Abstract

Most cars today are made up of numerous electronic devices, which enable various user-friendly services such as autonomous driving. The car of the future will play a role as a platform for electronic systems, unlike fully built vehicles these days. In other words, on-vehicle devices with various functions produced by different companies will be freely attached to and detached from the vehicle, that is, in a plug-and-play (PnP) manner. However, if a PnP device produced by a malicious attacker is attached to a vehicle, the attacker can easily penetrate the in-vehicle network and take over the vehicle, which can pose a serious threat. In this paper, we propose for the first time PnP device authentication frameworks in the automotive open-source PnP platform, which allow only authorized PnP devices to access the in-vehicle network. We also develop a proof-of-concept (PoC) for the proposed authentication framework and show the experimental results of the PoC simulation to prove its feasibility.