公开(公告)号：US11354406B2

公开(公告)日：2022-06-07

申请号：US16021409

申请日：2018-06-28

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Manoj Sastry ,  Liuyang L. Yang ,  Vuk Lesi ,  Li Zhao

IPC: G06F21/55 ,  H04L9/40 ,  H04W4/48 ,  H04W4/38 ,  H04W12/122

Abstract: Methods and apparatus relating to a physics-based approach for attack detection and/or localization in closed-loop controls for autonomous vehicles are described. In an embodiment, multiple state estimators are used to compute a set of residuals to detect, classify, and/or localize attacks. This allows for determination of an attacker's location and the kind of attack being perpetrated. Other embodiments are also disclosed and claimed.

公开(公告)号：US20220014529A1

公开(公告)日：2022-01-13

申请号：US17484330

申请日：2021-09-24

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Javier Perez-Ramirez ,  Mikhail Galeev ,  Christopher Gutierrez ,  Dave Cavalcanti ,  Manoj Sastry ,  Vuk Lesi

IPC: H04L29/06 ,  H04L9/06

Abstract: Systems and methods to detect attacks on the clocks of devices in time sensitive networks are described. Particularly, the disclosed systems and methods provide detection and mitigation of timing synchronization attacks based on pseudo-random numbers generated and used to select and authenticate timing of transmission of messages in protected transmission windows.

公开(公告)号：US20220012331A1

公开(公告)日：2022-01-13

申请号：US17484689

申请日：2021-09-24

Applicant: Intel Corporation

Inventor： Shabbir Ahmed ,  Marcio Juliato ,  Vuk Lesi ,  Qian Wang ,  Manoj Sastry

IPC: G06F21/55 ,  G06N5/02

Abstract: Systems, apparatuses, and methods to establish ground truth for an intrusion detection system in the presence of an attacker electronic control unit transmitting masqueraded messages on a communication bus, such as an in-vehicle network bus, are provided.

公开(公告)号：US20210326437A1

公开(公告)日：2021-10-21

申请号：US17357885

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Vuk Lesi ,  Manoj Sastry ,  Qian Wang

IPC: G06F21/55

Abstract: Systems, apparatuses, and methods to response to detected attacks in an autonomous system based on context of the autonomous system are described. In particular, the disclosure provides an intrusion detection system receiving contexts and contracts dictating particular response guide rails from a higher level components or stack on the autonomous system. The intrusion detection system is arranged to respond to attacks according to the contract without intervention by the higher level components or stack.

公开(公告)号：US20210325508A1

公开(公告)日：2021-10-21

申请号：US17357892

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Qian Wang ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Wen-Ling Huang ,  Marcio Juliato ,  Saiveena Kesaraju ,  Vuk Lesi ,  Manoj Sastry ,  Ivan Simoes Gaspar

IPC: G01S7/28 ,  G01S13/931 ,  G01S7/02 ,  G01S7/35 ,  G01S7/292

Abstract: Systems, apparatuses, and methods to response to distinguish a ghost target from an actual target based on radar signals is provided. In particular, the disclosure provides an intrusion detection system adapted to receive radar signals and distinguish a potential ghost target from a legitimate target based on a signal to noise ratio of the radar signals and a range to the ghost target and the legitimate target.

公开(公告)号：US11151007B2

公开(公告)日：2021-10-19

申请号：US16199383

申请日：2018-11-26

Applicant: Intel Corporation

Inventor： Santosh Ghosh ,  Marcio Juliato ,  Manoj R. Sastry

IPC: G06F11/27 ,  H04L9/30 ,  G06F11/22 ,  H04L9/32 ,  H04L9/00

Abstract: A data processing system includes technology for detecting and tolerating faults. The data processing system comprises an electronic control unit (ECU) with a processing core and a fault-tolerant elliptic curve digital signature algorithm (ECDSA) engine. The fault-tolerant ECDSA engine comprises multiple verification state machines (VSMs). The data processing system also comprises nonvolatile storage in communication with the processing core and ECU software in the nonvolatile storage. The ECU software, when executed, enables the data processing system to operate as a node in a distributed data processing system, including receiving digitally signed messages from other nodes in the distributed data processing system. The ECU further comprises a known-answer built-in self-test unit (KA-BISTU). Also, the ECU software comprises fault-tolerant ECDSA engine (FTEE) management software which, when executed by the processing core, utilizes the KA-BISTU to periodically test the fault-tolerant ECDSA engine for faults. Other embodiments are described and claimed.

公开(公告)号：US20210318414A1

公开(公告)日：2021-10-14

申请号：US17357291

申请日：2021-06-24

Applicant: Intel Corporation

Inventor： Vuk Lesi ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Wen-Ling Huang ,  Marcio Juliato ,  Saiveena Kesaraju ,  Manoj Sastry ,  Ivan Simoes Gaspar ,  Qian Wang

IPC: G01S7/41 ,  G01S13/56 ,  G01S13/931

Abstract: Systems, apparatuses, and methods to response to distinguish a ghost target from an actual target based on radar signals and ranges determined from the radar signals. In particular, the disclosure provides an intrusion detection system receiving ranges and velocities for targets detected based on radar signals, determining a potential ghost target from the received velocities and confirming the potential ghost target based on estimated ranges and perturbations of the vehicle speed.

公开(公告)号：US20210218756A1

公开(公告)日：2021-07-15

申请号：US17214444

申请日：2021-03-26

Applicant: Intel Corporation

Inventor： Christopher Gutierrez ,  Shabbir Ahmed ,  Marcio Juliato ,  Vuk Lesi ,  Manoj Sastry ,  Qian Wang

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  H04L1/08 ,  B60R16/023

Abstract: Systems, apparatuses, and methods to establish a mapping between message identifications for messages transmitted on a communication bus and electronic control units transmitting the messages is provided. In particular, retransmission of a low priority message onto the bus is forced such that the retransmitted low priority message overlaps with a higher priority message to determine whether the messages originated from the same ECU.

公开(公告)号：US11012409B2

公开(公告)日：2021-05-18

申请号：US15942031

申请日：2018-03-30

Applicant: Intel Corporation

Inventor： Liuyang Lily Yang ,  Huaxin Li ,  Li Zhao ,  Marcio Juliato ,  Shabbir Ahmed ,  Manoj R. Sastry

IPC: H04L29/06 ,  G06F21/50 ,  G06F9/455

Abstract: There is disclosed in one example a computing apparatus, including: a hardware platform; a network interface to communicatively couple to a bus lacking native support for authentication; and an anomaly detection engine to operate on the hardware platform and configured to: receive a first data stream across a first time; symbolize and approximate the first data stream, including computing a first window sum; receive a second data stream across a second time substantially equal in length to the first time, the second data stream including data across the plurality of dimensions from the first data stream; symbolize and approximate the second data stream, including computing a second window sum; compute a difference between the first window sum and the second window sum; determine that difference exceeds a threshold and that the correlation across the plurality of dimensions is broken; and flag a potential anomaly.

公开(公告)号：US20210119799A1

公开(公告)日：2021-04-22

申请号：US17133558

申请日：2020-12-23

Applicant: Intel Corporation

Inventor： SANTOSH GHOSH ,  Marcio Juliato ,  Manoj Sastry

IPC: H04L9/32 ,  H04L9/08 ,  G06F8/71

Abstract: A method comprises maintaining, for at least one remote device, a security footprint and a verified version of a software stack for the remote device, generating an attestation initiation token that includes a nonce to be used to generate an XMSS signature for attestation of the remote device, sending the attestation initiation token to the remote device, receiving, from the remote device, a modified message representative including a hash of a current version of a software stack for the remote device and an indicator of a version number of the current version of the software stack for the remote device, validating the hash, and in response to a determination that the hash is valid, generating an XMSS signature using the security footprint and the current version of a software stack for the remote device and a security footprint for the apparatus.