Advanced IDPS Architecture for Connected and Autonomous Vehicles

Highly connected and automated driving technologies have ushered digital transformation and flexibility to modern cars. However, the vehicle’s attack surface has significantly expanded due to increased connectivity. To address this problem, automotive manufacturers are adopting more secure practices driven by standards and regulations. In addition to the deployed cryptographically strong security measures in automotive, we
need an Intrusion Detection and Prevention System (IDPS) that actively monitors the vehicle for intrusions, prevents them, and provides notification, as required by UN Regulation No. 155. In this work, we aim to identify the current limitations of the existing automotive approaches and contribute to an advanced
IDPS solution. We propose architectural changes that improve reliability and form a framework to propose reactions in a safety-related automotive context. We evaluate our proposed architecture with regard to performance and security design. With the proposed changes to the IDPS architecture, our aim is
to integrate a dynamic and adaptive strategy for IDPS, enhancing resilience against emerging threats and vulnerabilities