Top

Published in:

2024 | OriginalPaper | Chapter

MaREA: Multi-class Random Forest for Automotive Intrusion Detection

Authors : Danilo Caivano, Christian Catalano, Mirko De Vincentiis, Alfred Lako, Alessandro Pagano

Published in: Product-Focused Software Process Improvement

Publisher: Springer Nature Switzerland

Activate our intelligent search to find suitable subject content or patents.

search-config

AI-assisted search

Off

Abstract

The technology inside modern vehicles is rapidly growing and poses newer security risks, as vehicle communication protocols are not yet fully secured and vulnerable to attacks. Consequently, the implementation of automotive cybersecurity systems has gained more attention. Controller Area Network (CAN) is one of the most studied communication protocols in the literature and lacks inherent cybersecurity measures. Several works proposed Intrusion Detection Systems (IDSs) using Machine Learning (ML) and Deep Learning (DL) algorithms to identify attacks on the CAN bus. Exploiting ML or DL techniques in a multi-class approach makes it possible to know the attack typology and to support developers’ decisions to integrate concrete design methods in the software automotive development life-cycle. However, most automotive IDSs are tested on data sets that contain raw CAN messages without the possibility of decoding these messages to understand how the attack was generated. Based on these gaps, a Multi-class Random Forest for Automotive Intrusion Detection (MaREA) is presented, and a new Synthetic Automotive Hacking Dataset (SA-Hacking Dataset) is generated with a Database for CAN (DBC) file. First, the model is validated on the Car-Hacking dataset and compared with two other works in the literature that used the same classifier and dataset for the multi-class approach. Then, the Random Forest model is tested by concatenating the Survival Analysis Dataset and the SA-Hacking Dataset. The proposed approach presented better-quality results for both the Car-Hacking dataset and the aforementioned concatenated dataset.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Online-Abonnement

Mit Springer Professional "Wirtschaft+Technik" erhalten Sie Zugriff auf:

über 102.000 Bücher
über 537 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Finance + Banking
Management + Führung
Marketing + Vertrieb
Maschinenbau + Werkstoffe
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Technik"

Online-Abonnement

Mit Springer Professional "Technik" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 390 Zeitschriften

aus folgenden Fachgebieten:

Automobil + Motoren
Bauwesen + Immobilien
Business IT + Informatik
Elektrotechnik + Elektronik
Energie + Nachhaltigkeit
Maschinenbau + Werkstoffe

Jetzt Wissensvorsprung sichern!

inform now

Springer Professional "Wirtschaft"

Online-Abonnement

Mit Springer Professional "Wirtschaft" erhalten Sie Zugriff auf:

über 67.000 Bücher
über 340 Zeitschriften

aus folgenden Fachgebieten:

Bauwesen + Immobilien
Business IT + Informatik
Finance + Banking
Management + Führung
Marketing + Vertrieb
Versicherung + Risiko

Jetzt Wissensvorsprung sichern!

inform now

previous chapter Declarative Process Mining for Software Processes: The RuM Toolkit and the Declare4Py Python Library

next chapter Forecasting the Developer’s Impact in Managing the Technical Debt

https://ocslab.hksecurity.net/Datasets/car-hacking-dataset.

https://ocslab.hksecurity.net/Datasets/survival-ids.

https://docs.python.org/3/library/os.html.

https://github.com/SERLABUniba/MaREA.

https://scikit-learn.org/stable/modules/generated/sklearn.preprocessing.MinMaxScaler.html.

https://scikit-learn.org/stable/modules/generated/sklearn.model_selection.GridSearchCV.html.

Experimental Security Assessment of Mercedes-Benz Cars. https://keenlab.tencent.com/en/2021/05/12/Tencent-Security-Keen-Lab-Experimental-Security-Assessment-on-Mercedes-Benz-Cars/. Accessed 02 Mar 2022

Experimental Security Assessment on Lexus Cars. https://keenlab.tencent.com/en/2020/03/30/Tencent-Keen-Security-Lab-Experimental-Security-Assessment-on-Lexus-Cars/. Accessed 02 Mar 2022

Experimental Security Research of Tesla Autopilot. https://keenlab.tencent.com/en/2019/03/29/Tencent-Keen-Security-Lab-Experimental-Security-Research-of-Tesla-Autopilot/. Accessed 02 Mar 2022

Exploiting Wi-Fi Stack on Tesla Model S. https://keenlab.tencent.com/en/2020/01/02/exploiting-wifi-stack-on-tesla-model-s/. Accessed 02 Mar 2022

Socketcan - Controller Area network. https://docs.kernel.org/networking/can.html. Accessed 01 Mar 2022

Alfardus, A., Rawat, D.B.: Intrusion detection system for can bus in-vehicle network based on machine learning algorithms. In: 2021 IEEE 12th Annual Ubiquitous Computing, Electronics & Mobile Communication Conference (UEMCON), pp. 0944–0949. IEEE (2021)

Baldassarre, M.T., Barletta, V.S., Caivano, D.: Smart program management in a smart city. In: 2018 AEIT International Annual Conference. pp. 1–6 (2018). https://doi.org/10.23919/AEIT.2018.8577379

Baldassarre, M.T., Barletta, V.S., Caivano, D., Piccinno, A.: A visual tool for supporting decision-making in privacy oriented software development. In: Proceedings of the International Conference on Advanced Visual Interfaces. AVI 2020, Association for Computing Machinery, New York, NY, USA (2020). https://doi.org/10.1145/3399715.3399818

Baldassarre, M.T., Barletta, V.S., Caivano, D., Piccinno, A.: Integrating security and privacy in HCD-scrum. In: CHItaly 2021: 14th Biannual Conference of the Italian SIGCHI Chapter. CHItaly 2021, Association for Computing Machinery, New York, NY, USA (2021). https://doi.org/10.1145/3464385.3464746

10.

Barletta, V.S., Caivano, D., Catalano, C., De Vincentiis, M., Pal, A.: Machine learning for automotive security in technology transfer. In: Information Systems and Technologies - WorldCIST 2023 (2023)

11.

Barletta, V.S., Caivano, D., Nannavecchia, A., Scalera, M.: Intrusion detection for in-vehicle communication networks: an unsupervised Kohonen SOM approach. Future Internet 12(7), 119 (2020). https://doi.org/10.3390/fi12070119CrossRef

12.

Barletta, V.S., Caivano, D., Vincentiis, M.D., Ragone, A., Scalera, M., Martín, M.Á.S.: V-soc4as: a vehicle-soc for improving automotive security. Algorithms 16(2), 112 (2023). https://doi.org/10.3390/a16020112CrossRef

13.

Barletta, V.S., Cassano, F., Pagano, A., Piccinno, A.: New perspectives for cyber security in software development: when end-user development meets artificial intelligence. In: 2022 International Conference on Innovation and Intelligence for Informatics, Computing, and Technologies (3ICT), pp. 531–534. IEEE (2022)

14.

Bosch: CAN Specification Version 2.0. Robert Bosch GmbH, Postfach 50 (1991)

15.

Bozdal, M., Samie, M., Aslam, S., Jennions, I.: Evaluation of can bus security challenges. Sensors 20(8), 2364 (2020)CrossRef

16.

Breiman, L.: Random forests 45(1), 5–32 (2001)

17.

Buscemi, A., Turcanu, I., Castignani, G., Crunelle, R., Engel, T.: CANmatch: a fully automated tool for can bus reverse engineering based on frame matching. IEEE Trans. Veh. Technol. 70(12), 12358–12373 (2021)CrossRef

18.

Catalano, C., Afrune, P., Angelelli, M., Maglio, G., Striani, F., Tommasi, F.: Security testing reuse enhancing active cyber defence in public administration. In: ITASEC, pp. 120–132 (2021)

19.

Cho, K.T., Shin, K.G.: Fingerprinting electronic control units for vehicle intrusion detection. In: USENIX Security Symposium, vol. 40, pp. 911–27 (2016)

20.

De Vincentiis, M., Cassano, F., Pagano, A., Piccinno, A.: QAI4ASE: quantum artificial intelligence for automotive software engineering. In: Proceedings of the 1st International Workshop on Quantum Programming for Software Engineering, pp. 19–21. QP4SE 2022, Association for Computing Machinery, New York, NY, USA (2022)

21.

El-Rewini, Z., Sadatsharan, K., Selvaraj, D.F., Plathottam, S.J., Ranganathan, P.: Cybersecurity challenges in vehicular communications. Veh. Commun. 23, 100214 (2020)

22.

Gundu, R., Maleki, M.: Securing CAN bus in connected and autonomous vehicles using supervised machine learning approaches. In: 2022 IEEE International Conference on Electro Information Technology (EIT), pp. 042–046. IEEE (2022)

23.

Han, M.L., Kwak, B.I., Kim, H.K.: Anomaly intrusion detection method for vehicular networks based on survival analysis. Veh. Commun. 14, 52–63 (2018)

24.

Hossain, M.D., Inoue, H., Ochiai, H., Fall, D., Kadobayashi, Y.: LSTM-based intrusion detection system for in-vehicle can bus communications. IEEE Access 8, 185489–185502 (2020)CrossRef

25.

Kalkan, S.C., Sahingoz, O.K.: In-vehicle intrusion detection system on controller area network with machine learning models. In: 2020 11th International Conference on Computing, Communication and Networking Technologies (ICCCNT), pp. 1–6 (2020)

26.

Kim, K., Kim, J.S., Jeong, S., Park, J.H., Kim, H.K.: Cybersecurity for autonomous vehicles: review of attacks and defense. Comput. Secur. 103, 102150 (2021)CrossRef

27.

Marchetti, M., Stabili, D.: READ: reverse engineering of automotive data frames. IEEE Trans. Inf. Forensics Secur. 14(4), 1083–1097 (2019)CrossRef

28.

Martínez-Cruz, A., Ramírez-Gutiérrez, K.A., Feregrino-Uribe, C., Morales-Reyes, A.: Security on in-vehicle communication protocols: issues, challenges, and future research directions. Comput. Commun. 180, 1–20 (2021)CrossRef

29.

Miller, C., Valasek, C.: Adventures in automotive networks and control units. Def Con 21(260–264), 15–31 (2013)

30.

Miller, C., Valasek, C.: Remote exploitation of an unaltered passenger vehicle. Black Hat USA 2015(S 91), 1–91 (2015)

31.

Moulahi, T., Zidi, S., Alabdulatif, A., Atiquzzaman, M.: Comparative performance evaluation of intrusion detection based on machine learning in in-vehicle controller area network bus. IEEE Access 9, 99595–99605 (2021)CrossRef

32.

NVIDIA: Jetson AGX Xavier Series. https://www.nvidia.com/en-us/autonomous-machines/embedded-systems/jetson-agx-xavier/. Accessed 25 Jul 2023

33.

Pedregosa, F., et al.: Scikit-learn: machine learning in Python. J. Mach. Learn. Res. 12, 2825–2830 (2011)MathSciNetMATH

34.

Rajapaksha, S., Kalutarage, H., Al-Kadri, M.O., Petrovski, A., Madzudzo, G., Cheah, M.: Ai-based intrusion detection systems for in-vehicle networks: a survey. ACM Comput. Surv. 55(11), 1–40 (2023)CrossRef

35.

Seo, E., Song, H.M., Kim, H.K.: GIDS: gan based intrusion detection system for in-vehicle network. In: 2018 16th Annual Conference on Privacy, Security and Trust (PST), pp. 1–6 (2018)

36.

Serrano, M.A., et al.: Minimizing incident response time in real-world scenarios using quantum computing. Softw. Qual. J. 1–30 (2023). https://doi.org/10.1007/s11219-023-09632-6

37.

Song, H.M., Woo, J., Kim, H.K.: In-vehicle network intrusion detection using deep convolutional neural network. Veh. Commun. 21, 100198 (2020)

38.

Stabili, D., Ferretti, L., Andreolini, M., Marchetti, M.: DAGA: detecting attacks to in-vehicle networks via n-gram analysis. IEEE Trans. Veh. Technol. 71(11), 11540–11554 (2022)CrossRef

39.

Venturi, A., Stabili, D., Pollicino, F., Bianchi, E., Marchetti, M.: Comparison of machine learning-based anomaly detectors for controller area network. In: 2022 IEEE 21st International Symposium on Network Computing and Applications (NCA), vol. 21, pp. 81–88. IEEE (2022)

40.

Yang, L., Moubayed, A., Hamieh, I., Shami, A.: Tree-based intelligent intrusion detection system in internet of vehicles. In: 2019 IEEE Global Communications Conference (GLOBECOM), pp. 1–6. IEEE (2019)

Title: MaREA: Multi-class Random Forest for Automotive Intrusion Detection
Authors: Danilo Caivano
Christian Catalano
Mirko De Vincentiis
Alfred Lako
Alessandro Pagano
Publisher: Springer Nature Switzerland
Book: Product-Focused Software Process Improvement
Print ISBN: 978-3-031-49268-6

Electronic ISBN: 978-3-031-49269-3

Copyright Year: 2024
DOI: https://doi.org/10.1007/978-3-031-49269-3_3

Springer Professional

Abstract

Please log in to get access to your license.

Dont have a licence yet? Then find out more about our products and how to get one now:

Springer Professional "Wirtschaft+Technik"

Springer Professional "Technik"

Springer Professional "Wirtschaft"

Premium Partner