Zeinab El-Rewini,Karthikeyan Sadatsharan,Daisy Flora Selvaraj,Siby Jose Plathottam,Prakash Ranganathan

DOI: https://doi.org/10.1016/j.vehcom.2019.100214

IF: 6.7

2020-06-01

Vehicular Communications

Abstract:As modern vehicles are capable to connect to an external infrastructure and Vehicle-to-Everything (V2X) communication technologies mature, the necessity to secure communications becomes apparent. There is a very real risk that today's vehicles are subjected to cyber-attacks that target vehicular communications. This paper proposes a three-layer framework (sensing, communication and control) through which automotive security threats can be better understood. The sensing layer is made up of vehicle dynamics and environmental sensors, which are vulnerable to eavesdropping, jamming, and spoofing attacks. The communication layer is comprised of both in-vehicle and V2X communications and is susceptible to eavesdropping, spoofing, man-in-the-middle, and sybil attacks. At the top of the hierarchy is the control layer, which enables autonomous vehicular functionality, including the automation of a vehicle's speed, braking, and steering. Attacks targeting the sensing and communication layers can propagate upward and affect the functionality and can compromise the security of the control layer. This paper provides the state-of-the-art review on attacks and threats relevant to the communication layer and presents countermeasures.

telecommunications,transportation science & technology

Mahdi Dibaei,Xi Zheng,Kun Jiang,Sasa Maric,Robert Abbas,Shigang Liu,Yuexin Zhang,Yao Deng,Sheng Wen,Jun Zhang,Yang Xiang,Shui Yu

DOI: https://doi.org/10.48550/arXiv.1907.07455

2019-07-17

Cryptography and Security

Abstract:Cyber security is one of the most significant challenges in connected vehicular systems and connected vehicles are prone to different cybersecurity attacks that endanger passengers' safety. Cyber security in intelligent connected vehicles is composed of in-vehicle security and security of inter-vehicle communications. Security of Electronic Control Units (ECUs) and the Control Area Network (CAN) bus are the most significant parts of in-vehicle security. Besides, with the development of 4G LTE and 5G remote communication technologies for vehicle-toeverything (V2X) communications, the security of inter-vehicle communications is another potential problem. After giving a short introduction to the architecture of next-generation vehicles including driverless and intelligent vehicles, this review paper identifies a few major security attacks on the intelligent connected vehicles. Based on these attacks, we provide a comprehensive survey of available defences against these attacks and classify them into four categories, i.e. cryptography, network security, software vulnerability detection, and malware detection. We also explore the future directions for preventing attacks on intelligent vehicle systems.

Mahdi Dibaei,Xi Zheng,Kun Jiang,Robert Abbas,Shigang Liu,Yuexin Zhang,Yang Xiang,Shui Yu

DOI: https://doi.org/10.1016/j.dcan.2020.04.007

IF: 6.348

2020-01-01

Digital Communications and Networks

Abstract:Intelligent vehicles are advancing at a fast speed with the improvement of automation and connectivity, which opens up new possibilities for different cyber-attacks, including in-vehicle attacks (e.g., hijacking attacks) and vehicle-to-everything communicationattacks (e.g., data theft). These problems are becoming increasingly serious with the development of 4G LTE and 5G communication technologies. Although many efforts are made to improve the resilience to cyber attacks, there are still many unsolved challenges. This paper first identifies some major security attacks on intelligent connected vehicles. Then, we investigate and summarize the available defences against these attacks and classify them into four categories: cryptography, network security, software vulnerability detection, and malware detection. Remaining challenges and future directions for preventing attacks on intelligent vehicle systems have been discussed as well.

Le Liang,Haixia Peng,Geoffrey Ye Li,Xuemin Shen

DOI: https://doi.org/10.48550/arXiv.1704.05746

2017-09-16

Abstract:Vehicular communications have attracted more and more attention recently from both industry and academia due to its strong potential to enhance road safety, improve traffic efficiency, and provide rich on-board information and entertainment services. In this paper, we discuss fundamental physical layer issues that enable efficient vehicular communications and present a comprehensive overview of the state-of-the-art research. We first introduce vehicular channel characteristics and modeling, which are the key underlying features differentiating vehicular communications from other types of wireless systems. We then present schemes to estimate the time-varying vehicular channels and various modulation techniques to deal with high-mobility channels. After reviewing resource allocation for vehicular communications, we discuss the potential to enable vehicular communications over the millimeter wave bands. Finally, we identify the challenges and opportunities associated with vehicular communications.

Information Theory

Yuanfang Chen,Muhammad Alam,Xiaohua Xu

DOI: https://doi.org/10.48550/arXiv.2302.01744

2023-01-14

Cryptography and Security

Abstract:The Internet of Vehicles (IoV) is formed by connecting vehicles to Internet of Things. It enables vehicles to ubiquitously access to the information of customers (drivers), suppliers, and even producers to structure an IoV-based industrial value chain. Nevertheless, with the increase in vehicle networking and the information exchange among drivers, suppliers, and producers, communication security is emerging as a serious issue. In this article, we provide an overview of the communication security, and a summary of security requirements. Moreover, we clarify how security solutions can be used to conquer security challenges in the value chain. Finally, an example of attack detection and identification in Electronic Control Units (ECUs) of vehicles is used to concretely illustrate the challenges.

Tian Guan,Yi Han,Nan Kang,Ningye Tang,Xu Chen,Shu Wang

DOI: https://doi.org/10.3390/su14095211

IF: 3.9

2022-04-26

Sustainability

Abstract:Cybersecurity is one of the most important challenges in the intelligent connected vehicle system. Interconnected vehicles are vulnerable to different network security attacks, which endanger the safety of passengers. This review paper firstly analyses the reasons why the current vehicle network is vulnerable to network attack and summarizes the three implementation methods of network security threats. The necessity of vehicle network security research and deployment is also analyzed. After giving a short introduction to the vehicular network security, this review paper identifies major security attacks on intelligent connected vehicles. Then the security enhancement technology of vehicle networks from three aspects are introduced, including vehicle network data encryption technology, vehicle network message authentication technology, and vehicle network anomaly intrusion detection technology. Then we analyze three common methods of abnormal intrusion detection in vehicle networks and explore the future research for preventing attacks on the network security of intelligent vehicle systems.

environmental sciences,environmental studies,green & sustainable science & technology

Rajkumar Singh Rathore,Chaminda Hewage,Omprakash Kaiwartya,Jaime Lloret

DOI: https://doi.org/10.3390/s22176679

IF: 3.9

2022-09-04

Sensors

Abstract:In-vehicle communication has become an integral part of today's driving environment considering the growing add-ons of sensor-centric communication and computing devices inside a vehicle for a range of purposes including vehicle monitoring, physical wiring reduction, and driving efficiency. However, related literature on cyber security for in-vehicle communication systems is still lacking potential dedicated solutions for in-vehicle cyber risks. Existing solutions are mainly relying on protocol-specific security techniques and lacking an overall security framework for in-vehicle communication. In this context, this paper critically explores the literature on cyber security for in-vehicle communication focusing on technical architecture, methodologies, challenges, and possible solutions. In-vehicle communication network architecture is presented considering key components, interfaces, and related technologies. The protocols for in-vehicle communication have been classified based on their characteristics, and usage type. Security solutions for in-vehicle communication have been critically reviewed considering machine learning, cryptography, and port-centric techniques. A multi-layer secure framework is also developed as a protocol and use case-independent in-vehicle communication solution. Finally, open challenges and future dimensions of research for in-vehicle communication cyber security are highlighted as observations and recommendations.

engineering, electrical & electronic,chemistry, analytical,instruments & instrumentation

Shaojun Xiong

DOI: https://doi.org/10.1088/1742-6596/2066/1/012058

2021-11-01

Journal of Physics: Conference Series

Abstract:Abstract With the improvement of the economic level and the development of infrastructure, the use of automobiles as a mode of transportation has become more and more common, and the number of cars has continued to grow. Based on this background, the rapid development of intelligent and networked automotive network communication technology, the birth of the Internet of Vehicles technology, has promoted the transformation of the automotive industry. This article gives the corresponding security requirements based on the security risks of IoV communication, briefly introduces the basic methods to realize the security of IoV communication, and proposes the service architecture, PKI architecture and multi-PKI system mutual trust mechanism to realize the security of IoV communication based on this.

Jinghua Yu,Stefan Wagner,Bowen Wang,Feng Luo

DOI: https://doi.org/10.4271/11-04-02-0005

2021-05-01

Abstract:The innovations of vehicle connectivity have been increasing dramatically to enhance the safety and user experience of driving, while the rising numbers of interfaces to the external world also bring security threats to vehicles. Many security countermeasures have been proposed and discussed to protect the systems and services against attacks. To provide an overview of the current states in this research field, we conducted a systematic mapping study on the topic area "security countermeasures of in-vehicle communication systems". 279 papers are identified based on the defined study identification strategy and criteria. We discussed four research questions related to the security countermeasures, validation methods, publication patterns, and research trends and gaps based on the extracted and classified data. Finally, we evaluated the validity threats, the study identification results, and the whole mapping process. We found that the studies in this topic area are increasing rapidly in recent years. However, there are still gaps in various subtopics like automotive Ethernet security, anomaly reaction, and so on. This study reviews the target field not only related to research findings but also research activities, which can help identify research gaps at a high level and inspire new ideas for future work.

Cryptography and Security

Batuhan Gul,Fatih Ertam

DOI: https://doi.org/10.1016/j.vehcom.2024.100846

IF: 6.7

2024-10-03

Vehicular Communications

Abstract:The utilization of autonomous vehicles is experiencing a rapid proliferation in contemporary society. Concurrently, with the relentless evolution of technology, the inexorable integration of autonomous vehicles into urban environments, driven by the overarching paradigm of smart cities, becomes increasingly apparent. This escalating reliance on autonomous vehicles concurrently heightens the susceptibility to malevolent actors orchestrating cyber-attacks against these vehicular systems. While previous years have seen a limited corpus of academic research pertaining to cyber-attack and defense methodologies for autonomous vehicles, the relentless progression of technology mandates a more contemporary and exhaustive inquiry. In addition, to the best of our knowledge, there is no article in the literature that provides detailed information and comparisons about in-vehicle sensors, in-vehicle networks, and in-vehicle network datasets by combining them in one article. Also, to our knowledge, very limited studies have been conducted on separately comparative analysis of in-vehicle networks, in-vehicle sensors or data sets in 2024, and therefore, the necessity of conducting a review study on these topics was recognized. To address this deficiency, we compile articles on attacks and defenses on sensors, in-vehicle networks and present detailed information about the latest datasets and provide comparative analysis. In this paper, we have analyzed 108 papers from the last 10 years on in-vehicle networks and sensors. 38 articles on in-vehicle sensors and 70 articles on in-vehicle networks were reviewed and analyzed. We categorize in-vehicle communication attacks into two main groups: sensor-initiated and network-initiated, with a chronological classification to highlight their evolution. We also compare the progress in securing in-vehicle communication and evaluate the most widely used datasets for attack and protection methods. Additionally, we discuss the advantages and disadvantages of these datasets and suggest future research directions. To the best of our knowledge, this work is the first to offer detailed information and comparative analysis of in-vehicle networks, sensors, and the latest datasets. While the study highlights the significant research conducted to protect in-vehicle networks and sensors from cyber attacks, technological advancements continue to introduce new attack vectors. Cars remain particularly susceptible to threats such as DoS, Fuzzy, Spoofing, and Replay attacks. Moreover, current defense mechanisms, including LSTM and CNN, have notable limitations. Future research is needed to address these challenges and enhance vehicle cybersecurity.

telecommunications,transportation science & technology

Yunchuan Sun,Lei Wu,Shizhong Wu,Shoupeng Li,Tao Zhang,Li Zhang,Junfeng Xu,Yongping Xiong,Xuegang Cui

DOI: https://doi.org/10.1007/s12243-016-0551-6

2016-11-15

Annals of Telecommunications

Abstract:As a typical application of Internet of Things (IoT) in the field of transportation, Internet of Vehicles (IoV) aims at achieving an integrated intelligent transportation system to enhance traffics efficiency, avoid accidents, ensure road safety, and improve driving experiences by using new IoT technologies. Different from other Internet, it is characterized by dynamic topological structures, huge network scale, non-uniform distribution of nodes, and mobile limitation. Due to these characteristics, IoV systems face various types of attacks, such as authentication and identification attacks, availability attacks, confidentiality attacks, routing attacks, data authenticity attacks, etc., which result in several challenging requirements in security and privacy. Many security scientists made numerous efforts to ensure the security and privacy for the Internet of Vehicles in recent years. This paper aims to review the advances on issues of security and privacy in IoV, including security and privacy requirements, attack types, and the relevant solutions, and discuss challenges and future trends in this area.

telecommunications

Kaigui Bian,Gaoxiang Zhang,Lingyang Song

DOI: https://doi.org/10.1109/vtcfall.2017.8288208

2017-01-01

Abstract:Vehicle-to-everything (V2X) communications enable the information exchange between the vehicle and the infrastructure, pedestrian, device, or any other entity that may affect the vehicle. V2X is known as a critical component for the vision of connected and autonomous vehicles in the future, with the goal of improving safety, saving energy, optimizing the traffic, etc. Many stake holders (e.g., 3GPP, IEEE) have announced the draft standards or technical reports that detail new opportunities of V2X-enabled vehicles for the cellular and automotive industries. However, the security issues in V2X communications receive little attention from industry and academia communities. In this paper, we describe how adversaries can exploit the security vulnerabilities to degrade the performance of V2X communications and evaluate the likelihood of V2X specific attacks in undermining the road safety. Our investigation reveals that the existing security mechanisms fall short of addressing the key security threats, and we also discuss countermeasures by adding a security sub-layer for V2X communication protocols to provide V2X users with privacy, authentication, and confidentiality.

Mhafuzul Islam,Mashrur Chowdhury,Hongda Li,Hongxin Hu

DOI: https://doi.org/10.48550/arXiv.1711.10651

2017-11-29

Networking and Internet Architecture

Abstract:A connected vehicle (CV) environment is composed of a diverse data collection, data communication and dissemination, and computing infrastructure systems that are vulnerable to the same cyberattacks as all traditional computing environments. Cyberattacks can jeopardize the expected safety, mobility, energy, and environmental benefits from connected vehicle applications. As cyberattacks can lead to severe traffic incidents, it has become one of the primary concerns in connected vehicle applications. In this paper, we investigate the impact of cyberattacks on the vehicle-to-infrastructure (V2I) network from a V2I application point of view. Then, we develop a novel V2I cybersecurity architecture, named CVGuard, which can detect and prevent cyberattacks on the V2I environment. In designing CVGuard, key challenges, such as scalability, resiliency and future usability were considered. A case study using a distributed denial of service (DDoS) on a V2I application, i.e., the Stop Sign Gap Assist (SSGA) application, shows that CVGuard was effective in mitigating the adverse effects created by a DDoS attack. In our case study, because of the DDoS attack, conflicts between the minor and major road vehicles occurred in an unsignalized intersection, which could have caused potential crashes. A reduction of conflicts between vehicles occurred because CVGuard was in operation. The reduction of conflicts was compared based on the number of conflicts before and after the implementation and operation of the CVGuard security platform. Analysis revealed that the strategies adopted by the CVGuard were successful in reducing the inter-vehicle conflicts by 60% where a DDoS attack compromised the SSGA application at an unsignalized intersection.

Pablo Marcillo,Diego Tamayo-Urgilés,Ángel Leonardo Valdivieso Caraguay,Myriam Hernández-Álvarez

DOI: https://doi.org/10.3390/s22239123

2022-11-24

Abstract:Recently, the number of vehicles equipped with wireless connections has increased considerably. The impact of that growth in areas such as telecommunications, infotainment, and automatic driving is enormous. More and more drivers want to be part of a vehicular network, despite the implications or risks that, for instance, the openness of wireless communications, its dynamic topology, and its considerable size may bring. Undoubtedly, this trend is because of the benefits the vehicular network can offer. Generally, a vehicular network has two modes of communication (V2I and V2V). The advantage of V2I over V2V is roadside units' high computational and transmission power, which assures the functioning of early warning and driving guidance services. This paper aims to discover the principal vulnerabilities and challenges in V2I communications, the tools and methods to mitigate those vulnerabilities, the evaluation metrics to measure the effectiveness of those tools and methods, and based on those metrics, the methods or tools that provide the best results. Researchers have identified the non-resistance to attacks, the regular updating and exposure of keys, and the high dependence on certification authorities as main vulnerabilities. Thus, the authors found schemes resistant to attacks, authentication schemes, privacy protection models, and intrusion detection and prevention systems. Of the solutions for providing security analyzed in this review, the authors determined that most of them use metrics such as computational cost and communication overhead to measure their performance. Additionally, they determined that the solutions that use emerging technologies such as fog/edge/cloud computing present better results than the rest. Finally, they established that the principal challenge in V2I communication is to protect and dispose of a safe and reliable communication channel to avoid adversaries taking control of the medium.

Hamideh Taslimasa,Sajjad Dadkhah,Euclides Carlos Pinto Neto,Pulei Xiong,Suprio Ray,Ali A. Ghorbani

DOI: https://doi.org/10.1016/j.iot.2023.100809

IF: 5.711

2023-07-01

Internet of Things

Abstract:Nowadays, connected vehicles have a major role in enhancing the driving experience. Connected vehicles in the network share their knowledge with the help of the network known as the Internet of Vehicles (IoV). However, connection through the network comes with risks ranging from privacy concerns to security vulnerabilities in the network. Inside vehicles, many sensors and Electronic Control Units (ECUs) are connected via specific network protocols, known as Intra-Vehicle communications, to assist the driver in tasks such as autonomous driving. Communicating through different protocols results in security openness for attackers to disturb the normal functioning of sensors and ECUs, which sometimes has detrimental effects. Moreover, in IoV, there is active communication between vehicles and other vehicles or road infrastructures alongside the network, known as Inter-Vehicle communications. Inter-Vehicle communications can also be an open vulnerability to intruders. Motivated by the mentioned security problems, many research initiatives have elaborated on building Intrusion Detection Systems (IDS) to detect malicious behavior threatening the confidentiality, integrity, availability, and authenticity of IoV. In this survey, we first provide a structured classification of IoV environment, its components, and the vulnerabilities of inter/intra-vehicle networks. Then, we provide a comprehensive literature review regarding numerous proposed IDS for IoV networks. Further, we discuss IDS criteria with a focus on essential areas that should be taken into account while assessing IoV network security, which can be related to IDS implementation constraints or further privacy requirements.

Zuobin Ying,Kaichao Wang,Jinbo Xiong,Maode Ma

DOI: https://doi.org/10.1049/cmu2.12778

IF: 1.345

2024-06-16

IET Communications

Abstract:The article first introduces the development history of the past Internet of Vehicles(IoV), summarizes some common V2X security threats, describes the development and application of the SM commercial algorithm in recent years, and finally, statistics and introduces the part of the development process of the security protocols currently used in IoV regarding the SM algorithms and gives some application prospects. With the refinement and development of the Vehicle to Everything (V2X) concept, its security issues have gradually come to the fore, revealing many security risks and increasing security requirements for V2X, and many protective measures have likewise emerged. The article first introduces the development history of the past Internet of Vehicles(IoV), summarizes some common V2X security threats, surveys the security technologies used for V2X communication, and outlines the development of each technology and the proposed security protocols in the last 3 years. Due to the different advantages and disadvantages of previous protection schemes, the idea of using National Cryptography to supplement the security scheme or designing a new security scheme article based on the National Cryptography Algorithms((AKA SM algorithms) is proposed. The survey then introduces the SM2, SM3, SM9, and ZUC algorithms, describes the development and application of the SM commercial algorithm in recent years, and finally, statistics and introduces the part of the development process of the security protocols currently used in IoV regarding the SM algorithms and gives some application prospects.

engineering, electrical & electronic

O. Saber,T. Mazri

DOI: https://doi.org/10.5194/isprs-archives-xlviii-4-w3-2022-157-2022

2022-12-02

Abstract:Abstract. An autonomous vehicle is designed to move partially or totally without the intervention of the driver. It is a system equipped with sensors, communication and processing units that make it able to monitor and analyse traffic information in real time to improve road safety. In addition, Internet of Vehicles is the latest technology dedicated to autonomous vehicles, the integration of this technology with 5G serves as a platform to interconnect sensors, vehicles, infrastructure, pedestrian, and network. Hence, the 5G Internet of Vehicles environment provides significant benefits, including increased security, high reliability, wide communication coverage and low service latency. On the other hand, due to the ubiquity of network connectivity, it also presents serious confidentiality, integrity, and availability issues for autonomous vehicles. This paper provides an overview of the autonomous vehicle concept by highlighting its technologies and the 5G IoV environment, presenting some susceptible attacks that can touch the security of this environment, and some good practices to ensure the autonomous vehicle security.

Xiaoqiang Sun,F. Richard Yu,Peng Zhang

DOI: https://doi.org/10.1109/tits.2021.3085297

IF: 8.5

2021-01-01

IEEE Transactions on Intelligent Transportation Systems

Abstract:As the general development trend of the automotive industry, connected and autonomous vehicles (CAVs) can be used to increase transportation safety, promote mobility choices, reduce user costs, and create new job opportunities. However, with the increasing level of connectivity and automation, malicious users are able to easily implement different kinds of attacks, which threaten the security of CAVs. Hence, this paper provides a comprehensive survey on the cyber-security in the environment of CAVs with the aim of highlighting security problems and challenges. Firstly, based on the types of communication networks and attack objects, it classifies various cyber-security risks and vulnerabilities in the environment of CAVs into in-vehicle network attacks, vehicle to everything network attacks, and other attacks. Next, it regards cyber-risk as another type of attacks in the environment of CAVs. Then, it describes and analyzes up-to-date corresponding defense strategies for securing CAVs. In addition, it concludes several available cyber-security and safety standards of CAVs, which is helpful for the practical application of CAVs. Finally, several challenges and open problems are discussed for the future research.

engineering, electrical & electronic,transportation science & technology, civil

Jiaqi Huang,Y. Qian,Dongfeng Fang,R. Hu

DOI: https://doi.org/10.1109/OJVT.2020.2999885

2020-06-04

IEEE Open Journal of Vehicular Technology

Abstract:In recent studies, vehicular networks have been considered as a promising solution to achieve better traffic management and to improve the driving experience of drivers. In vehicular networks, vehicle-to-everything (V2X) services, e.g. on-road traffic information exchange and location-based services, are provided to facilitate road safety for vehicles and traffic management for the relevant authorities. Dedicated Short Range Communications is specifically designed for V2X communications, and recently the cellular network has shown great potential to support V2X with better performance and more applications. Due to the wireless nature of V2X communications, how to secure V2X communications and guarantee the privacy of users are great challenges that have hampered the implementation of vehicular services. Many solutions have been proposed by researchers in last two decades. In this paper, we present a comprehensive survey on the state-of-the-art solutions concerning security and privacy for V2X communications. For security, detailed discussions on cryptography based schemes and trust based schemes are provided. For privacy, we summarize and compare general solutions in preserving identity privacy and location privacy. Cellular based V2X communications have shown many advantages over DSRC, and the oncoming fifth-generation cellular technology is going to provide more possibilities to V2X. Thus, security architectures and solutions for cellular based communications are also illustrated and discussed. Finally, we summarize the remaining challenges and point out future research directions.

Computer Science,Environmental Science,Engineering

Ming Chen,Minrui Yan

DOI: https://doi.org/10.1016/j.isatra.2023.04.019

Abstract:Smart and autonomous vehicles are inseparable parts of the future Intelligent Transportation Systems (ITS). However, ITS components, and especially its vehicles, are prone to cyber threats. Interconnectivity of different parts, ranging from in-vehicle communication of different modules to vehicle and vehicle to infrastructure message exchanges open a window to the cyber attacks launched through these communication media. This paper introduces the concept of stealth virus or worm in smart and autonomous vehicles which can jeopardize the safety of passengers. Stealth attacks are designed to manipulate a system in a way that while the changes are not detectable by human, the system is negatively influenced over the time. A framework for Intrusion Detection System (IDS) is proposed afterward. The proposed IDS structure is scalable and easily deployable on current and future vehicles which are equipped with Controller Area Network (CAN) buses. Through a case study on car cruise control, a new stealth attack is presented. The attack is analytically discussed first. Then, it is shown how the proposed IDS can detect this kind of threats.