Use of Intrusion Detection Systems in Vehicular Controller Area Networks to Preclude Remote Attacks

Abstract

Security is always at the forefront of our thoughts whether we know it or not. Mindlessly, people go about their daily lives with security a part of everything performed. Is the house door locked? Is the phone off and upside down on the table so no one can see it? Is the computer at home/work logged out and secure? However, when thinking about our vehicles, the normal person stops at locking the door. Problem is that our vehicles’ electronic systems are unprotected. Vehicles today are essentially personal computers with wheels. It is arguable that vehicles are incredibly safe, but that safety is an illusion. The computers that control our cars have essentially zero security in place to protect them. It is a chilling notion to have the knowledge your brakes could be rendered useless while moving at a high rate of speed. On top of that, this could be done and leave essentially no trace it had been performed. The main crux of this insecurity is the Controller Area Network (CAN) utilized by the vehicles’ electronics. This paper outlines the current vulnerabilities that vex this network system and why those issues have remained unsolved. It also outlines a plausible solution to get the security community moving in the right direction. While this solution is a mere small step toward a robust network, it does alert the operator to a potential network attack. With this knowledge, the driver of the vehicle may get it to a safe location prior to more damage being inflected on themselves or others.