Mitigating Unknown Cybersecurity Threats in Performance Constrained Electronic Control Units

Externally-connected Electronic Control Units (ECUs) contain millions of lines of code, which may contain security vulnerabilities. Hackers may exploit these vulnerabilities to gain code execution privileges, which affect public safety. Traditional Cybersecurity solutions fall short in meeting automotive ECU constraints such as zero false positives, intermittent connectivity, and low performance impact. A desirable solution would be deterministic, require minimum resources, and protect against known and unknown security threats. We integrated Autonomous Security on a BeagleBone Black (BBB) system to evaluate the feasibility of mitigating Cybersecurity risks against potential threats. We identified key metrics that should be measured, such as level of security, ease of integration and system performance impact. In this paper, we describe the integration and evaluation process and present its results. We show that Autonomous Security can provide this protection with zero false-positives while meeting automotive constraints.

• Record URL:
  https://doi.org/10.4271/2018-01-0016
• Availability:
  • Find a library where document is available. Order URL: http://worldcat.org/issn/01487191
• Supplemental Notes:
  • Abstract reprinted with permission of SAE International.
• Authors:
  • Harel, Assaf
  • Ben David, Tal
  • Kashani, Ameer
  • Iyer, Gopalakrishnan
  • Motonori, Ando
  • Masumi, Egawa
• Conference:
  • WCX World Congress Experience
  • Location: Detroit Michigan, United States
  • Date: 2018-4-10 to 2018-4-12
• Publication Date: 2018-4-3

Language

• English

Media Info

• Media Type: Web
• Features: References;
• Serial:
  • SAE Technical Paper
  • Publisher: Society of Automotive Engineers (SAE)
  • ISSN: 0148-7191
  • EISSN: 2688-3627
  • Serial URL: http://papers.sae.org/

Subject/Index Terms

• TRT Terms: Computer security; Control systems; Data protection; Vehicle electronics
• Uncontrolled Terms: Electronic control units; Vehicle security
• Subject Areas: Data and Information Technology; Highways; Security and Emergencies; Vehicles and Equipment;

Filing Info

• Accession Number: 01691723
• Record Type: Publication
• Source Agency: SAE International
• Report/Paper Numbers: 2018-01-0016
• Files: TRIS, SAE
• Created Date: Jan 28 2019 5:11PM