Closing the Security Gaps in SOME/IP Through Implementation of a Host-Based Intrusion Detection System

Andreas Casparsen*, Daniel Greth Sørensen*, Jeppe Nellemann Andersen*, Jonas Ingerslev Christensen*, Panagiotis Antoniou*, Rolf Krøyer*, Tatiana Madsen*, Karsten Gjoerup

*Kontaktforfatter

Publikation: Bidrag til bog/antologi/rapport/konference proceedingKonferenceartikel i proceedingForskningpeer review

Abstract

Scalable service-Oriented MiddlewarE over IP (SOME/IP) is a protocol that provides services over the IP stack, targeted at the automobile industry that strive to implement Ethernet in future vehicles as a replacement of Controller Area Network (CAN). However, switching to Ethernet and SOME/IP changes the entire protocol stack and therefore security needs to be reconsidered. With the assumption that a malicious user has access to the in-vehicle network, four different attacks are identified that can be performed on SOME/IP. Knowing how the network and traffic shall behave in the vehicle, a set of features are used as the basis for an Intrusion Detection System (IDS). These attacks along with the respective defences are implemented and tested on a SOME/IP network. The results from the testbed have demonstrated that the proposed attacks can be performed and therefore, additional security outside the SOME/IP protocol is needed. A host-based IDS is proposed, where the detection is based on arrival time, payload values and packet contradictions. Furthermore, suggestions on how to move towards prevention are given. The purpose of this research is to improve overall SOME/IP security for in-vehicle networks.

OriginalsprogEngelsk
Titel2022 25th International Symposium on Wireless Personal Multimedia Communications, WPMC 2022
Antal sider6
ForlagIEEE Computer Society Press
Publikationsdato2022
Sider436-441
ISBN (Trykt)978-1-6654-7319-4
ISBN (Elektronisk)978-1-6654-7318-7
DOI
StatusUdgivet - 2022
Begivenhed25th International Symposium on Wireless Personal Multimedia Communications, WPMC 2022 - Herning, Danmark
Varighed: 30 okt. 20222 nov. 2022

Konference

Konference25th International Symposium on Wireless Personal Multimedia Communications, WPMC 2022
Land/OmrådeDanmark
ByHerning
Periode30/10/202202/11/2022
NavnInternational Symposium on Wireless Personal Multimedia Communications, WPMC
Vol/bind2022-October
ISSN1347-6890

Bibliografisk note

Publisher Copyright:
© 2022 IEEE.

Fingeraftryk

Dyk ned i forskningsemnerne om 'Closing the Security Gaps in SOME/IP Through Implementation of a Host-Based Intrusion Detection System'. Sammen danner de et unikt fingeraftryk.

Citationsformater