Securing SOME/IP for In-Vehicle Service Protection. Iorio, M., Reineri, M., Risso, F., Sisto, R., & Valenza, F. IEEE Transactions on Vehicular Technology, 69(11):13450–13466, 2020.
Securing SOME/IP for In-Vehicle Service Protection [pdf]Paper  doi  abstract   bibtex   
Although high-speed in-vehicle networks are being increasingly adopted by the industry to support emerging use cases, previous research already demonstrated that car hacking is a real threat. This paper formalizes a novel framework proposed to provide improved security to the emerging SOME/IP middleware, without introducing at the same time limitations in the communication patterns available. Most notably, the entire traffic matrix is designed to be configured using simple high-level rules, clearly stating who can talk to whom according to the service abstraction adopted by SOME/IP. Three incremental security levels are made available, accounting for different services being associated with different requirements. The core security protocol, encompassing a session establishment phase followed by the transmission of secured SOME/IP messages, has been formally verified, to prove its correctness in terms of authentication and secrecy properties. Performance-wise, in-depth experimental evaluations conducted with an extended version of vsomeip confirmed the introduction of quite limited penalties compared to the bare unsecured implementation. © 1967-2012 IEEE.

Downloads: 0