An Improved Needham-Schroeder Session Key Distribution Protocol for In-Vehicle CAN Network

With the rapid development of automobile technology, the internal network of automobiles is facing more and more security problems. Many CAN-based in-vehicle applications lack security mechanisms for data confidentiality and secure session key distribution. To address the above problems, we propose an improved Needham-Schroeder session key distribution protocol suitable for in-vehicle CAN network, using message authentication code (MAC), key derivation function, digital signature, and timestamping mechanisms to resolve the defect that NSSK lacks resistance to Denning-Sacco attack. We use a random oracle model to conduct a formal security analysis of the proposed protocol, then we use Tamarin-Prover to verify the security properties of the protocol, the result indicates that the protocol is secure and applicable for in-vehicle CAN communication.