• 文献检索
  • 文档翻译
  • 深度研究
  • 学术资讯
  • Suppr Zotero 插件Zotero 插件
  • 邀请有礼
  • 套餐&价格
  • 历史记录
应用&插件
Suppr Zotero 插件Zotero 插件浏览器插件Mac 客户端Windows 客户端微信小程序
定价
高级版会员购买积分包购买API积分包
服务
文献检索文档翻译深度研究API 文档MCP 服务
关于我们
关于 Suppr公司介绍联系我们用户协议隐私条款
关注我们

Suppr 超能文献

核心技术专利:CN118964589B侵权必究
粤ICP备2023148730 号-1Suppr @ 2026

文献检索

告别复杂PubMed语法,用中文像聊天一样搜索,搜遍4000万医学文献。AI智能推荐,让科研检索更轻松。

立即免费搜索

文件翻译

保留排版,准确专业,支持PDF/Word/PPT等文件格式,支持 12+语言互译。

免费翻译文档

深度研究

AI帮你快速写综述,25分钟生成高质量综述,智能提取关键信息,辅助科研写作。

立即免费体验

车辆以太网SOME/IP协议的安全性分析与改进

Security Analysis and Improvement of Vehicle Ethernet SOME/IP Protocol.

作者信息

Du Jinze, Tang Rui, Feng Tao

机构信息

School of Computer and Communication, Lanzhou University of Technology, Lanzhou 730050, China.

出版信息

Sensors (Basel). 2022 Sep 8;22(18):6792. doi: 10.3390/s22186792.

DOI:10.3390/s22186792
PMID:36146142
原文链接:https://pmc.ncbi.nlm.nih.gov/articles/PMC9503536/
Abstract

The combination of in-vehicle networks and smart car devices has gradually developed into Intelligent Connected Vehicles (ICVs). Through the vehicle security protocol, ICVs can quickly realize communication transmission. However, with the more frequent connections between smart in-vehicle devices and the network, the relationship between intelligent cars and external systems is becoming more and more complicated, and in-vehicle networks are gradually facing many security issues. Strengthening the security of in-vehicle protocols has become particularly important. This paper uses the model building method based on the Colored Petri Net (CPN) theory to model the Scalable service-Oriented MiddlewarE over IP (SOME/IP) protocol of the vehicle Ethernet. The security protocol is formally verified and analyzed by combining it with the Dolev-Yao adversary model detection method. After verification, the protocol is subject to three attack vulnerabilities: replay, tampering, and deception. We introduce timestamps and random numbers to strengthen the protocol security. After the final analysis and verification, the improved scheme in this paper can effectively improve the security performance of the protocol.

摘要

车载网络与智能汽车设备的结合逐渐发展成为智能网联汽车(ICV)。通过车辆安全协议,智能网联汽车能够快速实现通信传输。然而,随着智能车载设备与网络之间的连接愈发频繁,智能汽车与外部系统之间的关系变得越来越复杂,车载网络逐渐面临诸多安全问题。加强车载协议的安全性变得尤为重要。本文采用基于有色Petri网(CPN)理论的模型构建方法,对车载以太网的可扩展面向服务中间件(SOME/IP)协议进行建模。通过将其与Dolev-Yao敌手模型检测方法相结合,对安全协议进行形式化验证与分析。验证后,该协议存在重放、篡改和欺骗三种攻击漏洞。我们引入时间戳和随机数来增强协议安全性。经过最终的分析与验证,本文提出的改进方案能够有效提高协议的安全性能。

https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/cc09014772e4/sensors-22-06792-g016.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/145541722f61/sensors-22-06792-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/8ab42febc0e6/sensors-22-06792-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/18c86b2a128c/sensors-22-06792-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/93bc025061e7/sensors-22-06792-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/6ffec0fe4b28/sensors-22-06792-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/fb39e0bb8923/sensors-22-06792-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/51fe5e0b0583/sensors-22-06792-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/f1ac52e2cd09/sensors-22-06792-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/1d775950e539/sensors-22-06792-g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/7d2754d4a2d9/sensors-22-06792-g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/33e4b6a8a82b/sensors-22-06792-g011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/69917793b4e5/sensors-22-06792-g012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/2d5300176a8f/sensors-22-06792-g013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/d84d1f8c8c7b/sensors-22-06792-g014.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/58ea2517c866/sensors-22-06792-g015.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/cc09014772e4/sensors-22-06792-g016.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/145541722f61/sensors-22-06792-g001.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/8ab42febc0e6/sensors-22-06792-g002.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/18c86b2a128c/sensors-22-06792-g003.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/93bc025061e7/sensors-22-06792-g004.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/6ffec0fe4b28/sensors-22-06792-g005.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/fb39e0bb8923/sensors-22-06792-g006.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/51fe5e0b0583/sensors-22-06792-g007.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/f1ac52e2cd09/sensors-22-06792-g008.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/1d775950e539/sensors-22-06792-g009.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/7d2754d4a2d9/sensors-22-06792-g010.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/33e4b6a8a82b/sensors-22-06792-g011.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/69917793b4e5/sensors-22-06792-g012.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/2d5300176a8f/sensors-22-06792-g013.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/d84d1f8c8c7b/sensors-22-06792-g014.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/58ea2517c866/sensors-22-06792-g015.jpg
https://cdn.ncbi.nlm.nih.gov/pmc/blobs/57b0/9503536/cc09014772e4/sensors-22-06792-g016.jpg

相似文献

1
Security Analysis and Improvement of Vehicle Ethernet SOME/IP Protocol.车辆以太网SOME/IP协议的安全性分析与改进
Sensors (Basel). 2022 Sep 8;22(18):6792. doi: 10.3390/s22186792.
2
An Authentication and Secure Communication Scheme for In-Vehicle Networks Based on SOME/IP.基于 SOME/IP 的车载网络认证与安全通信方案
Sensors (Basel). 2022 Jan 14;22(2):647. doi: 10.3390/s22020647.
3
An Anonymous Authentication and Key Update Mechanism for IoT Devices Based on EnOcean Protocol.基于 EnOcean 协议的物联网设备匿名认证和密钥更新机制。
Sensors (Basel). 2022 Sep 5;22(17):6713. doi: 10.3390/s22176713.
4
Design of a CANFD to SOME/IP Gateway Considering Security for In-Vehicle Networks.考虑车载网络安全性的CANFD到SOME/IP网关设计。
Sensors (Basel). 2021 Nov 27;21(23):7917. doi: 10.3390/s21237917.
5
Protecting SOME/IP Communication via Authentication Ticket.通过认证票据保护SOME/IP通信。
Sensors (Basel). 2023 Jul 11;23(14):6293. doi: 10.3390/s23146293.
6
State-of-the-art survey of in-vehicle protocols and automotive Ethernet security and vulnerabilities.车载协议以及汽车以太网安全与漏洞的最新技术综述。
Math Biosci Eng. 2023 Aug 29;20(9):17057-17095. doi: 10.3934/mbe.2023761.
7
A Multi-Layer Intrusion Detection System for SOME/IP-Based In-Vehicle Network.基于 SOME/IP 的车载网络多层入侵检测系统
Sensors (Basel). 2023 Apr 28;23(9):4376. doi: 10.3390/s23094376.
8
Design of a FlexRay/Ethernet Gateway and Security Mechanism for In-Vehicle Networks.设计一种 FlexRay/Ethernet 网关及车载网络安全机制。
Sensors (Basel). 2020 Jan 23;20(3):641. doi: 10.3390/s20030641.
9
Automotive IoT Ethernet-Based Communication Technologies Applied in a V2X Context via a Multi-Protocol Gateway.基于汽车物联网以太网的通信技术通过多协议网关应用于车对万物(V2X)场景。
Sensors (Basel). 2022 Aug 24;22(17):6382. doi: 10.3390/s22176382.
10
Formal Analysis of the Security Protocol with Timestamp Using SPIN.使用 SPIN 对带时间戳的安全协议进行形式化分析。
Comput Intell Neurosci. 2022 Aug 23;2022:2420590. doi: 10.1155/2022/2420590. eCollection 2022.

引用本文的文献

1
Protecting SOME/IP Communication via Authentication Ticket.通过认证票据保护SOME/IP通信。
Sensors (Basel). 2023 Jul 11;23(14):6293. doi: 10.3390/s23146293.

本文引用的文献

1
An Authentication and Secure Communication Scheme for In-Vehicle Networks Based on SOME/IP.基于 SOME/IP 的车载网络认证与安全通信方案
Sensors (Basel). 2022 Jan 14;22(2):647. doi: 10.3390/s22020647.
2
Design of a CANFD to SOME/IP Gateway Considering Security for In-Vehicle Networks.考虑车载网络安全性的CANFD到SOME/IP网关设计。
Sensors (Basel). 2021 Nov 27;21(23):7917. doi: 10.3390/s21237917.
3
Design of a FlexRay/Ethernet Gateway and Security Mechanism for In-Vehicle Networks.设计一种 FlexRay/Ethernet 网关及车载网络安全机制。
Sensors (Basel). 2020 Jan 23;20(3):641. doi: 10.3390/s20030641.