Research On In-vehicle CAN FD Communication Data Encryption Method

With the rapid development of automotive electronics technology,in-vehicle electronic systems have become more and more abundant,but at the same time,the number of external interfaces for vehicles to communicate with the outside world has increased.The attackers maliciously invade the in-vehicle network through numerous external interfaces and steal and tamper with the vehicle.Network communication data,which will seriously threaten the driving safety of the car.Therefore,it is particularly important to solve the data security problem of the in-vehicle network,especially the data security problem of the in-vehicle CAN FD network that is the next-generation automobile mainstream bus system.Compared with traditional in-vehicle network,invehicle CAN FD networks have faster transmission rates and longer effective data fields.However,when designing CAN FD networks,designers still did not take into account information security protection mechanisms and measures.Therefore,the information security problem of in-vehicle CAN FD network is one of the key issues in automotive information security.It is of great theoretical and practical significance to study the encryption method of in-vehicle CAN FD communication data.In this paper,according to the information security problem in-vehicle CAN FD network,the information security problem of the in-vehicle CAN FD network is analyzed and researched in depth.The data encryption method is proposed to solve the information security problem of the in-vehicle CAN FD network.First of all,this article briefly introduces the characteristics of the in-vehicle CAN FD network,and focuses on the security problems facing the in-vehicle network,the problems of stealing and tampering with the in-vehicle communication data,and the analysis of the research progress of the data security problems existing in-vehicle network at home and abroad.Secondly,according to the security problem of in-vehicle CAN FD communication data,combined with the characteristics of the in-vehicle CAN FD network,the idea of data encryption is introduced,and the in-vehicle CAN FD communication data is encrypted and decrypted to achieve the safety of in-vehicle CAN FD communication data.Transmission,the main research content of this article is as follows:1.According to the data security problem of in-vehicle communication networks,the research progress at home and abroad is summarized and analyzed,and the status quo of data security in in-vehicle communication networks is summarized.2.Due to the inconsistent security requirements of in-vehicle communication messages,by introducing the concept of attributes,the domain attribute,ID attribute,and periodic attribute of the in-vehicle CAN FD communication data are selected to construct the attribute policy tree,and the in-vehicle CAN FD communication message will be based on the attribute policy tree.The security level is divided into three levels,and different data encryption methods are used for communication packets of different security levels,thereby reducing the network load.3.In view of the security level for the third class low security level in-vehicle CAN FD communication data,using the MD5 algorithm,in view of the security level for the second low security level in-vehicle CAN FD communication data,optimized AES algorithm to improve the efficiency of encryption and decryption,so as to meet the requirements of in-vehicle CAN FD network time delay,and applied to the communication data encryption processing,at the same time,by increase the packet number mechanism,further safety certification.4.For high-security in-vehicle CAN FD communication data with a first-class security level,combining the advantages of symmetric encryption algorithms and asymmetric encryption algorithms,a hybrid encryption algorithm was proposed and constructed.The key data is encrypted using the optimized AES algorithm,and the ECC algorithm is used to encrypt the key of the AES algorithm so that the key can be securely transmitted.At the same time,the message numbering mechanism is added to further secure authentication.Finally,based on the actual in-vehicle network architecture,a research and test platform for the in-vehicle network communication data security is designed and implemented,and the above encryption method is tested and analyzed using this platform.The experimental results show that the security level is three and two,such as low-level safety in-vehicle CAN FD communication data,using MD5 algorithm and optimized AES algorithm to meet the requirements of network delay,while effectively ensuring the safety of in-vehicle CAN FD communication data transmission,for the safety level of a high level of security in-vehicle CAN FD communication data,using hybrid encryption method to achieve network delay requirements,can effectively protect the security of invehicle CAN FD communication data transmission.