-
公开(公告)号:US11553484B2
公开(公告)日:2023-01-10
申请号:US17129012
申请日:2020-12-21
Inventor: Yoshihiro Ujiie , Yuishi Torisaki , Tomoyuki Haga , Hiroyasu Terazawa , Ryo Kato
Abstract: A communication device is a communication device connected to a mobility network which is a network mounted in a mobility and which is used by a plurality of electronic control devices for communication. The communication device includes: a holding unit which holds range information indicating a transferable path range determined for a message on the mobility network; a receiving unit which receives the message on the mobility network; and a determining unit which determines validity of the received message by using the range information.
-
公开(公告)号:US11529914B2
公开(公告)日:2022-12-20
申请号:US17194701
申请日:2021-03-08
Inventor: Tomoyuki Haga , Toshihisa Nakano , Jun Anzai , Hideki Matsushima , Yoshihiro Ujiie , Yuji Unagami
IPC: H04L9/32 , B60R16/023 , H04L12/40 , H04L12/46 , H04L12/66
Abstract: A gateway connected to a bus, a bus, and the like used by a plurality of electronic control units for communication includes a frame communication unit that receives a frame, a transfer control unit that removes verification information used to verify a frame from the content of the frame received by the frame communication unit and transfers the frame to a destination bus or that adds verification information to the content of the frame and transfers the frame to the destination bus, and the like.
-
公开(公告)号:US11496491B2
公开(公告)日:2022-11-08
申请号:US16788641
申请日:2020-02-12
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
Abstract: A fraud detecting method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting whether a state of a vehicle satisfies a first condition or a second condition, and switching, upon detecting that the state of the vehicle satisfies the first condition or the second condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of detecting process for detecting a fraudulent message in the network is performed and a second mode in which the first type of detecting process is not performed.
-
公开(公告)号:US11113382B2
公开(公告)日:2021-09-07
申请号:US15386055
申请日:2016-12-21
Inventor: Yoshihiro Ujiie , Masato Tanabe , Takeshi Kishikawa , Tomoyuki Haga , Hideki Matsushima
Abstract: A vehicle network system employing a controller area network protocol includes a bus, a first electronic control unit, and a second electronic control unit. The first electronic control unit transmits, via the bus, at least one data frame including an identifier relating to data used for a calculation for obtaining a message authentication code indicating authenticity of transmission content. The second electronic control unit receives the at least one data frame transmitted via the bus and verifies the message authentication code in accordance with the identifier included in the at least one data frame.
-
公开(公告)号:US11063971B2
公开(公告)日:2021-07-13
申请号:US16566269
申请日:2019-09-10
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami , Takeshi Kishikawa
Abstract: A method for use in a network communication system including a plurality of electronic controllers that communicate with each other via a bus in accordance with a Controller Area Network (CAN) protocol determines whether or not content of a predetermined field in a frame which has started to be transmitted meets a predetermined condition indicating fraud. In a case where the content of the predetermined field meets the predetermined condition, an error frame is transmitted before an end of the frame is transmitted. A number of times the error frame is transmitted is recorded for each identifier (ID) represented by content of an ID field included in a plurality of frames which has been transmitted. A malicious electronic controller is determined in accordance with the number of times recorded for each ID.
-
Patent Agency Ranking
公开(公告)号:US10979245B2
公开(公告)日:2021-04-13
申请号:US16860353
申请日:2020-04-28
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Toshihisa Nakano , Tohru Wakabayashi , Hiroshi Amano , Tomoyuki Haga , Takeshi Kishikawa
IPC: H04L12/40 , H04L29/06 , H04L12/46 , H04B1/3822 , H04L12/66
Abstract: A gateway device for a vehicle network system is provided. The vehicle network system includes a first network, a second network, a first electronic control unit connected to the first network, a second electronic control unit connected to the second network, and the gateway device connected to the first network and the second network. The gateway device receives a first frame transmitted to the first network by the first electronic control unit; determines whether or not the first frame is appropriate; generates a second frame when the first frame is not determined to be appropriate; and transmits the second frame to the second network. The second frame includes control information and additional information based on content of the first frame. The control information restricts processing of the additional information included in the second frame by the second electronic control unit.
-
公开(公告)号:US10227053B2
公开(公告)日:2019-03-12
申请号:US15163234
申请日:2016-05-24
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami , Takeshi Kishikawa
Abstract: A method for use in an in-vehicle network system is provided. The in-vehicle network system includes a plurality of electronic control units that communicate a data frame having a message authentication code (MAC) added thereto with one another via a bus in accordance with the Controller Area Network (CAN) protocol. The method includes detecting the state of a vehicle having the in-vehicle network system mounted therein and updating a MAC key used to generate the MAC under the condition that the detected state of the vehicle is a predetermined state.
-
公开(公告)号:US10158717B2
公开(公告)日:2018-12-18
申请号:US15076650
申请日:2016-03-22
Inventor: Takeshi Kishikawa , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami , Yoshihiro Ujiie
Abstract: A fraud detection method for use in an in-vehicle network system including a plurality of electronic control units that communicate with one another via a bus in accordance with Controller Area Network (CAN) protocol is provided. The method includes receiving at least one data frame sent to the bus, verifying a specific identifier in the received data frame only if the received data frame does not follow a predetermined rule regarding a transmission period and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state, detecting the received data frame as an authenticated data frame if the verification is successful, and detecting the received data frame as a fraudulent data frame if the verification fails.
-
公开(公告)号:US09973487B2
公开(公告)日:2018-05-15
申请号:US15012915
申请日:2016-02-02
Inventor: Yoshihiro Ujiie , Motoji Ohmori , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami
CPC classification number: H04L63/08 , G06F21/44 , H04L9/3268 , H04L12/2803 , H04L12/4625 , H04L63/0823 , H04L63/101
Abstract: An authentication method for at least one of a plurality of devices connected to a HAN includes checking, with a first device among the plurality of devices, validity of a second device using a CRL including attribute information regarding the second device among the plurality of devices, and revoking, with the first device, the second device if a result of the checking is negative.
-
公开(公告)号:US09725073B2
公开(公告)日:2017-08-08
申请号:US15183443
申请日:2016-06-15
Inventor: Tomoyuki Haga , Hideki Matsushima , Manabu Maeda , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
CPC classification number: B60R25/307 , B60R2325/108 , H04L9/0891 , H04L9/3242 , H04L67/12 , H04L2209/84
Abstract: An anti-fraud method for use in an in-vehicle network system including a plurality of electronic control units that exchange data frames, each having added thereto a message authentication code (MAC), via at least one bus includes: receiving a data frame transmitted on the bus; generating a first MAC by using a MAC key and a value of a counter that counts the number of times a data frame having added thereto a MAC is transmitted; in a case where the verification has failed, (i) generating as second MAC by using an old MAC key; (ii) re-verifying that the received data frame has added thereto the generated second MAC; transmitting, in a case where the re-verification has succeeded, via the bus a key-update frame indicating a request for updating the MAC key; and updating the MAC key in response to the transmission of the key-update frame.
-
-
-
-
-
-
-
-
-
Search Results
108
records
(took 0.03 seconds)
