-
51.发明公开
公开(公告)号:EP3402125A1
公开(公告)日:2018-11-14
申请号:EP16883533.8
申请日:2016-11-29
摘要: An unauthorized activity detection method is provided in an onboard network system having multiple electronic units (ECU) that perform communication via a bus, where even in in a case of an ECU being taken over by an attacker by unauthorizedly rewriting firmware or the like, occurrence of an unauthorized state can be detected by monitoring frames transmitted over the bus. The unauthorized activity detection method determines, using unauthorized activity detection rule information indicating a first condition that is a condition regarding a relation in content between a frame having a first identifier and a frame having an identifier that differs from the first identifier, whether or not a set of frames received from the bus satisfies the first condition, and detects that an unauthorized state has occurred in a case where the first condition is not satisfied.
-
52.发明公开
公开(公告)号:EP3346647A1
公开(公告)日:2018-07-11
申请号:EP16841047.0
申请日:2016-08-03
发明人: KISHIKAWA, Takeshi , UJIIE, Yoshihiro , MAEDA, Manabu , MATSUSHIMA, Hideki , AMANO, Hiroshi , NAKANO, Toshihisa
IPC分类号: H04L12/40 , B60R16/02 , B60R16/023
摘要: A misuse detection electronic control unit in a vehicle network system including a plurality of electronic control units that communicate with one another through buses in accordance with a CAN protocol includes a transceiver unit that performs a reception step of receiving a data frame transmitted through the buses and a misuse detection process unit that performs a detection step of performing, as misuse detection for a target data frame, which is a data frame having a first identifier, evaluation in accordance with a reception timing of a reference data frame, which is a data frame having a second identifier different from the first identifier, and a reception timing of the target data frame on the basis of a certain rule specifying a reception interval between the reference data frame and the target data frame.
-
53.发明公开
公开(公告)号:EP4246893A3
公开(公告)日:2023-12-27
申请号:EP23183578.6
申请日:2015-03-23
发明人: MAEDA, Manabu , MATSUSHIMA, Hideki , HAGA, Tomoyuki , UNAGAMI, Yuji , UJIIE, Yoshihiro , KISHIKAWA, Takeshi
IPC分类号: H04L9/40 , H04L12/28 , H04L12/40 , B60R16/023 , B60R16/02
摘要: A fraud sensing method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a bus includes a detecting step of detecting that a state of a vehicle satisfies a predetermined condition, and a switching step of switching, upon detecting that the state of the vehicle satisfies the predetermined condition, an operation mode of a fraud-sensing electronic control unit connected to the bus between a first mode in which a first type of sensing process for sensing a fraudulent message in the bus is performed and a second mode in which the first type of sensing process is not performed.
-
公开(公告)号:EP4250648A3
公开(公告)日:2023-12-06
申请号:EP23191161.1
申请日:2018-12-04
IPC分类号: H04L12/40 , H04L12/413 , H04L9/40 , H04L67/12
摘要: A fraud detection method includes: determining whether a period of a message repeatedly transmitted in an in-vehicle network is anomalous (S1002); detecting whether arbitration occurs when the message is transmitted in the in-vehicle network (S1004); and determining that the message is an anomalous message, in the case where the period of the message is anomalous and no arbitration occurs when the message is transmitted in the in-vehicle network (S1006).
-
公开(公告)号:EP4280089A1
公开(公告)日:2023-11-22
申请号:EP21919597.1
申请日:2021-12-02
摘要: A service broker (300) includes: a communication controller (301) (i) that, in a service offer system for offering a service from a server unit to a client unit by way of a service oriented communication, is connected to each of the server unit and the client unit, and (ii) that receives a frame for use in offer of the service, from the server unit or the client unit; and a service manager (302) that determines whether a combination of a service identifier included in the frame received by the communication controller (301), an identifier indicating one of a transmission source and a destination of the frame, and a type of the frame is appropriate, and provides output of a result of the determination.
-
公开(公告)号:EP4254875A3
公开(公告)日:2023-11-15
申请号:EP23188154.1
申请日:2015-10-16
摘要: Provided is a key management method to secure security in an onboard network system having multiple electronic control units storing a shared key. In the key management method of the onboard network system including multiple electronic units (ECUs) that perform communication by frames via a bus, a master ECU (400) stores a shared key to be mutually shared with one or more ECUs (100a through 100d). Each of the ECUs (100a through 100d) acquire a session key by communication with the master ECU (400) based on the stored shared key, and after this acquisition, executes encryption processing regarding a frame transmitted or received via the bus, using this session key. In a case where a vehicle in which the onboard network system is installed is in a particular state, the master ECU (400) executes inspection (e.g., steps S1201, S1203) of a security state of the shared key stored by the ECU (100a) or the like.
-
57.发明公开
公开(公告)号:EP4236196A3
公开(公告)日:2023-10-18
申请号:EP23179231.8
申请日:2015-04-21
发明人: HAGA, Tomoyuki , MATSUSHIMA, Hideki , MAEDA, Manabu , UNAGAMI, Yuji , UJIIE, Yoshihiro , KISHIKAWA, Takeshi
IPC分类号: H04L9/32 , B60R16/023 , H04L9/08
摘要: An anti-fraud method for use in an in-vehicle network system including a plurality of electronic control units that exchange data frames, each having added thereto a MAC, via a bus includes a receiving step of receiving a data frame transmitted on the bus, a verification step of generating a MAC by using data and verifying that the data frame received in the receiving step has added thereto the MAC, and an update processing step of performing an update process on the data used for generating the MAC in a case where verification has failed in the verification step.
-
公开(公告)号:EP4113287A1
公开(公告)日:2023-01-04
申请号:EP22192263.6
申请日:2016-06-27
发明人: UJIIE, Yoshihiro , MATSUSHIMA, Hideki , ANZAI, Jun , NAKANO, Toshihisa , HAGA, Tomoyuki , MAEDA, Manabu , KISHIKAWA, Takeshi
IPC分类号: G06F8/654 , B60R16/023 , G06F11/14 , G06F21/64 , G06F21/10 , H04L12/40 , H04L12/46 , H04L67/00
摘要: A gateway device 300, connected to one or more buses used in communication by a plurality of ECUs 100a to 100d on-board a vehicle, is provided with: a receiving unit that receives, from a server 500 that acts as an external device external to the vehicle, firmware update information that includes updated firmware to be applied to one ECU from among the plurality of ECUs 100a to 100d; and a control unit that determines, based on certain information about the ECU on which to apply the updated firmware, whether or not the ECU satisfies a certain condition, and if the certain condition is satisfied, causes the ECU to execute a certain process related to updating firmware, whereas if the certain condition is not satisfied, causes equipment other than the ECU to execute the certain process.
-
59.发明公开
公开(公告)号:EP4106298A1
公开(公告)日:2022-12-21
申请号:EP22189128.6
申请日:2019-01-11
发明人: TORISAKI, Yuishi , HAGA, Tomoyuki , SASAKI, Takamitsu , KISHIKAWA, Takeshi , MATSUSHIMA, Hideki
摘要: A vehicle anomaly detection server includes: a communicator (810) that communicates with a vehicle to receive a log of an in-vehicle network included in the vehicle; a vehicle selector (855) that selects, when information indicating that an anomaly is occurring to a first vehicle among a plurality of vehicles is obtained, an anomaly-related vehicle from among the plurality of vehicles based on the anomaly, the first vehicle being the vehicle that communicates with the communicator; a log collector (830) that transmits, to the anomaly-related vehicle via the communicator (810), a first request to transmit a log of an in-vehicle network included in the anomaly-related vehicle; and a log analyzer (840) that determines whether an anomaly is occurring to the anomaly-related vehicle, based on information indicated by the log transmitted from the anomaly-related vehicle in response to the first request and received by the communicator (810).
-
公开(公告)号:EP4092553A1
公开(公告)日:2022-11-23
申请号:EP20913440.2
申请日:2020-12-18
IPC分类号: G06F21/55
摘要: An intrusion path analysis device is communicably connected to a control network system via a network. The control network system is connected to electronic control unit(s) and a communication device, and includes security sensor(s) that transmits a security alert indicating that an indication of a security breach is detected to the network, if the indication is detected in at least one of the network, the electronic control unit(s), or the communication device. The intrusion path analysis device includes: an alert obtainer that obtains the security alert from the security sensor(s); an event obtainer that obtains an event history of an event that occurs in the control network system; and an intrusion path analyzer that performs an analysis on an intrusion path of an attack on the basis of the security alert, the event history, and an intrusion depth indicating an intrusion level to be assumed in a case the security alert occurs, and that outputs a result of the analysis.
-
-
-
-
-
-
-
-
-
搜索结果
102 条记录 (耗时 0.016 秒)
