Electric vehicles appear to be finally hitting their stride. Six major auto companies, including Ford and GM, are now planning to in favor of EVs by 2040. In Europe and China, sales are on a tear; in the former, sales have spiked 60 percent since 2016, and Norway may be on track to completely end sales of new gas vehicles by 2025. Even in the U.S., where electric vehicles have been slow to catch on, sales nearly doubled last year. As with the adoption of any new technology, expect some growing pains. In particular, consumers continue to have anxiety about vehicle range, and state and federal governments have been slow to build adequate fast-charging infrastructure to ease their concerns. 51视频-Dearborn electrical engineering doctoral student Mansi Girdhar says we should also have our eye on the potential cybersecurity risks from EVs. The reason? Because EVs have to connect to electrical infrastructure to charge, they serve as a possible access point for hackers to infiltrate vehicle computer systems, steal our credit card information, and even launch a large-scale attack on the grid.
When Girdhar began searching for a topic for her dissertation research, she found lots of work on vehicle security and grid security, but interestingly, not that much on the potential weak link between the two. However, EV chargers, in many ways, are a perfect target for hackers. Because they鈥檙e so new, there aren鈥檛 universal standards for their manufacturing, let alone for their cybersecurity frameworks. And because they connect technologies that are so critical to our daily lives, they could be a beachhead for all kinds of attacks. In a best case scenario, a hacker might infiltrate a charging station, which typically have built-in payment processing systems, just to steal your credit card information. But in more serious cases, Girdhar says someone could use an insecure charging station to attack your vehicle, directly compromising its safety. In the worst case scenario, a compromised EV charger could even be used to launch an attack that cascades across the electric grid, causing power disruptions to millions of people.
Girdhar鈥檚 work is focusing on a couple important aspects of the problem. First, she鈥檚 taking a deep look at how charging stations actually connect to vehicles when they鈥檙e charging to suss out what kind of vulnerabilities exist. When you charge your EV, it typically involves several of your car鈥檚 on-board electronic components and controllers, which coordinate with each other using something called a Controller Area Network (CAN). It鈥檚 a communications system that鈥檚 vital to most modern cars and is thus preferred by the auto companies. 鈥淏ut the problem is, CAN is not very secure,鈥 Girdhar says. Lots of work has been done, in fact, documenting how vulnerable these intra-vehicle networks can be, an area which Girdhar is now contributing to. By documenting the grid-charger-vehicle network鈥檚 most serious potential vulnerabilities, Girdhar says manufacturers and researchers can start coming up with better defense strategies.
In fact, a second piece of Girdhar鈥檚 work is taking a look at that. 鈥淲e鈥檙e actually not assuming that we can design a charger that is hack proof 鈥 we鈥檙e not trying to make it immune,鈥 she says. 鈥淚nstead, we want to be able to detect an attack as it鈥檚 happening, and identify what kind of attack, so we can then deploy the correct defense in real time.鈥 To do this, Girdhar says they鈥檒l be using an approach called anomaly detection. This involves using machine learning to develop a fingerprint of what normal computing activity looks like when a vehicle is charging, so the system can then identify when something appears out of the ordinary.
Girdhar says her research has also inspired a whole new path for her career. Her previous master鈥檚 work was in 5G wireless communications, but she鈥檚 liking this subject so much, she says her new goal is to pursue an academic career focusing on the cybersecurity of electric vehicles. With EVs charging into the future, we鈥檙e glad she鈥檚 part of the effort.
###
Story by Lou Blouin
