A Data-Driven Minimal Approach for CAN Bus Reverse Engineering

[en] Current in-vehicle communication systems lack security features, such as encryption and secure authentication. The approach most commonly used by car manufacturers is to achieve security through obscurity – keep the proprietary format used to encode the information secret. However, it is still possible to decode this information via reverse engineering. Existing reverse engineering methods typically require physical access to the vehicle and are time consuming. In this paper, we present a Machine Learning-based method that performs automated Controller Area Network (CAN) bus reverse engineering while requiring minimal time, hardware equipment, and potentially no physical access to the vehicle. Our results demonstrate high accuracy in identifying critical vehicle functions just from analysing raw traces of CAN data.

Disciplines :

Computer science

Author, co-author :

Buscemi, Alessio ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

Castignani, German; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

Engel, Thomas ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC)

Turcanu, Ion ; University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT)

External co-authors :

Language :

English

Title :

A Data-Driven Minimal Approach for CAN Bus Reverse Engineering

Publication date :

2020

Event name :

3rd IEEE Connected and Automated Vehicles Symposium

Event date :

from 04-10-2020 to 05-10-2020

Audience :

International

Main work title :

3rd IEEE Connected and Automated Vehicles Symposium, Victoria, Canada, 4-5 October 2020

Peer reviewed :

Peer reviewed

Funders :

FNR - Fonds National de la Recherche [LU]

Available on ORBilu :

since 06 September 2020

Statistics

Number of views

332 (35 by Unilu)

Number of downloads

351 (16 by Unilu)

More statistics

Scopus citations^®

Scopus citations^®
without self-citations

Bibliography

N. Navet, Y. Song, F. Simonot-Lion, and C. Wilwert, "Trends in automotive communication systems, " Proceedings of the IEEE, vol. 93, no. 6, pp. 1204-1223, 2005.
International Organization for Standardization, "Road vehicles-Controller area network (CAN)-Part 1: Data link layer and physical signalling, " ISO 11898-1, Dec. 2015.
C. Miller and C. Valasek, "Remote exploitation of an unaltered passenger vehicle, " p. 91, 2015.
C. Quigley, D. Charles, and R. McLaughlin, "CAN Bus Message Electrical Signatures for Automotive Reverse Engineering, Bench Marking and Rogue ECU Detection, " in SAE Technical Paper, SAE International, Apr. 2019.
M. Jaynes, R. Dantu, R. Varriale, and N. Evans, "Automating ECU identification for vehicle security, " in 15th International Conference on Machine Learning and Applications (ICMLA), IEEE, 2016, pp. 632-635.
M. Marchetti and D. Stabili, "READ: Reverse engineering of automotive data frames, " IEEE Transactions on Information Forensics and Security, vol. 14, no. 4, pp. 1083-1097, 2018.
M. Verma, R. Bridges, and S. Hollifield, "ACTT: Automotive CAN tokenization and translation, " in International Conference on Computational Science and Computational Intelligence (CSCI), IEEE, 2018, pp. 278-283.
M. R. Moore, R. A. Bridges, F. L. Combs, and A. L. Anderson, "Data-Driven Extraction of Vehicle States From CAN Bus Traffic for Cyberprotection and Safety, " IEEE Consumer Electronics Magazine, vol. 8, no. 6, pp. 104-110, 2019.
M. D. Pesé, T. Stacer, C. A. Campos, E. Newberry, D. Chen, and K. G. Shin, "LibreCAN: Automated CAN Message Translator, " in Proceedings of the 2019 ACM SIGSAC Conference on Computer and Communications Security (CCS), ACM, 2019, pp. 2283-2300.
Xee. (2020), [Online]. Available: https://www. xee. com/en/ (visited on 05/27/2020).
PEAK System. (2020), [Online]. Available: https://www. peak-system. com/PCAN-USB-FD. 365. 0. html (visited on 06/03/2020).
N. V. Chawla, K. W. Bowyer, L. O. Hall, and W. P. Kegelmeyer, "SMOTE: synthetic minority over-sampling technique, " Journal of Artificial Intelligence Research, vol. 16, pp. 321-357, 2002.