-
公开(公告)号:US20230016161A1
公开(公告)日:2023-01-19
申请号:US17945752
申请日:2022-09-15
Inventor: Manabu MAEDA , Hideki MATSUSHIMA , Tomoyuki HAGA , Yuji UNAGAMI , Yoshihiro UJIIE , Takeshi KISHIKAWA
IPC: H04L9/40 , H04L12/28 , B60R16/023
Abstract: A fraud detecting method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting whether a state of a vehicle satisfies a first condition or a second condition, and switching, upon detecting that the state of the vehicle satisfies the first condition or the second condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of detecting process for detecting a fraudulent message in the network is performed and a second mode in which the first type of detecting process is not performed. Moreover, in the second mode, a second type of detecting process having a different degree to which a fraudulent message is detectible than the first type of detecting process is performed.
-
公开(公告)号:US20210306365A1
公开(公告)日:2021-09-30
申请号:US17344097
申请日:2021-06-10
Inventor: Yoshihiro UJIIE , Hideki MATSUSHIMA , Tomoyuki HAGA , Manabu MAEDA , Yuji UNAGAMI , Takeshi KISHIKAWA
Abstract: A method for use in a network communication system including a plurality of electronic controllers that communicate with each other via a bus in accordance with a Controller Area Network (CAN) protocol determines whether or not content of a predetermined field in a frame which has started to be transmitted meets a predetermined condition indicating fraud. In a case where the content of the predetermined field meets the predetermined condition, a frame including predetermined consecutive dominant bits for notifying an anomaly is transmitted before an end of the frame is transmitted. A number of times the frame including the predetermined consecutive dominant bits is transmitted is recorded for each identifier (ID) represented by content of an ID field included in a plurality of frames which has been transmitted. A malicious electronic controller is determined in accordance with the number of times recorded for each ID.
-
53.发明申请公开(公告)号:US20210266244A1
公开(公告)日:2021-08-26
申请号:US17240098
申请日:2021-04-26
Inventor: Tomoyuki HAGA , Yuishi TORISAKI , Manabu MAEDA , Ryo KATO
IPC: H04L12/26
Abstract: A statistical information generation device that generates statistical information from Ethernet frames on a mobility network includes: a transceiver that transmits and receives the Ethernet frames; and a statistical information generator that collects a plurality of Ethernet frames transmitted or received by the transceiver within a predetermined time period, and classifies, out of the plurality of Ethernet frames collected, Ethernet frames containing the same destination IP address, source IP address, destination port number, source port number, and protocol, and containing, in payloads, same identification information related to mobility control, into the same group, generates the statistical information for each group from the Ethernet frames classified into groups, and transmits the generated statistical information from the transceiver.
-
公开(公告)号:US20210234724A1
公开(公告)日:2021-07-29
申请号:US17233088
申请日:2021-04-16
Inventor: Manabu MAEDA , Tomoyuki HAGA , Takamitsu SASAKI , Hideki MATSUSHIMA
Abstract: An electronic control unit (ECU) is provided. The ECU is connected to a first network in an onboard network system. The onboard network system includes the first network and a second network. In the first network, first-type frames are transmitted following a first communication protocol. In the second network, second-type frames are transmitted following a second communication protocol. The first-type frame includes first information serving as a base for the second-type frame to be transmitted to the second network, and second information indicating that the first-type frame includes information that is to be transmitted to the second network. The ECU includes a generator that generates the first-type frame following the first communication protocol, and a transmitter that transmits, to the first network, the first-type frame generated by the generator.
-
公开(公告)号:US20210218739A1
公开(公告)日:2021-07-15
申请号:US17215810
申请日:2021-03-29
Inventor: Yuji UNAGAMI , Manabu MAEDA , Tomoki TAKAZOE , Yoichi MASUDA , Hideki MATSUSHIMA
Abstract: In an authentication method, a first controller generates a first group key, executes first mutual authentication with devices within a group, and shares the first group key with devices that have succeeded in the first mutual authentication. When a second controller joins the group, the first controller decides which coordinator manages a group key used in common. The first controller executes second mutual authentication with the coordinator, and shares the first group key with the coordinator when the second mutual authentication is successful. The coordinator performs encrypted communication within the group using the first group key, generates a second group key when the first group key valid time runs out and before updating the first group key, executes third mutual authentication with the devices and a third controller, and updates the first group key of the devices and the third controller that have succeeded in the third authentication.
-
Patent Agency Ranking
公开(公告)号:US20210194902A1
公开(公告)日:2021-06-24
申请号:US17194514
申请日:2021-03-08
Inventor: Manabu MAEDA , Takeshi KISHIKAWA , Daisuke KUNIMUNE
IPC: H04L29/06 , B60R16/023 , G06F21/55
Abstract: An unauthorized activity detection method in an onboard network system. The detection method includes determining whether or not a message sent out onto the network is an attack message, saving information relating to the attack message in at least one memory in a case where the message is an attack message, identifying a communication pattern from information relating to the attack message, and determining whether or not the message matches a communication pattern. The determination of whether an attack message and determination of whether matching a communication pattern are executed on each of a plurality of messages received from the network. In the determining of whether an attack message executed on a message received after executing of determining of whether matching a communication pattern, results of the determination of whether an attack message that has already be executed are used.
-
57.发明申请公开(公告)号:US20210185056A1
公开(公告)日:2021-06-17
申请号:US17169978
申请日:2021-02-08
Inventor: Yuji UNAGAMI , Hideki MATSUSHIMA , Tomoyuki HAGA , Manabu MAEDA , Yoshihiro UJIIE , Takeshi KISHIKAWA
IPC: H04L29/06 , H04W4/40 , B60R16/023 , G06F21/57 , G06F21/60 , G06F21/71 , G06F21/85 , H04L12/28 , H04L29/08
Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of networks, a plurality of fraud-detection ECUs each connected to a different one of the networks, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a network connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The gateway device receives updated rule information transmitted to a first network among the networks, selects a second network different from the first network, and transfers the updated rule information only to the second network. A fraud-detection ECU connected to the second network acquires the updated rule information and updates the rule information stored therein by using the updated rule information.
-
公开(公告)号:US20200296166A1
公开(公告)日:2020-09-17
申请号:US16891644
申请日:2020-06-03
Inventor: Takamitsu SASAKI , Tomoyuki HAGA , Manabu MAEDA , Hideki MATSUSHIMA
Abstract: A hub is connected to first and second networks where first-type and second-type frames are transmitted following first and second communication protocols. The hub sequentially receives each of the first-type and second-type frames, and stores data in first and second reception buffers. If the destination of data stored in the first and second reception buffers is the first network, the hub stores the data in a first transmission buffer. If the destination is the second network, the hub stores the data in a second transmission buffer. If the first transmission buffer is a priority transmission buffer, the hub transmits priority data in the first transmission buffer with priority over non-priority data in the second transmission buffer, which is a non-priority transmission buffer.
-
公开(公告)号:US20200021611A1
公开(公告)日:2020-01-16
申请号:US16583996
申请日:2019-09-26
Inventor: Manabu MAEDA , Takeshi KISHIKAWA , Daisuke KUNIMUNE
Abstract: A fraud detection method includes: determining whether a period of a message repeatedly transmitted in an in-vehicle network is anomalous; detecting whether arbitration occurs when the message is transmitted in the in-vehicle network; and determining that the message is an anomalous message, in the case where the period of the message is anomalous and no arbitration occurs when the message is transmitted in the in-vehicle network.
-
公开(公告)号:US20190104143A1
公开(公告)日:2019-04-04
申请号:US16207875
申请日:2018-12-03
Inventor: Manabu MAEDA , Hideki MATSUSHIMA , Tomoyuki HAGA , Yuji UNAGAMI , Yoshihiro UJIIE , Takeshi KISHIKAWA
IPC: H04L29/06 , B60R16/023 , H04L12/28 , H04L29/08 , H04L12/40
Abstract: A fraud sensing method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a network includes detecting that a state of a vehicle satisfies a predetermined condition, and switching, upon detecting that the state of the vehicle satisfies the predetermined condition, an operation mode of a fraud-sensing electronic control unit connected to the network between a first mode in which a first type of sensing process for sensing a fraudulent message in the network is performed and a second mode in which the first type of sensing process is not performed.
-
-
-
-
-
-
-
-
-
Search Results
62
records
(took 0.029 seconds)
