公开(公告)号：US20220234626A1

公开(公告)日：2022-07-28

申请号：US17160122

申请日：2021-01-27

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Mayssaa El Rifai ,  Samuel B. Kupfer ,  Joseph E. Ploucha ,  Ron C. Carleton

IPC: B60W60/00 ,  G06N20/00 ,  H04L12/40 ,  G06F16/955

Abstract: In various embodiments, methods, systems, and vehicle apparatuses are provided. A method for determining a trusted context of operation by an in-vehicle Network Intrusion Detection System (NIDS) for learning of a vehicle platform, including executing the NIDS to monitor a set of Electronic Control Units (ECUs) and vehicle state elements by receiving a set of vehicle derived inputs about a vehicle's operating state; in response to a determination about the vehicle's operating state, identifying the trusted window during which learning about network topology and whitelisted messages contained in a vehicle platform is allowable; creating a vehicle-specific configuration containing a list of networks of topologies and whitelisted messages in use by the ECUs in the vehicle platform, and preventing misconfiguring of at least one network in the list of network topologies and whitelisted messages of the vehicle-specific configuration in the vehicle platform outside the trusted window.

公开(公告)号：US11952013B2

公开(公告)日：2024-04-09

申请号：US17160122

申请日：2021-01-27

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Mayssaa El Rifai ,  Samuel B. Kupfer ,  Joseph E. Ploucha ,  Ron C. Carleton

IPC: B60W60/00 ,  G06F16/955 ,  G06N20/00 ,  H04L12/40

CPC classification number: B60W60/00188 ,  G06F16/9566 ,  G06N20/00 ,  H04L12/40 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: In various embodiments, methods, systems, and vehicle apparatuses are provided. A method for determining a trusted context of operation by an in-vehicle Network Intrusion Detection System (NIDS) for learning of a vehicle platform, including executing the NIDS to monitor a set of Electronic Control Units (ECUs) and vehicle state elements by receiving a set of vehicle derived inputs about a vehicle's operating state; in response to a determination about the vehicle's operating state, identifying the trusted window during which learning about network topology and whitelisted messages contained in a vehicle platform is allowable; creating a vehicle-specific configuration containing a list of networks of topologies and whitelisted messages in use by the ECUs in the vehicle platform, and preventing misconfiguring of at least one network in the list of network topologies and whitelisted messages of the vehicle-specific configuration in the vehicle platform outside the trusted window.