A bus-off attack is a denial-of-service (DoS) attack which exploits error handling in the controller area network (CAN) to induce an honest node to disconnect itself from the CAN bus. This paper develops a stochastic transmission policy as a countermeasure for the controller-transmitter pair against the bus-off attack. We model this as a non-zero-sum linear-quadratic-Gaussian game between the controller-transmitter pair and the attacker. We derive Nash equilibria of the game for two different information structures of the attacker. We show that the attacker has a dominant attack strategy under both information structures. Under the dominant attack strategy, we show that the optimal control policy is linear in the system state. We further identify a necessary and a sufficient conditions on the transmission policy to have bounded average cost. The theoretical results are complemented by a detailed case study of a bus-off attack on a vehicular adaptive cruise control model.
翻译:公共汽车攻击是一种拒绝服务攻击,它利用控制区网络(CAN)的错误处理来诱使一个诚实的节点将自己与CAN公共汽车断开。 本文为控制者- 传输者对公交攻击制定了一种随机传输政策,作为控制者- 传输者对公交攻击的一种反措施。 我们把它模拟为控制者- 传输者对和攻击者之间的非零和线性赤道- Gausian游戏。 我们为攻击者的两个不同的信息结构得出Nash equilibria的游戏。 我们显示,攻击者在两个信息结构下都有一个主要的攻击策略。 在占主导地位的攻击战略下,我们显示,最佳的控制政策是系统状态的线性。 我们还进一步确定了传输政策上的一个必要和充分的条件,可以约束平均成本。 理论结果得到了对一个针对一个适应性巡航控制模型的公共汽车攻击进行的详细案例研究的补充。