TOW-IDS: Intrusion Detection System Based on Three Overlapped Wavelets for Automotive Ethernet | IEEE Journals & Magazine | IEEE Xplore
Subscribe
ADVANCED SEARCH
Journals & Magazines >IEEE Transactions on Informat... >Volume: 18

TOW-IDS: Intrusion Detection System Based on Three Overlapped Wavelets for Automotive Ethernet

PDF
DatasetsAvailable
Mee Lan Han; Byung Il Kwak; Huy Kang Kim
All Authors

Abstract:

Devices that ensure vehicle and driver safety or provide services to drivers generate a substantial amount of network traffic. The traffic is transmitted to the In-Vehicl...Show More

Metadata

Abstract:

Devices that ensure vehicle and driver safety or provide services to drivers generate a substantial amount of network traffic. The traffic is transmitted to the In-Vehicle Network (IVN) depending on the defined function. Consequently, to quickly process a lot of traffic transmitted to the IVN, an advanced network protocol such as Automotive Ethernet is necessary. However, owing to the connectivity reinforcement between devices inside a vehicle and external networks, attack vectors and vulnerabilities can be easily inherited from an established Ethernet to Automotive Ethernet. The present study proposes a method for detecting and identifying abnormalities in Automotive Ethernet based on wavelet transform and deep convolutional neural network. First, we define attack scenarios and extract normal and abnormal data corresponding to these scenarios. Second, we conduct several preprocesses, such as fixing the packet size and normalizing the network image data. Finally, we conduct extensive evaluations of the proposed method’s performance, considering the size of network image data and multi-resolution levels. The results demonstrate that the proposed method can effectively detect an abnormality. Furthermore, the results suggest that the our method is more effective in terms of time-cost compared to default ResNet and EfficientNet methods.
Published in: IEEE Transactions on Information Forensics and Security ( Volume: 18)
Page(s): 411 - 422
Date of Publication: 14 November 2022

ISSN Information:

DOI: 10.1109/TIFS.2022.3221893

Funding Agency:

Contents

I. Introduction

In recent years, the automotive industry has seen rapid adoption of in-vehicle systems (such as infotainment system and advanced driver assistance system (ADAS)) and a multitude of sensors (such as a vision camera, radar, and lidar) that can accurately and quickly recognize the area around a vehicle. These advanced technologies generate a large amount of network traffic during communication between networks inside the system and communication with networks outside the vehicle. As a type of integrated sensing and communication (ISAC) concept, a new network environment is required to enable fast and accurate integrated processing of data of different types of protocols generated from heterogeneous networks of a vehicle [1]. Currently, many studies and industrial efforts toward handling a large amount of network traffic in an Automotive Ethernet are underway. Furthermore, to secure compatibility with existing web or mobile services, Automotive Ethernet adopts current ICT communication protocols, including the original Transmission Control Protocol (TCP)/Internet Protocol (IP). However, this indicates that various attack vectors and vulnerabilities that had occurred in the existing communication environment can be conveyed in the Automotive Ethernet environment. Even a minor risk posed by the attack vectors and vulnerabilities can jeopardize the safety of drivers, passengers, and pedestrians around vehicles at any time. Therefore, to ensure security of the IVN and the safety of drivers, a study needs to be conducted to detect the abnormality of a vehicle network and to identify their attack types in the Automotive Ethernet environment.

This article includes datasets hosted on IEEE DataPort(TM), a data repository created by IEEE to facilitate research reproducibility or another IEEE approved repository. Click the dataset name below to access it on the data repository
Dataset Name: TOW-IDS: AUTOMOTIVE ETHERNET INTRUSION DATASET
Contact IEEE to Subscribe
More Like This
Evaluation of clock synchronization accuracy of coexistent Real-Time Ethernet protocols

2008 IEEE International Symposium on Precision Clock Synchronization for Measurement, Control and Communication

Published: 2008

Implementing a clock synchronization protocol on a multi-master Switched Ethernet network

2013 IEEE 18th Conference on Emerging Technologies & Factory Automation (ETFA)

Published: 2013

Show More

References

References is not available for this document.

IEEE Account

Purchase Details

Profile Information

Need Help?

A not-for-profit organization, IEEE is the world's largest technical professional organization dedicated to advancing technology for the benefit of humanity.
© Copyright 2025 IEEE - All rights reserved. Use of this web site signifies your agreement to the terms and conditions.