Graph-Based Intrusion Detection System for Controller Area Networks

Thumbnail Image

Files

2009.11440.pdf (2.87 MB)

Links to Files

https://ieeexplore.ieee.org/document/9210546

Permanent Link

http://hdl.handle.net/11603/20625
 https://doi.org/10.1109/TITS.2020.3025685

Collections

UMBC Computer Science and Electrical Engineering Department
UMBC Faculty Collection
UMBC Information Systems Department
UMBC Student Collection

Author/Creator

Author/Creator ORCID

Date

Type of Work

journal articles preprints
Text

Department

Program

Citation of Original Publication

Riadul Islam, Rafi Ud Daula Refat, Sai Manikanta Yerram and Hafiz Malik, Graph-Based Intrusion Detection System for Controller Area Networks, IEEE Transactions on Intelligent Transportation Systems, pp 1 - 10, DOI: 10.1109/TITS.2020.3025685

Rights

This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.

Subjects

Controller area network
security
intravehicular communication
chi-squared test
graph-theory

Abstract

The controller area network (CAN) is the most widely used intra-vehicular communication network in the automotive industry. Because of its simplicity in design, it lacks most of the requirements needed for a security-proven communication protocol. However, a safe and secured environment is imperative for autonomous as well as connected vehicles. Therefore CAN security is considered one of the important topics in the automotive research community. In this paper, we propose a fourstage intrusion detection system that uses the chi-squared method and can detect any kind of strong and weak cyber attacks in a CAN. This work is the first-ever graph-based defense system proposed for the CAN. Our experimental results show that we have a very low 5.26% misclassification for denial of service (DoS) attack, 10% misclassification for fuzzy attack, 4.76% misclassification for replay attack, and no misclassification for spoofing attack. In addition, the proposed methodology exhibits up to 13.73% better accuracy compared to existing ID sequence-based methods.