Research On In-Vehicle ECU Identity Authentication And In-Vehicle Network Security

With the continuous growth of car ownership,value-added services based on in-vehicle terminals have developed rapidly.At the same time,the number of in-vehicle Electronic Control Units(ECU)has increased,resulting in the increase of the complexity of the car’s internal network and communications demand between it and external network,which has caused the issue of vehicle information security to become prominent.ECU,as the main control element in vehicle,connectes to each other through the In-vehicle local area network and has the functions of receiving data,processing data and issuing control commands to control the vehicle.Once the ECU get attacked,it will directly bring serious life safety threats and property losses to drivers and passengers.Therefore,research on the safety of on-board ECUs and on-board networks has become an urgent problem in the modern transportation field.However,the existing software encryption and security protocols require high computing performance and storage capacity,and they have the disadvantages of weak real-time performance and limited defense strength when applied to resource-limited ECU devices.In response to the above problems,from the perspective of hardware,this paper uses efficient and reliable lightweight Physical Unclonable Function(PUF)to design an active protection mechanism for in-vehicle ECU to provide effective solutions for in-vehicle network security problems,the specific research contents are as follows.The first key point of this paper is to study the vehicle network security.Analyze the characteristics of vehicle-mounted ECU,the communication mechanism of Controller Area Network,the existing typical cases of CAN network and ECU security attacks,and summarize the security vulnerabilities and threats that exist in ECUs and CAN networks.The second problem is about delay-based PUF circuit design and implementation.In view of the lack of security defense mechanism of vehicle-mounted ECU itself,considering the limitation of ECU’s computing and storage resources,using the lightweight and high reliability of PUF circuit,we are about to design a stable and reliable delay-based arbitration PUF circuit structure and verified that the uniqueness and stability of the PUF circuit structure is good enough for ECU identity authentication.Finally,establish an ECU identity authentication protocol.An ECU identity authentication protocol based on PUF circuit structure is proposed.And establish a simulation environment between the computer and the development board to verify the feasibility and effectiveness of the PUF-based ECU identity authentication protocol proposed in this paper.Using FPGA chip of Xilinx,the feasibility of proposed PUF’s use for identity authentication is verified and a simulation environment is established to verify the proposed identity authentication mechanism.The results show that the ECU identity authentication mechanism proposed in this paper can successfully authenticate the reliability of each other’s identities before they connect to each other and transmitting data,so as to ensure the safety and reliability of communication.