Design and Implementation of a Novel Testbed for Automotive Security Analysis
abstract
1 | In this paper, we introduce design and implementation of an emulating internal vehicular network as a testbed that can be used to perform an intuitive analysis on the data set collected from the real vehicular network for different situations and replayed through the testing environment similar to an actual vehicle. |
abstract中指出:
- 该文章设计并实现了汽车内部网络的一个模拟工具
- 可以用来执行数据分析和数据重放
设计与实施
其设计模型图如下:
可用性评估
1 | The implemented framework was compared with the actual vehicle to evaluate its adequacy as an analysis object. It was found that the implemented framework was capable of collecting 7X messages amounting to 76% of 9X messages of the actual vehicle on the basis of CAN ID. In addition, it was possible to control the vehicle by CAN message injection and remote attack through IVI, and to collect data in the testing situation. |
仿真模型和实车比较之后发现:
-
该仿真模型能够基于CAN ID采集到7X消息,占实际车辆9X消息的76%
-
可以通过CAN消息注入和IVI远程攻击来控制车辆
局限性
该模型的实现同实车还存在着差异,因此该模型存在局限性:
- 模型包含的 CAN ID 可能与一些汽车的 CAN ID 类型存在差异,因此不能分析不兼容汽车的差异
- 如BCM或ECM的报文与收集到的报文存在冲突,不能正常展示
All articles in this blog are licensed under CC BY-NC-SA 4.0 unless stating additionally.