-
公开(公告)号:US11811798B2
公开(公告)日:2023-11-07
申请号:US17945752
申请日:2022-09-15
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
CPC classification number: H04L63/1416 , B60R16/0231 , H04L12/28 , H04L63/1425 , H04L67/12 , H04L2012/40215 , H04L2012/40273
Abstract: A fraud detecting method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting whether a state of a vehicle satisfies a first condition or a second condition, and switching, upon detecting that the state of the vehicle satisfies the first condition or the second condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of detecting process for detecting a fraudulent message in the network is performed and a second mode in which the first type of detecting process is not performed. Moreover, in the second mode, a second type of detecting process having a different degree to which a fraudulent message is detectible than the first type of detecting process is performed.
-
42.发明授权公开(公告)号:US11804953B2
公开(公告)日:2023-10-31
申请号:US18086282
申请日:2022-12-21
Inventor: Yoshihiro Ujiie , Jun Anzai , Yoshihiko Kitamura , Masato Tanabe , Takeshi Kishikawa
IPC: H04L9/08 , H04L9/40 , B60R16/023 , H04L67/12
CPC classification number: H04L9/08 , B60R16/0231 , H04L9/083 , H04L9/088 , H04L9/0822 , H04L63/0428 , H04L63/068 , H04L67/12 , H04L2209/84
Abstract: A key management method serves as an electronic control unit (ECU) in an onboard network system having a plurality of ECUs that perform communication by frames via a network. The method includes storing, in a first-type ECU, a shared key to be mutually shared with second-type ECUs, and executing encryption processing regarding a framed transmitted or received via the network, based on the shared key. The method further includes executing, by the first-type ECU, inspection of a security state of the shared key stored by the second type ECUs in a case where a vehicle is in at least one of the following particular states, including immediately after the vehicle is not driving and is entering the accessory-on state, immediately after the vehicle is not driving and the vehicle is entering the accessory-off state, and immediately after the vehicle engine is started.
-
公开(公告)号:US11599349B2
公开(公告)日:2023-03-07
申请号:US16902780
申请日:2020-06-16
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Jun Anzai , Toshihisa Nakano , Tomoyuki Haga , Manabu Maeda , Takeshi Kishikawa
IPC: G06F8/65 , G06F8/654 , B60R16/023 , G06F11/00 , H04L12/46 , H04L12/40 , G06F11/14 , B60R16/02 , H04L67/12 , H04W4/48 , G06F21/64 , H04L67/00
Abstract: A gateway device is connected via one or more networks to electronic controllers on-board a vehicle. The gateway device includes one or more memories, and circuitry that acquires firmware update information. The circuitry determines whether or not a first electronic controller satisfies a second condition based on second information about the first electronic controller, where the second information is whether the first electronic controller includes a firmware cache for performing a pre-update firmware cache operation. The circuitry also causes, when the second condition is not satisfied, the gateway device to execute a proxy process, where the gateway device requests the first electronic controller to transmit boot ROM data to the gateway device, creates updated boot ROM data with the updated firmware, and transmits the updated boot ROM data to the first electronic controller that updates the boot ROM and resets the first electronic controller with the updated firmware.
-
公开(公告)号:US11575699B2
公开(公告)日:2023-02-07
申请号:US17004533
申请日:2020-08-27
Inventor: Tomoyuki Haga , Hideki Matsushima , Manabu Maeda , Yoshihiro Ujiie , Takeshi Kishikawa , Junichi Tsurumi , Jun Anzai
Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.
-
45.发明授权公开(公告)号:US11570184B2
公开(公告)日:2023-01-31
申请号:US17169978
申请日:2021-02-08
Inventor: Yuji Unagami , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yoshihiro Ujiie , Takeshi Kishikawa
IPC: H04L29/06 , H04L9/40 , H04W4/40 , B60R16/023 , G06F21/57 , G06F21/60 , G06F21/71 , G06F21/85 , H04L12/28 , H04L67/12
Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of networks, a plurality of fraud-detection ECUs each connected to a different one of the networks, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a network connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The gateway device receives updated rule information transmitted to a first network among the networks, selects a second network different from the first network, and transfers the updated rule information only to the second network. A fraud-detection ECU connected to the second network acquires the updated rule information and updates the rule information stored therein by using the updated rule information.
-
Patent Agency Ranking
公开(公告)号:US11496491B2
公开(公告)日:2022-11-08
申请号:US16788641
申请日:2020-02-12
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
Abstract: A fraud detecting method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting whether a state of a vehicle satisfies a first condition or a second condition, and switching, upon detecting that the state of the vehicle satisfies the first condition or the second condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of detecting process for detecting a fraudulent message in the network is performed and a second mode in which the first type of detecting process is not performed.
-
公开(公告)号:US11113382B2
公开(公告)日:2021-09-07
申请号:US15386055
申请日:2016-12-21
Inventor: Yoshihiro Ujiie , Masato Tanabe , Takeshi Kishikawa , Tomoyuki Haga , Hideki Matsushima
Abstract: A vehicle network system employing a controller area network protocol includes a bus, a first electronic control unit, and a second electronic control unit. The first electronic control unit transmits, via the bus, at least one data frame including an identifier relating to data used for a calculation for obtaining a message authentication code indicating authenticity of transmission content. The second electronic control unit receives the at least one data frame transmitted via the bus and verifies the message authentication code in accordance with the identifier included in the at least one data frame.
-
公开(公告)号:US11063971B2
公开(公告)日:2021-07-13
申请号:US16566269
申请日:2019-09-10
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami , Takeshi Kishikawa
Abstract: A method for use in a network communication system including a plurality of electronic controllers that communicate with each other via a bus in accordance with a Controller Area Network (CAN) protocol determines whether or not content of a predetermined field in a frame which has started to be transmitted meets a predetermined condition indicating fraud. In a case where the content of the predetermined field meets the predetermined condition, an error frame is transmitted before an end of the frame is transmitted. A number of times the error frame is transmitted is recorded for each identifier (ID) represented by content of an ID field included in a plurality of frames which has been transmitted. A malicious electronic controller is determined in accordance with the number of times recorded for each ID.
-
49.发明授权公开(公告)号:US10992688B2
公开(公告)日:2021-04-27
申请号:US16011677
申请日:2018-06-19
Inventor: Takeshi Kishikawa , Yoshihiro Ujiie , Jun Anzai , Hideki Matsushima , Masato Tanabe
IPC: H04L29/06 , B60W50/14 , H04L9/32 , H04L12/40 , H04L12/26 , H04L29/08 , H04L12/28 , H04L9/08 , H04L9/00
Abstract: An unauthorized activity detection method is provided in an onboard network system having multiple electronic units (ECU) that perform communication via a bus, such that an occurrence of an unauthorized state can be detected by monitoring frames transmitted over the bus. The unauthorized activity detection method determines, by a monitoring electronic control unit using unauthorized activity detection rule information indicating a first condition, whether or not a set of frames received from the bus satisfies the first condition. The first condition being a condition regarding a relation in content between a first frame having a first identifier and a second frame having a second identifier that differs from the first identifier. And the method further detects the occurrence of the unauthorized state in a case where the first condition is not satisfied.
-
公开(公告)号:US10979245B2
公开(公告)日:2021-04-13
申请号:US16860353
申请日:2020-04-28
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Toshihisa Nakano , Tohru Wakabayashi , Hiroshi Amano , Tomoyuki Haga , Takeshi Kishikawa
IPC: H04L12/40 , H04L29/06 , H04L12/46 , H04B1/3822 , H04L12/66
Abstract: A gateway device for a vehicle network system is provided. The vehicle network system includes a first network, a second network, a first electronic control unit connected to the first network, a second electronic control unit connected to the second network, and the gateway device connected to the first network and the second network. The gateway device receives a first frame transmitted to the first network by the first electronic control unit; determines whether or not the first frame is appropriate; generates a second frame when the first frame is not determined to be appropriate; and transmits the second frame to the second network. The second frame includes control information and additional information based on content of the first frame. The control information restricts processing of the additional information included in the second frame by the second electronic control unit.
-
-
-
-
-
-
-
-
-
Search Results
106
records
(took 0.048 seconds)
