公开(公告)号：US12111908B2

公开(公告)日：2024-10-08

申请号：US18215924

申请日：2023-06-29

Applicant: Intel Corporation

Inventor： Eduardo Alban ,  Shabbir Ahmed ,  Marcio Juliato ,  Christopher Gutierrez ,  Qian Wang ,  Vuk Lesi ,  Manoj Sastry

IPC: G06F21/85 ,  G06F13/20 ,  G06F21/44 ,  H04L12/40

CPC classification number: G06F21/44 ,  G06F13/20 ,  G06F21/85 ,  H04L12/40 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: Systems, apparatuses, and methods to identify an electronic control unit transmitting a message on a communication bus, such as an in-vehicle network bus, are provided. ECUs transmit messages by manipulating voltage on conductive lines of the bus. Observation circuitry can observe voltage signals associated with the transmission at a point on the in-vehicle network bus. A distribution can be generated from densities of the voltage signals. ECUs can be identified and/or fingerprinted based on the distributions.

公开(公告)号：US11949793B2

公开(公告)日：2024-04-02

申请号：US17868204

申请日：2022-07-19

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Xiruo Liu ,  Manoj Sastry ,  Liuyang Yang

IPC: H04L9/32 ,  H04L12/40

CPC classification number: H04L9/3242 ,  H04L12/40 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: Various embodiments are generally directed to providing authentication and confidentiality mechanisms for message communication over an in-vehicle network. For example, authentication data associated with a communicating node may be transmitted over the network by encoding different predefined voltage levels on top of the message bits of the message being communicated. Different voltage levels may represent different encodings, such as a bit-pair or any bit combination of the authentication data. In a further example, messaging confidentiality between at least two communicating nodes may be achieved by pseudo-randomly flipping, or scrambling, the dominant and recessive voltages of the entire message frame at the analog level based on a pseudo-random control bit sequence.

公开(公告)号：US11889300B2

公开(公告)日：2024-01-30

申请号：US17547418

申请日：2021-12-10

Applicant: INTEL CORPORATION

Inventor： Xiruo Liu ,  Shabbir Ahmed ,  Ralf Graefe ,  Christopher Gutierrez ,  Marcio Juliato ,  Rafael Rosales ,  Manoj Sastry ,  Liuyang Yang

IPC: H04W12/02 ,  H04W12/00 ,  H04W4/40 ,  H04W12/03 ,  H04W4/46 ,  H04W4/029 ,  H04W4/06 ,  H04L9/40 ,  H04W4/08 ,  H04W4/024 ,  H04L67/125 ,  H04W4/80 ,  H04L67/52

CPC classification number: H04W12/02 ,  H04L63/0407 ,  H04L67/125 ,  H04L67/52 ,  H04W4/024 ,  H04W4/029 ,  H04W4/06 ,  H04W4/08 ,  H04W4/40 ,  H04W4/46 ,  H04W4/80 ,  H04W12/03

Abstract: Various embodiments are generally directed to techniques for providing improved privacy protection against vehicle tracking for connected vehicles of a vehicular network. For example, at least one road side unit may: identify a set of vehicles that require pseudonym changes and send an invitation for a pseudonym change event to each of the vehicles, determine at least a total number of the acceptances, determine whether the total number meets or exceeds a predetermined threshold number, send acknowledgement messages to the accepting vehicles if the threshold number is met, and form a vehicle group to coordinate the pseudonym change event during a privacy period. During the privacy period, the RSU and the vehicles may communicate with each other in a confidential and private manner via key-session-based unicast transmission, and coordinate transmission power and vehicle trajectory adjustments to maximize the benefits for safety and obfuscation for privacy.

公开(公告)号：US11823022B2

公开(公告)日：2023-11-21

申请号：US17742845

申请日：2022-05-12

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Christopher Gutierrez ,  Shabbir Ahmed ,  Manoj Sastry ,  Liuyang Yang ,  Xiruo Liu

IPC: G05D1/00 ,  G06N20/20 ,  G06N5/045 ,  G06F16/901 ,  G06F18/24

CPC classification number: G06N20/20 ,  G05D1/0088 ,  G06F16/9027 ,  G06F18/24 ,  G06N5/045 ,  G05D2201/0213

Abstract: Systems, methods, computer program products, and apparatuses for low latency, fully reconfigurable hardware logic for ensemble classification methods, such as random forests. An apparatus may comprise circuitry for an interconnect and circuitry for a random forest implemented in hardware. The random forest comprising a plurality of decision trees connected via the interconnect, each decision tree comprising a plurality of nodes connected via the interconnect. A first decision tree of the plurality of decision trees comprising a first node of the plurality of nodes to: receive a plurality of elements of feature data via the interconnect, select a first element of feature data, of the plurality of elements of feature data, based on a configuration of the first node, and generate an output based on the first element of feature data, an operation, and a reference value, the operation and reference value specified in the configuration of the first node.

公开(公告)号：US11570186B2

公开(公告)日：2023-01-31

申请号：US16712479

申请日：2019-12-12

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Manoj Sastry ,  Michael Kara-Ivanov ,  Aviad Kipnis ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Vuk Lesi

IPC: H04L9/40 ,  H04L12/40 ,  H04L47/31

Abstract: Techniques and screening messages based on tags in an automotive environment, such as, messages communicated via a communication bus, like the CAN bus. Messages can be tagged with either a binary or probabilistic tag indicating whether the message is fraudulent. ECUs coupled to the CAN bus can receive the messages and the message tags and can determine whether to fully consume the message based on the tag.

公开(公告)号：US20220350888A1

公开(公告)日：2022-11-03

申请号：US17867780

申请日：2022-07-19

Applicant: INTEL CORPORATION

Inventor： Christopher N. Gutierrez ,  Marcio Juliato ,  Shabbir Ahmed ,  Qian Wang ,  Manoj Sastry ,  Liuyang L. Yang ,  Xiruo Liu

IPC: G06F21/56

Abstract: Logic may implement observation layer intrusion detection systems (IDSs) to combine observations by intrusion detectors and/or other intrusion detection systems. Logic may monitor one or more control units at one or more observation layers of an in-vehicle network, each of the one or more control units to perform a vehicle function. Logic may combine observations of the one or more control units at the one or more observation layers. Logic may determine, based on a combination of the observations, that one or more of the observations represent an intrusion. Logic may determine, based at least on the observations, characteristics of an attack, and to pass the characteristics of the attack information to a forensic logging system to log the attack or pass the characteristics of the attack to a recovery system for informed selection of recovery procedures. Logic may dynamically adjust a threshold for detection of suspicious activity.

公开(公告)号：US11463262B2

公开(公告)日：2022-10-04

申请号：US16720956

申请日：2019-12-19

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Xiruo Liu ,  Manoj Sastry ,  Liuyang Yang

IPC: H04L9/32 ,  H04L12/40

Abstract: Various embodiments are generally directed to providing authentication and confidentiality mechanisms for message communication over an in-vehicle network. For example, authentication data associated with a communicating node may be transmitted over the network by encoding different predefined voltage levels on top of the message bits of the message being communicated. Different voltage levels may represent different encodings, such as a bit-pair or any bit combination of the authentication data. In a further example, messaging confidentiality between at least two communicating nodes may be achieved by pseudo-randomly flipping, or scrambling, the dominant and recessive voltages of the entire message frame at the analog level based on a pseudo-random control bit sequence.

公开(公告)号：US20220224701A1

公开(公告)日：2022-07-14

申请号：US17706955

申请日：2022-03-29

Applicant: Intel Corporation

Inventor： Christopher Gutierrez ,  Vuk Lesi ,  Manoj Sastry ,  Christopher Hall ,  Marcio Juliato ,  Shabbir Ahmed ,  Qian Wang

IPC: H04L9/40 ,  H04J3/06

Abstract: Techniques to secure a time sensitive network are described. An apparatus may establish a data stream between a first device and a second device in a network domain, the network domain includes a plurality of switching nodes, receive messages from the first device by the second device in the network domain, the messages to comprise time information to synchronize a first clock for the first device and a second clock for the second device to a network time for the network domain, update a correction field for a received message with a residence time and time delay value by the second device, determine whether the updated message is benign or malicious, update the correction field for the updated message with an inference time when the updated message is benign, and prevent relay of the updated message to other devices in the network domain when the updated message is malicious.

公开(公告)号：US20220014540A1

公开(公告)日：2022-01-13

申请号：US17484197

申请日：2021-09-24

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Javier Perez-Ramirez ,  Vuk Lesi ,  Dave Cavalcanti ,  Manoj Sastry ,  Christopher Gutierrez ,  Qian Wang ,  Shabbir Ahmed

IPC: H04L29/06

Abstract: Systems, apparatuses and methods may provide for technology that detects one or more non-compliant nodes with respect to a timing schedule, detects one or more compliant nodes with respect to the timing schedule, and identifies a malicious node based on positions of the one or more non-compliant nodes and the one or more compliant nodes in a network topography. The non-compliant node(s) and the compliant node(s) may be detected based on post-synchronization messages, historical attribute data and/or plane diversity data.

公开(公告)号：US20210026955A1

公开(公告)日：2021-01-28

申请号：US17031140

申请日：2020-09-24

Applicant: Intel Corporation

Inventor： Marcio Juliato ,  Manoj Sastry ,  Shabbir Ahmed ,  Christopher Gutierrez ,  Qian Wang ,  Vuk Lesi

IPC: G06F21/55 ,  G06F21/71 ,  G06F21/85

Abstract: A platform comprising numerous reconfigurable circuit components arranged to operate as primary and redundant circuits is provided. The platform further comprises security circuitry arranged to monitor the primary circuit for anomalies and reconfigurable circuit arranged to disconnect the primary circuit from a bus responsive to detection of an anomaly. Furthermore, the present disclosure provides for the quarantine, refurbishment and designation as redundant, the anomalous circuit.