ACSD News

Paper at ARES conference 2023

Formal Security Analysis of Vehicle Diagnostic Protocols

Vehicle diagnostics are security-critical because they represent a potential entry point for attackers. There have already been a large number of successful attacks on the SecurityAccess Service specified in the Unified Diagnostic Services (UDS) standard. Therefore, in 2020, the standard was significantly improved in terms of security by introducing a new Authentication Service. However, the formal security analysis of ACSD researchers has shown that vulnerabilities still exist. In the paper "Formal Security Analysis of Vehicle Diagnostic Protocols", the ACSD researchers present the identified vulnerabilities, describe how they can be mitigated, and formally verify the proposed protection measures. Further, they provide recommendations for securely implementing UDS and how the standard can be further improved. The paper is available here.

Contact

Head of Research
Prof. Dr. Christoph Krauß

Communication Schöfferstraße 10
64295 Darmstadt
Office: D19, 3.07

+49.6151.533-60152
christoph.krauss@h-da.de

Head of Research
Prof. Dr. Alexander Wiesmaier

Communication Schöfferstraße 10
64295 Darmstadt
Office: D19, 2.09

+49.6151.533-60185
alexander.wiesmaier@h-da.de