-
公开(公告)号:US10986105B2
公开(公告)日:2021-04-20
申请号:US16244160
申请日:2019-01-10
Inventor: Manabu Maeda , Takeshi Kishikawa , Daisuke Kunimune
Abstract: An unauthorized activity detection method in an onboard network system. The detection method includes determining whether or not a message sent out onto the network is an attack message, saving information relating to the attack message in at least one memory in a case where the message is an attack message, identifying a communication pattern from information relating to the attack message, and determining whether or not the message matches a communication pattern. The determination of whether an attack message and determination of whether matching a communication pattern are executed on each of a plurality of messages received from the network. In the determining of whether an attack message executed on a message received after executing of determining of whether matching a communication pattern, results of the determination of whether an attack message that has already be executed are used.
-
82.发明授权公开(公告)号:US10834083B2
公开(公告)日:2020-11-10
申请号:US16031079
申请日:2018-07-10
Inventor: Takeshi Kishikawa , Manabu Maeda , Tohru Wakabayashi , Toshihisa Nakano , Hideki Matsushima
IPC: H04L29/06 , B60R16/023 , H04L12/40 , H04L29/08
Abstract: An unauthorized control suppression method for use in a network system is provided. The network system includes a plurality of electronic controllers that exchange, via a communication channel, a plurality of frames The plurality of frames includes at least one control frame that instructs predetermined control to an object of control. The method receives, sequentially, the plurality of frames from the communication channel, and determines whether the predetermined control, instructed by the control frame received in the receiving, is to be suppressed, based on a set of frames received in the receiving. The set of frames is received in the receiving within a predetermined period preceding a time of reception of the control frame.
-
Patent Agency Ranking
公开(公告)号:US10798117B2
公开(公告)日:2020-10-06
申请号:US16004492
申请日:2018-06-11
Inventor: Tomoyuki Haga , Hideki Matsushima , Manabu Maeda , Yoshihiro Ujiie , Takeshi Kishikawa , Junichi Tsurumi , Jun Anzai
Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.
-
公开(公告)号:US10454957B2
公开(公告)日:2019-10-22
申请号:US15275860
申请日:2016-09-26
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yuji Unagami , Takeshi Kishikawa
Abstract: A method for use in a network communication system including a plurality of electronic controllers that communicate with each other via a bus in accordance with a Controller Area Network (CAN) protocol includes determining whether or not content of a predetermined field in a transmitted frame meets a predetermined condition indicating fraud, transmitting an error frame before an end of the frame is transmitted in a case where it is determined that the frame meets the predetermined condition, recording a number of times the error frame is transmitted, for each identifier (ID) represented by content of an ID field included in a plurality of frames which has been transmitted, and providing a notification in a case where the number of times recorded for an ID exceeds a predetermined count.
-
85.发明授权公开(公告)号:US10432645B2
公开(公告)日:2019-10-01
申请号:US15285706
申请日:2016-10-05
Inventor: Yuji Unagami , Hideki Matsushima , Tomoyuki Haga , Manabu Maeda , Yoshihiro Ujiie , Takeshi Kishikawa
IPC: H04L29/06 , B60R16/023 , H04L12/28 , H04L29/08 , G06F21/57 , G06F21/60 , G06F21/71 , G06F21/85 , H04W4/40
Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of buses, a plurality of fraud-detection ECUs each connected to a different one of the buses, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a bus connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The fraud-detection ECU transmits an error message including a message identifier of a message determined to be malicious. The gateway device receives updated rule information transmitted to a first bus among the buses, selects a second bus different from the first bus, and transfers the updated rule information only to the second bus. A fraud-detection ECU connected to the second bus acquires the updated rule information and updates the rule information stored therein by using the updated rule information.
-
公开(公告)号:US09902370B2
公开(公告)日:2018-02-27
申请号:US15636007
申请日:2017-06-28
Inventor: Tomoyuki Haga , Hideki Matsushima , Manabu Maeda , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
CPC classification number: B60R25/307 , B60R2325/108 , H04L9/0891 , H04L9/3242 , H04L67/12 , H04L2209/84
Abstract: An anti-fraud method for use in an in-vehicle network system including a plurality of electronic control units that exchange data frames, each having added thereto a message authentication code (MAC), via a bus includes receiving a data frame transmitted on the bus, and generating a first MAC by using a MAC key and a value of a counter that counts a number of times a data frame having added thereto a MAC is transmitted. The method also includes performing verification that the data frame received has added thereto the generated first MAC and incrementing a number of error occurrences when the verification has failed for the data frame, the data frame including a predetermined message ID. When the number of error occurrences exceeds a predetermined threshold, a process associated in advance with the predetermined message ID is executed.
-
公开(公告)号:US09762459B2
公开(公告)日:2017-09-12
申请号:US14740065
申请日:2015-06-15
Inventor: Hideki Matsushima , Motoji Ohmori , Natsume Matsuzaki , Yuichi Futa , Toshihisa Nakano , Manabu Maeda , Yuji Unagami , Hiroshi Amano , Kotaro Hakoda
CPC classification number: H04L43/04 , G06F21/552 , G06Q10/20 , H04L41/069 , H04L67/10
Abstract: An information management method includes collecting log information of one or more home electrical apparatuses, generating display screen data indicating a status of the log information of the apparatuses corresponding service providers based on the collected log information, where the display screen data includes groups of information each contain information on an apparatus, a service provider corresponding to the apparatus, and log information output from the apparatus, and provision of the log information of each group is individually selectable, providing the display screen data via a network to a display terminal that performs access to a server device, receiving information from the display terminal, which indicates that selection on whether or not provision of the log information is performed, and stopping provision of the log information on the selected group when a determination is made that the refusal of provision of the log information on the selected group is performed.
-
-
-
-
-
-
Search Results
87
records
(took 0.043 seconds)
