公开(公告)号：US10530572B2

公开(公告)日：2020-01-07

申请号：US15203622

申请日：2016-07-06

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L9/08 ,  B60R16/023

Abstract: Provided is a key management method to secure security in an onboard network system having multiple electronic control units storing a shared key. In the key management method of the onboard network system including multiple electronic units (ECUs) that perform communication by frames via a bus, a master ECU stores a shared key to be mutually shared with one or more ECUs. Each of the ECUs acquire a session key by communication with the master ECU based on the stored shared key, and after this acquisition, executes encryption processing regarding a frame transmitted or received via the bus, using this session key. In a case where a vehicle in which the onboard network system is installed is in a particular state, the master ECU executes inspection of a security state of the shared key stored by the ECU or the like.

公开(公告)号：US11943233B2

公开(公告)日：2024-03-26

申请号：US17559749

申请日：2021-12-22

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/00 ,  B60R16/023 ,  H04L9/40 ,  H04L12/40 ,  H04L67/12

CPC classification number: H04L63/123 ,  B60R16/023 ,  H04L12/40 ,  H04L63/08 ,  H04L63/102 ,  H04L63/20 ,  H04L67/12 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. Upon determining that the frame conforms to the first rule, the second control circuit transmits the frame to the first control circuit. The first control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule. The second rule is different from the first rule.

公开(公告)号：US11336618B2

公开(公告)日：2022-05-17

申请号：US17152286

申请日：2021-01-19

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L9/36 ,  H04L67/12

Abstract: A security apparatus includes a receiver that receives a frame front at least one network, a parameter storage that stores at least one examination parameter defining a content of an examination on a frame, and processing circuitry that performs operations. The operations include judging whether a predetermined condition is satisfied for the frame received by the receiver. When the predetermined condition is satisfied, updating the stored at least one examination parameter, and when the predetermined condition is not satisfied, not updating the stored at least one examination parameter. The operations also include executing an examination, based on the stored at least one examination parameter, as to whether the frame received by the receiver is an attack frame, and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed.

公开(公告)号：US11240253B2

公开(公告)日：2022-02-01

申请号：US15930093

申请日：2020-05-12

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/00 ,  H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  B60R16/023

Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. Upon determining that the frame conforms to the first rule, the second control circuit transmits the frame to the first control circuit. The first control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule. The second rule is different from the first rule.

公开(公告)号：US10193896B2

公开(公告)日：2019-01-29

申请号：US15407738

申请日：2017-01-17

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/06 ,  H04L12/40 ,  B60R16/023 ,  H04L29/08

Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system including a plurality of apparatuses that perform communication of frames via the bus. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the bus via the second control circuit over wired communication and/or wireless communication. The second control circuit performs a first determination process on a received frame received from the bus to determine the conformity with a first rule related to at least a reception interval, and, upon determining that the received frame conforms to the first rule, executes a predetermined process based on the content of the received frame. The first control circuit performs a second determination process on the received frame, received via the second control circuit, to determine the conformity with a second rule different from the first rule.

公开(公告)号：US11539727B2

公开(公告)日：2022-12-27

申请号：US16730977

申请日：2019-12-30

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Tomoyuki Haga ,  Masato Tanabe ,  Yuishi Torisaki ,  Hiroyasu Terazawa ,  Ryo Kato

IPC: H04L9/40 ,  H04L12/40

Abstract: An abnormality detection apparatus for a mobility entity and for detecting an abnormality in a network system is provided. The network system includes a first network and a second network that use different communication protocols. A first communication circuit receives state information indicating a state of the mobility entity. The state information is acquired from the second network. A second communication circuit transmits and receives a first frame according to a communication protocol used in the first network. A memory stores an abnormality detection rule. A processor detects, based on the state information and the abnormality detection rule, whether a control command included in the first frame received by the second communication circuit is abnormal. In a case where the control command is abnormal, the processor prohibits the control command from being transmitted.

公开(公告)号：US10931634B2

公开(公告)日：2021-02-23

申请号：US15880769

申请日：2018-01-26

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L9/36 ,  H04L29/08

Abstract: A gateway serving as a security apparatus connected to one or a plurality of buses includes a receiver that receives a frame from a bus, a parameter storage that stores an examination parameter defining a content of an examination of the frame, an updater configured to, in a case where a predetermined condition is satisfied for the frame received by the receiver, update the examination parameter stored in the parameter storage, and an examiner that performs an examination, based on the examination parameter stored in the parameter storage, in terms of judgment of whether or not the frame received by the receiver is an attack frame.

公开(公告)号：US10693889B2

公开(公告)日：2020-06-23

申请号：US16217460

申请日：2018-12-12

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  B60R16/023

Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the in-vehicle network bus via the second control circuit over wired communication and/or wireless communication. The first control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. The second control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule, and, upon determining that the frame conforms to the second rule, transmits the frame to the in-vehicle network bus.

公开(公告)号：US10193859B2

公开(公告)日：2019-01-29

申请号：US15940200

申请日：2018-03-29

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L9/36 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L29/08

Abstract: A security apparatus is provided that is connected to a bus. The security apparatus includes a receiver that receives a first frame from the bus, a memory that stores an examination parameter defining a content of an examination on the first frame, and processing circuitry that performs operations. The performed operations include first determining whether a predetermined condition is satisfied for the first frame. The performed operations also include, in a case where the first determining determined that the predetermined condition is satisfied, updating the examination parameter stored in the memory. The performed operations further include second determining whether the first frame is an attack frame based on the updated examination parameter stored in the memory.

公开(公告)号：US12261851B2

公开(公告)日：2025-03-25

申请号：US18584704

申请日：2024-02-22

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/00 ,  B60R16/023 ,  H04L9/40 ,  H04L12/40 ,  H04L67/12

Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit that operates on a first operating system and a second control circuit that operates on a second operating system. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on frames to determine conformity of the frames with a first rule. Upon determining that the frames conform to the first rule, the second control circuit transmits contents of the frames to the first control circuit. The first control circuit performs a second determination process on the contents of the frames to determine conformity with a second rule. The second rule is different from the first rule.