{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,26]],"date-time":"2026-03-26T16:16:45Z","timestamp":1774541805638,"version":"3.50.1"},"reference-count":48,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2017,3,13]],"date-time":"2017-03-13T00:00:00Z","timestamp":1489363200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"DOI":"10.13039\/501100001381","name":"Singapore National Research Foundation","doi-asserted-by":"crossref","id":[{"id":"10.13039\/501100001381","id-type":"DOI","asserted-by":"crossref"}]},{"name":"Research Excellence And Technological Enterprise"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Des. Autom. Electron. Syst."],"published-print":{"date-parts":[[2017,4,30]]},"abstract":"<jats:p>With the increasing amount of interconnections between vehicles, the attack surface of internal vehicle networks is rising steeply. Although these networks are shielded against external attacks, they often do not have any internal security to protect against malicious components or adversaries who can breach the network perimeter. To secure the in-vehicle network, all communicating components must be authenticated, and only authorized components should be allowed to send and receive messages. This is achieved through the use of an authentication framework. Cryptography is widely used to authenticate communicating parties and provide secure communication channels (e.g., Internet communication). However, the real-time performance requirements of in-vehicle networks restrict the types of cryptographic algorithms and protocols that may be used. In particular, asymmetric cryptography is computationally infeasible during vehicle operation.<\/jats:p>\n          <jats:p>In this work, we address the challenges of designing authentication protocols for automotive systems. We present Lightweight Authentication for Secure Automotive Networks (LASAN), a full lifecycle authentication approach. We describe the core LASAN protocols and show how they protect the internal vehicle network while complying with the real-time constraints and low computational resources of this domain. By leveraging the fixed structure of automotive networks, we minimize bandwidth and computation requirements. Unlike previous work, we also explain how this framework can be integrated into all aspects of the automotive product lifecycle, including manufacturing, vehicle maintenance, and software updates. We evaluate LASAN in two different ways: First, we analyze the security properties of the protocols using established protocol verification techniques based on formal methods. Second, we evaluate the timing requirements of LASAN and compare these to other frameworks using a new highly modular discrete event simulator for in-vehicle networks, which we have developed for this evaluation.<\/jats:p>","DOI":"10.1145\/2960407","type":"journal-article","created":{"date-parts":[[2017,3,15]],"date-time":"2017-03-15T14:18:04Z","timestamp":1489587484000},"page":"1-27","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":80,"title":["Security in Automotive Networks"],"prefix":"10.1145","volume":"22","author":[{"given":"Philipp","family":"Mundhenk","sequence":"first","affiliation":[{"name":"TUM CREATE Limited, Singapore"}]},{"given":"Andrew","family":"Paverd","sequence":"additional","affiliation":[{"name":"Aalto University, Espoo, Finland"}]},{"given":"Artur","family":"Mrowca","sequence":"additional","affiliation":[{"name":"TUM CREATE Limited, Singapore"}]},{"given":"Sebastian","family":"Steinhorst","sequence":"additional","affiliation":[{"name":"TUM CREATE Limited, Singapore"}]},{"given":"Martin","family":"Lukasiewycz","sequence":"additional","affiliation":[{"name":"TUM CREATE Limited, Singapore"}]},{"given":"Suhaib A.","family":"Fahmy","sequence":"additional","affiliation":[{"name":"University of Warwick, Coventry, United Kingdom"}]},{"given":"Samarjit","family":"Chakraborty","sequence":"additional","affiliation":[{"name":"Technische Universit\u00e4t M\u00fcnchen, Germany"}]}],"member":"320","published-online":{"date-parts":[[2017,3,13]]},"reference":[{"key":"e_1_2_1_1_1","first-page":"3","article-title":"Likelihood of threats to connected vehicles","volume":"5","author":"Othmane L. Ben","year":"2014","journal-title":"Int. J. Next-Gen. Comput."},{"key":"e_1_2_1_2_1","volume-title":"Proceedings of USENIX.","author":"Checkoway S."},{"key":"e_1_2_1_3_1","doi-asserted-by":"crossref","unstructured":"D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. 2008. RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. Technical Report. Internet Engineering Task Force (IETF). Retrieved from http:\/\/tools.ietf.org\/html\/rfc5280.  D. Cooper S. Santesson S. Farrell S. Boeyen R. Housley and W. Polk. 2008. RFC 5280: Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. Technical Report. Internet Engineering Task Force (IETF). Retrieved from http:\/\/tools.ietf.org\/html\/rfc5280.","DOI":"10.17487\/rfc5280"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-70545-1_38"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1145\/1455770.1455787"},{"key":"e_1_2_1_6_1","doi-asserted-by":"crossref","unstructured":"T. Dierks and E. Rescorla. 2008. The Transport Layer Security (TLS) Protocol Version 1.2. Number 5246 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc5246.txt.  T. Dierks and E. Rescorla. 2008. The Transport Layer Security (TLS) Protocol Version 1.2. Number 5246 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc5246.txt.","DOI":"10.17487\/rfc5246"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/SFCS.1981.32"},{"key":"e_1_2_1_8_1","volume-title":"Recommendation for Block Cipher Modes of Operation: The CMAC Mode for Authentication","author":"Dworkin M."},{"key":"e_1_2_1_9_1","unstructured":"R. Escherich I. Ledendecker C. Schmal B. Kuhls C. Grothe and F. Scharberth. 2009. SHE -- Secure Hardware Extension Functional Specification Version 1.1. Herstellerinitiative Software (HIS).  R. Escherich I. Ledendecker C. Schmal B. Kuhls C. Grothe and F. Scharberth. 2009. SHE -- Secure Hardware Extension Functional Specification Version 1.1. Herstellerinitiative Software (HIS)."},{"key":"e_1_2_1_10_1","volume-title":"Lecture Notes in Computer Science","volume":"7712","author":"Groza B."},{"key":"e_1_2_1_11_1","volume-title":"Proceedings of DATE.","author":"Han G."},{"key":"e_1_2_1_12_1","volume-title":"Proceedings of the 13th International CAN Conference 2012 (iCC\u201912)","author":"Hartwich F.","year":"2012"},{"key":"e_1_2_1_13_1","volume-title":"Proceedings of the 2014 IEEE 20th Real-Time and Embedded Technology and Applications Symposium (RTAS\u201914)","author":"Herber C."},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1109\/IAS.2008.45"},{"key":"e_1_2_1_15_1","doi-asserted-by":"publisher","DOI":"10.1016\/j.ress.2010.06.026"},{"key":"e_1_2_1_16_1","unstructured":"ISO-International Organization for Standardization. 2009. ISO\/IEC 11889-1:2009 information technology--trusted platform module\u2014Part 1: Overview.  ISO-International Organization for Standardization. 2009. ISO\/IEC 11889-1:2009 information technology--trusted platform module\u2014Part 1: Overview."},{"key":"e_1_2_1_17_1","volume-title":"Proceedings of the Design, Automation Test in Europe Conference Exhibition (DATE\u201912)","author":"Jiang K."},{"key":"e_1_2_1_18_1","unstructured":"F. Kargl. 2009. Secure Vehicle Communication (SeVeCom)\u2014Baseline Security Specification.  F. Kargl. 2009. Secure Vehicle Communication (SeVeCom)\u2014Baseline Security Specification."},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.34"},{"key":"e_1_2_1_20_1","doi-asserted-by":"crossref","unstructured":"B. Laurie A. Langley and E. Kasper. 2013. Certificate Transparency. Retrieved from http:\/\/tools.ietf.org\/html\/rfc6962.  B. Laurie A. Langley and E. Kasper. 2013. Certificate Transparency. Retrieved from http:\/\/tools.ietf.org\/html\/rfc6962.","DOI":"10.17487\/rfc6962"},{"key":"e_1_2_1_21_1","volume-title":"Proceedings of the 2013 IEEE\/ACM International Conference on Computer-Aided Design (ICCAD).","author":"Lin C.-W."},{"key":"e_1_2_1_22_1","doi-asserted-by":"publisher","DOI":"10.1145\/2831232"},{"key":"e_1_2_1_23_1","volume-title":"Proceedings of DEF CON.","author":"Miller C."},{"key":"e_1_2_1_24_1","volume-title":"Proceedings of Black Hat.","author":"Miller C."},{"key":"e_1_2_1_25_1","volume-title":"Proceedings of Black Hat.","author":"Miller C."},{"key":"e_1_2_1_26_1","doi-asserted-by":"publisher","DOI":"10.1145\/2983185.2983186"},{"key":"e_1_2_1_27_1","unstructured":"P. Mundhenk A. Paverd A. Mrowca S. Steinhorst M. Lukasiewycz S. A. Fahmy and S. Chakraborty. 2016b. Online repository for models and results presented in this paper. Retrieved from https:\/\/github.com\/PhilippMundhenk\/LASAN.  P. Mundhenk A. Paverd A. Mrowca S. Steinhorst M. Lukasiewycz S. A. Fahmy and S. Chakraborty. 2016b. Online repository for models and results presented in this paper. Retrieved from https:\/\/github.com\/PhilippMundhenk\/LASAN."},{"key":"e_1_2_1_28_1","volume-title":"Proceedings of the Conference on Design, Automation and Test in Europe (DATE\u201915)","author":"Mundhenk P."},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1145\/2744769.2744906"},{"key":"e_1_2_1_30_1","volume-title":"Proceedings of the 2011 IEEE Intelligent Vehicles Symposium (IV\u201911)","author":"Muter M."},{"key":"e_1_2_1_31_1","doi-asserted-by":"crossref","unstructured":"C. Neuman T. Yu S. Hartman and K. Raeburn. 2005. The Kerberos Network Authentication Service (V5). Number 4120 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4120.txt.  C. Neuman T. Yu S. Hartman and K. Raeburn. 2005. The Kerberos Network Authentication Service (V5). Number 4120 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4120.txt.","DOI":"10.17487\/rfc4120"},{"key":"e_1_2_1_32_1","volume-title":"Specification for the Advanced Encryption Standard (AES)","author":"NIST."},{"key":"e_1_2_1_33_1","volume-title":"First Open EIT ICT Labs Workshop on Smart Grid Security - SmartGridSec12","author":"Paverd A."},{"key":"e_1_2_1_34_1","volume-title":"Proceedings of the 5th IEEE International Conference on Smart Grid Communications (SmartGridComm\u201914)","author":"Paverd A. J."},{"key":"e_1_2_1_35_1","doi-asserted-by":"crossref","unstructured":"A. Perrig D. Song R. Canetti J. D. Tygar and B. Briscoe. 2005. Timed Efficient Stream Loss-Tolerant Authentication (TESLA): Multicast Source Authentication Transform Introduction. Number 4082 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4082.txt.  A. Perrig D. Song R. Canetti J. D. Tygar and B. Briscoe. 2005. Timed Efficient Stream Loss-Tolerant Authentication (TESLA): Multicast Source Authentication Transform Introduction. Number 4082 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4082.txt.","DOI":"10.17487\/rfc4082"},{"key":"e_1_2_1_36_1","volume-title":"Proceedings of the Design, Automation Test in Europe Conference Exhibition (DATE\u201913)","author":"Sagstetter F."},{"key":"e_1_2_1_37_1","doi-asserted-by":"crossref","unstructured":"S. Santesson M. Myers R. Ankney A. Malpani S. Galperin and C. Adams. 2013. RFC 6960: X.509 Internet Public Key Infrastructure - Online Certificate Status Protocol - OCSP. Technical Report. Internet Engineering Task Force (IETF). Retrieved from http:\/\/tools.ietf.org\/html\/rfc6960.  S. Santesson M. Myers R. Ankney A. Malpani S. Galperin and C. Adams. 2013. RFC 6960: X.509 Internet Public Key Infrastructure - Online Certificate Status Protocol - OCSP. Technical Report. Internet Engineering Task Force (IETF). Retrieved from http:\/\/tools.ietf.org\/html\/rfc6960.","DOI":"10.17487\/rfc6960"},{"key":"e_1_2_1_38_1","volume-title":"Proceedings of the CAR 2 CAR Communications Consortium Forum.","author":"Seudi\u00e9 H.","year":"2009"},{"key":"e_1_2_1_39_1","volume-title":"Proceedings of the International Conference on Field Programmable Technology (FPT\u201914)","author":"Shreejith S."},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.1145\/2744769.2744907"},{"key":"e_1_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.12720\/jcm.8.8.490-496"},{"key":"e_1_2_1_42_1","volume-title":"Proceedings of the 2014 9th IEEE International Symposium on Industrial Embedded Systems (SIES\u201914)","author":"Sojka M."},{"key":"e_1_2_1_43_1","volume-title":"Retrieved","author":"SimPy Team","year":"2015"},{"key":"e_1_2_1_44_1","unstructured":"TUM CREATE. 2015. EVA. Retrieved October 1 2015 http:\/\/www.eva-taxi.sg\/.  TUM CREATE. 2015. EVA. Retrieved October 1 2015 http:\/\/www.eva-taxi.sg\/."},{"key":"e_1_2_1_45_1","volume-title":"Proceedings of the 20011 ECRYPT Workshop on Lightweight Cryptography.","author":"Herrewege A. Van"},{"key":"e_1_2_1_46_1","volume-title":"Proceeding of the 2014 International Conference on the Internet of Things (IOT\u201914)","author":"Wang Q."},{"key":"e_1_2_1_47_1","doi-asserted-by":"publisher","DOI":"10.1145\/2593069.2603850"},{"key":"e_1_2_1_48_1","doi-asserted-by":"crossref","unstructured":"L. Zhu and B. Tung. 2006. Public Key Cryptography for Initial Authentication in Kerberos (PKINIT). Number 4556 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4556.txt.  L. Zhu and B. Tung. 2006. Public Key Cryptography for Initial Authentication in Kerberos (PKINIT). Number 4556 in Request for Comments. IETF. Retrieved from http:\/\/www.ietf.org\/rfc\/rfc4556.txt.","DOI":"10.17487\/rfc4556"}],"container-title":["ACM Transactions on Design Automation of Electronic Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2960407","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/2960407","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:55:51Z","timestamp":1750222551000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/2960407"}},"subtitle":["Lightweight Authentication and Authorization"],"short-title":[],"issued":{"date-parts":[[2017,3,13]]},"references-count":48,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2017,4,30]]}},"alternative-id":["10.1145\/2960407"],"URL":"https:\/\/doi.org\/10.1145\/2960407","relation":{},"ISSN":["1084-4309","1557-7309"],"issn-type":[{"value":"1084-4309","type":"print"},{"value":"1557-7309","type":"electronic"}],"subject":[],"published":{"date-parts":[[2017,3,13]]},"assertion":[{"value":"2016-02-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2016-06-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2017-03-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}