University of Twente Student Theses


A framework for detecting and preventing DoS attacks in automotive ethernet switches

Goswami, H. (2023) A framework for detecting and preventing DoS attacks in automotive ethernet switches.

Full text not available from this repository.

Full Text Status:Access to this publication is restricted
Embargo date:13 March 2025
Abstract:Distributed denial of service (D)DoS attacks on in-vehicle networks (IVNs) can disrupt the operation of the vehicle and pose a risk to passenger safety and the safety of other road users. These attacks can be challenging to detect and prevent because they often involve a large number of devices generating traffic simultaneously, making it hard to distinguish malicious traffic from normal traffic. In this research, we aim to develop and evaluate a (D)DoS detection and prevention system for Ethernet-based in-vehicle networks. Ethernet switches and gateways, which are commonly used in these types of networks to forward and process traffic, could potentially be accessed by hackers to compromise the network. Our proposed approach combines entropy-based (D)DoS detection with access control list (ACL) based traffic filtering to detect and mitigate attacks. The results showed that the entropy-based (D)DoS detection method demonstrated excellent performance, with a high detection rate and a low count of false negatives in detecting attacks. However, there was a limitation in identifying certain types of attacks that exhibit similar patterns to legitimate traffic. Evaluation for ACL-based traffic filtering showed that the created ACL rule effectively filters out (D)DoS traffic, but it also dropped legitimate packets with the same header fields as (D)DoS packets. By developing and evaluating a systematic approach for protecting automotive Ethernet networks against this network attacks, we aim to improve the security of IVNs.
Item Type:Essay (Master)
NXP Semiconductors, Eindhoven, Netherlands
Faculty:EEMCS: Electrical Engineering, Mathematics and Computer Science
Subject:53 electrotechnology, 54 computer science
Programme:Embedded Systems MSc (60331)
Link to this item:
Export this item as:BibTeX
HTML Citation
Reference Manager


Repository Staff Only: item control page