公开(公告)号：US11336618B2

公开(公告)日：2022-05-17

申请号：US17152286

申请日：2021-01-19

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Manabu Maeda ,  Jun Anzai ,  Yoshihiro Ujiie ,  Masato Tanabe ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  G06F21/55 ,  H04L12/28 ,  H04L12/40 ,  G06F21/85 ,  H04L9/36 ,  H04L67/12

Abstract: A security apparatus includes a receiver that receives a frame front at least one network, a parameter storage that stores at least one examination parameter defining a content of an examination on a frame, and processing circuitry that performs operations. The operations include judging whether a predetermined condition is satisfied for the frame received by the receiver. When the predetermined condition is satisfied, updating the stored at least one examination parameter, and when the predetermined condition is not satisfied, not updating the stored at least one examination parameter. The operations also include executing an examination, based on the stored at least one examination parameter, as to whether the frame received by the receiver is an attack frame, and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed.

公开(公告)号：US11240253B2

公开(公告)日：2022-02-01

申请号：US15930093

申请日：2020-05-12

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/00 ,  H04L29/06 ,  H04L29/08 ,  H04L12/40 ,  B60R16/023

Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. Upon determining that the frame conforms to the first rule, the second control circuit transmits the frame to the first control circuit. The first control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule. The second rule is different from the first rule.

公开(公告)号：US10798117B2

公开(公告)日：2020-10-06

申请号：US16004492

申请日：2018-06-11

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Tomoyuki Haga ,  Hideki Matsushima ,  Manabu Maeda ,  Yoshihiro Ujiie ,  Takeshi Kishikawa ,  Junichi Tsurumi ,  Jun Anzai

IPC: H04L29/06 ,  H04L12/40 ,  G07C5/08 ,  H04W4/44 ,  H04W4/40 ,  H04L29/08 ,  H04W4/08

Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.

公开(公告)号：US10530801B2

公开(公告)日：2020-01-07

申请号：US16398927

申请日：2019-04-30

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Takeshi Kishikawa ,  Yoshihiro Ujiie ,  Tomoyuki Haga ,  Hideki Matsushima

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40

Abstract: An anomaly detection electronic controller performs anomaly detection processing and is connected to a bus, which a plurality of electronic controllers use for communication to communicate following a Controller Area Network (CAN) protocol. The anomaly detection electronic controller includes an anomaly detection processor that performs anomaly detection processing regarding a data frame. The anomaly detection controller also includes an anomaly detection processing requester that decides an anomaly detection processing timing in accordance with a state of a vehicle in which the bus is installed when receiving the data frame, the anomaly detection processing timing being a reception timing of one or multiple fields in the data frame. The anomaly detection processor further performs the anomaly detection processing regarding the data frame at the anomaly detection processing timing decided by the anomaly detection processing requester.

公开(公告)号：US10525911B2

公开(公告)日：2020-01-07

申请号：US15881826

申请日：2018-01-29

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Tomoyuki Haga ,  Toshihisa Nakano ,  Jun Anzai ,  Hideki Matsushima ,  Yoshihiro Ujiie ,  Yuji Unagami

IPC: H04L12/40 ,  B60R16/023 ,  H04L12/66 ,  H04L9/32 ,  H04L12/46

Abstract: A gateway connected to a bus, a bus, and the like used by a plurality of electronic control units for communication includes a frame communication unit that receives a frame, a transfer control unit that removes verification information used to verify a frame from the content of the frame received by the frame communication unit and transfers the frame to a destination bus or that adds verification information to the content of the frame and transfers the frame to the destination bus, and the like.

公开(公告)号：US10454957B2

公开(公告)日：2019-10-22

申请号：US15275860

申请日：2016-09-26

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yuji Unagami ,  Takeshi Kishikawa

IPC: H04L29/06 ,  H04L12/64 ,  H04L12/40

Abstract: A method for use in a network communication system including a plurality of electronic controllers that communicate with each other via a bus in accordance with a Controller Area Network (CAN) protocol includes determining whether or not content of a predetermined field in a transmitted frame meets a predetermined condition indicating fraud, transmitting an error frame before an end of the frame is transmitted in a case where it is determined that the frame meets the predetermined condition, recording a number of times the error frame is transmitted, for each identifier (ID) represented by content of an ID field included in a plurality of frames which has been transmitted, and providing a notification in a case where the number of times recorded for an ID exceeds a predetermined count.

公开(公告)号：US10432645B2

公开(公告)日：2019-10-01

申请号：US15285706

申请日：2016-10-05

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yuji Unagami ,  Hideki Matsushima ,  Tomoyuki Haga ,  Manabu Maeda ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: H04L29/06 ,  B60R16/023 ,  H04L12/28 ,  H04L29/08 ,  G06F21/57 ,  G06F21/60 ,  G06F21/71 ,  G06F21/85 ,  H04W4/40

Abstract: In a fraud-detection method for use in an in-vehicle network system including a plurality of electronic control units (ECUs) that exchange messages on a plurality of buses, a plurality of fraud-detection ECUs each connected to a different one of the buses, and a gateway device, a fraud-detection ECU determines whether a message transmitted on a bus connected to the fraud-detection ECU is malicious by using rule information stored in a memory. The fraud-detection ECU transmits an error message including a message identifier of a message determined to be malicious. The gateway device receives updated rule information transmitted to a first bus among the buses, selects a second bus different from the first bus, and transfers the updated rule information only to the second bus. A fraud-detection ECU connected to the second bus acquires the updated rule information and updates the rule information stored therein by using the updated rule information.

公开(公告)号：US20190260790A1

公开(公告)日：2019-08-22

申请号：US16398927

申请日：2019-04-30

Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA

Inventor： Takeshi Kishikawa ,  Yoshihiro Ujiie ,  Tomoyuki Haga ,  Hideki Matsushima

IPC: H04L29/06 ,  H04L29/08 ,  H04L12/40

Abstract: An anomaly detection electronic controller performs anomaly detection processing and is connected to a bus, which a plurality of electronic controllers use for communication to communicate following a Controller Area Network (CAN) protocol. The anomaly detection electronic controller includes an anomaly detection processor that performs anomaly detection processing regarding a data frame. The anomaly detection controller also includes an anomaly detection processing requester that decides an anomaly detection processing timing in accordance with a state of a vehicle in which the bus is installed when receiving the data frame, the anomaly detection processing timing being a reception timing of one or multiple fields in the data frame. The anomaly detection processor further performs the anomaly detection processing regarding the data frame at the anomaly detection processing timing decided by the anomaly detection processing requester.

公开(公告)号：US10328874B2

公开(公告)日：2019-06-25

申请号：US15249513

申请日：2016-08-29

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Tomoyuki Haga ,  Hideki Matsushima ,  Yoshihiro Ujiie ,  Takeshi Kishikawa

IPC: G08G1/16 ,  B60R16/023 ,  H04W4/04 ,  H04W12/12 ,  H04L12/40 ,  H04L29/06

Abstract: An anomaly handling method that suitably handles a case where the possibility of a vehicle being unauthorizedly controlled so as to suppress the effects thereof is provided. In an anomaly handling method used in one or a plurality of electronic control units installed in one vehicle, an inter-vehicle communication message transmitted from a device installed in the other vehicle is received as an anomaly detection notification, the anomaly detection notification being issued when an unauthorized frame is detected on an onboard network installed in another vehicle, and an anomaly handling processing is selected from a plurality of predetermined anomaly handling processing in accordance with the received content to transition to a safe state for example, and the selected anomaly handling processing is executed.

公开(公告)号：US10193896B2

公开(公告)日：2019-01-29

申请号：US15407738

申请日：2017-01-17

Applicant: Panasonic Intellectual Property Corporation of America

Inventor： Yoshihiro Ujiie ,  Jun Anzai ,  Yoshihiko Kitamura ,  Masato Tanabe ,  Hideki Matsushima ,  Tomoyuki Haga ,  Takeshi Kishikawa ,  Ryota Sugiyama

IPC: H04L29/06 ,  H04L12/40 ,  B60R16/023 ,  H04L29/08

Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system including a plurality of apparatuses that perform communication of frames via the bus. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the bus via the second control circuit over wired communication and/or wireless communication. The second control circuit performs a first determination process on a received frame received from the bus to determine the conformity with a first rule related to at least a reception interval, and, upon determining that the received frame conforms to the first rule, executes a predetermined process based on the content of the received frame. The first control circuit performs a second determination process on the received frame, received via the second control circuit, to determine the conformity with a second rule different from the first rule.