Secure AES Frame Encryption for CAN FD
Cargando...
Fecha
2019-07
Autores
Lugo-Meneses, Carlos A.
Peralta-Reynoso, Diego
Título de la revista
ISSN de la revista
Título del volumen
Editor
ITESO
Resumen
Descripción
The Controller Area Network Flexible Data Rate (CAN FD) is a trending protocol in the automotive communications since it has the capability of coexisting with previous versions and it also has a faster data rate. However, a major cybersecurity disadvantage is its vulnerability to attacks at the wired physical layer where the messages are transmitted. A solution for this vulnerability is to use cybersecurity algorithms, such as the Advanced Encryption Standard (AES) to cipher CAN FD messages. The aim of this paper is to create the Secure AES Frame Encryption (SAFE) kernel that is part of the Electronic Control Unit (ECU) and uses the AES algorithm to cipher CAN FD messages to avoid hacking the ECU. A real-time application was implemented using the SAM V71 and AVANXE7 FPGA boards. The SAM V71 board was programmed to allocate the CAN FD communication stack and the FPGA board was used to implement the SAFE kernel. The reason for executing the SAFE kernel on the FPGA board was to reduce the AES processing time without affecting the timing of the CAN FD messages. To decrease the possibilities of reverse engineering, a random key was used for ciphering every single CAN FD message. A major finding of this project was the short period of time (410 nanoseconds) for the ciphering and deciphering processes of the SAFE kernel to occur. This methodology has current applications in OTA technologies for securing ECUs' digital content while it is being updated as well as for avoiding car information manipulation and theft.
Palabras clave
Cybersecurity, AES Algorithm, SAM V71, AVANXE7, FPGA, CAN FD
Citación
Lugo-Meneses, C.A. & Peralta-Reynoso, D. (2019). Secure AES Frame Encryption for CAN FD. Trabajo de obtención de grado, Especialidad en Sistemas Embebidos. Tlaquepaque, Jalisco: ITESO.