DeepAI AI Chat
Log In Sign Up

GGNB: Graph-Based Gaussian Naive Bayes Intrusion Detection System for CAN Bus

by   Riadul Islam, et al.
University of Maryland, Baltimore County

The national highway traffic safety administration (NHTSA) identified cybersecurity of the automobile systems are more critical than the security of other information systems. Researchers already demonstrated remote attacks on critical vehicular electronic control units (ECUs) using controller area network (CAN). Besides, existing intrusion detection systems (IDSs) often propose to tackle a specific type of attack, which may leave a system vulnerable to numerous other types of attacks. A generalizable IDS that can identify a wide range of attacks within the shortest possible time has more practical value than attack-specific IDSs, which is not a trivial task to accomplish. In this paper we propose a novel graph-based Gaussian naive Bayes (GGNB) intrusion detection algorithm by leveraging graph properties and PageRank-related features. The GGNB on the real rawCAN data set <cit.> yields 99.61%, 99.83%, 96.79%, and 96.20% detection accuracy for denial of service (DoS), fuzzy, spoofing, replay, mixed attacks, respectively. Also, using OpelAstra data set <cit.>, the proposed methodology has 100%, 99.85%, 99.92%, 100%, 99.92%, 97.75% and 99.57% detection accuracy considering DoS, diagnostic, fuzzing CAN ID, fuzzing payload, replay, suspension, and mixed attacks, respectively. The GGNB-based methodology requires about 239× and 135× lower training and tests times, respectively, compared to the SVM classifier used in the same application. Using Xilinx Zybo Z7 field-programmable gate array (FPGA) board, the proposed GGNB requires 5.7 ×, 5.9 ×, 5.1 ×, and 3.6 × fewer slices, LUTs, flip-flops, and DSP units, respectively, than conventional NN architecture.


page 15

page 21

page 22


Graph-Based Intrusion Detection System for Controller Area Networks

The controller area network (CAN) is the most widely used intra-vehicula...

GCNIDS: GCN-based intrusion detection system for CAN Bus

The Controller Area Network (CAN) bus serves as a standard protocol for ...

RSU-Based Online Intrusion Detection and Mitigation for VANET

Secure vehicular communication is a critical factor for secure traffic m...

Probability Risk Identification Based Intrusion Detection System for SCADA Systems

. As Supervisory Control and Data Acquisition (SCADA) systems control se...

Divider: Delay-Time Based Sender Identification in Automotive Networks

Controller Area Network (CAN) is one of the in-vehicle network protocols...

A novel Intrusion Detection System against spoofing attacks in connected Electric Vehicles

The Electric Vehicles (EVs) market has seen rapid growth recently despit...