基于CAN-FD总线的车载网络安全通信
Secure Communication Method for In-Vehicle Network Based on CAN-FD Bus
投稿时间:2017-10-27  修订日期:2019-01-02
DOI:10.11908/j.issn.0253-374x.2019.03.012     稿件编号:    中图分类号:U463.67
 
摘要点击次数: 206    全文下载次数: 125
中文摘要
      以数据加密和入侵检测为基础,建立了一种基于灵活数据速率控制器局域网络的汽车通信网络信息安全方法.提出了包括安全传输、安全启动、时间同步与密钥分配的汽车网络安全通信协议,并通过建立网络仿真模型验证安全协议的有效性.搭建了基于硬件实例的安全通信节点,测试硬件节点的实际通信性能和加密性能.最后针对汽车通信网络潜在的攻击方式,以Dolev-Yao入侵模型攻击和拒绝服务攻击为测试方法,对安全通信模型进行了安全性攻击测试和入侵检测功能验证,确定了网络入侵检测的判定指标.测试结果验证了该方法的安全性和可用性.
英文摘要
      A security method for vehicle communication network based on controller area network with flexible data-rate (CAN-FD) was established with data encryption and intrusion detection. Secure communication protocols for vehicle network including secure transmission, secure boot, time synchronization, and key distribution were proposed, and a network simulation model was established to verify the validity of the secure protocols. Secure communication nodes based on hardware instance were established to test the actual communication performance and encryption performance of the hardware nodes. Aiming at the potential attack modes of the vehicle communication network, the Dolev-Yao intruder model attack and the denial of service attack were used as the test methods to test the security of communication model and verify the intrusion detection function. And the judgment index of the network intrusion detection was determined. The experimental results had confirmed the security and usability of the method.
HTML   查看全文  查看/发表评论  

您是第5477860位访问者
版权所有《同济大学学报(自然科学版)》
主管单位:教育部 主办单位:同济大学
地  址: 上海市四平路1239号 邮编:200092 电话:021-65982344 E-mail: zrxb@tongji.edu.cn
本系统由北京勤云科技发展有限公司设计