<p>The rapid proliferation of Internet of Things (IoT) devices has significantly expanded the scope of Cyber-Physical Systems (CPS), but at the same time, it has exposed these systems to an increasing range of malicious threats, particularly replay and relay attacks. Remote Keyless Entry (RKE) and Passive Keyless Entry (PKE) systems, commonly used in automotive and other industries, are particularly susceptible to these attacks. This paper designs a novel hybrid security system to protect the RKE and PKE systems against replay and relay attacks. The proposed system is based on a multi-factor authentication (MFA) architecture that integrates three complementary layers: an RF layer for 433 MHz command activation, a Wi-Fi communication layer, and an asymmetric encryption layer leveraging Elliptic Curve Cryptoraphy (ECC) with timestamp verification and digital signatures. We ensure defense-in-depth by integrating layered safeguards with strong cryptographic primitives. A detailed analysis of the threat model illustrates that the system can mitigate unauthorized access attempts and cyber threats based on replay, relay, and Replay-and-jamming (RollJam) attacks under the evaluated conditions. The experimental evaluation provides experimental evidence of the practicality of the system and its performance in the tested scenarios. By addressing critical vulnerabilities in existing RKE and PKE deployments, this research may serve as a starting point for enhancing the security of critical entry systems.</p>

错误:搜索内容不能为空,请输入英文关键词
错误:关键词超出字数限制,请精简
高级检索

Design of a Hybrid System for Mitigating Cyber Attacks on RKE and PKE Systems

  • Younes Afri,
  • Messaoud Rahim,
  • Mohamed Maazouz

摘要

The rapid proliferation of Internet of Things (IoT) devices has significantly expanded the scope of Cyber-Physical Systems (CPS), but at the same time, it has exposed these systems to an increasing range of malicious threats, particularly replay and relay attacks. Remote Keyless Entry (RKE) and Passive Keyless Entry (PKE) systems, commonly used in automotive and other industries, are particularly susceptible to these attacks. This paper designs a novel hybrid security system to protect the RKE and PKE systems against replay and relay attacks. The proposed system is based on a multi-factor authentication (MFA) architecture that integrates three complementary layers: an RF layer for 433 MHz command activation, a Wi-Fi communication layer, and an asymmetric encryption layer leveraging Elliptic Curve Cryptoraphy (ECC) with timestamp verification and digital signatures. We ensure defense-in-depth by integrating layered safeguards with strong cryptographic primitives. A detailed analysis of the threat model illustrates that the system can mitigate unauthorized access attempts and cyber threats based on replay, relay, and Replay-and-jamming (RollJam) attacks under the evaluated conditions. The experimental evaluation provides experimental evidence of the practicality of the system and its performance in the tested scenarios. By addressing critical vulnerabilities in existing RKE and PKE deployments, this research may serve as a starting point for enhancing the security of critical entry systems.