当前位置: X-MOL 学术J. Adv. Transp. › 论文详情
Our official English website, www.x-mol.net, welcomes your feedback! (Note: you will need to create a separate account there.)
Shared Mobility for Transport and Its Environmental Impact VeSIPreS: A Vehicular Soft Integrity Preservation Scheme for Shared Mobility
Journal of Advanced Transportation ( IF 2.0 ) Pub Date : 2021-06-23 , DOI: 10.1155/2021/5569331
Valaenthin Tratter 1, 2 , Mudassar Aslam 1, 3 , Shahid Raza 1
Affiliation  

Car manufacturers are noticing and encouraging a trend away from individual mobility, where a vehicle is owned and driven by one or only a few other persons, and towards shared-mobility concepts. That means that many different people use and have access to the same vehicle. An attacker disguised as a regular short-time user can use the additional attack vectors (s)he gets by having physical access to tamper the vehicle’s software. The software takes a continuously more crucial role in cars for autonomous driving, and manipulations can have catastrophic consequences for the persons on board. Currently, there is no mechanism available to the vehicle owner to detect such manipulations in the vehicle done by the attacker (short-time user). In this work, a novel vehicle attestation scheme called Vehicular Soft Integrity Preservation Scheme (VeSIPreS) is proposed to detect tampering in the software stack of a vehicle and guarantee the upcoming driver that the previous user has not changed the software of the vehicle. The solution consists of a software module in the vehicle and a mobile-based user application for the vehicle owner to monitor the vehicle’s soft integrity. Inside the vehicle, the software module is implemented in the central gateway, which acts as the primary security component. VeSIPreS uses Trusted Platform Module (TPM) in the central gateway, which anchors trust in our proposed solution. This paper also provides a proof-of-concept implementation with a TPM, demonstrating its application and deployment feasibility and presentig a security analysis to show the security of VeSIPreS.

中文翻译:

交通共享出行及其环境影响 VeSIPreS:共享出行的车辆软完整性保护方案

汽车制造商正在注意到并鼓励一种趋势,即从个人出行(车辆由一个人或仅几个人拥有和驾驶)转向共享出行概念。这意味着许多不同的人使用和访问同一辆车。伪装成普通短期用户的攻击者可以使用他通过物理访问获得的额外攻击媒介来篡改车辆的软件。该软件在自动驾驶汽车中扮演着越来越重要的角色,而操纵可能会给车上的人带来灾难性的后果。目前,车主没有可用的机制来检测攻击者(短时间用户)在车辆中进行的此类操作。在这项工作中,提出了一种称为车辆软完整性保护方案(VeSIPreS)的新型车辆认证方案,用于检测车辆软件堆栈中的篡改,并保证即将到来的驾驶员之前的用户没有更改车辆的软件。该解决方案由车辆中的软件模块和基于移动的用户应用程序组成,供车主监控车辆的软件完整性。在车辆内部,软件模块在作为主要安全组件的中央网关中实现。VeSIPreS 在中央网关中使用可信平台模块 (TPM),它在我们提出的解决方案中建立信任。本文还提供了一个带有 TPM 的概念验证实现,展示了其应用和部署的可行性,并提供了一个安全分析来展示 VeSIPreS 的安全性。
更新日期:2021-06-23
down
wechat
bug