A security method for vehicle communication network based on controller area network with flexible data-rate (CAN-FD) was established with data encryption and intrusion detection. Secure communication protocols for vehicle network including secure transmission, secure boot, time synchronization, and key distribution were proposed, and a network simulation model was established to verify the validity of the secure protocols. Secure communication nodes based on hardware instance were established to test the actual communication performance and encryption performance of the hardware nodes. Aiming at the potential attack modes of the vehicle communication network, the Dolev-Yao intruder model attack and the denial of service attack were used as the test methods to test the security of communication model and verify the intrusion detection function. And the judgment index of the network intrusion detection was determined. The experimental results had confirmed the security and usability of the method.