公开(公告)号：US11368338B2

公开(公告)日：2022-06-21

申请号：US16929918

申请日：2020-07-15

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Tomoyuki Haga ,  Manabu Maeda ,  Takamitsu Sasaki ,  Hideki Matsushima

IPC: H04L12/66 ,  H04L12/40 ,  H04L12/46 ,  H04L69/08

Abstract: A network system includes a first network through which a frame of a first type is transmitted in accordance with a first communication protocol and includes a second network in which a frame of a second type is transmitted in accordance with a second communication protocol. A gateway device is connected to the first network and the second network. The gateway device sequentially receives frames of the first type from the first network and determines whether to transmit data regarding the received frames of the first type to the second network. The gateway device transmits, to the second network, a frame of the second type including data regarding a plurality of the frames of the first type determined to be transmitted to the second network when a condition relating to a number of frames of the first type received by the gateway device is satisfied.

公开(公告)号：US11296965B2

公开(公告)日：2022-04-05

申请号：US17201839

申请日：2021-03-15

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Tomoyuki Haga ,  Manabu Maeda ,  Hideki Matsushima ,  Takeshi Kishikawa ,  Junichi Tsurumi ,  Hisashi Kashima ,  Yukino Toriumi ,  Takuya Kuwahara

IPC: H04L43/0823 ,  H04L12/40 ,  H04W4/48 ,  H04L41/14 ,  H04L29/06

Abstract: An abnormality detection method is provided. The abnormality detection method is for detecting an abnormality that may be transmitted to a bus in an on-board network system. The on-board network system includes a plurality of electronic controllers that transmit and receive messages via the bus in a mobility entity. In the abnormality detection method, for example, a gateway transmits identification information to a server and receives a response determining a unit time. An operation process is performed using feature information based on a number of messages received from the bus per the determined unit time and using a model indicating a criterion in terms of a message occurrence frequency. A judgment is made as to an abnormality according to a result of the operation process.

公开(公告)号：US11223525B2

公开(公告)日：2022-01-11

申请号：US16915187

申请日：2020-06-29

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Manabu Maeda ,  Hideki Matsushima ,  Tomoyuki Haga ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: H04L12/24 ,  B60R16/023 ,  G06F11/00 ,  B60R16/02 ,  G06F11/36 ,  G06F8/654 ,  G06F8/71 ,  H04L12/46 ,  H04L12/40 ,  H04L12/66

Abstract: A gateway device connected to a network used in communication by multiple electronic control units provided on-board a vehicle. The gateway device performs operations including receiving firmware update information that includes updated firmware for one electronic control unit among the electronic control units, and acquiring system configuration information indicating a function of each of the electronic control units connected to the network. The gateway device further performs a controlling operation to update firmware of the one electronic control unit, for which updated firmware is received by the receiving, on a basis of the updated firmware, after an operation verification of the updated firmware is performed in an operating environment appropriately. The operating environment being configured with electronic control units of the same functions as each of the electronic control units indicated by the system configuration information.

公开(公告)号：US10951631B2

公开(公告)日：2021-03-16

申请号：US16540675

申请日：2019-08-14

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yuji Unagami ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: H04L29/06 ,  H04W4/40 ,  B60R16/023 ,  G06F21/57 ,  G06F21/60 ,  G06F21/71 ,  G06F21/85 ,  H04L12/28 ,  H04L29/08

Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of networks, a plurality of fraud-detection ECUs each connected to a different one of the networks, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a network connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The gateway device receives updated rule information transmitted to a first network among the networks, selects a second network different from the first network, and transfers the updated rule information only to the second network. A fraud-detection ECU connected to the second network acquires the updated rule information and updates the rule information stored therein by using the updated rule information.

公开(公告)号：US10951436B2

公开(公告)日：2021-03-16

申请号：US16166374

申请日：2018-10-22

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Manabu Maeda ,  Takamitsu Sasaki ,  Tomoyuki Haga ,  Hideki Matsushima

IPC: H04L12/40 ,  H04L12/66 ,  H04L29/06 ,  H04L12/28 ,  H04L12/46 ,  H04L29/08 ,  H04L12/44 ,  H04L29/12

Abstract: A network hub is provided for an onboard network system. The onboard network system includes first and second networks for transmission of first-type and second-type frames following first and second communication protocols. The network hub includes a receiver that receives a first-type frame. A processor determines whether or not the first-type frame received by the receiver includes first information that is a base for a second-type frame to be transmitted to the second network, to obtain a determination result, and selects a port to send a frame based on the first-type frame based on the determination result. A transmitter sends the frame based on the first-type frame to a wired transmission path connected to the port selected by the processor based on the first-type frame received by the receiver.

公开(公告)号：US10931634B2

公开(公告)日：2021-02-23

申请号：US15880769

申请日：2018-01-26

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L9/36 ,  H04L29/08

Abstract: A gateway serving as a security apparatus connected to one or a plurality of buses includes a receiver that receives a frame from a bus, a parameter storage that stores an examination parameter defining a content of an examination of the frame, an updater configured to, in a case where a predetermined condition is satisfied for the frame received by the receiver, update the examination parameter stored in the parameter storage, and an examiner that performs an examination, based on the examination parameter stored in the parameter storage, in terms of judgment of whether or not the frame received by the receiver is an attack frame.

公开(公告)号：US10791129B2

公开(公告)日：2020-09-29

申请号：US16244162

申请日：2019-01-10

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Manabu Maeda ,  Takeshi Kishikawa ,  Daisuke Kunimune

IPC: H04L29/06 ,  H04L12/40 ,  G06N20/00 ,  G06N7/00 ,  B60R16/023

Abstract: A reference message deciding method used in unauthorized communication detection. The deciding method includes: identifying, from information relating to an attack message on the onboard network system, a communication pattern indicating features related to change in data values or communication timing of an attack message; determining whether or not a message sent out onto the network matches a communication pattern identified in the identifying; and deciding a reference message used in determining whether or not the message sent out is an attack message, using determination results of the determining.

公开(公告)号：US10725762B2

公开(公告)日：2020-07-28

申请号：US15465653

申请日：2017-03-22

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Hideki Matsushima ,  Jun Anzai ,  Toshihisa Nakano ,  Tomoyuki Haga ,  Manabu Maeda ,  Takeshi Kishikawa

IPC: G06F8/65 ,  G06F8/654 ,  B60R16/023 ,  G06F11/00 ,  H04L12/46 ,  H04L12/40 ,  G06F11/14 ,  B60R16/02 ,  H04L29/08 ,  H04W4/48 ,  G06F21/64

Abstract: A gateway device, connected to one or more buses used in communication by a plurality of ECUs on-board a vehicle, is provided with: a receiving unit that receives, from a server that acts as an external device external to the vehicle, firmware update information that includes updated firmware to be applied to one ECU from among the plurality of ECUs; and a control unit that determines, based on certain information about the ECU on which to apply the updated firmware, whether or not the ECU satisfies a certain condition, and if the certain condition is satisfied, causes the ECU to execute a certain process related to updating firmware, whereas if the certain condition is not satisfied, causes equipment other than the ECU to execute the certain process.

公开(公告)号：US10693675B2

公开(公告)日：2020-06-23

申请号：US16188328

申请日：2018-11-13

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Takamitsu Sasaki ,  Tomoyuki Haga ,  Manabu Maeda ,  Hideki Matsushima

IPC: H04L12/46 ,  H04L12/40 ,  H04L29/08

Abstract: An electronic control unit connected to a bus of a first network where first-type frames are transmitted following a first communication protocol and a second network where second-type frames are transmitted following a second communication protocol in an onboard network system. The electronic control unit sequentially receives the first-type and the second-type frames from the bus and the second network respectively, and stores in first and second reception buffers, respectively. The electronic control unit sequentially generates first-type data and second-type data by referencing the contents of the first reception buffer and the second reception buffer, and stores the first-type and second-type data in first and second transmission buffers, respectively. The first-type data is traveling control data for a vehicle, and the second-type data is other data. The first-type or second-type data that is priority type data is transmitted with priority.

公开(公告)号：US10462226B2

公开(公告)日：2019-10-29

申请号：US16170451

申请日：2018-10-25

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Takeshi Kishikawa ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yuji Unagami ,  Yoshihiro Ujiie

IPC: H04L29/06 ,  H04L9/32 ,  G06F7/04 ,  G06F17/00 ,  H04L29/08 ,  B60R16/023

Abstract: A fraud detection method for use in an in-vehicle network system including a plurality of electronic control units that communicate with one another via an in-vehicle network is provided. The method includes receiving at least one data frame sent to the in-vehicle network, verifying a specific identifier in the received data frame only when the received data frame is event-driven data and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state, detecting the received data frame as an authenticated data frame when the verifying is successful, and detecting the received data frame as a fraudulent data frame when the verifying fails. The predetermined state of the vehicle is the vehicle traveling.