公开(公告)号：US20210326437A1

公开(公告)日：2021-10-21

申请号：US17357885

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Vuk Lesi ,  Manoj Sastry ,  Qian Wang

IPC: G06F21/55

Abstract: Systems, apparatuses, and methods to response to detected attacks in an autonomous system based on context of the autonomous system are described. In particular, the disclosure provides an intrusion detection system receiving contexts and contracts dictating particular response guide rails from a higher level components or stack on the autonomous system. The intrusion detection system is arranged to respond to attacks according to the contract without intervention by the higher level components or stack.

公开(公告)号：US20210325508A1

公开(公告)日：2021-10-21

申请号：US17357892

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Qian Wang ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Wen-Ling Huang ,  Marcio Juliato ,  Saiveena Kesaraju ,  Vuk Lesi ,  Manoj Sastry ,  Ivan Simoes Gaspar

IPC: G01S7/28 ,  G01S13/931 ,  G01S7/02 ,  G01S7/35 ,  G01S7/292

Abstract: Systems, apparatuses, and methods to response to distinguish a ghost target from an actual target based on radar signals is provided. In particular, the disclosure provides an intrusion detection system adapted to receive radar signals and distinguish a potential ghost target from a legitimate target based on a signal to noise ratio of the radar signals and a range to the ghost target and the legitimate target.

公开(公告)号：US20210318414A1

公开(公告)日：2021-10-14

申请号：US17357291

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Vuk Lesi ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Wen-Ling Huang ,  Marcio Juliato ,  Saiveena Kesaraju ,  Manoj Sastry ,  Ivan Simoes Gaspar ,  Qian Wang

IPC: G01S7/41 ,  G01S13/56 ,  G01S13/931

Abstract: Systems, apparatuses, and methods to response to distinguish a ghost target from an actual target based on radar signals and ranges determined from the radar signals. In particular, the disclosure provides an intrusion detection system receiving ranges and velocities for targets detected based on radar signals, determining a potential ghost target from the received velocities and confirming the potential ghost target based on estimated ranges and perturbations of the vehicle speed.

公开(公告)号：US20210218756A1

公开(公告)日：2021-07-15

申请号：US17214444

申请日：2021-03-26

Applicant: Intel Corporation

Inventor： Christopher Gutierrez ,  Shabbir Ahmed ,  Marcio Juliato ,  Vuk Lesi ,  Manoj Sastry ,  Qian Wang

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  H04L1/08 ,  B60R16/023

Abstract: Systems, apparatuses, and methods to establish a mapping between message identifications for messages transmitted on a communication bus and electronic control units transmitting the messages is provided. In particular, retransmission of a low priority message onto the bus is forced such that the retransmitted low priority message overlaps with a higher priority message to determine whether the messages originated from the same ECU.

公开(公告)号：US20200226274A1

公开(公告)日：2020-07-16

申请号：US16833200

申请日：2020-03-27

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Maria Soledad Elli ,  Christopher Noe Gutierrez ,  Vuk Lesi ,  Manoj R. Sastry ,  John Charles Weast ,  Liuyang Lily Yang

IPC: G06F21/62 ,  G06F13/38

Abstract: A vehicle control system, including an in-vehicle bus and a plurality of electronic control units (ECUs) coupled to the in-vehicle bus, wherein at least one ECU of the plurality of ECUs is configured to: receive, at a respective at least one ECU of the plurality of ECUs, a message in a message stream on the in-vehicle bus; evaluate the message to determine at least one of a confidence value of the security classification, a significance value of the message, or a bounds check value of the message; and determine in real-time to allow or deny the message to the vehicle control system based on at least one of the significance value of the message, the bounds check value of the message, or the confidence value of the security classification of the message, to provide a sanitized message stream to the vehicle control system.

公开(公告)号：US20190158521A1

公开(公告)日：2019-05-23

申请号：US16235812

申请日：2018-12-28

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Liuyang Lily Yang ,  Manoj Sastry ,  Christopher Gutierrez ,  Shabbir Ahmed ,  Vuk Lesi

IPC: H04L29/06 ,  B60R16/023 ,  H04L29/08

Abstract: Methods, apparatus, systems and articles of manufacture are disclosed for anomaly detection and recovery. An apparatus to isolate a first controller in an autonomous vehicle includes a first controller to control a reference signal of the autonomous vehicle via a communication bus, a second controller to control the reference signal of the autonomous vehicle when the first controller is compromised, and a message neutralizer to neutralize messages transmitted by the first controller when the first controller is compromised, the neutralized messages to cause the first controller to become isolated from the communication bus.

公开(公告)号：US20250106207A1

公开(公告)日：2025-03-27

申请号：US18373160

申请日：2023-09-26

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Manoj Sastry ,  Christopher Gutierrez ,  Vuk Lesi ,  Shabbir Ahmed

IPC: H04L9/40

Abstract: Techniques to perform time recovery from attacks on delayed authentication in a time synchronized network are described. One embodiment comprises a method for decoding time information and a message authentication code (MAC) from a time message, the time information to synchronize a local clock for a device to a network time of a time synchronized network (TSN), and the MAC to authenticate the time message, determining whether the time message is authentic using the MAC, discarding the time information when the time message is not authentic, performing a bounded search to identify authentic time information using the MAC, and passing the authentic time information to a clock manager to synchronize the local clock to the network time of the TSN when the authentic time information is identified. Other embodiments are described and claimed.

公开(公告)号：US20250080549A1

公开(公告)日：2025-03-06

申请号：US18240822

申请日：2023-08-31

Applicant: Intel Corporation

Inventor： Manoj Sastry ,  Christopher Gutierrez ,  Marcio Rogerio Juliato ,  Shabbir Ahmed ,  Vuk Lesi

IPC: H04L9/40 ,  G06F1/04

Abstract: Techniques for an attack-aware digital twin in a time sensitive network are described. A method includes receiving time information for a network by an attack-aware digital twin (AADT), the AADT to simulate operations of a clock manager for a node in the network based on models of the clock manager, generating model clock control information to adjust a clock to a network time for the network, the model clock control information to contain a malicious time sample introduced by a time desynchronization attack in the network, and removing the malicious time sample from the model clock control information to adjust the clock to the network time for the network. Other embodiments are described and claimed.

公开(公告)号：US20250007802A1

公开(公告)日：2025-01-02

申请号：US18215936

申请日：2023-06-29

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Javier Perez-Ramirez ,  Mikhail Galeev ,  Manoj Sastry ,  Dave Cavalcanti ,  Christopher Gutierrez ,  Shabbir Ahmed ,  Vuk Lesi

IPC: H04L43/0817 ,  H04L9/40 ,  H04L43/067

Abstract: Techniques include a method, apparatus, system and computer-readable medium to detect, quantify and localize attacks to enhance security for time-synchronized networking. Embodiments include a diagnostic stream producer to produce diagnostic information providing evidence of a timing attack on a node of a time-synchronized network. Embodiments include a diagnostic stream consumer to consume diagnostic information, analyze the diagnostic information, and determine whether a node is under a timing attack. Other embodiments are described and claimed.

公开(公告)号：US12184668B2

公开(公告)日：2024-12-31

申请号：US17356033

申请日：2021-06-23

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Vuk Lesi ,  Manoj Sastry ,  Qian Wang

IPC: H04L29/06 ,  H04L9/40 ,  H04L12/40 ,  H04L12/66

Abstract: Systems, apparatuses, and methods to identify bus-off and masquerade attacks against electronic control units (ECUs) transmitting on a communication bus from behind a gateway coupled to the communication bus are described. The disclosure further describes systems, apparatuses, and methods to mitigate against bus-off attacks made against an ECU coupled to a communication bus through a gateway. Other embodiments are described and claimed.