Method for detecting fraudulent frame sent over an in-vehicle network system

US 10,158,717 B2
Filed: 03/22/2016
Issued: 12/18/2018
Est. Priority Date: 05/08/2014
Status: Active Grant

First Claim

Patent Images

1. A fraud detection method for use in an in-vehicle network system using Controller Area Network (CAN) protocol, the fraud detection method comprising:

receiving at least one data frame sent to a bus;

verifying a specific identifier in the received data frame only when the received data frame does not follow a predetermined rule regarding a transmission period and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state;

detecting the received data frame as an authenticated data frame when the verifying is successful; and

detecting the received data frame as a fraudulent data frame when the verifying fails,wherein the predetermined state of the vehicle is the vehicle traveling.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A fraud detection method for use in an in-vehicle network system including a plurality of electronic control units that communicate with one another via a bus in accordance with Controller Area Network (CAN) protocol is provided. The method includes receiving at least one data frame sent to the bus, verifying a specific identifier in the received data frame only if the received data frame does not follow a predetermined rule regarding a transmission period and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state, detecting the received data frame as an authenticated data frame if the verification is successful, and detecting the received data frame as a fraudulent data frame if the verification fails.

11 Citations

View as Search Results

17 Claims

1. A fraud detection method for use in an in-vehicle network system using Controller Area Network (CAN) protocol, the fraud detection method comprising:
- receiving at least one data frame sent to a bus;
  
  verifying a specific identifier in the received data frame only when the received data frame does not follow a predetermined rule regarding a transmission period and a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state;
  
  detecting the received data frame as an authenticated data frame when the verifying is successful; and
  
  detecting the received data frame as a fraudulent data frame when the verifying fails,wherein the predetermined state of the vehicle is the vehicle traveling.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. The fraud detection method according to claim 1, wherein the specific identifier is disposed in a data field of the received data frame at a predetermined position, andwherein in the verifying, it is verified whether the specific identifier is a message authentication code that reflects information in the received data frame.
  - 3. The fraud detection method according to claim 1, wherein the specific identifier is disposed in a data field of the received data frame at a predetermined position, andwherein in the verifying, it is verified whether the specific identifier is same as a predetermined value.
  - 4. The fraud detection method according to claim 1, wherein the specific identifier is disposed in a data field of the received data frame at a predetermined position, andwherein in the verifying, it is verified whether the specific identifier is same as a counter value that reflects a number of times at which data frames that do not follow the predetermined rule are received.
  - 5. The fraud detection method according to claim 1, wherein the at least one data frame sent to the bus comprises a plurality of data frames,wherein in the receiving, the plurality of data frames is sequentially received,wherein the specific identifier is disposed in a data field of the received plurality of data frames at a predetermined position, andwherein in the verifying, it is verified whether the specific identifier is same as a value obtained through a predetermined calculation based on a specific identifier in a data frame previously received in the receiving of the plurality of data frames.
  - 6. The fraud detection method according to claim 1, wherein in the verifying, it is determined whether the received data frame follows the predetermined rule,wherein when it is determined that the received data frame does not follow the predetermined rule, it is determined whether the state of the vehicle is the predetermined state, andwherein when it is determined that the state of the vehicle is the predetermined state, the verification is performed on the specific identifier.
  - 7. The fraud detection method according to claim 1, wherein when the received data frame follows the predetermined rule, the received data frame is detected as being an authorized data frame.
  - 8. The fraud detection method according to claim 1, wherein in the verifying, when the received data frame does not follow the predetermined rule and the state of the vehicle having the in-vehicle network system mounted therein is not the predetermined state, the received data frame is detected as being an authorized data frame.
  - 9. The fraud detection method according to claim 1, wherein in the verifying, when the received data frame does not follow the predetermined rule and the state of the vehicle having the in-vehicle network system mounted therein is not the predetermined state, the received data frame is detected as being the fraudulent data frame.

10. A method for use in an in-vehicle network system using Controller Area Network (CAN) protocol, the method comprising:
- providing a specific identifier in a data frame only when a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state and the data frame, that does not follow a predetermined rule regarding a transmission period, is to be sent; and
  
  sending, to a bus, the data frame that includes the provided specific identifier and that does not follow the predetermined rule,wherein the predetermined state of the vehicle is the vehicle traveling.
- View Dependent Claims (11, 12, 13, 14)
- - 11. The method according to claim 10, wherein in the providing, a message authentication code that reflects information in the data frame to be sent is disposed in a data field of the data frame to be sent at a predetermined position as the specific identifier.
  - 12. The method according to claim 10, wherein in the providing, a predetermined value is disposed in a data field of the data frame to be sent as the specific identifier.
  - 13. The method according to claim 10, wherein in the providing, a counter value that reflects a number of transmissions of data frames that do not follow the predetermined rule in the sending is disposed in a data field of the data frame to be sent at a predetermined position as the specific identifier.
  - 14. The method according to claim 10, wherein the data frame sent to the bus comprises a plurality of data frames, andwherein in the providing, a resultant value obtained by performing a predetermined calculation on a basis of a specific identifier provided in a data frame previously sent in the sending is disposed in a data field of each of the plurality of data frames.

15. An in-vehicle network system using Controller Area Network (CAN) protocol, the in-vehicle network system comprising:
- a first electronic controller including one or more memories and circuitry which, in operation, provides a specific identifier in at least one data frame only when a state of a vehicle having the in-vehicle network system mounted therein is a predetermined state and the data frame, that does not follow a predetermined rule regarding a transmission period, is to be sent, and sends, to a bus, the data frame that includes the provided specific identifier and that does not follow the predetermined rule; and
  
  a second electronic controller including one or more memories and circuitry which, in operation, receives the data frame sent to the bus and verifies the specific identifier in the received data frame only when the received data frame does not follow the predetermined rule and the state of the vehicle having the in-vehicle network system mounted therein is the predetermined state,wherein when the verification is successful, the second electronic controller detects the received data frame as being an authorized data frame,wherein when the verification fails, the second electronic controller detects the received data frame as being a fraudulent data frame, andwherein the predetermined state of the vehicle is the vehicle traveling.

16. An electronic controller using Controller Area Network (CAN) protocol, the electronic controller comprising:
- one or more memories; and
  
  circuitry which, in operation;
  
  provides a specific identifier in at least one data frame only when a state of a vehicle having an in-vehicle network system mounted therein is a predetermined state and the data frame, that does not follow a predetermined rule regarding a transmission period, is to be sent; and
  
  sends, to a bus, the data frame that includes the provided specific identifier and that does not follow the predetermined rule,wherein the predetermined state of the vehicle is the vehicle traveling.

17. An electronic controller using Controller Area Network (CAN) protocol, the electronic controller comprising:
- one or more memories; and
  
  circuitry which, in operation;
  
  receives at least one data frame sent to a bus; and
  
  verifies a specific identifier in the received data frame only when the received data frame does not follow a predetermined rule regarding a transmission period and a state of a vehicle having an in-vehicle network system mounted therein is a predetermined state,wherein when the verification is successful, the electronic controller detects the received data frame as being an authorized data frame,wherein when the verification fails, the electronic controller detects the received data frame as being a fraudulent data frame, andwherein the predetermined state of the vehicle is the vehicle traveling.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Intellectual Property Corporation of America (Panasonic Holdings Corporation)
Original Assignee
Panasonic Intellectual Property Corporation of America (Panasonic Holdings Corporation)
Inventors
Kishikawa, Takeshi, Matsushima, Hideki, Haga, Tomoyuki, Maeda, Manabu, Unagami, Yuji, Ujiie, Yoshihiro
Primary Examiner(s)
Moorthy, Aravind K

Application Number

US15/076,650
Publication Number

US 20160205194A1
Time in Patent Office

1,001 Days
Field of Search

726 1, 726 4, 726 13, 713161, 713168
US Class Current
CPC Class Codes

B60R 16/023   for transmission of signals...

H04L 2209/84   Vehicles

H04L 63/08   for authentication of entit...

H04L 63/10   for controlling access to d...

H04L 63/12   Applying verification of th...

H04L 63/20   for managing network securi...

H04L 67/12   specially adapted for propr...

H04L 9/3242   involving keyed hash functi...

H04L 9/3297   involving time stamps, e.g....

Method for detecting fraudulent frame sent over an in-vehicle network system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

11 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Method for detecting fraudulent frame sent over an in-vehicle network system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

11 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links