Who is the assignee on this patent?

Panasonic Ip Corp America, Panasonic Iniellectual Property Corp Of America

What technology area does this patent fall under?

Primary CPC classification G06F21/85. Mapped technology areas include Physics.

When was this patent published?

Publication date Tue May 17 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Security apparatus, attack detection method, and storage medium

US11336618B2 · US · B2

Patent metadata
Field	Value
Publication number	US-11336618-B2
Application number	US-202117152286-A
Country	US
Kind code	B2
Filing date	Jan 19, 2021
Priority date	Oct 9, 2015
Publication date	May 17, 2022
Grant date	May 17, 2022

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A security apparatus includes a receiver that receives a frame front at least one network, a parameter storage that stores at least one examination parameter defining a content of an examination on a frame, and processing circuitry that performs operations. The operations include judging whether a predetermined condition is satisfied for the frame received by the receiver. When the predetermined condition is satisfied, updating the stored at least one examination parameter, and when the predetermined condition is not satisfied, not updating the stored at least one examination parameter. The operations also include executing an examination, based on the stored at least one examination parameter, as to whether the frame received by the receiver is an attack frame, and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed.

First claim

Opening claim text (preview).

What is claimed is: 1. A security apparatus connected to at least one network, comprising: a receiver that receives a frame from the at least one network; a parameter storage that stores at least one examination parameter defining a content of an examination on a frame; processing circuitry that, in operation, performs operations including judging whether a predetermined condition is satisfied for the frame received by the receiver, in a case where the predetermined condition is judged to be satisfied for the frame received by the receiver, updating the at least one examination parameter stored in the parameter storage; in a case where the predetermined condition is judged not to be satisfied for the frame received by the receiver, not updating the at least one examination parameter stored in the parameter storage; executing an examination, based on the at least one examination parameter stored in the parameter storage after the judging, as to whether the frame received by the receiver is an attack frame; and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed. 2. The security apparatus according to claim 1 , wherein the at least one examination parameter includes a plurality of examination parameters defining contents of examinations on a frame, the contents being different from each other, and the operations further include judging whether each of a plurality of predetermined conditions is satisfied for the frame received by the receiver, and depending on a result of the judgment, determining an examination parameter to be subjected to updating from the plurality of examination parameters, wherein the updating updates the determined examination parameter. 3. The security apparatus according to claim 2 , wherein the operations further include at a point of time when judgment results are obtained for the respective predetermined conditions, determining whether the plurality of examination parameters includes an examination parameter that is to be updated depending on the judgment results, in the updating, in a case where it is determined that updating is to be performed, updating the examination parameter determined to be updated, and performing the executing of the examination depending on a state of updating of each of the plurality of examination parameters. 4. The security apparatus according to claim 1 , wherein in the executing of the examination, in a ease where the predetermined condition is satisfied for the frame received by the receiver, it is judged that the frame is an attack frame, and in the executing of the process, the process is performed on the frame judged as the attack frame such that an influence of the attack frame on at least one electronic control unit is suppressed. 5. A method for an on-board network system in which a plurality of electronic control units transmit and receive a frame via & least one network, the method comprising: receiving, by a receiver, a frame from the at least one network; judging whether a predetermined condition is satisfied for the frame received by the receiver; in a case where the predetermined condition is judged to be satisfied for the frame received in the receiving, updating an examination parameter defining a content of a frame examination; in a case where the predetermined condition is judged not to be satisfied for the frame received by the receiver, not updating the at least one examination parameter stored in the parameter storage; executing an examination, based on the updated examination parameter after the judging, as to whether the frame received in the receiving is an attack frame or not; and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed. 6. A computer-readable non-transitory storage medium storing a program, the program causing, when executed by a processor disposed in a security apparatus connected to least one network, the processor to execute a method, the method comprising: receiving, by a receiver, a frame from the at least one network; judging whether a predetermined condition is satisfied for the frame received by the receiver; in a case where the predetermined condition is judged to be satisfied for the frame received in the receiving, updating an examination parameter defining a content of a frame examination; in a case where the predetermined condition is judged not to be satisfied for the frame received by the receiver, not updating the at least one examination parameter stored in the parameter storage; executing an examination, based on the updated examination parameter after die judging, as to whether the frame received in the receiving is an attack frame or not; and performing a process depending on a result of the execution of the examination such that an influence of an attack frame on at least one electronic control unit is suppressed.

Assignees

Inventors

Classifications

G06F21/85Primary
interconnection devices, e.g. bus-connected or in-line devices · CPC title
H04L63/1441
Countermeasures against malicious traffic (countermeasures against attacks on cryptographic mechanisms H04L9/002) · CPC title
H04L67/12
specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks · CPC title
B60R16/023Primary
for transmission of signals between vehicle parts or subsystems · CPC title
G06F21/55
Detecting local intrusion or implementing counter-measures · CPC title

Patent family

Related publications grouped by family.

View patent family 58488226

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US11336618B2 cover?: A security apparatus includes a receiver that receives a frame front at least one network, a parameter storage that stores at least one examination parameter defining a content of an examination on a frame, and processing circuitry that performs operations. The operations include judging whether a predetermined condition is satisfied for the frame received by the receiver. When the predetermine…
Who is the assignee on this patent?: Panasonic Ip Corp America, Panasonic Iniellectual Property Corp Of America
What technology area does this patent fall under?: Primary CPC classification G06F21/85. Mapped technology areas include Physics.
When was this patent published?: Publication date Tue May 17 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 4 related publications on this page (citations in our corpus or others sharing the same primary CPC).

How to read this patent

Abstract

First claim

Assignees

Inventors

Classifications

Patent family

External sources

Related patents

Method, electronic device, and computer program product for displaying virtual button

Control device for connecting a can bus to a radio network, and motor vehicle having such a control device

Network device, and data sending and receiving system

Method and apparatus for enhancing security in an in-vehicle communication network

Frequently asked questions