Analysis of Threats and Countermeasures for Odomter Protection
- PDF / 438,075 Bytes
- 11 Pages / 595 x 842 pts (A4) Page_size
- 41 Downloads / 210 Views
ght © 2020 KSAE/ 11720 pISSN 12299138/ eISSN 19763832
ANALYSIS OF THREATS AND COUNTERMEASURES FOR ODOMTER PROTECTION Seil Kim1), Aram Cho1) and Dong Hoon Lee2)* Electronics Base Technology Development Team, Hyundai Motor Group, 150 Hyundaiyeonguso-ro, Namyang-eup, Hwaseong-si, Gyeonggi-do 18280, Korea 2) Center for Information Security Technologies, Korea University, Seoul 02841, Korea
1)
(Received 28 June 2019; Revised 6 November 2019; Accepted 27 December 2019) ABSTRACTIn the used car market, mileage is one of the principal criteria used for evaluating the overall condition of a vehicle. For this reason, mileage fraud continues to occur. Futhermore, the number of malicious brokers who obtain a monetary advantage by manipulating vehicle mileage is increasing. As many used cars with manipulated mileage are sold each year, buyers have suffered significant monetary damages. Although the number of mileage fraud reports has remained steady, governments and OEMs have no technical countermeasures to prevent it, beyond asking used car buyers to pay careful attention when purchasing used cars. This paper classifies odometer system architectures according to the types of sensors and controllers used to measure and transmit vehicle speed, and defines the assets to be protected in a secured odometer. Based on this classification, we analyze potential security threats related to mileage fraud. Finally, we propose realistic security requirements to prevent mileage fraud, within a resource constrained automotive controller environment. KEY WORDS : Odometer protection, Threat analysis, Cluster, CAN bus
SUBSCRIPTS ABS CAN CGW CLU ECU EMS HSM MAC MPU NVM OBD PKI TCU
According to the National Highway Traffic Safety Administration's (NHTSA) report (National Highway Traffic Safety Administration: Odometer Fraud, 2018), about 450,000 vehicles are sold each year with false odometer readings, and it results in monetary damages of over one billion dollars annually in the US. To prevent such fraud, they provide the following guidelines, but it is not easy for used car buyers to check all this points carefully.
: anti-lock braking system : controller area network : central gateway : cluster : electronic control unit : engine management system : hardware security module : message authentication code : memory protection unit : non-volatile memory : on-board diagnostics : public key infrastructure : transmission control unit
• Compare the mileage on the odometer with the mileage indicated on the vehicle’s maintenance or inspection records. Also, search for oil change and maintenance stickers on windows or door frames, in the glove box or under the hood. • Check that the numbers on the odometer gauge are aligned correctly. If they’re crooked, contain gaps or jiggle when you bang on the dash with your hand, walk away from the purchase. • Examine the tires. If the odometer on your car shows 20,000 or less, it should have the original tires. • Look at the wear and tear on the vehicle-especially the gas, brake and clutch pedals-to be sure
Data Loading...
