摘要
车载电子设备的增加使得车载网络面对越来越多的威胁。车载网络中电子控制单元(ECU)无认证、控制器局域网络(CAN)通信数据无加密等缺陷使得车载网络易遭受重放、ECU注入、中间人伪造消息、窃听等恶意攻击,造成严重后果。针对车载网络面临的威胁,提出一种基于SecOC的车载网络安全通信模型,该模型使用SM4的密码算法与基于Bkake2s的改进密钥管理,实现车载ECU的认证和车载网络消息的加密与认证。最后经过分析与测试,该模型可以保护车载网络安全并更高效。
The increase of in-vehicle electronic equipment makes the in-vehicle network face more and more threats.The lack of authentication of the electronic control unit(ECU)in the in-vehicle network and the lack of encryption of the communication data of the controller area network(CAN)make the in-vehicle network vulnerable to replay,ECU injection,man-in-the-middle forged messages,eavesdropping,etc.,which make serious consequences.Aiming at the current vehicle network threats,this paper proposed a vehicle network security communication model based on SecOC.This model used the SM4 cryptographic algorithm and the improved key management based on Bkake2s to realize the authentication of the vehicle ECU and the encryption and authentication of the vehicle network message.Finally,after analysis and testing,the model can protect the in-vehicle network security and be more efficient.
作者
章意
李飞
张森葳
Zhang Yi;Li Fei;Zhang Senwei(School of Cyberspace Security,Chengdu University of information engineering,Chengdu 610200,China)
出处
《计算机应用研究》
CSCD
北大核心
2022年第8期2474-2478,共5页
Application Research of Computers
基金
四川省重大科技专项课题(18ZDZX0013)
四川省科技重点研发项目(19ZDYF0789)。
关键词
板端加密通信
车载网络
SM4
Blake2s
PBKDF2
硬件安全模块
security onboard communication
in-vehicle network
SM4
Blake2s
password-based key derivation function 2
hardware security module
