castiglione, Teresa Elia\",\"doi\":\"10.1016/j.compeleceng.2025.110488\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"<div><div>Modern vehicles rely on Electronic Control Units (ECUs) communicating via in-vehicle networks, where the Controller Area Network (CAN) protocol is the industry standard. Although CAN is efficient and robust, it lacks essential security features such as authentication, confidentiality, and integrity, leaving it vulnerable to cyberattacks. These vulnerabilities are amplified by the rise of quantum computing, which threatens traditional cryptographic methods and increases the need for more resilient security mechanisms for vehicles. This paper proposes a segmented-based CAN model that integrates Post-Quantum Cryptography. It uses the CRYSTALS-Kyber algorithm for secure session key sharing and lightweight symmetric encryption to protect CAN messages in real-time. Experimental evaluation in a simulated automotive environment shows that the model adds negligible latency and network load. The findings confirm that quantum-resistant security can be achieved without compromising the performance or reliability of existing CAN-based systems, offering a scalable and future-proof solution for automotive cybersecurity.</div></div>\",\"PeriodicalId\":50630,\"journal\":{\"name\":\"Computers & Electrical Engineering\",\"volume\":\"126 \",\"pages\":\"Article 110488\"},\"PeriodicalIF\":4.0000,\"publicationDate\":\"2025-06-13\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Computers & Electrical Engineering\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://www.sciencedirect.com/science/article/pii/S0045790625004318\",\"RegionNum\":3,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Computers & Electrical Engineering","FirstCategoryId":"94","ListUrlMain":"https://www.sciencedirect.com/science/article/pii/S0045790625004318","RegionNum":3,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

现代车辆依赖于通过车载网络进行通信的电子控制单元（ecu），其中控制器局域网（CAN）协议是行业标准。虽然CAN是高效和健壮的，但它缺乏必要的安全特性，如身份验证、机密性和完整性，使其容易受到网络攻击。量子计算的兴起加剧了这些漏洞，威胁到传统的加密方法，并增加了对更具弹性的车辆安全机制的需求。提出了一种集成后量子密码学的基于分段的CAN模型。它使用CRYSTALS-Kyber算法进行安全会话密钥共享和轻量级对称加密，以实时保护CAN消息。在模拟汽车环境中的实验评估表明，该模型增加的延迟和网络负载可以忽略不计。研究结果证实，在不影响现有基于can的系统的性能或可靠性的情况下，可以实现抗量子安全，为汽车网络安全提供可扩展和面向未来的解决方案。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Securing in-vehicle communications through post-quantum cryptography and network segmentation

Modern vehicles rely on Electronic Control Units (ECUs) communicating via in-vehicle networks, where the Controller Area Network (CAN) protocol is the industry standard. Although CAN is efficient and robust, it lacks essential security features such as authentication, confidentiality, and integrity, leaving it vulnerable to cyberattacks. These vulnerabilities are amplified by the rise of quantum computing, which threatens traditional cryptographic methods and increases the need for more resilient security mechanisms for vehicles. This paper proposes a segmented-based CAN model that integrates Post-Quantum Cryptography. It uses the CRYSTALS-Kyber algorithm for secure session key sharing and lightweight symmetric encryption to protect CAN messages in real-time. Experimental evaluation in a simulated automotive environment shows that the model adds negligible latency and network load. The findings confirm that quantum-resistant security can be achieved without compromising the performance or reliability of existing CAN-based systems, offering a scalable and future-proof solution for automotive cybersecurity.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Computers & Electrical Engineering 工程技术-工程：电子与电气

CiteScore

9.20

自引率

7.00%

发文量

661

审稿时长

47 days

期刊介绍： The impact of computers has nowhere been more revolutionary than in electrical engineering. The design, analysis, and operation of electrical and electronic systems are now dominated by computers, a transformation that has been motivated by the natural ease of interface between computers and electrical systems, and the promise of spectacular improvements in speed and efficiency. Published since 1973, Computers & Electrical Engineering provides rapid publication of topical research into the integration of computer technology and computational techniques with electrical and electronic systems. The journal publishes papers featuring novel implementations of computers and computational techniques in areas like signal and image processing, high-performance computing, parallel processing, and communications. Special attention will be paid to papers describing innovative architectures, algorithms, and software tools.