{"id":"https://openalex.org/W4281394779","doi":"https://doi.org/10.1145/3488932.3523263","title":"ShadowAuth: Backward-Compatible Automatic CAN Authentication for Legacy ECUs","display_name":"ShadowAuth: Backward-Compatible Automatic CAN Authentication for Legacy ECUs","publication_year":2022,"publication_date":"2022-05-24","ids":{"openalex":"https://openalex.org/W4281394779","doi":"https://doi.org/10.1145/3488932.3523263"},"language":"en","primary_location":{"id":"doi:10.1145/3488932.3523263","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3488932.3523263","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3488932.3523263","source":{"id":"https://openalex.org/S4363609011","display_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"hybrid","oa_url":"https://dl.acm.org/doi/pdf/10.1145/3488932.3523263","any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5100326534","display_name":"Sung-Woo Kim","orcid":"https://orcid.org/0000-0001-8584-7419"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Sungwoo Kim","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5005455616","display_name":"Gisu Yeo","orcid":"https://orcid.org/0000-0003-0941-179X"},"institutions":[{"id":"https://openalex.org/I4921948","display_name":"Pusan National University","ror":"https://ror.org/01an57a31","country_code":"KR","type":"education","lineage":["https://openalex.org/I4921948"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Gisu Yeo","raw_affiliation_strings":["Pusan National University, Busan, Republic of Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Pusan National University, Busan, Republic of Korea","institution_ids":["https://openalex.org/I4921948"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5100741150","display_name":"Tae-Gyu Kim","orcid":"https://orcid.org/0000-0003-1260-9369"},"institutions":[{"id":"https://openalex.org/I130769515","display_name":"Pennsylvania State University","ror":"https://ror.org/04p491231","country_code":"US","type":"education","lineage":["https://openalex.org/I130769515"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Taegyu Kim","raw_affiliation_strings":["The Pennsylvania State University, University Park, PA, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"The Pennsylvania State University, University Park, PA, USA","institution_ids":["https://openalex.org/I130769515"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5054561146","display_name":"Junghwan Rhee","orcid":"https://orcid.org/0000-0002-4043-9371"},"institutions":[{"id":"https://openalex.org/I139325414","display_name":"University of Central Oklahoma","ror":"https://ror.org/02n455404","country_code":"US","type":"education","lineage":["https://openalex.org/I139325414"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Junghwan \"John\" Rhee","raw_affiliation_strings":["University of Central Oklahoma, Edmond, OK, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"University of Central Oklahoma, Edmond, OK, USA","institution_ids":["https://openalex.org/I139325414"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5033516356","display_name":"Yuseok Jeon","orcid":"https://orcid.org/0000-0002-9461-6652"},"institutions":[{"id":"https://openalex.org/I48566637","display_name":"Ulsan National Institute of Science and Technology","ror":"https://ror.org/017cjz748","country_code":"KR","type":"education","lineage":["https://openalex.org/I48566637"]}],"countries":["KR"],"is_corresponding":false,"raw_author_name":"Yuseok Jeon","raw_affiliation_strings":["UNIST, Ulsan, Republic of Korea"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"UNIST, Ulsan, Republic of Korea","institution_ids":["https://openalex.org/I48566637"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5028194244","display_name":"Antonio Bianchi","orcid":"https://orcid.org/0000-0002-2862-5286"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Antonio Bianchi","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5108280598","display_name":"Dongyan Xu","orcid":null},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dongyan Xu","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5015662045","display_name":"Dave Tian","orcid":"https://orcid.org/0000-0002-7506-9593"},"institutions":[{"id":"https://openalex.org/I219193219","display_name":"Purdue University West Lafayette","ror":"https://ror.org/02dqehb95","country_code":"US","type":"education","lineage":["https://openalex.org/I219193219"]}],"countries":["US"],"is_corresponding":false,"raw_author_name":"Dave (Jing) Tian","raw_affiliation_strings":["Purdue University, West Lafayette, IN, USA"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Purdue University, West Lafayette, IN, USA","institution_ids":["https://openalex.org/I219193219"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":8,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":2.2326,"has_fulltext":true,"cited_by_count":7,"citation_normalized_percentile":{"value":0.88326315,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":97},"biblio":{"volume":null,"issue":null,"first_page":"534","last_page":"545"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10761","display_name":"Vehicular Ad Hoc Networks (VANETs)","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10761","display_name":"Vehicular Ad Hoc Networks (VANETs)","score":0.9988999962806702,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.9951000213623047,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9896000027656555,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/firmware","display_name":"Firmware","score":0.7681032419204712},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7112290263175964},{"id":"https://openalex.org/keywords/network-packet","display_name":"Network packet","score":0.6394330859184265},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.5491002202033997},{"id":"https://openalex.org/keywords/message-authentication-code","display_name":"Message authentication code","score":0.5405546426773071},{"id":"https://openalex.org/keywords/authentication","display_name":"Authentication (law)","score":0.5351110100746155},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.5343446135520935},{"id":"https://openalex.org/keywords/backward-compatibility","display_name":"Backward compatibility","score":0.46843773126602173},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.4466722011566162},{"id":"https://openalex.org/keywords/authentication-protocol","display_name":"Authentication protocol","score":0.42631879448890686},{"id":"https://openalex.org/keywords/operating-system","display_name":"Operating system","score":0.23503190279006958},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.196490079164505}],"concepts":[{"id":"https://openalex.org/C67212190","wikidata":"https://www.wikidata.org/wiki/Q104851","display_name":"Firmware","level":2,"score":0.7681032419204712},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7112290263175964},{"id":"https://openalex.org/C158379750","wikidata":"https://www.wikidata.org/wiki/Q214111","display_name":"Network packet","level":2,"score":0.6394330859184265},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.5491002202033997},{"id":"https://openalex.org/C141492731","wikidata":"https://www.wikidata.org/wiki/Q1052621","display_name":"Message authentication code","level":3,"score":0.5405546426773071},{"id":"https://openalex.org/C148417208","wikidata":"https://www.wikidata.org/wiki/Q4825882","display_name":"Authentication (law)","level":2,"score":0.5351110100746155},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.5343446135520935},{"id":"https://openalex.org/C20574231","wikidata":"https://www.wikidata.org/wiki/Q844605","display_name":"Backward compatibility","level":2,"score":0.46843773126602173},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.4466722011566162},{"id":"https://openalex.org/C21564112","wikidata":"https://www.wikidata.org/wiki/Q4825885","display_name":"Authentication protocol","level":3,"score":0.42631879448890686},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.23503190279006958},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.196490079164505}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3488932.3523263","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3488932.3523263","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3488932.3523263","source":{"id":"https://openalex.org/S4363609011","display_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.1145/3488932.3523263","is_oa":true,"landing_page_url":"https://doi.org/10.1145/3488932.3523263","pdf_url":"https://dl.acm.org/doi/pdf/10.1145/3488932.3523263","source":{"id":"https://openalex.org/S4363609011","display_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"conference"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.699999988079071,"id":"https://metadata.un.org/sdg/16"}],"awards":[{"id":"https://openalex.org/G1194779482","display_name":"CAREER: A Model-Guided and Holistic Approach for Peripheral Security","funder_award_id":"2145744","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G2535768100","display_name":null,"funder_award_id":"N00014-18-1-2674","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"},{"id":"https://openalex.org/G4173798759","display_name":null,"funder_award_id":"N6600120C4031","funder_id":"https://openalex.org/F4320332180","funder_display_name":"Defense Advanced Research Projects Agency"},{"id":"https://openalex.org/G5925140207","display_name":null,"funder_award_id":"CNS-2145744","funder_id":"https://openalex.org/F4320306076","funder_display_name":"National Science Foundation"},{"id":"https://openalex.org/G7914842883","display_name":null,"funder_award_id":"2021R1F1A1049822","funder_id":"https://openalex.org/F4320322120","funder_display_name":"National Research Foundation of Korea"},{"id":"https://openalex.org/G8876996369","display_name":null,"funder_award_id":"N00014","funder_id":"https://openalex.org/F4320337345","funder_display_name":"Office of Naval Research"}],"funders":[{"id":"https://openalex.org/F4320306076","display_name":"National Science Foundation","ror":"https://ror.org/021nxhr62"},{"id":"https://openalex.org/F4320320671","display_name":"National Research Foundation","ror":"https://ror.org/05s0g1g46"},{"id":"https://openalex.org/F4320322120","display_name":"National Research Foundation of Korea","ror":"https://ror.org/013aysd81"},{"id":"https://openalex.org/F4320332180","display_name":"Defense Advanced Research Projects Agency","ror":"https://ror.org/02caytj08"},{"id":"https://openalex.org/F4320332815","display_name":"Advanced Research Projects Agency","ror":"https://ror.org/02caytj08"},{"id":"https://openalex.org/F4320337345","display_name":"Office of Naval Research","ror":"https://ror.org/00rk2pe57"}],"has_content":{"grobid_xml":true,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4281394779.pdf","grobid_xml":"https://content.openalex.org/works/W4281394779.grobid-xml"},"referenced_works_count":32,"referenced_works":["https://openalex.org/W2033342263","https://openalex.org/W2055493989","https://openalex.org/W2059451253","https://openalex.org/W2061691397","https://openalex.org/W2072724180","https://openalex.org/W2109584177","https://openalex.org/W2116520617","https://openalex.org/W2117962540","https://openalex.org/W2135689574","https://openalex.org/W2142778065","https://openalex.org/W2160468841","https://openalex.org/W2166668397","https://openalex.org/W2346905224","https://openalex.org/W2407989913","https://openalex.org/W2536935267","https://openalex.org/W2752558064","https://openalex.org/W2774158776","https://openalex.org/W2774286308","https://openalex.org/W2776558802","https://openalex.org/W2889914713","https://openalex.org/W2914630606","https://openalex.org/W2923182414","https://openalex.org/W2951450826","https://openalex.org/W2963804058","https://openalex.org/W2998500054","https://openalex.org/W3012221736","https://openalex.org/W3015291177","https://openalex.org/W3033870338","https://openalex.org/W4200597240","https://openalex.org/W4245602507","https://openalex.org/W4300824008","https://openalex.org/W4315746341"],"related_works":["https://openalex.org/W2034419863","https://openalex.org/W2296396257","https://openalex.org/W3007106793","https://openalex.org/W2166668397","https://openalex.org/W2132505069","https://openalex.org/W1965515427","https://openalex.org/W2054202867","https://openalex.org/W2547137208","https://openalex.org/W2116285675","https://openalex.org/W2061637199"],"abstract_inverted_index":{"Controller":[0],"Area":[1],"Network":[2],"(CAN)":[3],"is":[4],"the":[5,18,35,55,80,131],"de-facto":[6],"standard":[7],"in-vehicle":[8],"network":[9],"system.":[10],"Despite":[11],"its":[12],"wide":[13],"adoption":[14],"by":[15,83],"automobile":[16],"manufacturers,":[17],"lack":[19],"of":[20,37],"security":[21],"design":[22],"makes":[23],"it":[24],"vulnerable":[25],"to":[26,53,88,119,140],"attacks.":[27],"For":[28],"instance,":[29],"broadcasting":[30],"packets":[31],"without":[32,90,105,154],"authentication":[33,47,74,87,98,104,127],"allows":[34],"impersonation":[36],"electronic":[38],"control":[39],"units":[40],"(ECUs).":[41],"Prior":[42],"mitigations,":[43],"such":[44,145],"as":[45,146],"message":[46],"or":[48,66],"intrusion":[49],"detection":[50],"systems,":[51],"fail":[52],"address":[54],"compatibility":[56],"requirement":[57],"with":[58],"legacy":[59],"ECUs,":[60],"stealthy":[61],"and":[62,125,148,161],"sporadic":[63],"malicious":[64],"messaging,":[65],"guaranteed":[67],"attack":[68],"detection.":[69],"We":[70],"propose":[71],"a":[72,159],"novel":[73],"system":[75],"called":[76],"ShadowAuth":[77,137,157],"that":[78],"overcomes":[79],"aforementioned":[81],"challenges":[82],"offering":[84],"backwardcompatible":[85],"packet":[86,103,109,122,133,149],"ECUs":[89],"requiring":[91],"ECU":[92,115],"firmware":[93,116],"source":[94],"code.":[95],"Specifically,":[96],"our":[97],"scheme":[99],"provides":[100,158],"transparent":[101],"CAN":[102,108,121,132,143],"modifying":[106],"existing":[107],"definitions":[110],"(e.g.,":[111],"J1939)":[112],"via":[113],"automatic":[114],"instrumentation":[117],"technique":[118],"locate":[120],"transmission":[123,135],"code,":[124],"instrument":[126],"code":[128],"based":[129],"on":[130],"behavioral":[134],"patterns.":[136],"enables":[138],"vehicles":[139],"detect":[141],"state-of-the-art":[142],"attacks,":[144],"busoff":[147],"injection,":[150],"responsively":[151],"within":[152],"60ms":[153],"false":[155],"positives.":[156],"sound":[160],"deployable":[162],"solution":[163],"for":[164],"real-world":[165],"ECUs.":[166]},"counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2024,"cited_by_count":2},{"year":2022,"cited_by_count":4}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-10-10T00:00:00"}