Physical-Layer Signal Injection Attacks on EV Charging Ports: Bypassing Authentication via Electrical-Level Exploits
Hetian Shi, Yi He, Shangru Song, Jianwei Zhuge, Jian Mao
TL;DR
This paper uncovers physical signal injection attacks on EV charging ports that bypass authentication, demonstrating a hardware proof-of-concept and proposing countermeasures to improve security.
Contribution
It introduces PORTulator, a hardware attack device, and reveals vulnerabilities in existing charging protocols due to simple physical signal authentication methods.
Findings
7 charging standards are vulnerable to the attack
PORTulator successfully sabotages multiple real-world chargers
Proposed countermeasures include enhanced authentication circuits
Abstract
The proliferation of electric vehicles in recent years has significantly expanded the charging infrastructure while introducing new security risks to both vehicles and chargers. In this paper, we investigate the security of major charging protocols such as SAE J1772, CCS, IEC 61851, GB/T 20234, and NACS, uncovering new physical signal spoofing attacks in their authentication mechanisms. By inserting a compact malicious device into the charger connector, attackers can inject fraudulent signals to sabotage the charging process, leading to denial of service, vehicle-induced charger lockout, and damage to the chargers or the vehicle's charge management system. To demonstrate the feasibility of our attacks, we propose PORTulator, a proof-of-concept (PoC) attack hardware, including a charger gun plugin device for injecting physical signals and a wireless controller for remote manipulation. By…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.