Enhanced android app-repackaging attack on in-vehicle network

Yousik Lee, Samuel Woo, Jungho Lee, Yunkeun Song, Heeseok Moon, Dong Hoon Lee, Karl Andersson

Research output: Contribution to journalArticle

Abstract

The convergence of automobiles and ICT (information and communication technology) has become a new paradigm for the development of next-generation vehicles. In particular, connected cars represent the most in-demand automobile-ICT convergence technology. With the development of 5G technology, communication between vehicle and external device using autonomous driving and Internet of things (IoT) technology has been remarkably developed. Control of vehicles using smart phones has become a routine feature, and over 200 Android apps are in use. However, Android apps are easy to tamper by repackaging and allowing hackers to attack vehicles with using this vulnerability, which can lead to life-critical accidents. In this study, we analyze the vulnerabilities of connected car environments when connecting with IoT technologies and demonstrate the possibility of cyberattack by performing attack experiments using real cars and repackaging for commercial apps. Furthermore, we propose a realistic security technology as a countermeasure to attain safety against cyberattacks. To evaluate the safety of the proposed method, a security module is developed and a performance evaluation is conducted on an actual vehicle.

Original languageEnglish
Article number5650245
JournalWireless Communications and Mobile Computing
Volume2019
DOIs
Publication statusPublished - 2019 Jan 1

Fingerprint

Application programs
Railroad cars
Automobiles
Communication
Android (operating system)
Accidents
Experiments

ASJC Scopus subject areas

  • Information Systems
  • Computer Networks and Communications
  • Electrical and Electronic Engineering

Cite this

Enhanced android app-repackaging attack on in-vehicle network. / Lee, Yousik; Woo, Samuel; Lee, Jungho; Song, Yunkeun; Moon, Heeseok; Lee, Dong Hoon; Andersson, Karl.

In: Wireless Communications and Mobile Computing, Vol. 2019, 5650245, 01.01.2019.

Research output: Contribution to journalArticle

Lee, Yousik ; Woo, Samuel ; Lee, Jungho ; Song, Yunkeun ; Moon, Heeseok ; Lee, Dong Hoon ; Andersson, Karl. / Enhanced android app-repackaging attack on in-vehicle network. In: Wireless Communications and Mobile Computing. 2019 ; Vol. 2019.
@article{bb176d1860cd4441a206312e91f117e1,
title = "Enhanced android app-repackaging attack on in-vehicle network",
abstract = "The convergence of automobiles and ICT (information and communication technology) has become a new paradigm for the development of next-generation vehicles. In particular, connected cars represent the most in-demand automobile-ICT convergence technology. With the development of 5G technology, communication between vehicle and external device using autonomous driving and Internet of things (IoT) technology has been remarkably developed. Control of vehicles using smart phones has become a routine feature, and over 200 Android apps are in use. However, Android apps are easy to tamper by repackaging and allowing hackers to attack vehicles with using this vulnerability, which can lead to life-critical accidents. In this study, we analyze the vulnerabilities of connected car environments when connecting with IoT technologies and demonstrate the possibility of cyberattack by performing attack experiments using real cars and repackaging for commercial apps. Furthermore, we propose a realistic security technology as a countermeasure to attain safety against cyberattacks. To evaluate the safety of the proposed method, a security module is developed and a performance evaluation is conducted on an actual vehicle.",
author = "Yousik Lee and Samuel Woo and Jungho Lee and Yunkeun Song and Heeseok Moon and Lee, {Dong Hoon} and Karl Andersson",
year = "2019",
month = "1",
day = "1",
doi = "10.1155/2019/5650245",
language = "English",
volume = "2019",
journal = "Wireless Communications and Mobile Computing",
issn = "1530-8669",
publisher = "John Wiley and Sons Ltd",

}

TY - JOUR

T1 - Enhanced android app-repackaging attack on in-vehicle network

AU - Lee, Yousik

AU - Woo, Samuel

AU - Lee, Jungho

AU - Song, Yunkeun

AU - Moon, Heeseok

AU - Lee, Dong Hoon

AU - Andersson, Karl

PY - 2019/1/1

Y1 - 2019/1/1

N2 - The convergence of automobiles and ICT (information and communication technology) has become a new paradigm for the development of next-generation vehicles. In particular, connected cars represent the most in-demand automobile-ICT convergence technology. With the development of 5G technology, communication between vehicle and external device using autonomous driving and Internet of things (IoT) technology has been remarkably developed. Control of vehicles using smart phones has become a routine feature, and over 200 Android apps are in use. However, Android apps are easy to tamper by repackaging and allowing hackers to attack vehicles with using this vulnerability, which can lead to life-critical accidents. In this study, we analyze the vulnerabilities of connected car environments when connecting with IoT technologies and demonstrate the possibility of cyberattack by performing attack experiments using real cars and repackaging for commercial apps. Furthermore, we propose a realistic security technology as a countermeasure to attain safety against cyberattacks. To evaluate the safety of the proposed method, a security module is developed and a performance evaluation is conducted on an actual vehicle.

AB - The convergence of automobiles and ICT (information and communication technology) has become a new paradigm for the development of next-generation vehicles. In particular, connected cars represent the most in-demand automobile-ICT convergence technology. With the development of 5G technology, communication between vehicle and external device using autonomous driving and Internet of things (IoT) technology has been remarkably developed. Control of vehicles using smart phones has become a routine feature, and over 200 Android apps are in use. However, Android apps are easy to tamper by repackaging and allowing hackers to attack vehicles with using this vulnerability, which can lead to life-critical accidents. In this study, we analyze the vulnerabilities of connected car environments when connecting with IoT technologies and demonstrate the possibility of cyberattack by performing attack experiments using real cars and repackaging for commercial apps. Furthermore, we propose a realistic security technology as a countermeasure to attain safety against cyberattacks. To evaluate the safety of the proposed method, a security module is developed and a performance evaluation is conducted on an actual vehicle.

UR - http://www.scopus.com/inward/record.url?scp=85062328805&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=85062328805&partnerID=8YFLogxK

U2 - 10.1155/2019/5650245

DO - 10.1155/2019/5650245

M3 - Article

VL - 2019

JO - Wireless Communications and Mobile Computing

JF - Wireless Communications and Mobile Computing

SN - 1530-8669

M1 - 5650245

ER -