A Statefull Firewall and Intrusion Detection System Enforced with Secure Logging for Controller Area Network

22 November 2021

The Controller Area Network standard represents one of the most commonly used communication protocol present in today’s vehicles. While it’s main properties facilitate the communication between different control units, several protocol design considerations represent security problems. While it’s trivial for an attacker to gain access and control the system, solutions capable of mitigating such incidents lack from a vehicle’s network. The current work proposes a Statefull Firewall, together with a signature based Intrusion Detection System as a response. Beside this, a Secure Logging unit is brought up in addition to support our methods, enforcing them with integrity verifiable logs.