Truck Hacking: An Experimental Analysis of the SAE J1939 Standard
نویسندگان
چکیده
Consumer vehicles have been proven to be insecure; the addition of electronics to monitor and control vehicle functions have added complexity resulting in safety critical vulnerabilities. Heavy commercial vehicles have also begun adding electronic control systems similar to consumer vehicles. We show how the openness of the SAE J1939 standard used across all US heavy vehicle industries gives easy access for safetycritical attacks and that these attacks aren’t limited to one specific make, model, or industry. We test our attacks on a 2006 Class-8 semi tractor and 2001 school bus. With these two vehicles, we demonstrate how simple it is to replicate the kinds of attacks used on consumer vehicles and that it is possible to use the same attack on other vehicles that use the SAE J1939 standard. We show safety critical attacks that include the ability to accelerate a truck in motion, disable the driver’s ability to accelerate, and disable the vehicle’s engine brake. We conclude with a discussion for possibilities of additional attacks and potential remote attack vectors.
منابع مشابه
Quo Vadis SAE J1939 Standardization
Based on the CAN bus (High-Speed CAN per ISO 11898), the SAE J1939 standard is used primarily to network the powertrain and chassis in commercial vehicles. The protocol creates a uniform foundation for communication between the electronic ECUs and operates by the plug-and-play principle. The J1939 standard is an active standard that currently consists of 19 documents (Figure 1). The responsible...
متن کاملSecurity shortcomings and countermeasures for the SAE J 1939 commercial vehicle bus protocol
In the recent years, countless security concerns related to automotive systems were revealed either by academic research or real life attacks. While current attention was largely focused on passenger cars, due to their ubiquity, the reported bus-related vulnerabilities are applicable to all industry sectors where the same bus technology is deployed, i.e., the CAN bus. The SAE J1939 specificatio...
متن کاملOptimal and real-time control potential of a diesel-electric powertrain
Real-time control strategies and their performance related to the optimal control trajectories for a diesel-electric powertrain in transient operation are studied. The considered transients are steps from idle to target power. A non-linear four state-three input mean value engine model, incorporating the important turbocharger dynamics, is used for this study. The strategies are implemented usi...
متن کاملUnderstanding Practical Limits to Heavy Truck Drag Reduction
A heavy truck wind tunnel test program is currently underway at the Langley Full Scale Tunnel (LFST). Seven passive drag reducing device configurations have been evaluated on a heavy truck model with the objective of understanding the practical limits to drag reduction achievable on a modern tractor trailer through add-on devices. The configurations tested include side skirts of varying length,...
متن کاملNetworking Heavy-Duty Vehicles Based on SAE J1939
In networking ECUs in heavy-duty vehicles, it is the J1939 protocol that plays a key role. J1939 networks are based on the CAN bus (high-speed CAN per ISO11898); they are primarily used in powertrain and chassis components. The protocol creates a uniform basis for communication between electronic control units, and it supports the plug-and-play principle. Special J1939 tools and software compon...
متن کامل