The onboard diagnostic system (OBD) is almost standard on every modern vehicle. By exploiting the availability of wireless OBD dongles, vehicles can be assessed by the transportation authority and drivers to ensure compliance with emissions regulations. A vehicle’s OBD system can be remotely accessed by a fog node to retrieve a variety of the vehicle’s internal status and sensor readings. Such information can be shared with the transportation authority for registration renewal without the need for visiting emission stations. However, such automation comes at the risk of malicious intrusion into the OBD system by an attacker who aims to gain access to a vehicle’s internal network and control the vehicle. This article tackles this serious issue and proposes protocols for mutual authentication and securing the wireless connection between the OBD dongle, fog node, and authority. The robustness of the proposed protocols is verified using the Automated Validation of Internet Security Protocols and Applications (AVISPA) toolset.

中文翻译：

---

智能城市中安全远程访问车辆车载诊断系统的协议


车载诊断系统 (OBD) 几乎是每辆现代车辆的标准配置。通过利用无线 OBD 适配器的可用性，交通当局和驾驶员可以对车辆进行评估，以确保遵守排放法规。车辆的 OBD 系统可以通过雾节点远程访问，以检索车辆的各种内部状态和传感器读数。这些信息可以与交通运输部门共享，以便更新登记，而无需访问排放站。然而，这种自动化面临着攻击者恶意入侵 OBD 系统的风险，攻击者的目的是访问车辆的内部网络并控制车辆。本文解决了这一严重问题，并提出了相互身份验证和保护 OBD 加密狗、雾节点和权威机构之间无线连接的协议。使用互联网安全协议和应用程序自动验证 (AVISPA) 工具集验证了所提议协议的稳健性。