TY - GEN
T1 - Centralized architecture for ECU security management in connected and autonomous vehicles
AU - Khemissa, Hamza
AU - Urien, Pascal
N1 - Publisher Copyright:
© 2022 IEEE.
PY - 2022/1/1
Y1 - 2022/1/1
N2 - The strong development of automotive industry is changing traditional perceptions towards a vision of connected and autonomous vehicles (CAVs), such as each vehicle consists of a number of networked computer components, called Electronic Control Units (ECUs) in order to achieve numerous automotive services. Controller Area Network (CAN) is primarily designed for automotive networking with little regard to security. Indeed, the lack of authentication and confidentiality features could lead to automotive cyberattacks putting at risk the safety of the driver, the pedestrians and other vehicles. Therefore, identity management, authentication and data confidentiality must be handled efficiently. In this paper, we propose a centralized architecture for ECU security management in CAVs. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyed-hash message authentication code (HMAC). Then, we define the configuration and security parameters on the CAN bus. Finally, we discuss our proposal. To the best of our knowledge, no prior works have been proposed for the establishment of a session key between each ECU and the data center.
AB - The strong development of automotive industry is changing traditional perceptions towards a vision of connected and autonomous vehicles (CAVs), such as each vehicle consists of a number of networked computer components, called Electronic Control Units (ECUs) in order to achieve numerous automotive services. Controller Area Network (CAN) is primarily designed for automotive networking with little regard to security. Indeed, the lack of authentication and confidentiality features could lead to automotive cyberattacks putting at risk the safety of the driver, the pedestrians and other vehicles. Therefore, identity management, authentication and data confidentiality must be handled efficiently. In this paper, we propose a centralized architecture for ECU security management in CAVs. First, we present a lightweight symmetric cryptography based session key agreement scheme between each ECU and the manufacturer data center, which uses a random nonce, concatenation operator, a simple hash function and a keyed-hash message authentication code (HMAC). Then, we define the configuration and security parameters on the CAN bus. Finally, we discuss our proposal. To the best of our knowledge, no prior works have been proposed for the establishment of a session key between each ECU and the data center.
KW - CAN
KW - CAVs
KW - ECU
KW - authentication
KW - data confidentiality
KW - identity
KW - security
U2 - 10.1109/ICTC55196.2022.9952757
DO - 10.1109/ICTC55196.2022.9952757
M3 - Conference contribution
AN - SCOPUS:85143251750
T3 - International Conference on ICT Convergence
SP - 1409
EP - 1414
BT - ICTC 2022 - 13th International Conference on Information and Communication Technology Convergence
PB - IEEE Computer Society
T2 - 13th International Conference on Information and Communication Technology Convergence, ICTC 2022
Y2 - 19 October 2022 through 21 October 2022
ER -