基于联邦学习的智能汽车CAN总线入侵检测系统

doi:10.3969/j.issn.1671-1122.2025.06.003

摘要/Abstract

摘要：

智能汽车已经成为人们日常出行必不可少的交通工具。控制器局域网总线（CAN）作为智能汽车内部的核心通信协议总线，其安全问题备受关注。CAN总线因通信接口访问控制薄弱、数据交互缺乏认证、报文无源/目的地址等因素使车辆易受到恶意攻击。车内网关、防火墙等安全方案受车内带宽和计算资源的限制，难以搭载强大的加密认证算法，防护能力受限。而现有的基于单类旁路特征（电压、时钟或数据流等）的入侵检测系统（IDS），检测攻击能力受限，如基于时钟偏斜的IDS无法检测非周期性攻击。为此，文章提出一种基于联邦学习的智能汽车CAN总线入侵检测系统。车端收集多维度特征数据进行轻量化训练后将参数传到云端，云端通过异步横向联邦学习结构收集不同车辆传过来的参数，用极端梯度提升算法开展深度训练，并将训练好的模型参数传给车端，车端进行检测并溯源。在3款不同品牌真实车辆上的实验结果表明，该系统能够高精度检测6种典型的攻击类型，包括总线关闭、欺骗、同源、模糊、伪装和重放攻击，平均检测时延为0.0987ms。

关键词: 联邦学习, 智能汽车, 入侵检测, CAN总线

Abstract:

Intelligent vehicles have become an essential transportation tool for human daily travel. The Controller Area Network (CAN), a core communication protocol inside intelligent vehicles, faces significant security concerns. The CAN bus is vulnerable to malicious attacks due to factors such as weak communication interface access control, lack of authentication in data exchange, and the absence of source/destination addresses in messages. In-vehicle gateways and firewalls are limited by bandwidth and computational resources. It makes difficult to implement powerful encryption and authentication algorithms, which restricts their protective capabilities. Current Intrusion Detection Systems (IDS) that rely on single-class side-channel features, like voltage, clock, or data flow, have limited ability to detect various types of attacks. For example, the IDS based on clock skew cannot detect attacks that are not periodic. This study proposed a federated learning-based CAN bus intrusion detection system for intelligent vehicles. The vehicle collected multidimensional feature data for lightweight training and transmitted parameters to the cloud. The cloud gathered parameters from different vehicles using an asynchronous horizontal federated learning structure, conducted deep training with the eXtreme Gradient Boosting (XGBoost) algorithm, and sent trained model parameters back to the vehicle. The vehicle then performed detection and attack source tracing. Experiments on three real vehicles from different brands demonstrated that the system achieves high-precision detection of six typical attack types, including Bus-off, Spoofing, Same Origin MethodExecution (SOME), Fuzzing, Masquerade, and Replay attacks. The average detection latency was 0.0987 ms.

Key words: federated learning, intelligent vehicle, intrusion detection system, CAN bus

中图分类号:

TP309

荀毅杰, 崔嘉容, 毛伯敏, 秦俊蔓. 基于联邦学习的智能汽车CAN总线入侵检测系统[J]. 信息网络安全, 2025, 25(6): 872-888.

XUN Yijie, CUI Jiarong, MAO Bomin, QIN Junman. Intrusion Detection System for the Controller Area Network Bus of Intelligent Vehicles Based on Federated Learning[J]. Netinfo Security, 2025, 25(6): 872-888.

图/表 9

图1

图2

图3

图4

表1

表2

图5

表3

图6

参考文献 37

[1]	Editorial Department of China Journal of Highway and Transport. Review on China’s Automotive Engineering Research Progress: 2023[J]. China Journal of Highway and Transport, 2023, 36(11): 1-192.
	《中国公路学报》编辑部. 中国汽车工程学术研究综述·2023[J]. 中国公路学报, 2023, 36(11): 1-192. doi: 10.19721/j.cnki.1001-7372.2023.11.001
[2]	MILLER C, VALASEK C. Remote Exploitation of an Unaltered Passenger Vehicle[J]. Black Hat USA, 2015, (S91): 1-91.
[3]	BARAN G. Vulnerabilities in Skoda & Volkswagen Cars Let Hackers Remotely Track Users[EB/OL]. (2024-12-12)[2025-02-23]. https://cybersecuritynews.com/vulnerabilities-skoda-volkswagen-cars.
[4]	YAN Minrui, LI Jiahao. Security Research on Mercedes-Benz: From Hardware to Car Control[J]. Black Hat USA, 2020, 2020: 1-81.
[5]	GB/T 38628-2020 Information Security Technology Cybersecurity Guide for Automotive Electronics Systems[S]. Beijing: Standards Press of China, 2020.
	GB/T 38628-2020 信息安全技术汽车电子系统网络安全指南[S]. 北京: 中国标准出版社, 2020.
[6]	GB/T 45181-2024 Security-Related Misbehavior Detection Mechanism for Connected Vehicles[S]. Beijing: Standards Press of China, 2024.
	GB/T 45181-2024 车联网网络安全异常行为检测机制[S]. 北京: 中国标准出版社, 2024.
[7]	JOHANSSON K H, TÖRNGREN M, NIELSEN L. Vehicle Applications of Controller Area Network[M]. Boston: Birkhäuser Boston, 2005.
[8]	DU Xinying, HE Mingshu, WANG Xiaojuan. A Feature Fusion-Based Controller Area Network Intrusion Detection Method[J]. Journal of Beijing University of Posts and Telecommunications, 2025, 48(2): 1-7.
	杜欣颖, 何明枢, 王小娟. 基于特征融合的控制器局域网入侵检测方法[J]. 北京邮电大学学报, 2025, 48(2): 1-7.
[9]	CAI Zhiqiang, WANG Aohui, ZHANG Wenkai. 0-Days & Mitigations: Roadways to Exploit and Secure Connected BMW Cars[J]. Black Hat USA, 2019, 2019(39): 6-37.
[10]	KIM J H, SEO S H, HAI N T, et al. Gateway Framework for In-Vehicle Networks Based on CAN, FlexRay, and Ethernet[J]. IEEE transactions on vehicular technology, 2014, 64(10): 4472-4486.
[11]	WANG Wenwei, GUO Kaidi, CAO Wanke, et al. Review of Electrical and Electronic Architectures for Autonomous Vehicles: Topologies, Networking and Simulators[J]. Automotive Innovation, 2024, 7(1): 82-101.
[12]	LENARD T, BOLBOACA R. A Statefull Firewall and Intrusion Detection System Enforced with Secure Logging for Controller Area Network[C]// ACM. Proceedings of the 2021 European Interdisciplinary Cybersecurity Conference. New York: ACM, 2021: 39-45.
[13]	LUO Feng, HOU Shuo. Security Mechanisms Design of Automotive Gateway Firewall[R]. Detroit: SAE International, No. 2019-01-0481, 2019.
[14]	RATHORE M S, POONGODI M, SAURABH P, et al. A Novel Trust-Based Security and Privacy Model for Internet of Vehicles Using Encryption and Steganography[J]. Computers and Electrical Engineering, 2022, 102: 1-18.
[15]	AKIB A, ANIKA A, MOUKAHAL L, et al. Security Assessment of In-Vehicle Communication Protocols[J]. Vehicular Communications, 2023, 44: 1-20.
[16]	CHO K T, SHIN K G. Fingerprinting Electronic Control Units for Vehicle Intrusion Detection[C]// USENIX. 25th USENIX Security Symposium (USENIX Security 16). Berkeley: USENIX, 2016: 911-927.
[17]	YOUNG C, OLUFOWOBI H, BLOOM G, et al. Automotive Intrusion Detection Based on Constant can Message Frequencies across Vehicle Driving Modes[C]// ACM. Proceedings of the ACM Workshop on Automotive Cybersecurity. New York: ACM, 2019: 9-14.
[18]	TAYLOR A, JAPKOWICZ N, LEBLANC S. Frequency-Based anomaly Detection for the Automotive CAN Bus[C]// IEEE. 2015 World Congress on Industrial Control Systems Security (WCICSS). New York: IEEE, 2015: 45-49.
[19]	CHOI W, JOO K, JO H J, et al. VoltageIDS: Low-Level Communication Characteristics for Automotive Intrusion Detection System[J]. IEEE Transactions on Information Forensics and Security, 2018, 13(8): 2114-2129.
[20]	KNEIB M, HUTH C. Scission: Signal Characteristic-Based Sender Identification and Intrusion Detection in Automotive Networks[C]// ACM. 2018 ACM SIGSAC Conference on Computer and Communications Security. New York: ACM, 2018: 787-800.
[21]	WU Wufei, HUANG Yizhi, KURACHI R, et al. Sliding Window Optimized Information Entropy Analysis Method for Intrusion Detection on In-Vehicle Networks[J]. IEEE Access, 2018, 6: 45233-45245.
[22]	LI Yang, MOUBAYED A, HAMIEH I, et al. Tree-Based Intelligent Intrusion Detection System in Internet of Vehicles[C]// IEEE. 2019 IEEE Global Communications Conference (GLOBECOM). New York: IEEE, 2019: 1-6.
[23]	SONG H M, WOO J, KIM H K. In-Vehicle Network Intrusion Detection Using Deep Convolutional Neural Network[J]. Vehicular Communications, 2020, 21: 1-13.
[24]	DAVIS R I, BURNS A, BRIL R J, et al. Controller Area Network (CAN) Schedulability Analysis: Refuted, Revisited and Revised[J]. Real-Time Systems, 2007, 35: 239-272.
[25]	KUANG Boyu, LI Yuze, GU Fangming, et al. Review of Internet of Vehicle Security Research: Threats, Countermeasures, and Future Prospects[J]. Journal of Computer Research and Development, 2023, 60(10): 2304-2321.
	况博裕, 李雨泽, 顾芳铭, 等. 车联网安全研究综述:威胁、对策与未来展望[J]. 计算机研究与发展, 2023, 60(10): 2304-2321.
[26]	ZHOU Chuanxin, SUN Yi, WANG Degang, et al. Survey of Federated Learning Research[J]. Chinese Journal of Network and Information Security, 2021, 7(5): 77-92.
	周传鑫, 孙奕, 汪德刚, 等. 联邦学习研究综述[J]. 网络与信息安全学报, 2021, 7(5): 77-92.
[27]	IEHIRA K, INOUE H, ISHIDA K. Spoofing Attack Using Bus-Off Attacks against a Specific ECU of the CAN Bus[C]// IEEE. 2018 15th IEEE Annual Consumer Communications & Networking Conference (CCNC). New York: IEEE, 2018: 1-4.
[28]	YANG Yun, DUAN Zongtao, TEHRANIPOOR M. Identify a Spoofing Attack on an In-Vehicle CAN Bus Based on the Deep Features of an ECU Fingerprint Signal[J]. Smart Cities, 2020, 3(1): 17-30.
[29]	MCMAHAN B, MOORE E, RAMAGE D, et al. Communication-Efficient Learning of Deep Networks from Decentralized Data[C]// PMLR. Proceedings of the 20th International Conference on Artificial Intelligence and Statistics. New York: PMLR, 2017: 1273-1282.
[30]	LI Tian, SAHU A K, ZAHEER M, et al. Federated Optimization in Heterogeneous Networks[J]. Proceedings of Machine Learning and Systems, 2020, 2: 429-450.
[31]	XIE Cong, KOYEJO S, GUPTA I. Asynchronous Federated Optimization[EB/OL]. (2019-04-10)[2025-02-23]. https://arxiv.org/abs/1903.03934.
[32]	MIRZAEE P H, SHOJAFAR M, CRUICKSHANK H, et al. CHFL: A Collaborative Hierarchical Federated Intrusion Detection System for Vehicular Networks[C]// IEEE. 2022 IEEE Symposium on Computers and Communications (ISCC). New York: IEEE, 2022: 1-7.
[33]	DRISS M, ALMOMANI I, HUMA Z E, et al. A Federated Learning Framework for Cyberattack Detection in Vehicular Sensor Networks[J]. Complex & Intelligent Systems, 2022, 8(5): 4221-4235.
[34]	MUZUN A, JAVED A, RANA O. A Robust Multi-Stage Intrusion Detection System for In-Vehicle Network Security Using Hierarchical Federated Learning[J]. Vehicular Communications, 2024, 49: 1-15.
[35]	LEE S, CHOI W, JO H J, et al. ErrIDS: An Enhanced Cumulative Timing Error-Based Automotive Intrusion Detection System[J]. IEEE Transactions on Intelligent Transportation Systems, 2023, 24(11): 12406-12421.
[36]	HOSSAIN M D, INOUE H, OCHIAI H, et al. LSTM-Based Intrusion Detection System for In-Vehicle Can Bus Communications[J]. IEEE Access, 2020, 8: 185489-185502.
[37]	SCHELL O, KNEIB M. VALID: Voltage-Based Lightweight Intrusion Detection for the Controller Area Network[C]// IEEE. 2020 IEEE 19th International Conference on Trust, Security and Privacy in Computing and Communications (TrustCom). New York: IEEE, 2021: 225-232.

车辆	指标	攻击类型
车辆	指标	总线关闭	欺骗	SOME	模糊(Fuzzy)	伪装(Masquerade)	重放(Replay)
别克君威	准确率	0.9966	0.9856	0.9482	0.9199	0.9479	0.9966
	精确率	1	0.9756	0.9090	0.8651	0.9090	1
	召回率	0.9932	0.9960	0.9960	0.9949	0.9955	0.9960
	FPR	0	0.0249	0.0997	0.1551	0.0997	0
	FNR	0.0068	0.0040	0.0040	0.0051	0.0045	0.0040
纳智捷U5	准确率	0.9882	0.9923	0.9748	0.9752	0.9931	0.9773
	精确率	0.9839	0.9903	0.9584	0.9541	0.9887	0.9593
	召回率	0.9927	0.9943	0.9927	0.9984	0.9916	0.9968
	FPR	0.0162	0.0097	0.0431	0.0479	0.0114	0.0422
	FNR	0.0073	0.0057	0.0073	0.0016	0.0024	0.0032
丰田凯美瑞	准确率	0.9091	0.9666	0.9140	0.9123	0.9649	0.9718
	精确率	0.8449	0.9320	0.8541	0.8517	0.9350	0.9496
	召回率	1	0.9979	0.9986	0.9993	0.9993	0.9972
	FPR	0.0918	0.0646	0.1706	0.0695	0.0695	0.0530
	FNR	0	0.0021	0.0014	0.0007	0	0.0028

预测标签	真实标签
预测标签	别克君威（0）	纳智捷U5（1）	丰田凯美瑞（2）
别克君威（0）	4251	37	28
纳智捷U5（1）	35	4246	35
丰田凯美瑞（2）	30	33	4311

本地检测				云训练
实验车辆	样本形状	测试集大小 /个	测试时间（单个样本）/ms	云训练
别克君威	1×10	3000	0.0807	样本数量	107778/个
纳智捷U5	1×10	3000	0.1186	迭代次数	2000/次
丰田凯美瑞	1×10	3000	0.0968	训练时间	102886.241 ms