Design and Development of IDS for AVB/TSN
Ano de defesa: | 2019 |
---|---|
Autor(a) principal: | |
Orientador(a): | |
Banca de defesa: | |
Tipo de documento: | Dissertação |
Tipo de acesso: | Acesso embargado |
Idioma: | eng |
Instituição de defesa: |
Universidade Federal de Pernambuco
|
Programa de Pós-Graduação: |
Programa de Pos Graduacao em Ciencia da Computacao
|
Departamento: |
Não Informado pela instituição
|
País: |
Brasil
|
Palavras-chave em Português: | |
Link de acesso: | https://repositorio.ufpe.br/handle/123456789/37619 |
Resumo: | In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance. |
id |
UFPE_aa8d8d95756bb7516808da664b727219 |
---|---|
oai_identifier_str |
oai:repositorio.ufpe.br:123456789/37619 |
network_acronym_str |
UFPE |
network_name_str |
Repositório Institucional da UFPE |
repository_id_str |
|
spelling |
NASCIMENTO, Rodrigo Antônio Alves dohttp://lattes.cnpq.br/3406137556910567http://lattes.cnpq.br/9838400375894439CAMPELO, Divanilson Rodrigo de Sousa2020-08-12T17:22:25Z2020-08-12T17:22:25Z2019-05-29NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019.https://repositorio.ufpe.br/handle/123456789/37619In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance.CAPESNos últimos anos, o número de ataques à sistemas automotivos aumentou tremendamente. Em geral, para combater tais ameaças, o uso de um modelo de segurança em camadas permite que uma série de mecanismos de segurança sejam aplicados para proteger os elementos de rede. Entre eles estão os Sistemas de Detecção de Intrusão (IDS), que monitoram sistemas afim de detectar atividades anômalas. Com o advento AVB/TSN (Audio Video Bridging/Time Sensitive Networking) para redes Ethernet automotivas, no-vas superfícies de ataques são esperadas em carros. Estas superfícieis estão relacionadas ao número de novas funcionalidades que permitem a transmissão paralela de dados sensíveis ao tempo e tráfego de melhor-esforço, dados de configurações, reserva de recursos, sincronização de relógios, e conexões entre dispositivos. Este trabalho visa preencher a lacuna deixada por trabalhos anteriores com as devidas contribuições: Apresentação dos vetores de ataques presentes nos protocolos de transporte (IEEE 1722/1733), protocolos de configuração (IEEE 1722.1) e protocolo de sincronização de relógios (IEEE 802.1AS); Discussão dos requisitos de software e hardware para o desenvolvimento de um IDS, incorporando os conceitos sugeridos pelo padrão IEEE 802.1Qci, visando um gateway automotivo como plataforma de integração; Introdução de detalhes adicionais que precisam ser levados em consideração à medida que outros protocolos ainda não finalizados ou pouco usados como o IEEE 802.1CB e o 802.1Qbu são introduzidos nos sistemas. A dissertação também apresenta resultados de um testbed utilizando hardware automotivo e ferramentas de testes serão apresentados de forma a avaliar a viabilidade do sistema IDS. Esta avaliação indica se o IDS, por ser uma camada de processamento adicional em um switch Ethernet automotivo, impacta de forma considerável no desempenho da operação normal deste switch.engUniversidade Federal de PernambucoPrograma de Pos Graduacao em Ciencia da ComputacaoUFPEBrasilAttribution-NonCommercial-NoDerivs 3.0 Brazilhttp://creativecommons.org/licenses/by-nc-nd/3.0/br/info:eu-repo/semantics/embargoedAccessRedes de computadoresSegurançaDesign and Development of IDS for AVB/TSNinfo:eu-repo/semantics/publishedVersioninfo:eu-repo/semantics/masterThesismestradoreponame:Repositório Institucional da UFPEinstname:Universidade Federal de Pernambuco (UFPE)instacron:UFPEORIGINALDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdfDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdfapplication/pdf2685070https://repositorio.ufpe.br/bitstream/123456789/37619/1/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdfba8ae75df6c15a3cc7843e403a2be6daMD51CC-LICENSElicense_rdflicense_rdfapplication/rdf+xml; charset=utf-8811https://repositorio.ufpe.br/bitstream/123456789/37619/2/license_rdfe39d27027a6cc9cb039ad269a5db8e34MD52LICENSElicense.txtlicense.txttext/plain; charset=utf-82310https://repositorio.ufpe.br/bitstream/123456789/37619/3/license.txtbd573a5ca8288eb7272482765f819534MD53TEXTDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.txtDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.txtExtracted texttext/plain191831https://repositorio.ufpe.br/bitstream/123456789/37619/4/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.txtb71b03c08c2d99cb2851b605db889218MD54THUMBNAILDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.jpgDISSERTAÇÃO Rodrigo Antônio Alves do Nascimento.pdf.jpgGenerated Thumbnailimage/jpeg1238https://repositorio.ufpe.br/bitstream/123456789/37619/5/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.jpg876fdd49f73a44a21082f257eca7a299MD55123456789/376192020-08-13 02:15:15.848oai:repositorio.ufpe.br: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ório InstitucionalPUBhttps://repositorio.ufpe.br/oai/requestattena@ufpe.bropendoar:22212020-08-13T05:15:15Repositório Institucional da UFPE - Universidade Federal de Pernambuco (UFPE)false |
dc.title.pt_BR.fl_str_mv |
Design and Development of IDS for AVB/TSN |
title |
Design and Development of IDS for AVB/TSN |
spellingShingle |
Design and Development of IDS for AVB/TSN NASCIMENTO, Rodrigo Antônio Alves do Redes de computadores Segurança |
title_short |
Design and Development of IDS for AVB/TSN |
title_full |
Design and Development of IDS for AVB/TSN |
title_fullStr |
Design and Development of IDS for AVB/TSN |
title_full_unstemmed |
Design and Development of IDS for AVB/TSN |
title_sort |
Design and Development of IDS for AVB/TSN |
author |
NASCIMENTO, Rodrigo Antônio Alves do |
author_facet |
NASCIMENTO, Rodrigo Antônio Alves do |
author_role |
author |
dc.contributor.authorLattes.pt_BR.fl_str_mv |
http://lattes.cnpq.br/3406137556910567 |
dc.contributor.advisorLattes.pt_BR.fl_str_mv |
http://lattes.cnpq.br/9838400375894439 |
dc.contributor.author.fl_str_mv |
NASCIMENTO, Rodrigo Antônio Alves do |
dc.contributor.advisor1.fl_str_mv |
CAMPELO, Divanilson Rodrigo de Sousa |
contributor_str_mv |
CAMPELO, Divanilson Rodrigo de Sousa |
dc.subject.por.fl_str_mv |
Redes de computadores Segurança |
topic |
Redes de computadores Segurança |
description |
In the past few years, the number of attacks focusing on automotive systems have grown tremendously. In general, to combat such attacks, the use of a layered model of security is advised, where complementary security mechanisms can be applied to protect devices. Among them are Intrusion Detection System (IDS), which monitor systems to detect anomalous activities. With the emerging use of deterministic Ethernet brought by AVB/TSN into automotive Ethernet networks, newer attack surfaces are expected in cars. These are related to the set of new features to enable the parallel transmission of time-sensitive and best-effort media, management data, stream reservation, time synchronization and the connections among them. This thesis fills the gap left by previous works by: Summarizing exploitation vectors present on transport protocols (IEEE 1722/1733), management protocol (IEEE 1722.1) and time synchronization (IEEE 802.1AS); Dis-cussing the software/hardware requirements of the IDS, which also incorporates IEEE 802.1Qci features, deployed on an automotive switch present in a central gateway; Sharing the challenges of designing and implementing an IDS for AVB/TSN; Introducing IDS concepts for other TSN protocols such as 802.1CB and 802.1Qbu. To conclude the thesis, the results of a practical testbed using automotive equipment and testing tools used to confirm the feasibility of such a system will be shown. This evaluation measures whether the IDS, as an additional processing layer in the switch, impacts on the normal switch performance. |
publishDate |
2019 |
dc.date.issued.fl_str_mv |
2019-05-29 |
dc.date.accessioned.fl_str_mv |
2020-08-12T17:22:25Z |
dc.date.available.fl_str_mv |
2020-08-12T17:22:25Z |
dc.type.status.fl_str_mv |
info:eu-repo/semantics/publishedVersion |
dc.type.driver.fl_str_mv |
info:eu-repo/semantics/masterThesis |
format |
masterThesis |
status_str |
publishedVersion |
dc.identifier.citation.fl_str_mv |
NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019. |
dc.identifier.uri.fl_str_mv |
https://repositorio.ufpe.br/handle/123456789/37619 |
identifier_str_mv |
NASCIMENTO, Rodrigo Antônio Alves do. Design and Development of IDS for AVB/TSN. 2019. Dissertação (Mestrado em Ciência da Computação) – Universidade Federal de Pernambuco, Recife, 2019. |
url |
https://repositorio.ufpe.br/handle/123456789/37619 |
dc.language.iso.fl_str_mv |
eng |
language |
eng |
dc.rights.driver.fl_str_mv |
Attribution-NonCommercial-NoDerivs 3.0 Brazil http://creativecommons.org/licenses/by-nc-nd/3.0/br/ info:eu-repo/semantics/embargoedAccess |
rights_invalid_str_mv |
Attribution-NonCommercial-NoDerivs 3.0 Brazil http://creativecommons.org/licenses/by-nc-nd/3.0/br/ |
eu_rights_str_mv |
embargoedAccess |
dc.publisher.none.fl_str_mv |
Universidade Federal de Pernambuco |
dc.publisher.program.fl_str_mv |
Programa de Pos Graduacao em Ciencia da Computacao |
dc.publisher.initials.fl_str_mv |
UFPE |
dc.publisher.country.fl_str_mv |
Brasil |
publisher.none.fl_str_mv |
Universidade Federal de Pernambuco |
dc.source.none.fl_str_mv |
reponame:Repositório Institucional da UFPE instname:Universidade Federal de Pernambuco (UFPE) instacron:UFPE |
instname_str |
Universidade Federal de Pernambuco (UFPE) |
instacron_str |
UFPE |
institution |
UFPE |
reponame_str |
Repositório Institucional da UFPE |
collection |
Repositório Institucional da UFPE |
bitstream.url.fl_str_mv |
https://repositorio.ufpe.br/bitstream/123456789/37619/1/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf https://repositorio.ufpe.br/bitstream/123456789/37619/2/license_rdf https://repositorio.ufpe.br/bitstream/123456789/37619/3/license.txt https://repositorio.ufpe.br/bitstream/123456789/37619/4/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.txt https://repositorio.ufpe.br/bitstream/123456789/37619/5/DISSERTA%c3%87%c3%83O%20Rodrigo%20Ant%c3%b4nio%20Alves%20do%20Nascimento.pdf.jpg |
bitstream.checksum.fl_str_mv |
ba8ae75df6c15a3cc7843e403a2be6da e39d27027a6cc9cb039ad269a5db8e34 bd573a5ca8288eb7272482765f819534 b71b03c08c2d99cb2851b605db889218 876fdd49f73a44a21082f257eca7a299 |
bitstream.checksumAlgorithm.fl_str_mv |
MD5 MD5 MD5 MD5 MD5 |
repository.name.fl_str_mv |
Repositório Institucional da UFPE - Universidade Federal de Pernambuco (UFPE) |
repository.mail.fl_str_mv |
attena@ufpe.br |
_version_ |
1797782279965114368 |