Abstract
In recent years, Ethernet has been introduced into vehicular networks to cope with the increasing demand for bandwidth and complexity in communication networks. To exchange data between controller area network (CAN) and Ethernet, a gateway system is required to provide a communication interface. Additionally, the existence of networked devices exposes automobiles to cyber security threats. Against this background, a gateway for CAN/CAN with flexible data-rate (CANFD) to scalable service-oriented middleware over IP (SOME/IP) protocol conversion is designed, and security schemes are implemented in the routing process to provide integrity and confidentiality protections. Based on NXP-S32G, the designed gateway is implemented and evaluated. Under most operating conditions, the CPU and the RAM usage are less than 5% and 20 MB, respectively. Devices running a Linux operating system can easily bear such a system resource overhead. The latency caused by the security scheme accounts for about 25% of the entire protocol conversion latency. Considering the security protection provided by the security scheme, this overhead is worthwhile. The results show that the designed gateway can ensure a CAN/CANFD to SOME/IP protocol conversion with a low system resource overhead and a low latency while effectively resisting hacker attacks such as frame forgery, tampering, and sniffing.
Highlights
The traditional automotive electrical/electronic architecture (EEA) is a distributed control architecture that has been applied for decades with a small number of electronic control units (ECUs)
The results show that the transmission time of the controller area network (CAN) message from the ECU to the gateway accounts for the largest proportion of time taken in the entire routing process
The main contribution of this paper is that a gateway is designed for CAN/CAN with flexible datarate (CANFD) to service-oriented middleware over IP (SOME/IP) protocol conversion, while three security protection methods are implemented in the routing process to provide integrity and confidentiality protection for message conversion and transmission
Summary
The traditional automotive electrical/electronic architecture (EEA) is a distributed control architecture that has been applied for decades with a small number of electronic control units (ECUs). For a new in-vehicle network where Ethernet and the traditional CAN bus coexist, this paper proposes and implements a CAN/CANFD to SOME/IP gateway system with cyber security protection mechanisms. The Ethernet ends of the routing mechanisms proposed by Trong Yen Lee et al and Jin Seo Park et al do not consider the possible performance impact caused by standardized vehicle application layer protocols such as SOME/IP Their cyber security protection mechanisms only contain a MAC to ensure message integrity without considering confidentiality protection. Some scholars have already carried out research on related in-vehicle routing mechanisms, but most of these studies do not consider the possible impact of cyber security protection mechanisms and automotive Ethernet application layer protocol. Three different strengths of cyber security protection mechanisms are provided in the gateway protocol conversion process, which can provide integrity and confidentiality cyber security protection for the data transmission process
Sign-in/Register to view highlights & summary Sign-in/Register to access full text options 
Free) 
Talk to us
Join us for a 30 min session where you can share your feedback and ask us any queries you have
Schedule a call
