Method of updating fraud detection rules for detecting malicious frames, fraud detecting electronic control unit, and on-board network system

US 10,372,903 B2
Filed: 12/16/2016
Issued: 08/06/2019
Est. Priority Date: 01/20/2015
Status: Active Grant

First Claim

Patent Images

1. A method used in an on-board network system provided with a plurality of electronic controllers that exchange messages by communication over one or more buses, and a fraud detecting electronic controller connected to the one or more buses, the method comprising:

determining, in the fraud detecting electronic controller, whether or not a message transmitted on the one or more buses connected to the fraud detecting electronic controller conforms to the rules based on fraud detection rules;

receiving, from an external device external to the on-board network system, delivery data including updated fraud detection rules and bus type information indicating one of a plurality of bus types to which the updated fraud detection rules are to be applied;

determining whether or not a vehicle in which the on-board network system is installed is running;

when the vehicle is determined to be running, additionally determining whether or not the bus type information indicates a drive bus which is connected to an electronic controller related to travel of the vehicle;

(i) when the bus type information indicates the drive bus, not conducting an update process with the updated fraud detection rules; and

(ii) when the bus type information does not indicate the drive bus, updating the fraud detection rules to the updated fraud detection rules.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Provided is a fraud detection rule updating method enabling the updating of rules that serve as the basis for detecting malicious frames as necessary in an on-board network system. In an on-board network system equipped with multiple electronic control units (ECUs) that communicate via buses and fraud detecting ECUs that determine, based on fraud detection rules, whether messages transmitted on the buses conform to the rules, a fraud detection rule updating method is used in which delivery data including updated fraud detection rules is received from a server external to the on-board network system, and if a certain update condition is satisfied, the fraud detection rules in a fraud detecting ECU are updated to the updated fraud detection rules.

Citations

20 Claims

1. A method used in an on-board network system provided with a plurality of electronic controllers that exchange messages by communication over one or more buses, and a fraud detecting electronic controller connected to the one or more buses, the method comprising:
- determining, in the fraud detecting electronic controller, whether or not a message transmitted on the one or more buses connected to the fraud detecting electronic controller conforms to the rules based on fraud detection rules;
  
  receiving, from an external device external to the on-board network system, delivery data including updated fraud detection rules and bus type information indicating one of a plurality of bus types to which the updated fraud detection rules are to be applied;
  
  determining whether or not a vehicle in which the on-board network system is installed is running;
  
  when the vehicle is determined to be running, additionally determining whether or not the bus type information indicates a drive bus which is connected to an electronic controller related to travel of the vehicle;
  
  (i) when the bus type information indicates the drive bus, not conducting an update process with the updated fraud detection rules; and
  
  (ii) when the bus type information does not indicate the drive bus, updating the fraud detection rules to the updated fraud detection rules.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
- - 2. The method according to claim 1, whereinwhen the bus type connected to the fraud detecting electronic controller is indicated by the bus type information, the fraud detecting electronic controller treats a certain update condition as satisfied, and performs the update.
  - 3. The method according to claim 1, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating a bus type corresponding to each of the plurality of updated fraud detection rules, andthe fraud detecting electronic controller conducts the receiving of the delivery data by communicating with the external device, extracts from the delivery data updated fraud detection rules corresponding to bus type information matching the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the extracted updated fraud detection rules.
  - 4. The method according to claim 1, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating bus type corresponding to each of the plurality of updated fraud detection rules,one of the electronic controllers conducts the receiving of the delivery data, includes each of the updated fraud detection rules from the delivery data in a message with an attached message ID for updating fraud detection rules according to the bus type indicated by the corresponding bus type information, and transmits the message over the one or more buses, andthe fraud detecting electronic controller receives, from the one or more buses, the message with the message ID for updating fraud detection rules according to the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the updated fraud detection rules included in the message.
  - 5. The method according to claim 1, whereinthe delivery data includes associated information,a certain update condition is a condition related to the associated information, andthe updating of the fraud detection rules is conducted when the associated information in the received delivery data satisfies the certain update condition, and is not conducted when the associated information does not satisfy the certain update condition.
  - 6. The method according to claim 5, whereinwhether or not the certain update condition is satisfied is determined according to a result of comparing the associated information to information stored by the electronic controller or the fraud detecting electronic controller.
  - 7. The method according to claim 6, whereinthe associated information indicates a version of the updated fraud detection rules, andwhen the associated information indicates a version newer than the version of the fraud detection rules serving as a basis of the determination, the fraud detecting electronic controller treats the certain update condition as satisfied, and conducts the update.
  - 8. The method according to claim 5, whereinthe associated information indicates a vehicle type to which the updated fraud detection rules are to be applied, andwhen the associated information indicates a vehicle type corresponding to a vehicle in which the on-board network system is installed, the certain update condition is treated as satisfied, and the update is conducted.
  - 9. The method according to claim 1, whereinthe fraud detection rules and the updated fraud detection rules are configured to include a program for determining conformity to the rules.
  - 10. The method according to claim 1, whereinthe delivery data has been subjected to a cryptographic process, andduring the receiving of the delivery data, a process corresponding to the cryptographic process is performed.
  - 11. The method according to claim 1, whereinthe plurality of electronic controllers communicate over the one or more buses in accordance with a controller area network (CAN) protocol.
  - 12. The method according to claim 1,wherein, the plurality of bus types includes (i) the drive bus which is connected to an electronic controller related to a travel of the vehicle, the travel of the vehicle includes an engine, fuel and a transmission, (ii) a body bus which is connected to an electronic controller related to a control of one of equipment of the vehicle, the equipment includes a door lock, an air conditioner, a light and a winker, and (iii) a safety bus which is connected to an electronic controller related to safety, the safety includes a brake and an air bag.

13. A fraud detecting electronic controller connected to one or more buses used for communication by a plurality of electronic controllers, comprising:
- a processor; and
  
  a memory having a computer program stored thereon, a computer program causing the processor to execute operations including;
  
  storing fraud detection rules;
  
  determining whether or not a message transmitted on the bus connected to the fraud detecting electronic controller conforms to the rules based on the fraud detection rules;
  
  receiving delivery data including updated fraud detection rules and bus type information indicating one of a plurality of bus types to which the updated fraud detection rules are to be applied;
  
  determining whether or not a vehicle in which an on-board network system is installed is running, the on-board network system including the plurality of controllers;
  
  when the vehicle is determined to be running, additionally determining whether or not the bus type information indicates a drive bus which is connected to an electronic controller related to a travel of the vehicle;
  
  (i) when the bus type information indicates the drive bus, not conducting an update process with the updated fraud detection rules; and
  
  (ii) when the bus type information does not indicate the drive bus, updating the fraud detection rules to the updated fraud detection rules.
- View Dependent Claims (14, 15, 16)
- - 14. The controller according to claim 13, whereinwhen the bus type connected to the fraud detecting electronic controller is indicated by the bus type information, the fraud detecting electronic controller treats a certain update condition as satisfied, and performs the update.
  - 15. The controller according to claim 13, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating a bus type corresponding to each of the plurality of updated fraud detection rules, andthe fraud detecting electronic controller conducts the receiving of the delivery data by communicating with the external device, extracts from the delivery data updated fraud detection rules corresponding to bus type information matching the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the extracted updated fraud detection rules.
  - 16. The controller according to claim 13, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating a bus type corresponding to each of the plurality of updated fraud detection rules,one of the electronic controllers conducts the receiving of the delivery data, includes each of the updated fraud detection rules from the delivery data in a message with an attached message ID for updating fraud detection rules according to the bus type indicated by the corresponding bus type information, and transmits the message over the one or more buses, andthe fraud detecting electronic controller receives, from the one or more buses, the message with the message ID for updating fraud detection rules according to the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the updated fraud detection rules included in the message.

17. An on-board network system comprising:
- a plurality of electronic controllers configured to exchange messages by communication over one or more buses; and
  
  a fraud detecting electronic controller configured to connect to the one or more buses,wherein the fraud detecting electronic controller determines whether or not a message transmitted on the one or more buses connected to the fraud detecting electronic controller conforms to the rules based on fraud detection rules,one of the electronic controllers receives, from an external device external to the on-board network system, delivery data including updated fraud detection rules and bus type information indicating one of a plurality of bus types to which the updated fraud detection rules are to be applied, and transmits the updated fraud detection rules over the one or more buses, andthe fraud detecting electronic controllerreceives the updated fraud detection rules from the one or more buses,determines whether or not a vehicle in which the on-board network system is installed is running,when the vehicle is determined to be running, additionally determines whether or not the bus type information indicates a drive bus which is connected to an electronic controller related to the travel of the vehicle,(i) when the bus type information indicates a drive bus related to running, does not conduct an update process with the updated fraud detection rules, and(ii) when the bus type information does not indicate a drive bus related to running, updates the fraud detection rules to the updated fraud detection rules.
- View Dependent Claims (18, 19, 20)
- - 18. The system according to claim 17, whereinwhen the bus type connected to the fraud detecting electronic controller is indicated by the bus type information, the fraud detecting electronic controller treats a certain update condition as satisfied, and performs the update.
  - 19. The system according to claim 17, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating a bus type corresponding to each of the plurality of updated fraud detection rules, andthe fraud detecting electronic controller conducts the receiving of the delivery data by communicating with the external device, extracts from the delivery data updated fraud detection rules corresponding to bus type information matching the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the extracted updated fraud detection rules.
  - 20. The system according to claim 17, whereinthe delivery data includes a plurality of updated fraud detection rules, and includes bus type information indicating a bus type corresponding to each of the plurality of updated fraud detection rules,one of the electronic controllers conducts the receiving of the delivery data, includes each of the updated fraud detection rules from the delivery data in a message with an attached message ID for updating fraud detection rules according to the bus type indicated by the corresponding bus type information, and transmits the message over the one or more buses, andthe fraud detecting electronic controller receives, from the one or more buses, the message with the message ID for updating fraud detection rules according to the bus type connected to the fraud detecting electronic controller, and updates the fraud detection rules associated with the determination to the updated fraud detection rules included in the message.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Intellectual Property Corporation of America (Panasonic Holdings Corporation)
Original Assignee
Panasonic Intellectual Property Corporation of America (Panasonic Holdings Corporation)
Inventors
Ujiie, Yoshihiro, Matsushima, Hideki, Haga, Tomoyuki, Unagami, Yuji, Kishikawa, Takeshi
Primary Examiner(s)
Hoffman, Brandon S

Application Number

US15/381,498
Publication Number

US 20170147812A1
Time in Patent Office

963 Days
Field of Search

None
US Class Current
CPC Class Codes

B60R 16/02   electric constitutive elements

B60R 16/023   for transmission of signals...

B60R 16/0231   Circuits relating to the dr...

G06F 13/36   for access to common bus or...

G06F 21/552   involving long-term monitor...

G06F 2221/034   Test or assess a computer o...

H04L 12/28   characterised by path confi...

H04L 2012/40215   Controller Area Network CAN

H04L 63/02   for separating internal fro...

H04L 63/0263   Rule management

H04L 63/20   for managing network securi...

Method of updating fraud detection rules for detecting malicious frames, fraud detecting electronic control unit, and on-board network system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Method of updating fraud detection rules for detecting malicious frames, fraud detecting electronic control unit, and on-board network system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links