MAuth-CAN: Masquerade-Attack-Proof Authentication for In-Vehicle Networks

Hyo Jin Jo, Jin Hyun Kim, Hyon Young Choi, Wonsuk Choi, Dong Hoon Lee, Insup Lee

Research output: Contribution to journalArticlepeer-review

43 Citations (Scopus)


Numerous hacking attempts on modern vehicles have recently demonstrated that an adversary can remotely control a vehicle using vulnerable telematics services. In these attempts, a masquerade attack impersonating some safety-critical electronic control units (ECUs) is usually performed to control a vehicle. In the last decade, several message authentication protocols for controller area network (CAN) have been proposed to protect vehicles from masquerade attacks. However, some message authentication protocols are not enough to protect a vehicle from masquerade attacks by compromised ECUs. Other protocols that are secure against masquerade attacks fill the network capacity of CAN up to 100% or require hardware modifications of the CAN-controller, dedicated hardware used for CAN communications. In this paper, we propose a new authentication protocol, MAuth-CAN, that is secure against masquerade attacks. MAuth-CAN neither fills up to 100% of the network capacity nor requires hardware modifications of a CAN-controller. In addition, we propose a technique that protects ECUs from bus-off attacks, and apply the technique to MAuth-CAN for handling bus-off attacks.

Original languageEnglish
Article number8939382
Pages (from-to)2204-2218
Number of pages15
JournalIEEE Transactions on Vehicular Technology
Issue number2
Publication statusPublished - 2020 Feb

Bibliographical note

Funding Information:
Manuscript received July 24, 2018; revised February 22, 2019 and June 23, 2019; accepted December 18, 2019. Date of publication December 23, 2019; date of current version February 12, 2020. This work was supported in part by the Global Research Laboratory Program 2013K1A1A2A02078326 through NRF, and the DGIST Research and Development Program (CPS Global Center) funded by the Ministry of Science, ICT & Future Planning. The review of this article was coordinated by Prof. R. Q. Hu. (Corresponding author: Insup Lee.) H. J. Jo is with the School of Software, Hallym University, Chuncheon 24252, Republic of Korea (e-mail:

Publisher Copyright:
© 1967-2012 IEEE.


  • Authentication
  • Controller Area Network
  • Dual CAN-controller
  • Masquerade attack

ASJC Scopus subject areas

  • Aerospace Engineering
  • Electrical and Electronic Engineering
  • Computer Networks and Communications
  • Automotive Engineering


Dive into the research topics of 'MAuth-CAN: Masquerade-Attack-Proof Authentication for In-Vehicle Networks'. Together they form a unique fingerprint.

Cite this