Säkerhet i CAN-bussen : Riskerna som medföljer Internet of Vehicles

Lindmark, Anton, Hall, Fredrik

January 2017

I denna rapport undersöks säkerheten i de inbyggda systemen i ett fordon. Är CAN-bussen och enheterna som kommunicerar med den verkligen säkra? Vilka svagheter finns det inom säkerheten när ny teknik implementeras i fordon och ansluts till CAN-bussen?Om ett fordon blir angripet så är riskerna att angriparen lyckas med attacken ganska stora. Speciellt så finns det flera risker och säkerhetshål med ny teknik t.ex. inbyggda mediasystem i fordon.Vi har forskat i hur lätt det är att hämta information ur fordonet, samt vad som kan göras med denna information, detta med hjälp av både andra vetenskapliga rapporter samt en fysisk undersökning med hjälp av en applikation som utvecklades.Genom avläsning med hjälp av Bluetooth från OBD2 kontakten så kan information såsom signaler för att låsa upp fordonet eller trycka på gasen läsas av från fordonet. Viss information är dold för den normala användaren, såsom ett tryck på gaspedalen. Denna information måste erhållas genom exempelvis avläsning av dolda paket. Detta kan göras genom att spåra paket med hjälp av diverse program, t.ex. Wireshark. Hade denna information varit enkel att tillgå så kan den användas på ett skadligt sätt. Skulle exempelvis kommandot för att trycka på gasen kunna styras trådlöst så skulle detta kunna skapa stora och farliga problem. Detta är något som undersöks i rapporten, hur man kan gå tillväga och vilka sätt ett fordon kan angripas på.En applikation utvecklades för att undersöka vilken information som kan relativt enkelt extraheras. Parametrar som t.ex. hastighet eller varvtal på motorn är exempel på denna information. Med hjälp av en OBD2 enhet så kommunicerar applikationen med fordonet. Applikationen hämtar ut informationen om en bilresa från start till stopp för att sedan kunna redovisa denna information. Information visas till användaren i applikationen både under tiden fordonet färdas och sedan en sammanfattning av hela resan. Applikationen kan användas för att spara sina resor om man till exempel vill redovisa tjänsteresor för sin arbetsgivare. Resorna sparas både i databas och lokalt på din telefon med möjlighet för uppladdning till en webbserver eller liknande.iiApplikationen sparar all information du valt om din resa och kan även skräddarsys med mer eller mindre parametrar beroende på behov.Den har även ett användningsområde för att övervaka sitt körande, om man till exempel någon gång under resans gång uppnår onormala värden, som t.ex. alldeles för höga varvtal eller liknande. / In this report, the security in integrated systems within vehicles is evaluated. Is the CAN bus and the devices that communicate with it secure? What are the weaknesses in security when modern technologies are implemented in vehicles and connected to the CAN bus?If a vehicle is attacked, the risk of the attacker's success with the attack is quite large. There are several risks and security holes with modern technology, for example. built-in media system in vehicles.We have researched how easy it is to retrieve information from the vehicle and what can be done with this information, using both other scientific reports and a physical examination using an application that were developed.By reading using Bluetooth from the OBD2 connector, information such as signals to unlock the vehicle or press the gas pedal can be read from the vehicle. Certain information is hidden for the normal user, such as a press of the gas pedal. This information must be obtained by for example, reading hidden packages. This can be done by tracing packages through various applications, such as Wireshark. Had this information been easy to access, it could be used in a malicious way. Should the command to press the gas be controlled wirelessly, this could create major and dangerous problems. This is something that is being investigated in the report, how to proceed and what ways a vehicle can be attacked.An application was developed to investigate what information that can be relatively easily extracted. Parameters such as speed or rounds per minute on the engine are examples of this information. Using an OBD2 device, the application communicates with the vehicle. The application retrieves information about a trip from start to stop and then it’s able to report this information. Information is displayed to the user in the application both while the vehicle is traveling and then a summary of the entire trip. The application can be used to save one’s journey, if for example, you want to report your trips to your employer. The trips are stored both in a database and locally on your phone with the possibility of uploading to a web server.ivThe application saves all information you selected about your trip and can also be customized with parameters depending on your needs. It also has a field of use for monitoring your driving, for example if you at some time during the trip reach abnormal values, such as far too high rounds per minute or something similar.

CAN-Bus

OBD2

Security

Bluetooth

CAN-buss

OBD2

Säkerhet

Bluetooth

Computer Systems

Datorsystem

Palubní počítač s testovací jednotkou pro osobní automobily / On-board Computer Unit with Testing for Cars

Špatenka, Jan

January 2012

This thesis deals with the design and implementation of on-board computer unit with testing for cars. The first part focuses on circuit design concepts. Measurement data acquisition module uses standard OBD2. The module is designed based on the measuring circuit STN1110. Measuring module equipped with USB and JTAG communicates with the nearby devices. The control module is equipped with ARM microcontroller. The second part deals with the implementation of software for the microcontroller and the PC application. Finally, test results of the on-board computer implemented are presented.

Race Car Monitor

Orrenius, Erik, Rahm, Pontus

January 2022

To evolve and develop your skills as a driver, it is worthwhile to review and reflect on your last drive at a professional as well as beginners level. The purpose of the project is to create such a system that can be used to record a drive by filming from the dashboard of the car and logging data from the vehicle. The summarized log is then used to evaluate a run.  The system consists of two major parts: 1) an OBD-II reading-unit (hardware) that can be plugged in the OBD-II port in the vehicle to read data, and 2) an Android application run on an Android device. The application records the drive as well as a heads-up display (HUD) showing acceleration, GPS-location and some data gathered from the vehicle continuously. The OBD-II port is connected to engine control units in the vehicle. The reading unit follows the commands given by the application, reads the data and then sends them to the smartphone via Bluetooth.  The reading unit consists of a STN-1170 microcontroller which supports a large roster of diagnostics protocols, and a HC-06 Bluetooth module. The unit is plugged in the OBD-II port to get the measurement data and transmits the data to the smartphone.  To validate the system, a CAN simulation unit (CAN simulator) was created that acts as the OBD-II port (or socket) in a vehicle based on OBD standard diagnostics protocol. The simulator was designed as a shield for an Arduino UNO. The Arduino was programmed to act as an OBD-II port in a vehicle supporting the CAN protocol. Utilizing two components: MCP2515, which translates between SPI and CAN, and MCP2551, which prepares the CAN signal for transmission on the physical bus, allows the Arduino to communicate the simulated data through SPI which, in turn, was translated into and transmitted on the physical bus using CAN. The parameters: vehicle speed, vehicle RPM and throttle-position, could be controlled using a set of potentiometers, these parameters were used to validate the system. The system was tested using the testbench with the simulator. The test results have shown that both the system and the simulator work well. The Android application requested parameters such as RPM, speed and throttle positioning while also updating the GPS-location of the vehicle and reading the acceleration using the smartphone’s accelerometer. The OBD-II reading unit received the request from the application through Bluetooth, transferred it to the microcontroller via UART, translated the request into a command in the CAN protocol and sent it to the simulator. At the next command transmitted to the simulator, the reading unit would collect the previous command’s result, which was transferred back to the phone in the reverse order. The information collected from the vehicle was tagged using a timestamp and subsequently logged in a .txt-file.

OBD2

CAN

SAE J1850

KWP2000

Android

ECAD

Annan elektroteknik och elektronik

TimescaleDB för lagring av OBD-II-data / TimescaleDB for OBD-II data storage

Svensson, Alex, Wichardt, Ulf

January 2022

All cars support reading diagnostic data from their control units via the On-Board Diagnostics II protocol. For companies with large vehicle fleets it may be valuable to analyze this diagnostic data, but large vehicle fleets produce large amounts of data. In this thesis we investigated whether the time series database TimescaleDB is suitable for storing such data. In order to investigate this we tested and evaluated its insertion speed, query execution time and compression ratio. The results show that TimescaleDB is able to insert over 200 000 rows of data per second. They also show that the compression algorithm can speed up query execution by up to 134.5 times and reach a compression ratio of 9.1. Considering these results we conclude that TimescaleDB is a suitable choice for storing diagnostic data, but not necessarily the most suitable.

TimescaleDB

On-Board Diagnostics II

On-Board Diagnostics 2

OBD-II

OBD2

TSDB

Time Series Database

PostgreSQL

Computer Sciences

Datavetenskap (datalogi)