I understand that CAN is a serial communication protocol where there is not source authentication. This itself brings a lot of troubles, but what else is missing?
These papers are talking about CAN vulnerability:
1- Tran, E., & Koopman, P. (1999). Multi-bit error vulnerabilities in the controller area network protocol. Carnegie Mellon University, Institute for Complex Engineered Systems.
2- Matsumoto, T., Hata, M., Tanabe, M., Yoshioka, K., & Oishi, K. (2012, May). A method of preventing unauthorized data transmission in controller area network. In Vehicular Technology Conference (VTC Spring), 2012 IEEE 75th (pp. 1-5). IEEE.
3- Groza, B., & Murvay, S. (2013). Efficient protocols for secure broadcast in controller area networks. Industrial Informatics, IEEE Transactions on, 9(4), 2034-2042.
hope they be useful for you.
I think the manipulation of the CAN IDs is the one of the most critical vulnerabilty.
Is a cyber atttack on the vehicle network possible from outside the car?
- Badges
- Science topic