一种基于安全性的CAN-FD信号打包方法

doi:10.12068/j.issn.1005-3026.2021.06.003

东北大学学报（自然科学版） ›› 2021, Vol. 42 ›› Issue (6): 775-781.DOI: 10.12068/j.issn.1005-3026.2021.06.003

一种基于安全性的CAN-FD信号打包方法

丁山，暴林慧，高梦宁，佘黎煌

(东北大学计算机科学与工程学院，辽宁沈阳110169)

修回日期:2020-08-03 接受日期:2020-08-03 发布日期:2021-06-23
通讯作者: 丁山
作者简介:丁山 (1967-)，男，湖南攸县人，东北大学副教授，博士.
基金资助:
中央高校基本科研业务费专项资金资助项目(N181604007).

A Security-based CAN-FD Signal Packing Method

DING Shan， BAO Lin-hui， GAO Meng-ning， SHE Li-huang

School of Computer Science ＆ Engineering， Northeastern University， Shenyang 110169， China.

Revised:2020-08-03 Accepted:2020-08-03 Published:2021-06-23
Contact: DING Shan
About author:-
Supported by:
-

摘要/Abstract

摘要： 现代车辆配备的大量电子设备可能成为黑客侵入车载网络系统的途径.为了防范攻击，需要为CAN-FD车载总线引入安全机制.建立了一种通过区分信号、帧、ECU层面安全等级、基于帧AES加密与添加MAC消息认证码的CAN-FD分层安全模型，并在此基础上提出一种可以有效降低 ECU 安全设计硬件成本的信号打包安全约束.通过将贪婪算法引入遗传算法的交叉算子与变异算子，设计了一种基于安全性的混合遗传算法，对具有不同安全等级的 CAN-FD 信号进行打包优化.实验表明，混合遗传算法可以获得比贪婪算法更低的带宽利用率，并通过实验分析了此安全设计对带宽利用率的影响.

关键词: CAN-FD 信号打包；分层安全模型；信号打包安全约束；混合遗传算法

Abstract: Modern vehicles are equipped with a large number of electronic devices， which may become a way for hackers to invade the vehicle network system. In order to prevent attacks， it is necessary to introduce a security mechanism for the CAN-FD vehicle bus. A CAN-FD hierarchical security model was established to distinguish signal， frame， and ECU-level security levels， based on frame AES encryption and adding MAC message authentication codes. According to the proposed model， a signal packaging safety constraint that can effectively reduce the hardware cost of ECU safety design was developed. By introducing the greedy algorithm into the crossover operator and mutation operator of the genetic algorithm， a safety-based hybrid genetic algorithm was designed to package and optimize CAN-FD signals with different safety levels. Experiments show that the hybrid genetic algorithm can achieve lower bandwidth utilization than the greedy algorithm， and the impact of this security design on bandwidth utilization is analyzed through experiments.

Key words: CAN-FD signal packing; layered security model; signal packaging security constraints; hybrid genetic algorithm

中图分类号:

TP393

丁山，暴林慧，高梦宁，佘黎煌. 一种基于安全性的CAN-FD信号打包方法[J]. 东北大学学报（自然科学版）, 2021, 42(6): 775-781.

DING Shan， BAO Lin-hui， GAO Meng-ning， SHE Li-huang. A Security-based CAN-FD Signal Packing Method[J]. Journal of Northeastern University(Natural Science), 2021, 42(6): 775-781.

参考文献

[1]Xie G，Li Y，Han Y，et al.Recent advances and future trends for automotive functional safety design methodologies［J］.IEEE Transactions on Industrial Informatics，2020，16(9):5629-5642.
[2]Sandstrom K，Norstom C，Ahlmark M.Frame packing in real-time communication［C］//Proceedings Seventh International Conference on Real-Time Computing Systems and Applications.Cheju Island，2000:399-403.
[3]Polzlbauer F，Bate I，Brenner E.Optimized frame packing for embedded systems［J］.IEEE Embedded Systems Letters，2012，4(3):65-68.
[4]Bordoloi U D，Samii S.The frame packing problem for CAN-FD［C］//2014 IEEE Real-Time Systems Symposium.Rome，2014:284-293.
[5]Joshi P，Zeng H B，Bordoloi U D，et al.The multi-domain frame packing problem for CAN-FD［C］//29th Euromicro Conference on Real-Time Systems (ECRTS 2017).Dubrovnik，2017:1-22.
[6]Ding S，Wang H，Zeng G.An integrated framework for packing CAN-FD frames and assigning offsets［C］//2019 IEEE Smart World，Ubiquitous Intelligence & Computing，Advanced & Trusted Computing，Scalable Computing & Communications，Cloud & Big Data Computing，Internet of People and Smart City Innovation (SmartWorld/SCALCOM/UIC/ATC/CBDCom/IOP/SCI).Leicester，2019:66-73.
[7]Joshi P，Ravi S S，Samii S，et al.Offset assignment to signals for improving frame packing in CAN-FD［C］//2017 IEEE Real-Time Systems Symposium (RTSS).Paris，2017:167-177.
[8]Joshi P，Ravi S S，Liu Q，et al.Approaches for assigning offsets to signals for improving frame packing in CAN-FD［J］.IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems，2019，39(5):1109-1122.
[9]Lin C W，Zheng B，Zhu Q，et al.Security-aware design methodology and optimization for automotive systems［J］.ACM Transactions on Design Automation of Electronic Systems，2015，21(1):1-26.
[10]Xie Y，Zeng G，Kurachi R，et al.Security/timing-aware design space exploration of CAN FD for automotive cyber-physical systems［J］.IEEE Transactions on Industrial Informatics，2018，15(2):1094-1104.
[11]Xie Y，Huang P，Liang W，et al.Comparison between CAN and CAN FD:a quantified approach［C］//2017 IEEE International Symposium on Parallel and Distributed Processing with Applications and 2017 IEEE International Conference on Ubiquitous Computing and Communications (ISPA/IUCC).Guangzhou，2017:1399-1403.
[12]Vehicle Cyber Security Systems Engineering Committee.SAE J3061:Cyber security guidebook for cyber-physical vehicle systems［S］.Warrendale:SAE International，2016.
[13]Ding S，Zeng G，Kurachi R，et al.A genetic algorithm for packing CAN FD frame with real-time constraints［J］.IEICE Transactions on Information and Systems，2017，100(10):2505-2514.
[14]Kramer S，Ziegenbein D，Hamann A.Real world automotive benchmarks for free ［C］//6th International Workshop on Analysis Tools and Methodologies for Embedded and Real-time Systems(WATERS).Lund，2015.

[1]	张露文，刘洪娟. 考虑防护和隔离的传染病传播建模与分析[J]. 东北大学学报（自然科学版）, 2023, 44(4): 486-494.
[2]	李贞妮, 李晶皎, 王骄, 杨丹. 基于FPGA的2D-Torus片上网络无死锁路由算法[J]. 东北大学学报（自然科学版）, 2021, 42(1): 1-6.
[3]	刘振宇，宋晓莹. 一种可用于分类型属性数据的多变量决策树算法[J]. 东北大学学报:自然科学版, 2020, 41(11): 1521-1527.
[4]	曾荣飞，张德永，王兴伟，黄敏. 一种面向IPv6的定制化路由备份机制[J]. 东北大学学报:自然科学版, 2020, 41(10): 1369-1376.
[5]	赵海，郑春阳，王进法，司帅宗. 面向蓄意攻击的网络异常检测方法[J]. 东北大学学报:自然科学版, 2020, 41(10): 1376-1381.
[6]	井元伟，亓雪蕾，申金栋，井江山. TCP/AWM网络系统的H_∞拥塞跟踪控制[J]. 东北大学学报:自然科学版, 2020, 41(10): 1388-1393.
[7]	曾荣飞，高原，王兴伟，张榜. SDN中DDoS攻击的高效联合检测和防御机制[J]. 东北大学学报:自然科学版, 2020, 41(9): 1217-1222.
[8]	姚巍，赵海，朱剑，陈香伊. 基于traceroute的多特征子网发现与分析[J]. 东北大学学报:自然科学版, 2020, 41(8): 1075-1082.
[9]	杨望，江咏涵，张三峰. 基于网页结构与语言特征的垃圾网页链接检测方法[J]. 东北大学学报:自然科学版, 2020, 41(8): 1091-1096.
[10]	李贞妮，王骄，李晶皎，王泽坤. 一种新的基于FPGA的立体图像差异性算法[J]. 东北大学学报:自然科学版, 2020, 41(6): 778-783.
[11]	姜旭艳，严锦立，全巍，孙志刚. SSA:一种面向CQF模型的TSN资源调度算法[J]. 东北大学学报:自然科学版, 2020, 41(6): 784-791.
[12]	武刚，吴成东. 基于半定规划的无线传感器网络节点定位算法[J]. 东北大学学报:自然科学版, 2019, 40(10): 1381-1385.
[13]	井元伟，李赞华，刘婷. 一类TCP网络系统的Minimax拥塞控制[J]. 东北大学学报:自然科学版, 2019, 40(8): 1065-1069.
[14]	茹敬雨，贾子熙，吴成东. 一种基于阳光的运动轨迹简化算法[J]. 东北大学学报:自然科学版, 2019, 40(8): 1070-1075.
[15]	叶正旺，温涛，刘振宇，付崇国. 基于信任模型的WSNs安全数据融合算法[J]. 东北大学学报:自然科学版, 2019, 40(6): 789-794.

一种基于安全性的CAN-FD信号打包方法

A Security-based CAN-FD Signal Packing Method

RichHTML

PDF (PC)

可视化

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价