公开(公告)号：JP2019022210A

公开(公告)日：2019-02-07

申请号：JP2018084424

申请日：2018-04-25

Applicant: PANASONIC IP CORP AMERICA

Inventor： TORISAKI TADAYUKI ,  SASAKI TAKAMITSU ,  HAGA TOMOYUKI

IPC: H04L12/66 ,  H04L12/28

Abstract: 【課題】車載機器に接続され且つ攻撃を受けた車載機器からの不正な制御を停止する車載中継装置等を提供する。【解決手段】車両に搭載され且つ車載機器間のデータの送受信を中継する車載中継装置は、第1の車載機器とデータを送受信する第1の通信部と、第2の車載機器とデータを送受信する第2の通信部と、前記第1の通信部と前記第2の通信部との間でのデータの中継を制御する制御部とを備え、前記制御部は、前記第1の通信部又は前記第2の通信部から受信された受信データに不正がある場合、前記車両の走行状態に応じて、前記中継を停止する。【選択図】図1

公开(公告)号：JP2019004518A

公开(公告)日：2019-01-10

申请号：JP2018174641

申请日：2018-09-19

Applicant: PANASONIC IP CORP AMERICA

Inventor： HAGA TOMOYUKI ,  MATSUSHIMA HIDEKI ,  MAEDA MANABU ,  KAIJO YUJI ,  UJIIE YOSHIHIRO ,  KISHIKAWA TAKESHI

IPC: H04L12/28 ,  B60R16/023 ,  G09C1/00 ,  H04L9/32

Abstract: 【課題】CANプロトコル等に従って通信する車載ネットワークシステムにおいて、MACに対する総当たり攻撃への耐性を高め、不正なフレームの送信に対して適切に対処する不正対処方法を提供する。【解決手段】車載ネットワークにおいてMACが付加されたデータフレームの授受を行う複数の電子制御ユニットを備える車載ネットワークシステムにおいて用いられる不正対処方法は、車載ネットワークに送信されたデータフレームを受信する受信ステップ(シーケンスS4004)と、データを利用してMACを生成して、受信ステップで受信されたデータフレームに当該MACが付加されていることを検証する検証ステップ(シーケンスS4005)と、検証ステップでの検証が失敗した場合に、MACの生成に利用されるデータについての更新処理を行う更新処理ステップ(シーケンスS4007等)とを含む。【選択図】図43

公开(公告)号：EP3192703A4

公开(公告)日：2017-08-02

申请号：EP15839733

申请日：2015-08-25

Applicant: PANASONIC IP CORP AMERICA

Inventor： UJIIE YOSHIHIRO ,  ANZAI JUN ,  KITAMURA YOSHIHIKO ,  TANABE MASATO ,  MATSUSHIMA HIDEKI ,  HAGA TOMOYUKI ,  KISHIKAWA TAKESHI ,  SUGIYAMA RYOTA

IPC: B60R16/023 ,  H04L12/28 ,  H04L12/40 ,  H04L29/06

CPC classification number: H04L63/123 ,  B60R16/023 ,  H04L12/28 ,  H04L12/40 ,  H04L63/08 ,  H04L63/102 ,  H04L63/20 ,  H04L67/12 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: A head unit (100) that is a vehicle communication apparatus connected to a bus in an in-vehicle network system, the in-vehicle network system including a plurality of apparatuses that perform communication of frames via the bus, includes a multimedia control unit (150) that identifies a transmit frame, the transmit frame being a frame to be delivered to the bus, and a system control unit (110) capable of exchanging information on frames with the multimedia control unit (150) via wired communication or wireless communication. At least one of the multimedia control unit (150) and the system control unit (110) determines a conformity of the transmit frame with a rule.

Abstract translation: 在车载网络系统中与车辆连接的车辆通信装置即车头单元（100）包括多个通过总线进行帧通信的装置，该车载网络系统包括多媒体控制单元（ 150），所述发送帧是要被传送到所述总线的帧，以及系统控制单元（110），其能够经由有线通信或无线通信与所述多媒体控制单元（150）交换关于帧的信息。 多媒体控制单元（150）和系统控制单元（110）中的至少一个确定发送帧与规则的一致性。

公开(公告)号：EP3219553A4

公开(公告)日：2017-10-25

申请号：EP15858625

申请日：2015-10-13

Applicant: PANASONIC IP CORP AMERICA

Inventor： HAGA TOMOYUKI ,  MATSUSHIMA HIDEKI ,  MAEDA MANABU ,  UNAGAMI YUJI ,  ANZAI JUN

IPC: B60R16/02 ,  G06F21/44 ,  G06F21/57 ,  G06F21/62

CPC classification number: H04L9/085 ,  B60R16/023 ,  G06F8/65 ,  G06F8/665 ,  G06F21/445 ,  G06F21/572 ,  G06F21/6218 ,  G06F2221/2107 ,  G06F2221/2113 ,  G06F2221/2137 ,  G06F2221/2141 ,  G06F2221/2151

Abstract: Provided is an update management method that causes an external tool, capable of transmitting an update message to update data such as shared keys and the like within electronic control units (ECUs) making up an onboard network, to update shared keys and the like within the ECUs, while reducing the risk of all ECUs being unauthorizedly rewritten in a case where secret information given to the external tool is leaked. The update management method is to receive and verify update authority information indicating authority of the external tool, and in a case that an update message instructing updating of shared keys or the like of one or multiple ECUs has been transmitted from the external tool (step S1010), if the verification is successful and the update authority information indicates that the transmission of the update message is within the range of authority of the external tool (step S1013), the update is executed at the ECU (step S1019), and otherwise, update at the ECU is inhibited.

公开(公告)号：EP3142291A4

公开(公告)日：2017-05-17

申请号：EP15789834

申请日：2015-04-21

Applicant: PANASONIC IP CORP AMERICA

Inventor： HAGA TOMOYUKI ,  MATSUSHIMA HIDEKI ,  MAEDA MANABU ,  UNAGAMI YUJI ,  UJIIE YOSHIHIRO ,  KISHIKAWA TAKESHI

IPC: H04L9/32 ,  B60R16/023 ,  H04L9/08 ,  H04L29/08

CPC classification number: B60R25/307 ,  B60R2325/108 ,  H04L9/0891 ,  H04L9/3242 ,  H04L67/12 ,  H04L2209/84

Abstract: An anti-fraud method for use in an in-vehicle network system including a plurality of electronic control units that exchange data frames, each having added thereto a MAC, via a bus includes a receiving step of receiving a data frame transmitted on the bus, a verification step of generating a MAC by using data and verifying that the data frame received in the receiving step has added thereto the MAC, and an update processing step of performing an update process on the data used for generating the MAC in a case where verification has failed in the verification step.

Abstract translation: 在车载网络系统，其包括没有交换数据帧，每个都具有加于其上的MAC电子控制单元的多元性中使用的抗欺诈方法，经由总线包括总线上接收数据帧的反式mitted的接收步骤， 通过使用数据和验证产生MAC的验证步骤的确在接收步骤中接收已加入其中的MAC数据帧，并在用于在一个情况下验证生成MAC的数据进行更新处理的更新处理步骤 失败的验证步骤。

公开(公告)号：EP3169021A4

公开(公告)日：2017-07-05

申请号：EP15819615

申请日：2015-05-19

Applicant: PANASONIC IP CORP AMERICA

Inventor： UJIIE YOSHIHIRO ,  TANABE MASATO ,  KISHIKAWA TAKESHI ,  HAGA TOMOYUKI ,  MATSUSHIMA HIDEKI

IPC: H04L12/40 ,  H04L29/06

CPC classification number: G06F21/44 ,  B60R16/0231 ,  G06F13/4208 ,  H04L12/40 ,  H04L63/123 ,  H04L67/12 ,  H04L2012/40215

公开(公告)号：EP3132979A4

公开(公告)日：2017-04-05

申请号：EP15779570

申请日：2015-03-23

Applicant: PANASONIC IP CORP AMERICA

Inventor： MAEDA MANABU ,  MATSUSHIMA HIDEKI ,  HAGA TOMOYUKI ,  UNAGAMI YUJI ,  UJIIE YOSHIHIRO ,  KISHIKAWA TAKESHI

IPC: B60R16/023 ,  B60R16/02 ,  H04L12/28 ,  H04L12/40 ,  H04L29/06 ,  H04L29/08

CPC classification number: H04L63/1416 ,  B60R16/0231 ,  H04L63/1425 ,  H04L67/12 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: A fraud sensing method for use in an in-vehicle network system including a plurality of electronic control units that communicate with each other via a bus includes a detecting step of detecting that a state of a vehicle satisfies a predetermined condition, and a switching step of switching, upon detecting that the state of the vehicle satisfies the predetermined condition, an operation mode of a fraud-sensing electronic control unit connected to the bus between a first mode in which a first type of sensing process for sensing a fraudulent message in the bus is performed and a second mode in which the first type of sensing process is not performed.

Abstract translation: 一种用于包括经由总线相互通信的多个电子控制单元的车载网络系统中的欺诈感测方法包括：检测车辆的状态满足预定条件的检测步骤;以及切换步骤， 在检测到车辆的状态满足预定条件时切换在第一模式和第二模式之间连接到总线的非法检测电子控制单元的操作模式，在第一模式中，第一类型的感测过程用于感测总线中的欺骗性消息 并且执行不执行第一类型感测处理的第二模式。

公开(公告)号：EP3099004A4

公开(公告)日：2016-11-30

申请号：EP14879415

申请日：2014-12-02

Applicant: PANASONIC IP CORP AMERICA

Inventor： UJIIE YOSHIHIRO ,  OHMORI MOTOJI ,  MATSUSHIMA HIDEKI ,  HAGA TOMOYUKI ,  MAEDA MANABU ,  UNAGAMI YUJI

IPC: H04L9/32 ,  G06F21/33 ,  G06F21/44 ,  H04L9/08 ,  H04L12/46 ,  H04L29/06

CPC classification number: H04L63/08 ,  G06F21/44 ,  H04L9/3268 ,  H04L12/2803 ,  H04L12/4625 ,  H04L63/0823 ,  H04L63/101

Abstract: An authentication method for at least one of a plurality of devices connected to a HAN includes checking, with a first device among the plurality of devices, validity of a second device using a CRL including attribute information regarding the second device among the plurality of devices, and revoking, with the first device, the second device if the checking is negative.

公开(公告)号：EP3346646A4

公开(公告)日：2018-07-11

申请号：EP16841029

申请日：2016-06-30

Applicant: PANASONIC IP CORP AMERICA

Inventor： HAGA TOMOYUKI ,  NAKANO TOSHIHISA ,  ANZAI JUN ,  MATSUSHIMA HIDEKI ,  UJIIE YOSHIHIRO ,  UNAGAMI YUJI

IPC: H04L12/40

CPC classification number: B60R16/0231 ,  B60R16/023 ,  H04L9/32 ,  H04L12/40 ,  H04L12/40169 ,  H04L12/66 ,  H04L2012/40215 ,  H04L2012/40273

Abstract: A gateway (90) connected to a bus (10), a bus (20), and the like used by a plurality of electronic control units for communication includes a frame communication unit (901) that receives a frame, a transfer control unit (906) that removes verification information used to verify a frame from the content of the frame received by the frame communication unit (901) and transfers the frame to a destination bus or that adds verification information to the content of the frame and transfers the frame to the destination bus, and the like.

公开(公告)号：EP3248844A4

公开(公告)日：2018-02-14

申请号：EP15878674

申请日：2015-11-17

Applicant: PANASONIC IP CORP AMERICA

Inventor： UJIIE YOSHIHIRO ,  MATSUSHIMA HIDEKI ,  HAGA TOMOYUKI ,  UNAGAMI YUJI ,  KISHIKAWA TAKESHI

IPC: H04L29/06 ,  B60R16/02 ,  B60R16/023 ,  G06F13/36 ,  G06F21/55 ,  H04L12/28

CPC classification number: G06F21/552 ,  B60R16/02 ,  B60R16/023 ,  B60R16/0231 ,  G06F13/36 ,  G06F2221/034 ,  H04L12/28 ,  H04L63/02 ,  H04L63/20

Abstract: Provided is a fraud detection rule updating method enabling the updating of rules that serve as the basis for detecting malicious frames as necessary in an on-board network system. In an on-board network system equipped with multiple electronic control units (ECUs) (100a to 100e) that communicate via buses and fraud detecting ECUs (400a to 400c) that determine, based on fraud detection rules, whether messages transmitted on the buses conform to the rules, a fraud detection rule updating method is used in which delivery data including updated fraud detection rules is received from a server (500) external to the on-board network system, and if a certain update condition is satisfied, the fraud detection rules in a fraud detecting ECU (400a) are updated to the updated fraud detection rules.