Abstract
On the Controller Area Network (CAN), there are three types of messages, namely periodic messages, event based periodic messages, and non-periodic messages. On the attack detection, there are many high accuracy methods for the periodic messages. For the event based periodic messages and the non-periodic messages, detection methods utilizing the relation of plural data in some messages are effective. In such methods, the relations between plural data are investigated from some messages that were collected beforehand. And, obtained relation information is used as attributes of statistic detection. In this paper, a new attack detection method utilizing the number of occurrences of specific values and changes of values in messages is proposed. And the derivation algorithm that derives relation information efficiently is also proposed. By using the derivation algorithm, we found 582 relations for the detection method.
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
References
Miller, C., Valasek, C.: Remote exploitation of an unaltered passenger vehicle. Black Hat 2015 (2015)
ISO11898: Road vehicles – Controller area network (CAN) (2003)
Yajima, J., Abe, Y., Hasebe, T.: Proposal of anomaly detection method “cumulative sum detection” for in-vehicle networks. In: escar Asia 2018 (2018)
Otsuka, S., Ishigooka, T., Oishi, Y.: CAN Security: Cost-Effective Intrusion Detection for Real-Time Control Systems. SAE Technical Paper 2014-01-0340 (2014)
Markovitz, M., Wool, A.: Field classification, modeling and anomaly detection in unknown CAN bus networks. In: escar Europe 2015 (2015)
Kishikawa, T., Maeda, M., Tsurumi, J., Haga, T., Takahashi, R., Sasaki, T., Anzai, J., Matsushima, H.: A generic CAN message field extraction method to construct anomaly detection systems for in-vehicle networks. In: 2017 Symposium on Cryptography and Information Security, SCIS 2017 (2017)
Hamada, Y., Yoshida, K., Adachi, N., Kamiguchi, S., Ueda, H., Miyashita, Y., Isoyama, Y., Hata, Y.: Intrusion detection for acyclic messages in in-vehicle network: a proposal. In: Computer Security Symposium 2018, CSS 2018 (2018)
Iehira, K., Kanamori, K., Inoue, H., Ishida, K.: Extraction of correlation between in-vehicle sensor information using pattern matching for automatic generation of anomaly detection rules. In: 2018 Symposium on Cryptography and Information Security, SCIS 2018 (2018)
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2020 Springer Nature Switzerland AG
About this paper
Cite this paper
Yajima, J., Hasebe, T., Okubo, T. (2020). Data Relation Analysis Focusing on Plural Data Transition for Detecting Attacks on Vehicular Network. In: Barolli, L., Nishino, H., Enokido, T., Takizawa, M. (eds) Advances in Networked-based Information Systems. NBiS - 2019 2019. Advances in Intelligent Systems and Computing, vol 1036. Springer, Cham. https://doi.org/10.1007/978-3-030-29029-0_25
Download citation
DOI: https://doi.org/10.1007/978-3-030-29029-0_25
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-030-29028-3
Online ISBN: 978-3-030-29029-0
eBook Packages: Intelligent Technologies and RoboticsIntelligent Technologies and Robotics (R0)