-
公开(公告)号:US11128657B2
公开(公告)日:2021-09-21
申请号:US16520782
申请日:2019-07-24
Inventor: Takeshi Kishikawa , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Takamitsu Sasaki
IPC: G06F21/00 , H04L29/06 , B60R16/023 , G07C5/00
Abstract: A gateway that notifies a fraud detection server located outside a vehicle of information about an in-vehicle network system including an in-vehicle network includes: a priority determiner that determines a priority using at least one of: a state of the vehicle including the in-vehicle network system; an identifier of a message communicated on the in-vehicle network; and a result of fraud detection performed on the message; a frame transmitter-receiver that transmits and receives the message communicated on the in-vehicle network; a frame interpreter that extracts information about the in-vehicle network based on the message received by the frame transmitter-receiver; and a frame uploader that notifies the fraud detection server of notification information including the priority and the information about the in-vehicle network.
-
公开(公告)号:US10609049B2
公开(公告)日:2020-03-31
申请号:US16207875
申请日:2018-12-03
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
IPC: H04L29/06 , H04L12/28 , B60R16/023 , H04L12/40 , H04L29/08
Abstract: A fraud sensing method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting that a state of a vehicle satisfies a predetermined condition, and switching, upon detecting that the state of the vehicle satisfies the predetermined condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of sensing process for sensing a fraudulent message in the network is performed and a second mode in which the first type of sensing process is not performed.
-
13.发明授权公开(公告)号:US10530572B2
公开(公告)日:2020-01-07
申请号:US15203622
申请日:2016-07-06
Inventor: Yoshihiro Ujiie , Jun Anzai , Yoshihiko Kitamura , Masato Tanabe , Takeshi Kishikawa
IPC: H04L9/08 , B60R16/023
Abstract: Provided is a key management method to secure security in an onboard network system having multiple electronic control units storing a shared key. In the key management method of the onboard network system including multiple electronic units (ECUs) that perform communication by frames via a bus, a master ECU stores a shared key to be mutually shared with one or more ECUs. Each of the ECUs acquire a session key by communication with the master ECU based on the stored shared key, and after this acquisition, executes encryption processing regarding a frame transmitted or received via the bus, using this session key. In a case where a vehicle in which the onboard network system is installed is in a particular state, the master ECU executes inspection of a security state of the shared key stored by the ECU or the like.
-
14.发明授权公开(公告)号:US10320826B2
公开(公告)日:2019-06-11
申请号:US15228299
申请日:2016-08-04
Inventor: Takeshi Kishikawa , Yoshihiro Ujiie , Tomoyuki Haga , Hideki Matsushima
Abstract: An anomaly detection electronic control unit, that performs anomaly detection processing and that is connected to a bus which a plurality of electronic control units use for communication to communicate following a Controller Area Network (CAN) protocol, includes an anomaly detection processing requester that decides an anomaly detection processing timing based on an ID of a data frame acquired from the bus, and an anomaly detection processor that performs anomaly detection processing regarding the data frame at the anomaly detection processing timing decided by the anomaly detection processing requester.
-
公开(公告)号:US10187406B2
公开(公告)日:2019-01-22
申请号:US15183398
申请日:2016-06-15
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
IPC: H04L29/06 , H04L12/28 , B60R16/023 , H04L29/08 , H04L12/40
Abstract: A fraud sensing method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a bus includes detecting that a state of a vehicle satisfies a predetermined condition, and switching, upon detecting that the state of the vehicle satisfies the predetermined condition, an operation mode of a fraud-sensing electronic control unit connected to the bus between a first mode in which a first type of sensing process for sensing a fraudulent message in the bus is performed and a second mode in which the first type of sensing process is not performed.
-
Patent Agency Ranking
公开(公告)号:US12135783B2
公开(公告)日:2024-11-05
申请号:US18120749
申请日:2023-03-13
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Takeshi Kishikawa
Abstract: A method used in an on-board network system, having electronic controllers that exchange messages and a fraud-detecting electronic controller. The method includes receiving an inquiry for a vehicle status indicating whether a vehicle in which the fraud-detecting electronic controller is installed is running from an external device, transmitting the vehicle status to the external device, and determining whether a message transmitted conforms to fraud detection rules. The method also includes receiving from the external device the delivery data, including updated fraud detection rules and network type information indicating a network type that the updated fraud detection rules are to be applied. The method further includes determining whether the vehicle is running, and whether the network type information indicates a drive network that is connected to an electronic controller related to travel of the vehicle. When the network type information does not indicate the drive network, updating the fraud detection rules.
-
公开(公告)号:US12107876B2
公开(公告)日:2024-10-01
申请号:US17665218
申请日:2022-02-04
Inventor: Takeshi Kishikawa , Ryo Hirano , Tomoyuki Haga , Yoshihiro Ujiie
IPC: H04L9/40
CPC classification number: H04L63/1425 , H04L63/02 , H04L63/145
Abstract: The control network system is connected to electronic control unit(s) and a communication device, and includes security sensor(s) that transmits a security alert indicating that an indication of a security breach is detected to the network, if the indication is detected in at least one of the network, the electronic control unit(s), or the communication device. The intrusion path analysis device includes: an alert obtainer that obtains the security alert from the security sensor(s); an event obtainer that obtains an event history of an event that occurs in the control network system; and an intrusion path analyzer that performs an analysis on an intrusion path of an attack on the basis of the security alert, the event history, and an intrusion depth indicating an intrusion level to be assumed in a case the security alert occurs, and that outputs a result of the analysis.
-
公开(公告)号:US12083971B2
公开(公告)日:2024-09-10
申请号:US17031224
申请日:2020-09-24
Inventor: Yoshihiro Ujiie , Takeshi Kishikawa , Ryo Hirano
IPC: B60R16/023 , H04L12/44 , H04L12/64 , H04L12/40
CPC classification number: B60R16/0232 , H04L12/44 , H04L12/6418 , H04L2012/40215 , H04L2012/40273 , H04L2012/644
Abstract: An anomaly handling method in an in-vehicle network includes: transmitting and receiving frames; detecting a frame having an anomaly; and switching, when the anomaly is detected in the detecting, a transmission timing of the frame in which the anomaly is detected. The switching includes changing a switched transmission timing to which the transmission timing is switched, according to predetermined information.
-
公开(公告)号:US11997119B2
公开(公告)日:2024-05-28
申请号:US17222473
申请日:2021-04-05
Inventor: Ryo Hirano , Takeshi Kishikawa
CPC classification number: H04L63/1425 , G07C5/008 , G07C5/0808 , G07C5/0816 , H04L12/40169 , H04L2012/40215 , H04L2012/40273
Abstract: A vehicle log transmission device includes: a vehicle log division processor that generates one or more divided logs; existing identifier storage that stores an existing identifier list, which is a list of identifiers corresponding to existing divided logs generated by dividing an existing vehicle log shared between the vehicle log transmission device and a vehicle log analysis server; a vehicle log transmission necessity determiner that determines that a divided log corresponding to an identifier present in the existing identifier list is a first divided log, and that a divided log corresponding to an identifier not present in the existing identifier list is a second divided log; and a vehicle-side communicator that transmits the identifier corresponding to the first divided log to the vehicle log analysis server, and transmits the second divided log to the vehicle log analysis server.
-
公开(公告)号:US11971978B2
公开(公告)日:2024-04-30
申请号:US17393713
申请日:2021-08-04
Inventor: Yoshihiro Ujiie , Masato Tanabe , Takeshi Kishikawa , Tomoyuki Haga , Hideki Matsushima
CPC classification number: G06F21/44 , B60R16/0231 , G06F13/4208 , H04L12/40 , H04L63/123 , H04L2012/40215 , H04L67/12
Abstract: A vehicle network system employing a controller area network protocol includes a bus, a first electronic control unit, and a second electronic control unit. The first electronic control unit transmits, via the bus, at least one data frame including an identifier relating to data used for a calculation for obtaining a message authentication code indicating authenticity of transmission content. The second electronic control unit receives the at least one data frame transmitted vis the bus and verifies the message authentication code in accordance with the identifier included in the at least one data frame.
-
-
-
-
-
-
-
-
-
Search Results
106
records
(took 0.026 seconds)
