Device for detection and prevention of an attack on a vehicle
First Claim
1. A device executing instructions for attack detection and prevention in a vehicle, comprising:
- at least one hardware processor for executing the following;
code instructions to collect real-time data from one or more data sources of said vehicle;
code instructions to analyze said real-time data for detecting at least two irregularities, the at least two irregularities selected from the group consisting of;
an irregularity between data received from a vehicle sensor and action held by one of a plurality of subsystems of said vehicle,an irregularity in a relationship between one action held by one of said plurality of subsystems and another action held by another of said plurality of subsystems, andan irregular cellular provider signal of a source of said real-time data or an irregular change of a cellular provider signal;
code instructions to send an alert and/or prevent at least one attack when the at least two irregularities are detected;
wherein the code instructions are stored in a non-transitory computer readable medium.
2 Assignments
0 Petitions
Accused Products
Abstract
A new device for detection and prevention of an attack on a vehicle via its communication channels, having: an input-unit configured to collect real-time and/or offline data from various sources such as sensors, network based services, navigation applications, the vehicles electronic control units, the vehicle'"'"'s bus-networks, the vehicle'"'"'s subsystems, and on board diagnostics; a database, for storing the data; a detection-unit in communication with the input-unit; and an action-unit, in communication with the detection unit, configured for sending an alert via the communication channels and/or prevent the attack, by breaking or changing the attacked communication channels. The detection-unit is configured to simultaneously monitor the content, the meta-data and the physical-data of the data and detect the attack.
20 Citations
17 Claims
-
1. A device executing instructions for attack detection and prevention in a vehicle, comprising:
at least one hardware processor for executing the following; code instructions to collect real-time data from one or more data sources of said vehicle; code instructions to analyze said real-time data for detecting at least two irregularities, the at least two irregularities selected from the group consisting of; an irregularity between data received from a vehicle sensor and action held by one of a plurality of subsystems of said vehicle, an irregularity in a relationship between one action held by one of said plurality of subsystems and another action held by another of said plurality of subsystems, and an irregular cellular provider signal of a source of said real-time data or an irregular change of a cellular provider signal; code instructions to send an alert and/or prevent at least one attack when the at least two irregularities are detected;
wherein the code instructions are stored in a non-transitory computer readable medium.- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
16. A computer implemented method, by at least one hardware processor, for attack detection and prevention in a vehicle, comprising:
-
collecting real-time data from one or more data sources of said vehicle; analyzing, by the at least one hardware processor, said real-time data for detecting at least two irregularities, the at least two irregularity selected from the group consisting of; an irregularity between an action held by one of a plurality of subsystems of said vehicle and a current vehicle operation, an irregularity in a relationship between one action held by one of said plurality of subsystems and another action held by another of said plurality of subsystems, an irregularity in a relationship between a current output of at least one sensor of said vehicle and the real-time data, and an irregular cellular provider signal of a source of instructions found in said real-time data or an irregular change of a cellular provider signal; and sending an alert and/or preventing at least one attack when the at least two irregularities are detected.
-
-
17. A computer program product for attack detection and prevention in a vehicle, the computer program product comprising a non-transitory computer readable storage medium having program instructions embodied therewith, the program instructions executable by a hardware processor of a vehicle for:
-
collecting real-time data from one or more data sources of said vehicle; analyzing said real-time data for detecting at least two irregularities, the at least two irregularities selected from the group consisting of; an irregularity between an action held by one of a plurality of subsystems of said vehicle and a current vehicle operation, an irregularity between a relationship between one action held by one of said plurality of subsystems and another action held by another of said plurality of subsystems, an irregularity in a relationship between a current output of at least one sensor of said vehicle and the real-time data, and an irregular cellular provider signal of a source of instructions found in said real-time data or an irregular change of a cellular provider signal; and sending an alert and/or preventing at least one attack when the at least two irregularities are detected.
-
Specification