公开(公告)号：US10951631B2

公开(公告)日：2021-03-16

申请号：US16540675

申请日：2019-08-14

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yuji Unagami ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: H04L29/06 ,  H04W4/40 ,  B60R16/023 ,  G06F21/57 ,  G06F21/60 ,  G06F21/71 ,  G06F21/85 ,  H04L12/28 ,  H04L29/08

Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of networks, a plurality of fraud-detection ECUs each connected to a different one of the networks, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a network connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The gateway device receives updated rule information transmitted to a first network among the networks, selects a second network different from the first network, and transfers the updated rule information only to the second network. A fraud-detection ECU connected to the second network acquires the updated rule information and updates the rule information stored therein by using the updated rule information.

公开(公告)号：US10931634B2

公开(公告)日：2021-02-23

申请号：US15880769

申请日：2018-01-26

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L9/36 ,  H04L29/08

Abstract: A gateway serving as a security apparatus connected to one or a plurality of buses includes a receiver that receives a frame from a bus, a parameter storage that stores an examination parameter defining a content of an examination of the frame, an updater configured to, in a case where a predetermined condition is satisfied for the frame received by the receiver, update the examination parameter stored in the parameter storage, and an examiner that performs an examination, based on the examination parameter stored in the parameter storage, in terms of judgment of whether or not the frame received by the receiver is an attack frame.

公开(公告)号：US10909237B2

公开(公告)日：2021-02-02

申请号：US16431002

申请日：2019-06-04

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Hideki Matsushima ,  Tomoyuki Haga ,  Yuji Unagami ,  Takeshi Kishikawa

IPC: G06F12/14 ,  G06F21/55 ,  B60R16/02 ,  B60R16/023 ,  H04L12/28 ,  H04L29/06 ,  G06F13/36

Abstract: A method for a fraud detecting controller connected to networks for communication by a plurality of controllers, includes, storing fraud detection rules, determining whether a message transmitted on the network connected to the fraud detecting controller conforms to the rules, receiving data including updated fraud detection rules and network type information indicating one network type to which the updated fraud detection rules are to be applied; and determining whether a vehicle having an on-board network is running, the on-board network including the plurality of controllers. When the vehicle is running, additionally determining whether the network type information indicates a drive network which is connected to a controller related to vehicle travel, when the network type information indicates the drive network, not updating to the updated fraud detection rules, and when the network type information does not indicate the drive network, updating to the updated fraud detection rules.

公开(公告)号：US10896616B2

公开(公告)日：2021-01-19

申请号：US16413035

申请日：2019-05-15

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Tomoyuki Haga ,  Hideki Matsushima ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: G08G1/16 ,  G08G1/00 ,  H04W4/46 ,  H04W12/12 ,  B60R16/023 ,  H04L29/06 ,  H04W12/00 ,  H04L12/40

Abstract: An anomaly handling method using a roadside device is disclosed. The method includes receiving, from a vehicle, an anomaly detection notification, which includes level information indicating a level affecting safety, and a location of the vehicle. The method also includes obtaining a location of the roadside device and determining whether a distance between the location of the vehicle and the location of the roadside device is within a predetermined range. When the distance is within the predetermined range and shorter than a first predetermined distance, transmitting the received anomaly detection notification externally from the roadside device. When the distance is within the predetermined range and is longer than or equal to the first predetermined distance, changing to decrement a level indicated by the level information, and transmitting changed anomaly detection notification. When the distance is not within the predetermined range, not transmitting the received anomaly detection notification.

公开(公告)号：US10725762B2

公开(公告)日：2020-07-28

申请号：US15465653

申请日：2017-03-22

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Hideki Matsushima ,  Jun Anzai ,  Toshihisa Nakano ,  Tomoyuki Haga ,  Manabu Maeda ,  Takeshi Kishikawa

IPC: G06F8/65 ,  G06F8/654 ,  B60R16/023 ,  G06F11/00 ,  H04L12/46 ,  H04L12/40 ,  G06F11/14 ,  B60R16/02 ,  H04L29/08 ,  H04W4/48 ,  G06F21/64

Abstract: A gateway device, connected to one or more buses used in communication by a plurality of ECUs on-board a vehicle, is provided with: a receiving unit that receives, from a server that acts as an external device external to the vehicle, firmware update information that includes updated firmware to be applied to one ECU from among the plurality of ECUs; and a control unit that determines, based on certain information about the ECU on which to apply the updated firmware, whether or not the ECU satisfies a certain condition, and if the certain condition is satisfied, causes the ECU to execute a certain process related to updating firmware, whereas if the certain condition is not satisfied, causes equipment other than the ECU to execute the certain process.

公开(公告)号：US10693905B2

公开(公告)日：2020-06-23

申请号：US15879962

申请日：2018-01-25

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Hiroshi Amano ,  Toshihisa Nakano ,  Natsume Matsuzaki ,  Tomoyuki Haga ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: H04L29/06 ,  H04L12/40 ,  H04W12/12 ,  B60R16/023

Abstract: An invalidity detection electronic control unit connected to a bus used by a plurality of electronic control units (ECUs) to communicate with one another in accordance with controller area network (CAN) protocol includes a receiving unit that receives a frame for which transmission is started and a transmitting unit that transmits an error frame on the bus before a tail end of the frame is transmitted if the frame received by the receiving unit meets a predetermined condition indicating invalidity and transmits a normal frame that conforms to the CAN protocol after the error frame is transmitted. Even when a reception error counter of the ECU connected to the bus is incremented due to the impact of the error frame, the reception error counter is decremented by the normal frame.

公开(公告)号：US10693889B2

公开(公告)日：2020-06-23

申请号：US16217460

申请日：2018-12-12

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  B60R16/023

Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the in-vehicle network bus via the second control circuit over wired communication and/or wireless communication. The first control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. The second control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule, and, upon determining that the frame conforms to the second rule, transmits the frame to the in-vehicle network bus.

公开(公告)号：US10680847B2

公开(公告)日：2020-06-09

申请号：US15398815

申请日：2017-01-05

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Hideki Matsushima ,  Toshihisa Nakano ,  Tohru Wakabayashi ,  Hiroshi Amano ,  Tomoyuki Haga ,  Takeshi Kishikawa

IPC: H04L12/40 ,  H04L29/06 ,  H04L12/46 ,  H04B1/3822 ,  H04L12/66

Abstract: A gateway device for a vehicle network system, the vehicle network system including a bus, a first electronic control unit connected to the bus, and the gateway device connected to the bus. The gateway device comprising: one or more memories; and circuitry which, in operation, performs operations including: receiving a first frame transmitted to the bus by the first electronic control unit; when the first frame is received, including first control information in a second frame, the second frame including information based on content of the first frame, the first control information related to a restriction on processing, the restriction on processing being after a reception of the second frame; and transmitting the second frame to the bus.

公开(公告)号：US10462226B2

公开(公告)日：2019-10-29

申请号：US16170451

申请日：2018-10-25

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Takeshi Kishikawa ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yuji Unagami ,  Yoshihiro Ujiie

IPC: H04L29/06 ,  H04L9/32 ,  G06F7/04 ,  G06F17/00 ,  H04L29/08 ,  B60R16/023

Abstract: A fraud detection method for use in an in-vehicle network system including a plurality of electronic control units that communicate with one another via an in-vehicle network is provided. The method includes receiving at least one data frame sent to the in-vehicle network, verifying a specific identifier in the received data frame only when the received data frame is event-driven data and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state, detecting the received data frame as an authenticated data frame when the verifying is successful, and detecting the received data frame as a fraudulent data frame when the verifying fails. The predetermined state of the vehicle is the vehicle traveling.

公开(公告)号：US10277598B2

公开(公告)日：2019-04-30

申请号：US15209882

申请日：2016-07-14

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Takeshi Kishikawa ,  Hideki Matsushima ,  Tomoyuki Haga ,  Yoshihiro Ujiie ,  Yuji Unagami

IPC: H04L12/26 ,  H04L29/06 ,  H04L12/40 ,  B60R16/023 ,  H04W4/02

Abstract: A method for dealing with unauthorized frames that makes it possible to take appropriate measures when an unauthorized data frame is detected in a vehicle network system is provided. A plurality of ECUs in the vehicle network system are connected to a bus used for communicating frames. In the method for dealing with unauthorized frames, if a misuse detection ECU that checks a frame appearing in the bus detects an unauthorized frame that does not comply with a certain rule and a certain prevention condition is satisfied, a process for preventing the plurality of ECUs from performing a process corresponding to the unauthorized frame is performed (an error frame is transmitted) or, if the certain prevention condition is not satisfied, the process is not performed.