New generation wireless communication technology brings the widespread application of the Internet of Vehicles (IoV). This would make it more vulnerable to cybersecurity threats for connected and intelligent automobiles. Automotive cybersecurity protection will become a vital requirement for the development of Intelligent Connected Vehicle (ICV) technology. As the zero trust model is designed to optimize the flaws inherent in boundary defense and assumes that cyber threats are ubiquitous. On the basis of this model, all devices, users and network traffic should be authenticated and authorized under the environment of internal network or public network. According to the research on the in-vehicle network architecture and the zero trust model, this paper propose a security architecture of in-vehicle network that provide identity authentication, traffic encryption and authority allocation management for Electronic Control Unit (ECU), which can resist cybersecurity threats. In order to verify the feasibility of the proposed security architecture, we undertake the simulation with the automotive electronic and electrical architecture software. The simulation results show that the security in-vehicle network model can resist distributed denial of service (DDoS) attacks effectively.

CICTP