MACsec Extension over Software-Defined Networks for in-Vehicle Secure Communication

Ju Ho Choi, Sung-Gi Min, Youn Hee Han

Research output: Chapter in Book/Report/Conference proceedingConference contribution

2 Citations (Scopus)

Abstract

The automotive industry has recently introduced Advanced driver assistance systems (ADAS) for safety and better driving. Many Electronic Control Units (ECUs) have been installed in the vehicle to support ADAS, and massive data stream flows over the in-vehicle network. Therefore, the Ethernet backbone, which can guarantee the high bandwidth, has emerged as an in-vehicle communication technology. However, security on automotive Ethernet has not yet been proposed. The IEEE MACsec with IEEE 802.1X Authentication and Key Management (AKM) may be applied for the in-vehicle secure communication, but it has a constraint that its security scope is based on a point-to-point approach. Whenever a frame arrives at the switches in the transmission path, the decryption and re-encryption of the frame are repeated. It may adversely affect the performance of ADAS related to the driver's safety by increasing the end-to-end latency. We therefore propose a new MACsec extension over the Software-Defined Networks (SDN) for an in-vehicle secure communication, which is based on IEEE 802.1X authentication mechanism. The proposed scheme extends the security scope of MACsec from point-to-point to end-to-end by delegating AKM process of ECUs and switches to SDN controller. It could minimize the cryptographic processes of the ECUs and switches without any modification of the existing MACsec standard, and could protect an automotive system from any manipulation by unauthorized third parties. The experimental results show that the proposed scheme is applicable for an in-vehicle secure communication.

Original languageEnglish
Title of host publicationICUFN 2018 - 10th International Conference on Ubiquitous and Future Networks
PublisherIEEE Computer Society
Pages180-185
Number of pages6
Volume2018-July
ISBN (Print)9781538646465
DOIs
Publication statusPublished - 2018 Aug 14
Event10th International Conference on Ubiquitous and Future Networks, ICUFN 2018 - Prague, Czech Republic
Duration: 2018 Jul 32018 Jul 6

Other

Other10th International Conference on Ubiquitous and Future Networks, ICUFN 2018
CountryCzech Republic
CityPrague
Period18/7/318/7/6

    Fingerprint

Keywords

  • authentication and key management (AKM)
  • automotive Ethernet
  • IEEE 802.1AE
  • In-vehicle secure communication

ASJC Scopus subject areas

  • Computer Networks and Communications
  • Computer Science Applications
  • Hardware and Architecture

Cite this

Choi, J. H., Min, S-G., & Han, Y. H. (2018). MACsec Extension over Software-Defined Networks for in-Vehicle Secure Communication. In ICUFN 2018 - 10th International Conference on Ubiquitous and Future Networks (Vol. 2018-July, pp. 180-185). [8436963] IEEE Computer Society. https://doi.org/10.1109/ICUFN.2018.8436963