Logo
ScienceStack
Table of Contents
Fetching ...
Sign In

Detecting subtle cyberattacks on adaptive cruise control vehicles: A machine learning approach

Tianyi Li, Mingfeng Shang, Shian Wang, Raphael Stern

TL;DR

This work addresses the detection of subtle cyberattacks on ACC-equipped vehicles by modeling three attack classes within car-following dynamics, and developing a GAN-based trajectory anomaly detector for real-time identification. The approach learns the distribution of normal vehicle trajectories using a 1D-CNN GAN and detects attacks by reconstructing observed data in latent space and evaluating a composite loss. Numerical results show that attacks on acceleration (Type i@) more strongly disrupt micro- and macro-scale traffic, while false-data injection (Type ii@) and DoS (Type iii@) have milder or different perturbation effects; the detector achieves high recall and competitive precision and outperforms several baselines. The findings underscore the potential network-wide consequences of even a subset of compromised ACC vehicles and demonstrate a promising, real-time defense mechanism with implications for resilient traffic management and automated-vehicle security.

Abstract

With the advent of vehicles equipped with advanced driver-assistance systems, such as adaptive cruise control (ACC) and other automated driving features, the potential for cyberattacks on these automated vehicles (AVs) has emerged. While overt attacks that force vehicles to collide may be easily identified, more insidious attacks, which only slightly alter driving behavior, can result in network-wide increases in congestion, fuel consumption, and even crash risk without being easily detected. To address the detection of such attacks, we first present a traffic model framework for three types of potential cyberattacks: malicious manipulation of vehicle control commands, false data injection attacks on sensor measurements, and denial-of-service (DoS) attacks. We then investigate the impacts of these attacks at both the individual vehicle (micro) and traffic flow (macro) levels. A novel generative adversarial network (GAN)-based anomaly detection model is proposed for real-time identification of such attacks using vehicle trajectory data. We provide numerical evidence {to demonstrate} the efficacy of our machine learning approach in detecting cyberattacks on ACC-equipped vehicles. The proposed method is compared against some recently proposed neural network models and observed to have higher accuracy in identifying anomalous driving behaviors of ACC vehicles.

Detecting subtle cyberattacks on adaptive cruise control vehicles: A machine learning approach

TL;DR

This work addresses the detection of subtle cyberattacks on ACC-equipped vehicles by modeling three attack classes within car-following dynamics, and developing a GAN-based trajectory anomaly detector for real-time identification. The approach learns the distribution of normal vehicle trajectories using a 1D-CNN GAN and detects attacks by reconstructing observed data in latent space and evaluating a composite loss. Numerical results show that attacks on acceleration (Type i@) more strongly disrupt micro- and macro-scale traffic, while false-data injection (Type ii@) and DoS (Type iii@) have milder or different perturbation effects; the detector achieves high recall and competitive precision and outperforms several baselines. The findings underscore the potential network-wide consequences of even a subset of compromised ACC vehicles and demonstrate a promising, real-time defense mechanism with implications for resilient traffic management and automated-vehicle security.

Abstract

With the advent of vehicles equipped with advanced driver-assistance systems, such as adaptive cruise control (ACC) and other automated driving features, the potential for cyberattacks on these automated vehicles (AVs) has emerged. While overt attacks that force vehicles to collide may be easily identified, more insidious attacks, which only slightly alter driving behavior, can result in network-wide increases in congestion, fuel consumption, and even crash risk without being easily detected. To address the detection of such attacks, we first present a traffic model framework for three types of potential cyberattacks: malicious manipulation of vehicle control commands, false data injection attacks on sensor measurements, and denial-of-service (DoS) attacks. We then investigate the impacts of these attacks at both the individual vehicle (micro) and traffic flow (macro) levels. A novel generative adversarial network (GAN)-based anomaly detection model is proposed for real-time identification of such attacks using vehicle trajectory data. We provide numerical evidence {to demonstrate} the efficacy of our machine learning approach in detecting cyberattacks on ACC-equipped vehicles. The proposed method is compared against some recently proposed neural network models and observed to have higher accuracy in identifying anomalous driving behaviors of ACC vehicles.
Paper Structure (20 sections, 15 equations, 8 figures, 2 tables)

This paper contains 20 sections, 15 equations, 8 figures, 2 tables.

Table of Contents

  1. Introduction
  2. Cyberattacks on ACC Vehicles
  3. Type i@: Malicious Attacks on Vehicle Control
  4. Type ii@: False Data Injection Attacks on Sensors
  5. Type iii@: Denial-of-Service Attacks
  6. Detecting Cyberattacks via Generative Adversarial Networks (GAN)
  7. Generative Adversarial Network (GAN)
  8. Detection of Cyberattacks
  9. Numerical Results
  10. Impacts of Cyberattacks on Individual Vehicles
  11. Scenario 1: Malicious Attacks on Vehicle Control (Type i@ Attack)
  12. Scenario 2: False Data Injection Attacks on Sensors (Type ii@ Attack)
  13. Scenario 3: Denial-of-Service (Type iii@ Attack)
  14. Impacts of Cyberattacks on Traffic Flow
  15. Traffic Fundamental Diagram without Attack
  16. ...and 5 more sections

Figures (8)

  • Figure 1: Overview of the proposed GAN-based attack detection strategy where typical trajectory data is used to construct a GAN for generating synthetic trajectory data, which is then applied to newly observed trajectory data to identify anomalous traffic flow.
  • Figure 2: Demonstration of a GAN-based attack detection algorithm to measure detection score.
  • Figure 3: Trajectories of speed and position without attack for human-driven vehicles, in green; and ACC vehicles, in blue.
  • Figure 4: Trajectories of speed and position for ACC vehicles under Type i@ attack, in red; human-driven vehicles, in green; and unattacked ACC vehicles, in blue.
  • Figure 5: Trajectories of speed and position for ACC vehicles under Type ii@ attack, in red; human-driven vehicles, in green; and unattacked ACC vehicles, in blue.
  • ...and 3 more figures