Please use this identifier to cite or link to this item: http://hdl.handle.net/10397/99845
PIRA download icon_1.1View/Download Full Text
DC FieldValueLanguage
dc.contributorDepartment of Computingen_US
dc.creatorXue, Len_US
dc.creatorLiu, Yen_US
dc.creatorLi, Ten_US
dc.creatorZhao, Ken_US
dc.creatorLi, Jen_US
dc.creatorYu, Len_US
dc.creatorLuo, Xen_US
dc.creatorZhou, Yen_US
dc.creatorGu, Gen_US
dc.date.accessioned2023-07-24T01:02:58Z-
dc.date.available2023-07-24T01:02:58Z-
dc.identifier.isbn978-1-939133-31-1en_US
dc.identifier.urihttp://hdl.handle.net/10397/99845-
dc.description31st USENIX Security Symposium, August 10–12, 2022, Boston, MA, USAen_US
dc.language.isoenen_US
dc.rights© Author(s)en_US
dc.rightsThe following publication Xue, L., Liu, Y., Li, T., Zhao, K., Li, J., Yu, L., ... & Gu, G. (2022). {SAID}: State-aware Defense Against Injection Attacks on In-vehicle Network. In 31st USENIX Security Symposium (USENIX Security 22) (pp. 1921-1938) is available at https://www.usenix.org/conference/usenixsecurity22/presentation/xue-leien_US
dc.titleSAID : state-aware defense against injection attacks on in-vehicle networken_US
dc.typeConference Paperen_US
dc.identifier.spage1921en_US
dc.identifier.epage1938en_US
dcterms.abstractModern vehicles are equipped with many ECUs (Electronic Control Unit) that are connected to the IVN (In-Vehicle Network) for controlling the vehicles. Meanwhile, various interfaces of vehicles, such as OBD-II port, T-Box, sensors, and telematics, implement the interaction between the IVN and external environment. Although rich value-added functionalities can be provided through these interfaces, such as diagnostics and OTA (Over The Air) updates, the adversary may also inject malicious data into IVN, thus causing severe safety issues. Even worse, existing defense approaches mainly focus on detecting the injection attacks launched from IVN, such as malicious/compromised ECUs, by analyzing CAN frames, and cannot defend against the higher layer MIAs (Message Injection Attacks) that can cause abnormal vehicle dynamics. In this paper, we propose a new state-aware abnormal message injection attack defense approach, named SAID. It detects the abnormal data to be injected into IVN by considering the data semantics and the vehicle dynamics and prevents the MIAs launched from devices connected to the vehicles, such as the compromised diagnostic tools and T-boxes. We develop a prototype of SAID for defending against MIAs and evaluate it using both real road data and simulation data. The experimental results show that SAID can defend against more than 99% of the network and service layer attack traffic and all state layer MIAs, effectively enforcing the safety of vehicles.en_US
dcterms.accessRightsopen accessen_US
dcterms.bibliographicCitationIn Proceedings of the 31st USENIX Security Symposium, August 10–12, 2022, Boston, MA, USA, p. 1921-1938en_US
dcterms.issued2022-
dc.relation.conferenceUSENIX Security Symposium [USENIX Security]en_US
dc.description.validate202307 bcwwen_US
dc.description.oaVersion of Recorden_US
dc.identifier.FolderNumbera2291-
dc.identifier.SubFormID47371-
dc.description.fundingSourceSelf-fundeden_US
dc.description.pubStatusPublisheden_US
dc.description.oaCategoryCopyright retained by authoren_US
Appears in Collections:Conference Paper
Files in This Item:
File Description SizeFormat 
sec22-xue-lei.pdf10.17 MBAdobe PDFView/Open
Open Access Information
Status open access
File Version Version of Record
Access
View full-text via PolyU eLinks SFX Query
Show simple item record

Page views

140
Citations as of Oct 6, 2025

Downloads

35
Citations as of Oct 6, 2025

Google ScholarTM

Check


Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.