Securing SOME/IP for In-Vehicle Service Protection. Iorio, M., Reineri, M., Risso, F., Sisto, R., & Valenza, F. IEEE Transactions on Vehicular Technology, 69(11):13450–13466, 2020. ![Securing SOME/IP for In-Vehicle Service Protection [pdf]](https://bibbase.org/img/filetypes/pdf.svg "pdf")
Paper doi abstract bibtex 4 downloads Although high-speed in-vehicle networks are being increasingly adopted by the industry to support emerging use cases, previous research already demonstrated that car hacking is a real threat. This paper formalizes a novel framework proposed to provide improved security to the emerging SOME/IP middleware, without introducing at the same time limitations in the communication patterns available. Most notably, the entire traffic matrix is designed to be configured using simple high-level rules, clearly stating who can talk to whom according to the service abstraction adopted by SOME/IP. Three incremental security levels are made available, accounting for different services being associated with different requirements. The core security protocol, encompassing a session establishment phase followed by the transmission of secured SOME/IP messages, has been formally verified, to prove its correctness in terms of authentication and secrecy properties. Performance-wise, in-depth experimental evaluations conducted with an extended version of vsomeip confirmed the introduction of quite limited penalties compared to the bare unsecured implementation. © 1967-2012 IEEE.
@Article{2020TVT,
author = {Marco Iorio and Massimo Reineri and Fulvio Risso and Riccardo Sisto and Fulvio Valenza},
doi = {10.1109/TVT.2020.3028880},
journal = {{IEEE} Transactions on Vehicular Technology},
number = {11},
pages = {13450--13466},
title = {Securing {SOME/IP} for In-Vehicle Service Protection},
volume = {69},
year = {2020},
url = {https://iris.polito.it/retrieve/handle/11583/2847755/399772/09215036.pdf},
abstract={Although high-speed in-vehicle networks are being increasingly adopted by the industry to support emerging use cases, previous research already demonstrated that car hacking is a real threat. This paper formalizes a novel framework proposed to provide improved security to the emerging SOME/IP middleware, without introducing at the same time limitations in the communication patterns available. Most notably, the entire traffic matrix is designed to be configured using simple high-level rules, clearly stating who can talk to whom according to the service abstraction adopted by SOME/IP. Three incremental security levels are made available, accounting for different services being associated with different requirements. The core security protocol, encompassing a session establishment phase followed by the transmission of secured SOME/IP messages, has been formally verified, to prove its correctness in terms of authentication and secrecy properties. Performance-wise, in-depth experimental evaluations conducted with an extended version of vsomeip confirmed the introduction of quite limited penalties compared to the bare unsecured implementation. © 1967-2012 IEEE.},
keywords={In-vehicle Security},
}
Downloads: 4
{"_id":"qWKhjnjAWwT2Qengx","bibbaseid":"iorio-reineri-risso-sisto-valenza-securingsomeipforinvehicleserviceprotection-2020","authorIDs":["anJrBcCdr4LzzWetx","x5vNTEJ4s3raTsibp"],"author_short":["Iorio, M.","Reineri, M.","Risso, F.","Sisto, R.","Valenza, F."],"bibdata":{"bibtype":"article","type":"article","author":[{"firstnames":["Marco"],"propositions":[],"lastnames":["Iorio"],"suffixes":[]},{"firstnames":["Massimo"],"propositions":[],"lastnames":["Reineri"],"suffixes":[]},{"firstnames":["Fulvio"],"propositions":[],"lastnames":["Risso"],"suffixes":[]},{"firstnames":["Riccardo"],"propositions":[],"lastnames":["Sisto"],"suffixes":[]},{"firstnames":["Fulvio"],"propositions":[],"lastnames":["Valenza"],"suffixes":[]}],"doi":"10.1109/TVT.2020.3028880","journal":"IEEE Transactions on Vehicular Technology","number":"11","pages":"13450–13466","title":"Securing SOME/IP for In-Vehicle Service Protection","volume":"69","year":"2020","url":"https://iris.polito.it/retrieve/handle/11583/2847755/399772/09215036.pdf","abstract":"Although high-speed in-vehicle networks are being increasingly adopted by the industry to support emerging use cases, previous research already demonstrated that car hacking is a real threat. This paper formalizes a novel framework proposed to provide improved security to the emerging SOME/IP middleware, without introducing at the same time limitations in the communication patterns available. Most notably, the entire traffic matrix is designed to be configured using simple high-level rules, clearly stating who can talk to whom according to the service abstraction adopted by SOME/IP. Three incremental security levels are made available, accounting for different services being associated with different requirements. The core security protocol, encompassing a session establishment phase followed by the transmission of secured SOME/IP messages, has been formally verified, to prove its correctness in terms of authentication and secrecy properties. Performance-wise, in-depth experimental evaluations conducted with an extended version of vsomeip confirmed the introduction of quite limited penalties compared to the bare unsecured implementation. © 1967-2012 IEEE.","keywords":"In-vehicle Security","bibtex":"@Article{2020TVT,\r\n author = {Marco Iorio and Massimo Reineri and Fulvio Risso and Riccardo Sisto and Fulvio Valenza},\r\n doi = {10.1109/TVT.2020.3028880},\r\n journal = {{IEEE} Transactions on Vehicular Technology},\r\n number = {11},\r\n pages = {13450--13466},\r\n title = {Securing {SOME/IP} for In-Vehicle Service Protection},\r\n volume = {69},\r\n year = {2020},\r\n url = {https://iris.polito.it/retrieve/handle/11583/2847755/399772/09215036.pdf},\r\n abstract={Although high-speed in-vehicle networks are being increasingly adopted by the industry to support emerging use cases, previous research already demonstrated that car hacking is a real threat. This paper formalizes a novel framework proposed to provide improved security to the emerging SOME/IP middleware, without introducing at the same time limitations in the communication patterns available. Most notably, the entire traffic matrix is designed to be configured using simple high-level rules, clearly stating who can talk to whom according to the service abstraction adopted by SOME/IP. Three incremental security levels are made available, accounting for different services being associated with different requirements. The core security protocol, encompassing a session establishment phase followed by the transmission of secured SOME/IP messages, has been formally verified, to prove its correctness in terms of authentication and secrecy properties. Performance-wise, in-depth experimental evaluations conducted with an extended version of vsomeip confirmed the introduction of quite limited penalties compared to the bare unsecured implementation. © 1967-2012 IEEE.},\r\n keywords={In-vehicle Security},\r\n}\r\n\r\n","author_short":["Iorio, M.","Reineri, M.","Risso, F.","Sisto, R.","Valenza, F."],"key":"2020TVT","id":"2020TVT","bibbaseid":"iorio-reineri-risso-sisto-valenza-securingsomeipforinvehicleserviceprotection-2020","role":"author","urls":{"Paper":"https://iris.polito.it/retrieve/handle/11583/2847755/399772/09215036.pdf"},"keyword":["In-vehicle Security"],"metadata":{"authorlinks":{"valenza, f":"https://bibbase.org/show?bib=https%3A%2F%2Fraw.githubusercontent.com%2FFulvioValenza%2Fbibliography%2Fmain%2FValenza_bibliography.bib&commas=true","valenza, f":"https://bibbase.org/service/mendeley/47be63fe-fca0-3f0f-a864-642602926c3f"}},"downloads":4},"bibtype":"article","biburl":"https://raw.githubusercontent.com/FulvioValenza/bibliography/main/Valenza_bibliography.bib","creationDate":"2020-12-04T16:35:07.204Z","downloads":4,"keywords":["in-vehicle security"],"search_terms":["securing","vehicle","service","protection","iorio","reineri","risso","sisto","valenza"],"title":"Securing SOME/IP for In-Vehicle Service Protection","year":2020,"dataSources":["JbiX35GNqPCF3nids","csYhy47rJJgSM7jjJ"]}