Technical Paper
Vulnerability analysis of DoIP implementation based on model learning
2024-04-09
2024-01-2807
The software installed in Electronic Control Units (ECUs) has witnessed a significant scale expansion as intelligent connected vehicles (ICVs) functionality has become more sophisticated. To seek convenient long-term functional maintenance, stakeholders want to access ECUs data or update software from anywhere via diagnostic. However, as one of the external interfaces, DoIP is inevitably prone to malicious attacks. It is essential to note that cybersecurity threats not only arise from inherent protocol defects but also consider software implementation vulnerabilities. Differences between protocol specifications and implementations are often unavoidable, which can result in security vulnerabilities and potential attacks exploiting them.