Graph-Based Intrusion Detection System for Controller Area Networks

Author/Creator ORCID




Citation of Original Publication

Riadul Islam, Rafi Ud Daula Refat, Sai Manikanta Yerram and Hafiz Malik, Graph-Based Intrusion Detection System for Controller Area Networks, IEEE Transactions on Intelligent Transportation Systems, pp 1 - 10, DOI: 10.1109/TITS.2020.3025685


This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author.


The controller area network (CAN) is the most widely used intra-vehicular communication network in the automotive industry. Because of its simplicity in design, it lacks most of the requirements needed for a security-proven communication protocol. However, a safe and secured environment is imperative for autonomous as well as connected vehicles. Therefore CAN security is considered one of the important topics in the automotive research community. In this paper, we propose a fourstage intrusion detection system that uses the chi-squared method and can detect any kind of strong and weak cyber attacks in a CAN. This work is the first-ever graph-based defense system proposed for the CAN. Our experimental results show that we have a very low 5.26% misclassification for denial of service (DoS) attack, 10% misclassification for fuzzy attack, 4.76% misclassification for replay attack, and no misclassification for spoofing attack. In addition, the proposed methodology exhibits up to 13.73% better accuracy compared to existing ID sequence-based methods.