{"title":"基于CAN的符合协议的DoS攻击:演示和缓解","authors":"Wei Si, D. Starobinski, M. Laifenfeld","doi":"10.1109/VTCFall.2016.7881182","DOIUrl":null,"url":null,"abstract":"The Controller Area Network (CAN) is a shared medium, priority-based communication protocol, widely used in the automotive industry for interconnecting electrical components. Although allowing messages to take priority over others in accessing the shared medium is naturally desirable for vehicular applications, it also provides a vulnerability for Denial-of-Service (DoS) attacks. This paper studies the impact of such priority- based DoS attacks and proposes a mitigating scheme. We find that implementation details have a significant impact on the efficiency of priority- based DoS attacks. Nevertheless, with a proper configuration, a single attacker can block an entire CAN network and deem it unusable. To mitigate this problem, we propose integrating a wireless interface and design a hybrid wired/wireless protocol that schedules packet transmissions on the wired and wireless links. Our testbed results show that the hybrid wired/wireless protocol improves the throughput under a two-node DoS attack by a factor of four. Additional experimental results demonstrate that our hybrid wired/wireless protocol is robust to jamming attacks on the wireless link.","PeriodicalId":6484,"journal":{"name":"2016 IEEE 84th Vehicular Technology Conference (VTC-Fall)","volume":"12 1","pages":"1-7"},"PeriodicalIF":0.0000,"publicationDate":"2016-09-01","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"9","resultStr":"{\"title\":\"Protocol-Compliant DoS Attacks on CAN: Demonstration and Mitigation\",\"authors\":\"Wei Si, D. Starobinski, M. Laifenfeld\",\"doi\":\"10.1109/VTCFall.2016.7881182\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"The Controller Area Network (CAN) is a shared medium, priority-based communication protocol, widely used in the automotive industry for interconnecting electrical components. Although allowing messages to take priority over others in accessing the shared medium is naturally desirable for vehicular applications, it also provides a vulnerability for Denial-of-Service (DoS) attacks. This paper studies the impact of such priority- based DoS attacks and proposes a mitigating scheme. We find that implementation details have a significant impact on the efficiency of priority- based DoS attacks. Nevertheless, with a proper configuration, a single attacker can block an entire CAN network and deem it unusable. To mitigate this problem, we propose integrating a wireless interface and design a hybrid wired/wireless protocol that schedules packet transmissions on the wired and wireless links. Our testbed results show that the hybrid wired/wireless protocol improves the throughput under a two-node DoS attack by a factor of four. Additional experimental results demonstrate that our hybrid wired/wireless protocol is robust to jamming attacks on the wireless link.\",\"PeriodicalId\":6484,\"journal\":{\"name\":\"2016 IEEE 84th Vehicular Technology Conference (VTC-Fall)\",\"volume\":\"12 1\",\"pages\":\"1-7\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2016-09-01\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"9\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"2016 IEEE 84th Vehicular Technology Conference (VTC-Fall)\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1109/VTCFall.2016.7881182\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"2016 IEEE 84th Vehicular Technology Conference (VTC-Fall)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/VTCFall.2016.7881182","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
Protocol-Compliant DoS Attacks on CAN: Demonstration and Mitigation
The Controller Area Network (CAN) is a shared medium, priority-based communication protocol, widely used in the automotive industry for interconnecting electrical components. Although allowing messages to take priority over others in accessing the shared medium is naturally desirable for vehicular applications, it also provides a vulnerability for Denial-of-Service (DoS) attacks. This paper studies the impact of such priority- based DoS attacks and proposes a mitigating scheme. We find that implementation details have a significant impact on the efficiency of priority- based DoS attacks. Nevertheless, with a proper configuration, a single attacker can block an entire CAN network and deem it unusable. To mitigate this problem, we propose integrating a wireless interface and design a hybrid wired/wireless protocol that schedules packet transmissions on the wired and wireless links. Our testbed results show that the hybrid wired/wireless protocol improves the throughput under a two-node DoS attack by a factor of four. Additional experimental results demonstrate that our hybrid wired/wireless protocol is robust to jamming attacks on the wireless link.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
