To protect a vehicle CAN communication network from cyber attacks, the network including a controller area network (CAN) bus and a plurality of nodes that relate to the CAN bus in a signal exchange relationship and at least partially relate to a unit for controlling a vehicle function.SOLUTION: A method includes the steps of: analyzing contents of a CAN message being transmitted between nodes among a plurality of nodes in order to identify an unauthorized CAN message (MF); and blocking the MF. The step of blocking disables the MF for an integrity check performed by a CAN controller of a node by inserting a corrupted bit sequence (NV) recognized as an error by the CAN controller to obtain a corrupted message (MF')
Method for protecting a vehicle from network attacks and corresponding device
Baldanzi LucaCo-primo
Membro del Collaboration Group
;Crocetti LucaCo-primo
Membro del Collaboration Group
;Fanucci LucaCo-primo
Membro del Collaboration Group
2019-01-01
Abstract
To protect a vehicle CAN communication network from cyber attacks, the network including a controller area network (CAN) bus and a plurality of nodes that relate to the CAN bus in a signal exchange relationship and at least partially relate to a unit for controlling a vehicle function.SOLUTION: A method includes the steps of: analyzing contents of a CAN message being transmitted between nodes among a plurality of nodes in order to identify an unauthorized CAN message (MF); and blocking the MF. The step of blocking disables the MF for an integrity check performed by a CAN controller of a node by inserting a corrupted bit sequence (NV) recognized as an error by the CAN controller to obtain a corrupted message (MF')I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.
