Design and Development of IDS for AVB/TSN

Detalhes bibliográficos
Ano de defesa: 2019
Autor(a) principal: NASCIMENTO, Rodrigo Antônio Alves do
Orientador(a): CAMPELO, Divanilson Rodrigo de Sousa
Banca de defesa: Não Informado pela instituição
Tipo de documento: Dissertação
Tipo de acesso: Acesso embargado
Idioma: eng
Instituição de defesa: Universidade Federal de Pernambuco
Programa de Pós-Graduação: Programa de Pos Graduacao em Ciencia da Computacao
Departamento: Não Informado pela instituição
País: Brasil
Palavras-chave em Português:
Redes de computadores
Segurança
Link de acesso: https://repositorio.ufpe.br/handle/123456789/37619
Resumo: In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance.
id UFPE_aa8d8d95756bb7516808da664b727219
oai_identifier_str oai:repositorio.ufpe.br:123456789/37619
network_acronym_str UFPE
network_name_str Repositório Institucional da UFPE
repository_id_str
spelling NASCIMENTO, Rodrigo Antônio Alves dohttp://lattes.cnpq.br/3406137556910567http://lattes.cnpq.br/9838400375894439CAMPELO, Divanilson Rodrigo de Sousa2020-08-12T17:22:25Z2020-08-12T17:22:25Z2019-05-29NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019.https://repositorio.ufpe.br/handle/123456789/37619In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance.CAPESNos últimos anos, o número de ataques à sistemas automotivos aumentou tremendamente. Em geral, para combater tais ameaças, o uso de um modelo de segurança em camadas permite que uma série de mecanismos de segurança sejam aplicados para proteger os elementos de rede. Entre eles estão os Sistemas de Detecção de Intrusão (IDS), que monitoram sistemas afim de detectar atividades anômalas. Com o advento AVB/TSN (Audio Video Bridging/Time Sensitive Networking) para redes Ethernet automotivas, no-vas superfícies de ataques são esperadas em carros. Estas superfícieis estão relacionadas ao número de novas funcionalidades que permitem a transmissão paralela de dados sensíveis ao tempo e tráfego de melhor-esforço, dados de configurações, reserva de recursos, sincronização de relógios, e conexões entre dispositivos. Este trabalho visa preencher a lacuna deixada por trabalhos anteriores com as devidas contribuições: Apresentação dos vetores de ataques presentes nos protocolos de transporte (IEEE 1722/1733), protocolos de configuração (IEEE 1722.1) e protocolo de sincronização de relógios (IEEE 802.1AS); Discussão dos requisitos de software e hardware para o desenvolvimento de um IDS, incorporando os conceitos sugeridos pelo padrão IEEE 802.1Qci, visando um gateway automotivo como plataforma de integração; Introdução de detalhes adicionais que precisam ser levados em consideração à medida que outros protocolos ainda não finalizados ou pouco usados como o IEEE 802.1CB e o 802.1Qbu são introduzidos nos sistemas. A dissertação também apresenta resultados de um testbed utilizando hardware automotivo e ferramentas de testes serão apresentados de forma a avaliar a viabilidade do sistema IDS. Esta avaliação indica se o IDS, por ser uma camada de processamento adicional em um switch Ethernet automotivo, impacta de forma considerável no desempenho da operação normal deste switch.engUniversidade Federal de PernambucoPrograma de Pos Graduacao em Ciencia da ComputacaoUFPEBrasilAttribution-NonCommercial-NoDerivs 3.0 Brazilhttp://creativecommons.org/licenses/by-nc-nd/3.0/br/info:eu-repo/semantics/embargoedAccessRedes de computadoresSegurançaDesign and Development of IDS for AVB/TSNinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesismestradoreponame:Repositório Institucional da UFPEinstname:Universidade Federal de Pernambuco (UFPE)instacron:UFPEORIGINALDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdfDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdfapplication/pdf2685070https://repositorio.ufpe.br/bitstream/123456789/37619/1/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdfba8ae75df6c15a3cc7843e403a2be6daMD51CC-LICENSElicense_rdflicense_rdfapplication/rdf+xml; charset=utf-8811https://repositorio.ufpe.br/bitstream/123456789/37619/2/license_rdfe39d27027a6cc9cb039ad269a5db8e34MD52LICENSElicense.txtlicense.txttext/plain; charset=utf-82310https://repositorio.ufpe.br/bitstream/123456789/37619/3/license.txtbd573a5ca8288eb7272482765f819534MD53TEXTDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.txtDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.txtExtracted texttext/plain191831https://repositorio.ufpe.br/bitstream/123456789/37619/4/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.txtb71b03c08c2d99cb2851b605db889218MD54THUMBNAILDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.jpgDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.jpgGenerated Thumbnailimage/jpeg1238https://repositorio.ufpe.br/bitstream/123456789/37619/5/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.jpg876fdd49f73a44a21082f257eca7a299MD55123456789/376192020-08-13 02:15:15.848oai:repositorio.ufpe.br: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ório InstitucionalPUBhttps://repositorio.ufpe.br/oai/requestattena@ufpe.bropendoar:22212020-08-13T05:15:15Repositório Institucional da UFPE - Universidade Federal de Pernambuco (UFPE)false
dc.title.pt_BR.fl_str_mv Design and Development of IDS for AVB/TSN
title Design and Development of IDS for AVB/TSN
spellingShingle Design and Development of IDS for AVB/TSN
NASCIMENTO, Rodrigo Antônio Alves do
Redes de computadores
Segurança
title_short Design and Development of IDS for AVB/TSN
title_full Design and Development of IDS for AVB/TSN
title_fullStr Design and Development of IDS for AVB/TSN
title_full_unstemmed Design and Development of IDS for AVB/TSN
title_sort Design and Development of IDS for AVB/TSN
author NASCIMENTO, Rodrigo Antônio Alves do
author_facet NASCIMENTO, Rodrigo Antônio Alves do
author_role author
dc.contributor.authorLattes.pt_BR.fl_str_mv http://lattes.cnpq.br/3406137556910567
dc.contributor.advisorLattes.pt_BR.fl_str_mv http://lattes.cnpq.br/9838400375894439
dc.contributor.author.fl_str_mv NASCIMENTO, Rodrigo Antônio Alves do
dc.contributor.advisor1.fl_str_mv CAMPELO, Divanilson Rodrigo de Sousa
contributor_str_mv CAMPELO, Divanilson Rodrigo de Sousa
dc.subject.por.fl_str_mv Redes de computadores
Segurança
topic Redes de computadores
Segurança
description In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance.
publishDate 2019
dc.date.issued.fl_str_mv 2019-05-29
dc.date.accessioned.fl_str_mv 2020-08-12T17:22:25Z
dc.date.available.fl_str_mv 2020-08-12T17:22:25Z
dc.type.status.fl_str_mv info:eu-repo/semantics/publishedVersion
dc.type.driver.fl_str_mv info:eu-repo/semantics/masterThesis
format masterThesis
status_str publishedVersion
dc.identifier.citation.fl_str_mv NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019.
dc.identifier.uri.fl_str_mv https://repositorio.ufpe.br/handle/123456789/37619
identifier_str_mv NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019.
url https://repositorio.ufpe.br/handle/123456789/37619
dc.language.iso.fl_str_mv eng
language eng
dc.rights.driver.fl_str_mv Attribution-NonCommercial-NoDerivs 3.0 Brazil
http://creativecommons.org/licenses/by-nc-nd/3.0/br/
info:eu-repo/semantics/embargoedAccess
rights_invalid_str_mv Attribution-NonCommercial-NoDerivs 3.0 Brazil
http://creativecommons.org/licenses/by-nc-nd/3.0/br/
eu_rights_str_mv embargoedAccess
dc.publisher.none.fl_str_mv Universidade Federal de Pernambuco
dc.publisher.program.fl_str_mv Programa de Pos Graduacao em Ciencia da Computacao
dc.publisher.initials.fl_str_mv UFPE
dc.publisher.country.fl_str_mv Brasil
publisher.none.fl_str_mv Universidade Federal de Pernambuco
dc.source.none.fl_str_mv reponame:Repositório Institucional da UFPE
instname:Universidade Federal de Pernambuco (UFPE)
instacron:UFPE
instname_str Universidade Federal de Pernambuco (UFPE)
instacron_str UFPE
institution UFPE
reponame_str Repositório Institucional da UFPE
collection Repositório Institucional da UFPE
bitstream.url.fl_str_mv https://repositorio.ufpe.br/bitstream/123456789/37619/1/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf
https://repositorio.ufpe.br/bitstream/123456789/37619/2/license_rdf
https://repositorio.ufpe.br/bitstream/123456789/37619/3/license.txt
https://repositorio.ufpe.br/bitstream/123456789/37619/4/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.txt
https://repositorio.ufpe.br/bitstream/123456789/37619/5/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.jpg
bitstream.checksum.fl_str_mv ba8ae75df6c15a3cc7843e403a2be6da
e39d27027a6cc9cb039ad269a5db8e34
bd573a5ca8288eb7272482765f819534
b71b03c08c2d99cb2851b605db889218
876fdd49f73a44a21082f257eca7a299
bitstream.checksumAlgorithm.fl_str_mv MD5
MD5
MD5
MD5
MD5
repository.name.fl_str_mv Repositório Institucional da UFPE - Universidade Federal de Pernambuco (UFPE)
repository.mail.fl_str_mv attena@ufpe.br
_version_ 1797782279965114368

Registros relacionados