Access restriction device, on-board communication system and method for communication restriction
First Claim
Patent Images
1. An access restriction device to be installed in a vehicle, the access restriction device comprising:
- a first receiver/transmitter communicating with an on-board device by way of an in-car network arranged in the vehicle;
a second receiver/transmitter communicating with an external device;
a first memory storing a program which performs processing on information transmitted and received by the first receiver/transmitter and/or processing on information transmitted and received by the second receiver/transmitter;
a processor programmed to execute one or a plurality of programs stored in the first memory, including;
performing addition or update of a program to be executed by the processor by communicating between the second receiver/transmitter and the external device;
determining, for each program, a level of access authorization with respect to information received with the first receiver/transmitter;
determining, for each type of information received with the first receiver/transmitter, a level of access authorization for permission to access the information received with the first receiver/transmitter, the received information being identified on the basis of;
(i) an identifier number appended to a frame to be transmitted or received, or (ii) an order in which information is stored in the frame; and
acquire position information of the vehicle;
determine whether or not the position of the vehicle according to the acquired position information is a predetermined position or within a predetermined position region;
determine whether or not the vehicle is in a stopped state, depending on the acquired information regarding the vehicle;
restricting access to the information, depending on;
(i) the determined level of access authorization of the received information and the determined level of access authorization for permission, when an access request is made for the information received by the first receiver/transmitter, (ii) a determination result of the position of the vehicle with respect to the predetermined position or the predetermined position region, and (iii) if the vehicle is determined as being not in the stopped state.
1 Assignment
0 Petitions
Accused Products
Abstract
An access restriction device as well as an on-board communication system and a method for communication restriction, which prevent outside leakage of information caused by unauthorized access of malicious programs to an in-car network. The communication between the in-car network of the vehicle and an external device is performed by a security controller. The security controller can perform addition or update of a program involving processing for transmission and reception of the information. The security controller performs processing for restricting access to information of the in-car network performed by program execution according to an access authorization level of each program and an access permission level of each type of information. The security controller restricts the transmission depending on the access authorization level of each program and the access permission level of each type of information in case of transmitting the information to the in-car network by the program execution.
12 Citations
10 Claims
-
1. An access restriction device to be installed in a vehicle, the access restriction device comprising:
-
a first receiver/transmitter communicating with an on-board device by way of an in-car network arranged in the vehicle; a second receiver/transmitter communicating with an external device; a first memory storing a program which performs processing on information transmitted and received by the first receiver/transmitter and/or processing on information transmitted and received by the second receiver/transmitter; a processor programmed to execute one or a plurality of programs stored in the first memory, including; performing addition or update of a program to be executed by the processor by communicating between the second receiver/transmitter and the external device; determining, for each program, a level of access authorization with respect to information received with the first receiver/transmitter; determining, for each type of information received with the first receiver/transmitter, a level of access authorization for permission to access the information received with the first receiver/transmitter, the received information being identified on the basis of;
(i) an identifier number appended to a frame to be transmitted or received, or (ii) an order in which information is stored in the frame; andacquire position information of the vehicle; determine whether or not the position of the vehicle according to the acquired position information is a predetermined position or within a predetermined position region; determine whether or not the vehicle is in a stopped state, depending on the acquired information regarding the vehicle; restricting access to the information, depending on;
(i) the determined level of access authorization of the received information and the determined level of access authorization for permission, when an access request is made for the information received by the first receiver/transmitter, (ii) a determination result of the position of the vehicle with respect to the predetermined position or the predetermined position region, and (iii) if the vehicle is determined as being not in the stopped state. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An on-board communication system comprising:
-
one or more on-board devices, and an access restriction device connected to the one or more on-board devices by way of an in-car network, the access restriction device including; a first receiver/transmitter communicating with an on-board device by way of an in-car network arranged in the vehicle; a second receiver/transmitter communicating with an external device; a memory storing a program which performs processing on information transmitted and received from the first receiver/transmitter and/or processing on information transmitted and received from the second receiver/transmitter; a processor programmed to execute the program stored in the memory, the program having steps including; performing addition or update of a program to be executed by the processor by communicating between the second receiver/transmitter and the external device; determining, for each program, a level of access authorization with respect to information received with the first receiver/transmitter; determining, for each type of information received with the first receiver/transmitter, a level of access authorization for permission to access the information received with the first receiver/transmitter, the received information being identified on the basis of;
(i) an identifier number appended to a frame to be transmitted or received, or (ii) an order in which information is stored in the frame;acquiring position information of the vehicle; determining whether or not the position of the vehicle according to the acquired position information is a predetermined position or within a predetermined position region; determining whether or not the vehicle is in a stopped state, depending on the acquired information regarding the vehicle; and restricting access to the information, depending on the determined level of access authorization of the received information and the determined level of access authorization for permission, when an access request is made for the information received by the first receiver/transmitter, (ii) a determination result of the position of the vehicle with respect to the predetermined position or the predetermined position region, and (iii) if the vehicle is determined as being not in the stopped state; wherein the on-board device is configured to communicate with the external device via the access restriction device.
-
-
10. A communication restriction method utilizing an access restriction device to be installed in a vehicle, the access restriction device including:
- (i) a first receiver/transmitter which communicates with an on-board device by way of an in-car network arranged in the vehicle;
(ii) a second receiver/transmitter which communicates with an external device;
(iii) a memory storing a program which performs processing concerning information to be transmitted and received with the first receiver/transmitter and/or processing concerning information to be transmitted and received with the second receiver/transmitter;
(iv) a processor which executes one or a plurality of programs stored in the memory;
the communication restriction method restricting the communication of the on-board device and the external device by utilizing the access restriction device;
the communication restriction method comprising;determining, for each program, a level of access authorization for information received with the first receiver/transmitter; determining, for each type of information received in the first receiver/transmitter, a level of access authorization for permission to access information received with the first receiver/transmitter, the received information being identified on the basis of;
(i) an identifier number appended to a frame to be transmitted or received, or (ii) an order in which information is stored in the frame;acquiring position information of the vehicle; determining whether or not the position of the vehicle according to the acquired position information is a predetermined position or within a predetermined position region; determining whether or not the vehicle is in a stopped state, depending on the acquired information regarding the vehicle; and restricting access to the information, depending on;
(i) the determined level of access authorization of the received information and the determined level of access authorization for permission, when an access request is made for the information received by the first receiver/transmitter, (ii) a determination result of the position of the vehicle with respect to the predetermined position or the predetermined position region, and (iii) if the vehicle is determined as being not in the stopped state.
- (i) a first receiver/transmitter which communicates with an on-board device by way of an in-car network arranged in the vehicle;
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeAutonetworks Technologies, Ltd. (Sumitomo Corporation), Sumitomo Electric Industries Limited (Sumitomo Corporation), Sumitomo Wiring Systems Limited (Sumitomo Corporation)
-
Original AssigneeAutonetworks Technologies, Ltd. (Sumitomo Corporation), Sumitomo Electric Industries Limited (Sumitomo Corporation), Sumitomo Wiring Systems Limited (Sumitomo Corporation)
-
InventorsNoda, Tetsuya, Horihata, Satoshi, Okada, Hiroshi, Adachi, Naoki
-
Primary Examiner(s)Pwu, Jeffrey
-
Assistant Examiner(s)TRUONG, THONG P
-
Application NumberUS14/764,019Publication NumberTime in Patent Office1,642 DaysField of SearchUS Class CurrentCPC Class CodesG06F 21/57 Certifying or maintaining t...G06F 2221/2113 Multi-level security, e.g. ...H04L 63/102 Entity profilesH04L 63/105 Multiple levels of securityH04W 12/082 using revocation of authori...H04W 4/029 Location-based management o...H04W 4/40 for vehicles, e.g. vehicle-...
