{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T04:14:14Z","timestamp":1750220054142,"version":"3.41.0"},"reference-count":44,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2024,4,30]],"date-time":"2024-04-30T00:00:00Z","timestamp":1714435200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Cyber-Phys. Syst."],"published-print":{"date-parts":[[2024,4,30]]},"abstract":"<jats:p>The lack of any sender authentication mechanism in place makes Controller Area Network (CAN) vulnerable to security threats. For instance, an attacker can impersonate an Electronic Control Unit (ECU) on the bus and send spoofed messages unobtrusively with the identifier of the impersonated ECU. To address this problem, we propose a novel source authentication technique that uses power consumption measurements of the ECU to authenticate the source of a message. A transmission of an ECU affects the power consumption and a characteristic pattern will appear. Our technique exploits the power consumption of each ECU during the transmission of a message to determine whether the message actually originated from the purported sender. We evaluate our approach in both a lab setup and a real vehicle. We also evaluate our approach against factors that can impact the power consumption measurement of the ECUs. The results of the evaluation show that the proposed technique is applicable in a broad range of operating conditions with reasonable computational power requirements and attaining good accuracy.<\/jats:p>","DOI":"10.1145\/3571288","type":"journal-article","created":{"date-parts":[[2022,11,18]],"date-time":"2022-11-18T12:04:38Z","timestamp":1668773078000},"page":"1-30","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":2,"title":["CANOA: CAN Origin Authentication through Power Side-channel Monitoring"],"prefix":"10.1145","volume":"8","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-9590-5061","authenticated-orcid":false,"given":"Shailja","family":"Thakur","sequence":"first","affiliation":[{"name":"University of Waterloo, Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-7828-1215","authenticated-orcid":false,"given":"Carlos","family":"Moreno","sequence":"additional","affiliation":[{"name":"University of Waterloo, Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-8327-0000","authenticated-orcid":false,"given":"Sebastian","family":"Fischmeister","sequence":"additional","affiliation":[{"name":"University of Waterloo, Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,5,14]]},"reference":[{"key":"e_1_3_4_2_2","unstructured":"Shabbir Ahmed Marcio Juliato Christopher Gutierrez and Manoj Sastry. 2021. Two-point voltage fingerprinting: Increasing detectability of ECU masquerading attacks. CoRR abs\/2102.10128 (2021). https:\/\/arxiv.org\/abs\/2102.10128."},{"key":"e_1_3_4_3_2","volume-title":"Proceedings of the 16th ESCAR Europe (ESCAR\u201918)","author":"Biham Eli","year":"2018","unstructured":"Eli Biham, Sara Bitan, and Eli Gavril. 2018. TCAN: Authentication without cryptography on a CAN bus based on nodes location on the bus. In Proceedings of the 16th ESCAR Europe (ESCAR\u201918)."},{"key":"e_1_3_4_4_2","doi-asserted-by":"publisher","DOI":"10.2307\/2681233"},{"key":"e_1_3_4_5_2","volume-title":"CAN Specification V2.0","author":"GmbH Bosch Robert","year":"1991","unstructured":"Bosch Robert GmbH. 1991. CAN Specification V2.0. Technical report D-7000 Stuttgart 1, Bosch."},{"key":"e_1_3_4_6_2","doi-asserted-by":"publisher","DOI":"10.5555\/2028067.2028073"},{"key":"e_1_3_4_7_2","doi-asserted-by":"publisher","DOI":"10.1145\/3133956.3134001"},{"key":"e_1_3_4_8_2","doi-asserted-by":"publisher","DOI":"10.5555\/3241094.3241165"},{"key":"e_1_3_4_9_2","unstructured":"Wonsuk Choi Hyo Jin Jo Samuel Woo Ji Young Chun Jooyoung Park and Dong Hoon Lee. 2016. Identifying ECUs using inimitable characteristics of signals in controller area networks."},{"key":"e_1_3_4_10_2","volume-title":"Proceedings of the USENIX Workshop on Health Information Technologies","author":"Clark Shane S.","year":"2013","unstructured":"Shane S. Clark, Benjamin Ransford, Amir Rahmati, Shane Guineau, Jacob Sorber, Wenyuan Xu, and Kevin Fu. 2013. WattsUpDoc: Power side channels to nonintrusively discover untargeted malware on embedded medical devices. In Proceedings of the USENIX Workshop on Health Information Technologies."},{"key":"e_1_3_4_11_2","doi-asserted-by":"crossref","unstructured":"Thomas Eisenbarth Christof Paar and Bj\u00f6rn Weghenkel. 2010. Building a Side Channel Based Disassembler. Springer Berlin.","DOI":"10.1007\/978-3-642-17499-5_4"},{"key":"e_1_3_4_12_2","doi-asserted-by":"crossref","DOI":"10.18637\/jss.v031.i07","article-title":"Computing and visualizing dynamic time warping alignments in R: The dtw package","author":"Giorgino Toni","year":"2009","unstructured":"Toni Giorgino. 2009. Computing and visualizing dynamic time warping alignments in R: The dtw package. J. Stat. Softw. 31, 7 (2009), 1\u201324.","journal-title":"J. Stat. Softw."},{"key":"e_1_3_4_13_2","article-title":"Efficient protocols for secure broadcast in controller area networks","author":"Groza Bogdan","year":"2013","unstructured":"Bogdan Groza and Stefan Murvay. 2013. Efficient protocols for secure broadcast in controller area networks. IEEE Trans. Industr. Inf. (2013).","journal-title":"IEEE Trans. Industr. Inf."},{"key":"e_1_3_4_14_2","volume-title":"Proceedings of the IEEE International Workshop on Workload Characterization (WWC-4\u201901)","author":"Guthaus M. R.","year":"2001","unstructured":"M. R. Guthaus, J. S. Ringenberg, D. Ernst, T. M. Austin, T. Mudge, and R. B. Brown. 2001. MiBench: A free, commercially representative embedded benchmark suite. In Proceedings of the IEEE International Workshop on Workload Characterization (WWC-4\u201901)."},{"key":"e_1_3_4_15_2","unstructured":"Can Bus Hack. 2021. Retrieved from http:\/\/canbushack.com."},{"key":"e_1_3_4_16_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-0-387-21606-5"},{"key":"e_1_3_4_17_2","doi-asserted-by":"publisher","DOI":"10.1109\/CVPR.2016.90"},{"key":"e_1_3_4_18_2","doi-asserted-by":"publisher","unstructured":"Rob Hyndman Anne Koehler Keith Ord and Ralph Snyder. 2008. Forecasting with exponential smoothing. DOI:10.1007\/978-3-540-71918-2","DOI":"10.1007\/978-3-540-71918-2"},{"key":"e_1_3_4_19_2","unstructured":"International Organization for Standardization. 2018. International Standard ISO-26262\u2013Road Vehicles Functional Safety."},{"key":"e_1_3_4_20_2","volume-title":"Proceedings of the ACM SIGSAC Conference on Computer and Communications Security","author":"Kneib Marcel","year":"2018","unstructured":"Marcel Kneib and Christopher Huth. 2018. Scission: Signal characteristic-based sender identification and intrusion detection in automotive networks. In Proceedings of the ACM SIGSAC Conference on Computer and Communications Security."},{"key":"e_1_3_4_21_2","doi-asserted-by":"publisher","DOI":"10.5555\/646764.703989"},{"key":"e_1_3_4_22_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2010.34"},{"key":"e_1_3_4_23_2","volume-title":"Proceedings of the 9th USENIX Workshop on Offensive Technologies (WOOT\u201915)","author":"Koscher Karl","year":"2015","unstructured":"Karl Koscher, Tadayoshi Kohno, and David Molnar. 2015. SURROGATES: Enabling near-real-time dynamic analyses of embedded systems. In Proceedings of the 9th USENIX Workshop on Offensive Technologies (WOOT\u201915)."},{"key":"e_1_3_4_24_2","doi-asserted-by":"publisher","DOI":"10.1038\/nature14539"},{"key":"e_1_3_4_25_2","article-title":"Integrating security in resource constrained cyber-physical systems","author":"Lesi Vuk","year":"2020","unstructured":"Vuk Lesi, Ilija Jovanov, and Miroslav Pajic. 2020. Integrating security in resource constrained cyber-physical systems. ACM Trans. Cyber-Phys. Syst. (2020).","journal-title":"ACM Trans. Cyber-Phys. Syst."},{"key":"e_1_3_4_26_2","unstructured":"Chung-Wei Lin and Alberto Sangiovanni-Vincentelli. 2012. Cyber-security for the controller area network (CAN) communication protocol. In(CYBERSECURITY\u201912)."},{"key":"e_1_3_4_27_2","doi-asserted-by":"crossref","unstructured":"Nathan Liu Carlos Moreno Murray Dunne and Sebastian Fischmeister. 2021. vProfile: Voltage-based anomaly detection in controller area networks. In Proceedings of the Design Automation and Test in Europe Conference(DATE\u201921).","DOI":"10.23919\/DATE51398.2021.9474106"},{"key":"e_1_3_4_28_2","volume-title":"Proceedings of the ACM Conference on Computer and Communications Security","author":"al. Liu et","year":"2016","unstructured":"Liu et al.2016. On code execution tracking via power side-channel. In Proceedings of the ACM Conference on Computer and Communications Security. ACM."},{"key":"e_1_3_4_29_2","doi-asserted-by":"crossref","unstructured":"A. Martino A. Ghiglietti F. Ieva and A. M. Paganoni. 2019. A k-means procedure based on a Mahalanobis type distance for clustering multivariate functional data.Stat. Methods Appl. (2019).","DOI":"10.1007\/s10260-018-00446-6"},{"key":"e_1_3_4_30_2","unstructured":"Charlie Miller and Chris Valasek. 2015. Remote exploitation of an unaltered passenger vehicle."},{"key":"e_1_3_4_31_2","unstructured":"Charlie Miller and Chris Valasek. 2016. Advanced CAN injection techniques for vehicle networks."},{"key":"e_1_3_4_32_2","volume-title":"Design and Analysis of Experiments","author":"Montgomery D. C.","year":"2008","unstructured":"D. C. Montgomery. 2008. Design and Analysis of Experiments. John Wiley & Sons."},{"key":"e_1_3_4_33_2","volume-title":"Proceedings of the 3rd International Conference on Information Systems Security and Privacy (ICISSP\u201917)","author":"Moreno Carlos","year":"2017","unstructured":"Carlos Moreno and Sebastian Fischmeister. 2017. On the security of safety-critical embedded systems: Who watches the watchers? Who reprograms the watchers? In Proceedings of the 3rd International Conference on Information Systems Security and Privacy (ICISSP\u201917)."},{"key":"e_1_3_4_34_2","volume-title":"Proceedings of the 5th International Conference on Information Systems Security and Privacy (ICISSP\u201919)","author":"Moreno Carlos","year":"2019","unstructured":"Carlos Moreno and Sebastian Fischmeister. 2019. Sender authentication for automotive in-vehicle networks through dual analog measurements to determine the location of the transmitter. In Proceedings of the 5th International Conference on Information Systems Security and Privacy (ICISSP\u201919)."},{"key":"e_1_3_4_35_2","article-title":"Non-intrusive program tracing and debugging of deployed embedded systems through side-channel analysis","author":"Moreno Carlos","year":"2013","unstructured":"Carlos Moreno, Sebastian Fischmeister, and M. Anwar Hasan. 2013. Non-intrusive program tracing and debugging of deployed embedded systems through side-channel analysis. In Conference on Languages, Compilers and Tools for Embedded Systems (2013).","journal-title":"Conference on Languages, Compilers and Tools for Embedded Systems"},{"key":"e_1_3_4_36_2","volume-title":"Proceedings of the International Conference on Security and Privacy in Communication Systems","author":"Msgna Mehari","year":"2013","unstructured":"Mehari Msgna, Konstantinos Markantonakis, and Keith Mayes. 2013. The B-side of side channel leakage: Control flow security in embedded systems. In Proceedings of the International Conference on Security and Privacy in Communication Systems."},{"key":"e_1_3_4_37_2","article-title":"Source identification using signal characteristics in controller area networks","author":"Murvay P.-S.","year":"2014","unstructured":"P.-S. Murvay and Bogdan Groza. 2014. Source identification using signal characteristics in controller area networks. Sign. Process. Lett. (2014).","journal-title":"Sign. Process. Lett."},{"key":"e_1_3_4_38_2","unstructured":"Foster J. Provost Tom Fawcett and Ron Kohavi. 1998. The case against accuracy estimation for comparing induction algorithms. InProceedings of the International Conference on Machine Learning (ICML\u201998)."},{"key":"e_1_3_4_39_2","doi-asserted-by":"publisher","DOI":"10.1109\/ICCPS.2018.00012"},{"key":"e_1_3_4_40_2","volume-title":"Proceedings of the 16th ESCAR Europe (ESCAR\u201918)","author":"Sagong Sang Uk","year":"2018","unstructured":"Sang Uk Sagong, Xuhang Ying, Radha Poovendran, and Linda Bushnell. 2018. Exploring attack surfaces of voltage-based intrusion detection systems in controller area networks. In Proceedings of the 16th ESCAR Europe (ESCAR\u201918)."},{"key":"e_1_3_4_41_2","volume-title":"Proceedings of the KDD Workshop on Mining Temporal and Sequential Data","author":"Salvador Stan","year":"2004","unstructured":"Stan Salvador and Philip Chan. 2004. FastDTW: Toward accurate dynamic time warping in linear time and space. In Proceedings of the KDD Workshop on Mining Temporal and Sequential Data."},{"key":"e_1_3_4_42_2","doi-asserted-by":"crossref","unstructured":"Xiang Shiming Feiping Nie and Changshui Zhang. 2008. Learning a mahalanobis distance metric for data clustering and classification.Pattern Recogn. (2008).","DOI":"10.1016\/j.patcog.2008.05.018"},{"key":"e_1_3_4_43_2","unstructured":"Kvaser CAN tool. 2021. Retrieved from https:\/\/www.kvaser.com."},{"key":"e_1_3_4_44_2","unstructured":"Anthony Van Herrewege Dave Singel\u00e9e and Ingrid Verbauwhede. 2011. CANAuth\u2014A simple backward compatible broadcast authentication protocol for CAN bus. 1 7 (2011)."},{"key":"e_1_3_4_45_2","unstructured":"Car Hacking Village. 2021. Retrieved from https:\/\/carhackingvillage.com."}],"container-title":["ACM Transactions on Cyber-Physical Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3571288","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3571288","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,17]],"date-time":"2025-06-17T18:08:22Z","timestamp":1750183702000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3571288"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,4,30]]},"references-count":44,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2024,4,30]]}},"alternative-id":["10.1145\/3571288"],"URL":"https:\/\/doi.org\/10.1145\/3571288","relation":{},"ISSN":["2378-962X","2378-9638"],"issn-type":[{"type":"print","value":"2378-962X"},{"type":"electronic","value":"2378-9638"}],"subject":[],"published":{"date-parts":[[2024,4,30]]},"assertion":[{"value":"2021-06-09","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2022-10-29","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-05-14","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}