| Modern vehicle is no longer a simple mechanical equipment,the function of modern vehicle depends on the control of ten or even dozens of electronic control units.These electronic control units integrate many complex modules,such as intelligent sensors,data processing units,communication interfaces,etc.,and are connected by physical twisted pair to form vehicle internal control LAN called CAN.With the improvement of vehicle intelligence and the increase of the number of electronic control units,the information security problem of data in vehicle network is also serious.The attack on the vehicle network will have a direct physical impact on the vehicle body and threaten the personal and property safety of the drivers.Therefore,it is of great value to carry out the research on the vehicle network information security.Firstly,this paper introduces the related knowledge and working principle of CAN bus protocol,and discusses the security threats and potential attack entry of CAN network.From the point of view of the attacker,based on the potential vulnerability of bus plaintext broadcast and lack of authentication field,designed replay,fuzzy attack and other means to carry out the attack test experiment on the vehicle.On the basis of it,an effective method of reverse conventional packet message is proposed.By cracking the conventional control instructions,the control right of vehicle function can be obtained.Then it analyzes the protocol characteristics of the diagnosis package,introduces a method based on service scanning to obtain the relevant support information of the diagnosis protocol service,and verifies the feasibility of using the diagnosis command to control the vehicle.On the basis of the above research,this paper designs and develops a CAN network security test platform which has the functions of data sending and receiving,integrated attack test,reverse test,scanning test,etc.Through the test experiment of the actual vehicle,it proves the universality and effectiveness of replay and fuzzy attack,the state information command of vehicle speed,gear,clutch and so on is successfully cracked,and the physical control of the door lock,turn signal,instrument panel and other functions is realized.The experimental results show that the current vehicle network is faced with the possibility of invasion in many ways,no matter in terms of important privacy information or control instruction information.The security test can detect and discover the security threats in order to help reduce the vulnerability and risk in the process of product development. |
PDF Full Text Request