-
21.发明授权公开(公告)号:US11569984B2
公开(公告)日:2023-01-31
申请号:US17036470
申请日:2020-09-29
Inventor: Yoshihiro Ujiie , Jun Anzai , Yoshihiko Kitamura , Masato Tanabe , Takeshi Kishikawa
IPC: H04L9/08 , H04L9/40 , B60R16/023 , H04L67/12
Abstract: A key management method serves as an electronic control unit (ECU) in an onboard network system having a plurality of ECUs that perform communication by frames via a network. The method includes storing a shared key and executing encryption processing based on the shared key. The method further includes executing inspection of a security state of the shared key stored in a case where a vehicle is in at least one of the following particular states: the vehicle is not driving and is an accessory-on state; a fuel cap of the vehicle is open, and the vehicle is not driving and is fueling; the vehicle is parked, which is indicated by the gearshift; the vehicle is in a stopped state before driving, which is indicated by the gearshift; and a charging plug is connected to the vehicle, and the vehicle is electrically charging.
-
22.发明授权公开(公告)号:US11356475B2
公开(公告)日:2022-06-07
申请号:US16255697
申请日:2019-01-23
Inventor: Yoshihiro Ujiie , Jun Anzai , Hideki Matsushima , Tomoyuki Haga
Abstract: A frame transmission prevention apparatus connected to a network of a network system including a plurality of electronic control units communicating with one another via the network is provided. The apparatus includes a processor and a memory. The memory includes at least one set of instructions that causes the processor to perform processes when executed by the processor. The processes include receiving a first frame from the network and switching whether to perform a first process for preventing transmission of the first frame on the basis of management information indicating whether prevention of transmission of a frame is permitted if the first frame satisfies a first condition.
-
23.发明授权公开(公告)号:US11190533B2
公开(公告)日:2021-11-30
申请号:US16237243
申请日:2018-12-31
Inventor: Junichi Tsurumi , Yoshihiro Ujiie , Takamitsu Sasaki , Takeshi Kishikawa , Tohru Wakabayashi , Toshihisa Nakano
IPC: H04L29/06 , H04L12/28 , B60R1/00 , B60R16/023 , H04L12/40
Abstract: An anomaly detection electronic control unit (ECU) that detects unauthorized messages on a communication path is provided. An ECU that periodically transmits a first-type message including data to be monitored, and an ECU that periodically transmits a second-type message including data for comparison, are connected to the communication path. The anomaly detection ECU includes: a receiver that successively receives first-type and second-type messages; a processor that determines whether a first-type message received is normal or anomalous; and a transmitter that transmits a predetermined message in accordance with results of the determining. The determining is performed based on content of the first-type message, content of a second-type message last received at the time of receiving this first-type message, and at least one of content of a first-type message received further in the past than this first-type message, and content of a second-type message received further in the past than the second-type message last received.
-
公开(公告)号:US11178013B2
公开(公告)日:2021-11-16
申请号:US16734439
申请日:2020-01-06
Inventor: Hiroyasu Terazawa , Tomoyuki Haga , Yuishi Torisaki , Ryo Kato , Yoshihiro Ujiie
IPC: H04L12/24 , H04W4/48 , H04L12/911
Abstract: Provided is a network monitor for a mobility network used in a mobility entity. The mobility network is formed of a source unit, a destination unit, and one or more repeaters. Each repeater includes a network monitor that receives, from the source unit, an announcement for a bandwidth reservation. The announcement includes a value of a first bandwidth requirement for the source unit to perform first data communication. The network monitor further determines a determination result of whether to reserve the first bandwidth by comparing the value of the first bandwidth with a range of values of a second bandwidth for the first data communication specified in a white list stored in a database. The network monitor reserves the first bandwidth for performing the first data communication depending on the determination result, and transmits, to the source unit, a reservation status of the first bandwidth.
-
公开(公告)号:US10986008B2
公开(公告)日:2021-04-20
申请号:US16026040
申请日:2018-07-02
Inventor: Yoshihiro Ujiie , Tomoyuki Haga , Manabu Maeda , Hideki Matsushima , Takeshi Kishikawa , Junichi Tsurumi , Hisashi Kashima , Yukino Toriumi , Takuya Kuwahara
Abstract: An abnormality detection method is provided. The abnormality detection method is for detecting an abnormality that may be transmitted to a bus in an on-board network system. The on-board network system includes a plurality of electronic controllers that transmit and receive messages via the bus in a vehicle according to a CAN protocol. In the abnormality detection method, for example, a gateway transmits vehicle identification information to a server and receives a response determining a unit time. An operation process is performed using feature information based on a number of messages received from the bus per the determined unit time and using a model indicating a criterion in terms of a message occurrence frequency. A judgment is made as to an abnormality according to a result of the operation process.
-
Patent Agency Ranking
公开(公告)号:US10735260B2
公开(公告)日:2020-08-04
申请号:US15878787
申请日:2018-01-24
Inventor: Manabu Maeda , Hideki Matsushima , Tomoyuki Haga , Yoshihiro Ujiie , Takeshi Kishikawa
IPC: H04L12/24 , B60R16/023 , G06F11/00 , B60R16/02 , G06F11/36 , G06F8/654 , G06F8/71 , H04L12/46 , H04L12/40 , H04L12/66
Abstract: A gateway connected to a bus used for communication by a plurality of ECUs provided on-board a vehicle is provided with: an external communication unit that receives, from a server external to the vehicle, firmware update information that includes updated firmware for one ECU from among the plurality of ECUs; an ECU information acquiring unit that acquires system configuration information indicating the type of each of the plurality of ECUs connected to the bus; and a FW update processing unit that performs a controlling operation to update firmware of the relevant ECU based on the updated firmware, after an operation verification of the updated firmware is performed using an ECU of each type indicated by the system configuration information.
-
公开(公告)号:US10372903B2
公开(公告)日:2019-08-06
申请号:US15381498
申请日:2016-12-16
Inventor: Yoshihiro Ujiie , Hideki Matsushima , Tomoyuki Haga , Yuji Unagami , Takeshi Kishikawa
Abstract: Provided is a fraud detection rule updating method enabling the updating of rules that serve as the basis for detecting malicious frames as necessary in an on-board network system. In an on-board network system equipped with multiple electronic control units (ECUs) that communicate via buses and fraud detecting ECUs that determine, based on fraud detection rules, whether messages transmitted on the buses conform to the rules, a fraud detection rule updating method is used in which delivery data including updated fraud detection rules is received from a server external to the on-board network system, and if a certain update condition is satisfied, the fraud detection rules in a fraud detecting ECU are updated to the updated fraud detection rules.
-
公开(公告)号:US10137862B2
公开(公告)日:2018-11-27
申请号:US15868663
申请日:2018-01-11
Inventor: Tomoyuki Haga , Hideki Matsushima , Manabu Maeda , Yuji Unagami , Yoshihiro Ujiie , Takeshi Kishikawa
Abstract: An anti-fraud method for use in an in-vehicle network system including a plurality of electronic control units that exchange, in an in-vehicle network, data frames, each having added thereto a message authentication code (MAC). The method includes generating a first MAC by using a MAC key and a value of a counter that counts a number of times a data frame having added thereto a MAC is transmitted to the in-vehicle network. The method also includes performing verification that the data frame received has added thereto the generated first MAC and incrementing a number of error occurrences when the verification has failed for the data frame, the data frame including a predetermined ID. When the number of error occurrences exceeds a predetermined threshold, a process associated in advance with the predetermined ID is executed.
-
公开(公告)号:US20180167360A1
公开(公告)日:2018-06-14
申请号:US15880769
申请日:2018-01-26
Inventor: Manabu Maeda , Jun Anzai , Yoshihiro Ujiie , Masato Tanabe , Takeshi Kishikawa
IPC: H04L29/06 , B60R16/023
CPC classification number: H04L63/0209 , B60R16/023 , G06F21/55 , G06F21/85 , H04L9/36 , H04L12/28 , H04L12/40006 , H04L63/0245 , H04L63/14 , H04L63/1441 , H04L67/12
Abstract: A gateway serving as a security apparatus connected to one or a plurality of buses includes a receiver that receives a frame from a bus, a parameter storage that stores an examination parameter defining a content of an examination of the frame, an updater configured to, in a case where a predetermined condition is satisfied for the frame received by the receiver, update the examination parameter stored in the parameter storage, and an examiner that performs an examination, based on the examination parameter stored in the parameter storage, in terms of judgment of whether or not the frame received by the receiver is an attack frame.
-
30.发明授权公开(公告)号:US12261851B2
公开(公告)日:2025-03-25
申请号:US18584704
申请日:2024-02-22
Inventor: Yoshihiro Ujiie , Jun Anzai , Yoshihiko Kitamura , Masato Tanabe , Hideki Matsushima , Tomoyuki Haga , Takeshi Kishikawa , Ryota Sugiyama
IPC: H04L29/00 , B60R16/023 , H04L9/40 , H04L12/40 , H04L67/12
Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit that operates on a first operating system and a second control circuit that operates on a second operating system. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on frames to determine conformity of the frames with a first rule. Upon determining that the frames conform to the first rule, the second control circuit transmits contents of the frames to the first control circuit. The first control circuit performs a second determination process on the contents of the frames to determine conformity with a second rule. The second rule is different from the first rule.
-
-
-
-
-
-
-
-
-
Search Results
92
records
(took 0.043 seconds)
