EnglishSvenskaNorsk
Change search
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
Towards Explainable Automotive Intrusion Detection: A Chunk-based Framework forCAN Traffic
RISE Research Institutes of Sweden, Digital Systems, Data Science.ORCID iD: 0009-0004-8393-1683
Ewha Womans University, Korea.
RISE Research Institutes of Sweden, Digital Systems, Industrial Systems.ORCID iD: 0000-0002-3687-6755
Mid Sweden University, Sweden.
2025 (English)Conference paper, Published paper (Other academic)
Abstract [en]

In this work, we propose an explainable intrusion detection framework for Controller Area Network bus traffic using the ROAD dataset. By segmenting raw traffic into fixed-size chunks, we extract features that capture timing behavior, entropy, payload statistics, and CAN ID survival rates. We evaluate three classifiers, Decision Tree, Random Forest (with TreeSHAP), and Feedforward Neural Network (with KernelSHAP). The framework extracts multi-level features from CAN traffic, revealing through explainability that tree models detect protocol anomalies while neural networks capture signal-level distortions, underscoring the role of model choice in explainable IDS design.
Place, publisher, year, edition, pages
2025.
National Category
Computer and Information Sciences
Identifiers
URN: urn:nbn:se:ri:diva-78747OAI: oai:DiVA.org:ri-78747DiVA, id: diva2:1989348
Conference
Swedish National Computer Networking and Cloud Computing Workshop (SNCNW), arranged at University West in Trollhättan, June 10-11, 2025
Note

This work is supported by the EU project Citcom.AI,Vinnova INTERSTICE project (reference number: 2024-00661), and VINNOVA FFI Project MAGIC (referencenumber: 2024-03687). This work is also partiallysupported by KKS Research Profile NIIT, and DataCommunication Security Laboratory at Ewha WomansUniversity, South Korea.

Available from: 2025-08-15 Created: 2025-08-15 Last updated: 2026-01-22Bibliographically approved

Open Access in DiVA

fulltext(1119 kB)65 downloads
File information
File name FULLTEXT01.pdfFile size 1119 kBChecksum SHA-512
dcf6a5488f5288ffbb9d85099dbb2a41b791d707fef640436fa54166cf911ca1322e333acec591fa8b21c2d26f26cfe8099af612aab9c1542a6815f8ddb5390c
Type fulltextMimetype application/pdf

Authority records

Fahria, KabirMowla, Nishat

Search in DiVA

By author/editor
Fahria, KabirMowla, Nishat
By organisation
Data ScienceIndustrial Systems
Computer and Information Sciences

Search outside of DiVA

GoogleGoogle Scholar
Total: 69 downloads
The number of downloads is the sum of all downloads of full texts. It may include eg previous versions that are now no longer available

urn-nbn

Altmetric score

urn-nbn
Total: 828 hits
CiteExportLink to record
Permanent link

Direct link
Cite
Citation style
  • apa
  • ieee
  • modern-language-association-8th-edition
  • vancouver
  • Other style
More styles
Language
  • de-DE
  • en-GB
  • en-US
  • fi-FI
  • nn-NO
  • nn-NB
  • sv-SE
  • Other locale
More languages
Output format
  • html
  • text
  • asciidoc
  • rtf
v. 2.47.0
|
WCAG