公开(公告)号：US11516194B2

公开(公告)日：2022-11-29

申请号：US16945120

申请日：2020-07-31

Applicant: Electronics and Telecommunications Research Institute

Inventor： Dae-Won Kim ,  Dong-Wook Kang ,  Sang-Woo Lee ,  Jin-Yong Lee ,  Boo-Sun Jeon ,  Bo-Heung Chung ,  Hong-Il Ju ,  Byeong-Cheol Choi ,  Joong-Yong Choi

IPC: H04L9/32 ,  H04L9/40 ,  H04W4/48 ,  H04B3/56 ,  H04W12/06

Abstract: Disclosed herein are an in-vehicle network apparatus and method. The in-vehicle network apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured to verify the integrity of software stored in advance in the executable memory, to generate a key table by sharing authentication information with a communication target, and to exchange an encrypted message with the communication target using the key table.

公开(公告)号：US12039035B2

公开(公告)日：2024-07-16

申请号：US17518373

申请日：2021-11-03

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Dong-Wook Kang ,  Dae-Won Kim ,  Ik-Kyun Kim ,  Sang-Su Lee ,  Jin-Yong Lee ,  Byeong-Cheol Choi ,  Yong-Je Choi

IPC: G06F21/54 ,  G06F9/30 ,  G06F21/55

CPC classification number: G06F21/54 ,  G06F9/30058 ,  G06F9/30101 ,  G06F21/554 ,  G06F21/556

Abstract: Disclosed herein are an apparatus and method for detecting violation of control flow integrity. The apparatus includes memory for storing a program and a processor for executing the program, wherein the processor multiple branch identifier registers to which identifiers of branch targets are written, a set branch identifier instruction configured to command an identifier of a branch target to be written to a branch identifier register at a predetermined sequence number, among the multiple branch identifier registers, and a check branch identifier instruction configured to command a signal indicating detection of a control flow hijacking attack to be issued based on whether a value written to the branch identifier register at the predetermined sequence number is identical to a value of an identifier of a branch target at the predetermined sequence number, wherein the program detects whether a control flow is hijacked based on the multiple branch identifier registers.

公开(公告)号：US11968312B2

公开(公告)日：2024-04-23

申请号：US17527861

申请日：2021-11-16

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Sang-Woo Lee ,  Dae-Won Kim ,  Jin-Yong Lee ,  Boo-Sun Jeon ,  Bo-Heung Chung ,  Hong-Il Ju ,  Joong-Yong Choi

IPC: H04L9/32 ,  H04L9/08

CPC classification number: H04L9/3247 ,  H04L9/0825 ,  H04L9/0866 ,  H04L9/3263

Abstract: Disclosed herein are an apparatus and method for processing vehicle data security based on a cloud. The method may include requesting, by a vehicle, a cloud center device to register a cloud-based vehicle data security service; generating, by the cloud center device, cloud-based vehicle data security policies and a pseudonym for the vehicle; requesting, by the cloud center device, an authentication center to generate a pseudonym certificate for the pseudonym and receiving the pseudonym certificate; transmitting, by the cloud center device, the cloud-based vehicle data security policies, the pseudonym, and the pseudonym certificate to the vehicle; generating, by the vehicle, vehicle state information, including accident record information and driving entity information, based on the cloud-based vehicle data security policies and transmitting the same to the cloud center device; and storing, by the cloud center device, the accident record information and the driving entity information in a database for each vehicle.

公开(公告)号：US11502870B2

公开(公告)日：2022-11-15

申请号：US17077702

申请日：2020-10-22

Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE

Inventor： Joong-Yong Choi ,  Dong-Wook Kang ,  Dae-Won Kim ,  Sang-Woo Lee ,  Jin-Yong Lee ,  Boo-Sun Jeon ,  Bo-Heung Chung ,  Hong-Il Ju ,  Byeong-Cheol Choi

IPC: H04L12/28 ,  H04L12/40 ,  H04L67/12

Abstract: Disclosed herein are a method for managing an access control list based on an automotive Ethernet and an apparatus for the same. The method includes analyzing a new access control rule that is input to a vehicle in which the automotive Ethernet is applied, searching for any one target unit to manage the new access control rule in consideration of at least one of a destination and an application target corresponding to the new access control rule, and storing the new access control rule by transmitting a storage request message corresponding to the new access control rule to the target unit.