Network device and network system

US 10,542,033 B2
Filed: 08/04/2016
Issued: 01/21/2020
Est. Priority Date: 12/12/2013
Status: Active Grant

First Claim

Patent Images

1. An electronic control unit (ECU), comprising:

a computer configured to judge whether a message from at least one ECU of a plurality of ECUs is a valid message or not, and to detect a malicious message; and

a controller configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME during receiving a Data Frame,wherein the ECU is connected to the at least one ECU via a controller area network (CAN) bus, andthe ECU has at least one feature of following feature A and following feature B;

feature A;

wherein the computer detects the malicious message by using ID, Payload, cycle, and frequency,feature B;

wherein the controller is further configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME during receiving the Data Frame to cause a reception error, wherein the reception error is a decryption error or a frame-check sequence error.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A network device connected via a bus with a plurality of network devices includes: an authentication unit that executes authentication based upon message authentication information included in data transmitted, via the bus, by one of the plurality of network devices acting as a sender device; and a processing unit that invalidates the data upon determining that unauthorized data have been transmitted by the sender device impersonating another network device among the plurality of network devices if the authentication fails.

Citations

17 Claims

1. An electronic control unit (ECU), comprising:
- a computer configured to judge whether a message from at least one ECU of a plurality of ECUs is a valid message or not, and to detect a malicious message; and
  
  a controller configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME during receiving a Data Frame,wherein the ECU is connected to the at least one ECU via a controller area network (CAN) bus, andthe ECU has at least one feature of following feature A and following feature B;
  
  feature A;
  
  wherein the computer detects the malicious message by using ID, Payload, cycle, and frequency,feature B;
  
  wherein the controller is further configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME during receiving the Data Frame to cause a reception error, wherein the reception error is a decryption error or a frame-check sequence error.
- View Dependent Claims (2)
- - 2. The ECU according to claim 1, wherein the malicious message is sent by the at least one ECU if the at least one ECU pretends to be another ECU of the plurality of ECUs.

3. A network device, comprising a processor and a memory, wherein the processor is configured to:
- (1) judge whether a message from at least one network device of a plurality of network devices is a valid message or not; and
  
  (2) if a malicious message is detected, overwrite the malicious message with ERROR FRAME;
  
  wherein the network device is connected to the one network device via a standardized network, andthe network device has at least one feature of following feature A and following feature B;
  
  feature A;
  
  wherein the processor detects the malicious message by using ID, Payload, cycle, and frequency,feature B;
  
  wherein the processor is further configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME to cause a reception error, wherein the reception error is a decryption error or a frame-check sequence error.
- View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
- - 4. The network device according to claim 3, wherein the network device is an ECU, and the one network device is an ECU.
  - 5. The network device according to claim 3, wherein the network device is an ECU, and the one network device is a Gateway.
  - 6. The network device according to claim 3, wherein the network device is an ECU, and the one network device is a switch.
  - 7. The network device according to claim 3, wherein the network device is a Gateway, and the one network device is an ECU.
  - 8. The network device according to claim 3, wherein the network device is a Gateway, and the one network device is a Gateway.
  - 9. The network device according to claim 3, wherein the network device is a Gateway, and the one network device is a switch.
  - 10. The network device according to claim 3, wherein the network device is a switch, and the one network device is an ECU.
  - 11. The network device according to claim 3, wherein the network device is a switch, and the one network device is a Gateway.
  - 12. The network device according to claim 3, wherein the network device is a switch, and the one network device is a switch.
  - 13. The network device according to claim 3, wherein the processor includes a controller.
  - 14. The network device according to claim 3, wherein the standardized network is at least one of CAN, CAN with flexible data-rate (CANFD), and Ethernet.
  - 15. The network device according to claim 3, wherein the malicious message is sent by the at least one network device if the at least one network device pretends to be another network device of the plurality of network devices.

16. An electronic control unit (ECU), comprising:
- a computer configured to judge whether a message from at least one ECU of a plurality of ECUs is a valid message or not, and to detect a malicious message; and
  
  a controller configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME,wherein the ECU is connected to the at least one ECU via a controller area network (CAN) bus, andthe ECU has at least one feature of following feature A and feature B;
  
  feature A;
  
  wherein the computer detects the malicious message by using ID, Payload, cycle, and frequency,feature B;
  
  wherein the controller is further configured to, if the malicious message is detected, overwrite the malicious message with ERROR FRAME to cause a reception error, wherein the reception error is a decryption error or a frame-check sequence error.
- View Dependent Claims (17)
- - 17. The ECU according to claim 16, wherein the malicious message is sent by the at least one ECU if the at least one ECU pretends to be another ECU of the plurality of ECUs.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Hitachi Astemo Ltd. (Hitachi, Ltd.)
Original Assignee
Hitachi Automotive Systems Limited (Hitachi, Ltd.)
Inventors
Otsuka, Satoshi
Primary Examiner(s)
Song, Hosuk

Application Number

US15/228,608
Publication Number

US 20160344764A1
Time in Patent Office

1,265 Days
Field of Search

726 2- 6, 726 26- 30, 713168-170, 713181
US Class Current
CPC Class Codes

H04L 63/08   for authentication of entit...

H04L 63/123   received data contents, e.g...

H04L 63/1408   by monitoring network traff...

H04L 63/1441   Countermeasures against mal...

Network device and network system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

Network device and network system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links