公开(公告)号：US20250063056A1

公开(公告)日：2025-02-20

申请号：US18937686

申请日：2024-11-05

Applicant: Panasonic Automotive Systems Co., Ltd.

Inventor： Nobutaka KAWAGUCHI ,  Yuishi TORISAKI ,  Shoichiro SEKIYA ,  Takayoshi ITO

IPC: H04L9/40

Abstract: An information processing method is executed by an information processing device that detects an attack against a monitored object by communicating with the monitored object. The information processing method includes: obtaining attack information related to an attack against the monitored object; and determining priorities of a plurality of detection rules based on the attack information, and storing the priorities in association with the plurality of detection rules, the plurality of detection rules being used for determining whether an anomaly has occurred in the monitored object when the monitored object is attacked. The priorities indicate at least one of (i) an order in which the plurality of detection rules are used or (ii) whether to use the plurality of detection rules when determining whether an anomaly has occurred in the monitored object.

公开(公告)号：US20240320325A1

公开(公告)日：2024-09-26

申请号：US18733447

申请日：2024-06-04

Applicant: Panasonic Automotive Systems Co., Ltd.

Inventor： Takayoshi ITO ,  Shoichiro SEKIYA ,  Yuishi TORISAKI ,  Kaoru YOKOTA

IPC: G06F21/55

CPC classification number: G06F21/552 ,  G06F2221/034

Abstract: An analysis support method is performed by an analysis support device that supports an analysis of an attack scenario in an event that has occurred in a monitored object, and the analysis is performed based on raw data related to the event. The analysis support method includes: obtaining the raw data by communicating with the monitored object or communicating with a database that stores the raw data obtained from the monitored object; and outputting a previous analysis result for previously obtained raw data that is similar to the raw data obtained.

公开(公告)号：US20240223581A1

公开(公告)日：2024-07-04

申请号：US18441826

申请日：2024-02-14

Applicant: Panasonic Automotive Systems Co., Ltd.

Inventor： Akihito TAKEUCHI ,  Nobutaka KAWAGUCHI ,  Yuishi TORISAKI

IPC: H04L9/40 ,  H04L67/12

CPC classification number: H04L63/1416 ,  H04L63/1425 ,  H04L67/12

Abstract: A detection rule output method is a detection rule output method for outputting a detection rule used in a security system that determines attack details based on log information of a vehicle, the detection rule output method including: acquiring vehicle configuration information regarding a configuration of an in-vehicle network provided in the vehicle, intrusion detection system (IDS) information regarding one or more intrusion detection systems (IDSes) mounted in the vehicle, and attack information to be detected regarding an attack on the vehicle to be detected; and outputting, to a storage device included in the security system, the detection rule that is a detection rule for detecting a location in the vehicle where an abnormality has occurred and the abnormality that has occurred in the location, and is generated based on the vehicle configuration information, the IDS information, and the attack information to be detected.

公开(公告)号：US20250052875A1

公开(公告)日：2025-02-13

申请号：US18789973

申请日：2024-07-31

Applicant: Panasonic Automotive Systems Co., Ltd.

Inventor： Tomonori MITSUGI ,  Ryo HIRANO ,  Tomoyuki HAGA ,  Yuishi TORISAKI ,  Kaoru YOKOTA

IPC: G01S7/52 ,  G01S7/02 ,  G01S13/06 ,  G01S13/88 ,  G01S15/06 ,  G01S15/88 ,  G01S17/06 ,  G01S17/88

Abstract: An anomaly detection device includes a processor and a non-transitory memory that stores a program. The processor executes the program to operate an anomaly detection device as an obtainer that obtains a first object detection result generated by a first object detection device that is included in a first apparatus which is a vehicle and detects an object in the vicinity of the first apparatus and a second object detection result generated by a second object detection device that is included in a second apparatus in the vicinity of the first apparatus and detects an object in the vicinity of the second apparatus; a determiner that determines whether at least one of the first apparatus or the second apparatus is being attacked, by comparing the first object detection result and the second object detection result; and an outputter that outputs a result of determination by the determiner.

公开(公告)号：US20240256655A1

公开(公告)日：2024-08-01

申请号：US18629160

申请日：2024-04-08

Applicant: Panasonic Automotive Systems Co., Ltd.

Inventor： Kaoru YOKOTA ,  Yuishi TORISAKI ,  Shoichiro SEKIYA ,  Takumaru NAGAI

IPC: G06F21/55 ,  G06F21/57

CPC classification number: G06F21/552 ,  G06F21/575 ,  G06F2221/033

Abstract: An information processing device includes: a log transmitter that transmits a monitoring log generated in the information processing device to an SOC (28); an HIDS monitor that verifies an integrity of the log transmitter; and a monitoring RoT that verifies an integrity of the HIDS monitor, and repeatedly outputs a heartbeat signal to the log transmitter. Each time the heartbeat signal is output from the monitoring RoT, the log transmitter transmits the heartbeat signal to the SOC. When the integrity of the log transmitter is anomalous, the HIDS monitor outputs, to the monitoring RoT, an output stop request signal for requesting the monitoring RoT to stop outputting the heartbeat signal. The monitoring RoT stops outputting the heartbeat signal based on the output stop request signal.