METHOD AND APPARATUS FOR ENHANCING SECURITY IN AN IN-VEHICLE COMMUNICATION NETWORK
First Claim
1. A computer-implemented method for enhancing security in a gateway configured to communicate with at least one controller, the method comprising:
- performing an authentication procedure with the at least one controller according to an external input signal;
sensing, when the authentication procedure is completed, at least one message generated by the at least one controller;
checking a periodicity of the at least one message based on a timing point of sensing of the message; and
determining whether the at least one message is a hacking message based on the checked periodicity and a moving average for a consecutively sensed message.
1 Assignment
0 Petitions
Accused Products
Abstract
A method and apparatus for enhancing security in an in-vehicle communication network using a gateway are provided. The gateway includes a moving average determination module configured to calculate a moving average for a transmission interval of a predetermined number of received messages and to determine whether the received messages are hacking messages by comparing the moving average with a preset maximum allowable latency. The gateway further includes a security code checking module configured to analyze, if any one of the received messages is an aperiodic message, a security code contained in the aperiodic message to determine whether the aperiodic message is a hacking message. Therefore, security in the vehicle may be enhanced.
-
Citations
21 Claims
-
1. A computer-implemented method for enhancing security in a gateway configured to communicate with at least one controller, the method comprising:
-
performing an authentication procedure with the at least one controller according to an external input signal; sensing, when the authentication procedure is completed, at least one message generated by the at least one controller; checking a periodicity of the at least one message based on a timing point of sensing of the message; and determining whether the at least one message is a hacking message based on the checked periodicity and a moving average for a consecutively sensed message. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A gateway comprising:
-
a moving average determination module configured to calculate a moving average for a transmission interval of a predetermined number of received messages and to determine whether the received messages are hacking messages by comparing the moving average with a preset maximum allowable latency; and a security code checking module configured to analyze, if any one of the received messages is an aperiodic message, a security code contained in the aperiodic message to determine whether the aperiodic message is a hacking message, wherein the gateway receives the messages from at least one controller through a controller area network (CAN) bus. - View Dependent Claims (17, 18, 19, 20, 21)
-
Specification