Experimental Security Analysis of a Modern （实验安全分析的现代）.pdf

Experimental Security Analysis of a Modern Automobile Karl Koscher, Alexei Czeskis, Franziska Roesner, Shwetak Patel, and Tadayoshi Kohno Department of Computer Science and Engineering University of Washington Seattle, Washington 98195–2350 Email: {supersat,aczeskis,franzi,shwetak,yoshi}@ Stephen Checkoway, Damon McCoy, Brian Kantor, Danny Anderson, Hovav Shacham, and Stefan Savage Department of Computer Science and Engineering University of California San Diego La Jolla, California 92093–0404 Email: {s,dlmccoy,brian,d8anders,hovav,savage}@ Abstract—Modern automobiles are no longer mere mechan- independent computers — Electronic Control Units (ECUs) ical devices; they are pervasively monitored and controlled by in automotive vernacular — in turn communicating over one dozens of digital computers coordinated via internal vehicular or more shared internal network buses [8], [13]. networks. While this transformation has driven major advance- ments in efficiency and safety, it has also introduced a range of While the automotive industry has always considered new potential risks. In this paper we experimentally evaluate safety a critical engineering concern (indeed, much of this these issues on a modern automobile and demonstrate the new software has been introduced specifically to increase fragility of the underlying system structure. We demonstrate safety, e.g., Anti-lock Brake Systems) it is not clear whether that an attacker