东北大学学报(自然科学版) ›› 2021, Vol. 42 ›› Issue (6): 775-781.DOI: 10.12068/j.issn.1005-3026.2021.06.003

• 信息与控制 • 上一篇    下一篇

一种基于安全性的CAN-FD信号打包方法

丁山, 暴林慧, 高梦宁, 佘黎煌   

  1. (东北大学 计算机科学与工程学院, 辽宁 沈阳110169)
  • 修回日期:2020-08-03 接受日期:2020-08-03 发布日期:2021-06-23
  • 通讯作者: 丁山
  • 作者简介:丁山 (1967-),男,湖南攸县人,东北大学副教授,博士.
  • 基金资助:
    中央高校基本科研业务费专项资金资助项目(N181604007).

A Security-based CAN-FD Signal Packing Method

DING Shan, BAO Lin-hui, GAO Meng-ning, SHE Li-huang   

  1. School of Computer Science & Engineering, Northeastern University, Shenyang 110169, China.
  • Revised:2020-08-03 Accepted:2020-08-03 Published:2021-06-23
  • Contact: DING Shan
  • About author:-
  • Supported by:
    -

摘要: 现代车辆配备的大量电子设备可能成为黑客侵入车载网络系统的途径.为了防范攻击,需要为CAN-FD车载总线引入安全机制.建立了一种通过区分信号、帧、ECU层面安全等级、基于帧AES加密与添加MAC消息认证码的CAN-FD分层安全模型,并在此基础上提出一种可以有效降低 ECU 安全设计硬件成本的信号打包安全约束.通过将贪婪算法引入遗传算法的交叉算子与变异算子,设计了一种基于安全性的混合遗传算法,对具有不同安全等级的 CAN-FD 信号进行打包优化.实验表明,混合遗传算法可以获得比贪婪算法更低的带宽利用率,并通过实验分析了此安全设计对带宽利用率的影响.

关键词: CAN-FD 信号打包;分层安全模型;信号打包安全约束;混合遗传算法

Abstract: Modern vehicles are equipped with a large number of electronic devices, which may become a way for hackers to invade the vehicle network system. In order to prevent attacks, it is necessary to introduce a security mechanism for the CAN-FD vehicle bus. A CAN-FD hierarchical security model was established to distinguish signal, frame, and ECU-level security levels, based on frame AES encryption and adding MAC message authentication codes. According to the proposed model, a signal packaging safety constraint that can effectively reduce the hardware cost of ECU safety design was developed. By introducing the greedy algorithm into the crossover operator and mutation operator of the genetic algorithm, a safety-based hybrid genetic algorithm was designed to package and optimize CAN-FD signals with different safety levels. Experiments show that the hybrid genetic algorithm can achieve lower bandwidth utilization than the greedy algorithm, and the impact of this security design on bandwidth utilization is analyzed through experiments.

Key words: CAN-FD signal packing; layered security model; signal packaging security constraints; hybrid genetic algorithm

中图分类号: