Secure AES Frame Encryption for CAN FD

Cargando...
Miniatura

Fecha

2019-07

Autores

Lugo-Meneses, Carlos A.
Peralta-Reynoso, Diego

Título de la revista

ISSN de la revista

Título del volumen

Editor

ITESO

Resumen

Descripción

The Controller Area Network Flexible Data Rate (CAN FD) is a trending protocol in the automotive communications since it has the capability of coexisting with previous versions and it also has a faster data rate. However, a major cybersecurity disadvantage is its vulnerability to attacks at the wired physical layer where the messages are transmitted. A solution for this vulnerability is to use cybersecurity algorithms, such as the Advanced Encryption Standard (AES) to cipher CAN FD messages. The aim of this paper is to create the Secure AES Frame Encryption (SAFE) kernel that is part of the Electronic Control Unit (ECU) and uses the AES algorithm to cipher CAN FD messages to avoid hacking the ECU. A real-time application was implemented using the SAM V71 and AVANXE7 FPGA boards. The SAM V71 board was programmed to allocate the CAN FD communication stack and the FPGA board was used to implement the SAFE kernel. The reason for executing the SAFE kernel on the FPGA board was to reduce the AES processing time without affecting the timing of the CAN FD messages. To decrease the possibilities of reverse engineering, a random key was used for ciphering every single CAN FD message. A major finding of this project was the short period of time (410 nanoseconds) for the ciphering and deciphering processes of the SAFE kernel to occur. This methodology has current applications in OTA technologies for securing ECUs' digital content while it is being updated as well as for avoiding car information manipulation and theft.

Palabras clave

Cybersecurity, AES Algorithm, SAM V71, AVANXE7, FPGA, CAN FD

Citación

Lugo-Meneses, C.A. & Peralta-Reynoso, D. (2019). Secure AES Frame Encryption for CAN FD. Trabajo de obtención de grado, Especialidad en Sistemas Embebidos. Tlaquepaque, Jalisco: ITESO.