DEVICE FOR DETECTION AND PREVENTION OF AN ATTACK ON A VEHICLE
4 Assignments
0 Petitions
Accused Products
Abstract
A new device for detection and prevention of an attack on a vehicle via its communication channels, having: an input-unit configured to collect real-time and/or offline data from various sources such as sensors, network based services, navigation applications, the vehicles electronic control units, the vehicle'"'"'s bus-networks, the vehicle'"'"'s subsystems, and on board diagnostics; a database, for storing the data; a detection-unit in communication with the input-unit; and an action-unit, in communication with the detection unit, configured for sending an alert via the communication channels and/or prevent the attack, by breaking or changing the attacked communication channels. The detection-unit is configured to simultaneously monitor the content, the meta-data and the physical-data of the data and detect the attack.
-
Citations
60 Claims
-
1-40. -40. (canceled)
-
41. A device for detection and prevention of at least one attack on a vehicle via its one or more communication channels, said device comprising:
-
a. an input-unit configured to collect real-time and/or offline data from one or more sources selected from a group consisting of; one or more sensors, one or more network based services, one or more navigation applications or navigation devices, one or more electronic control units (ECU) of said vehicle, one or more bus-networks of said vehicle, one or more subsystems of said vehicle, and one or more on board diagnostics (OBD); b. a database, configured to store said data; c. a detection-unit in communication with said input-unit; and d. an action-unit, in communication with said detection unit, configured to send an alert via said communication channels and/or prevent said attack, by breaking or changing the attacked said one or more communication channels; wherein said detection-unit is configured for simultaneous monitoring of content, meta-data and physical-data of said data collected from same or different said sources and detection of said attack based on irregularities of—
or irrational-relation between—said content and said meta-data, said content and said physical-data, said meta-data and said physical-data, at least two said meta-data, or at least two said physical-data. - View Dependent Claims (42, 43, 44, 45, 46, 47, 48, 49, 50, 51)
-
-
52. A method for detecting and preventing at least one attack on a vehicle via its one or more communication channels, said method comprising steps of:
-
a. collecting real-time and/or offline data from one or more sources selected from a group consisting of; one or more sensors, one or more network based services, one or more navigation applications or navigation devices, one or more electronic control units (ECU) of said vehicle, one or more bus-networks of said vehicle, one or more subsystems of said vehicle, and one or more on board diagnostics (OBD); b. storing said data in a database; c. monitoring said data for an attack; and
if detecting said attack,d. acting by means of sending an alert and/or preventing said attack by breaking or changing said one or more communication channels; wherein said monitoring includes simultaneous examination of content, meta-data and physical-data of said data collected from same or different said sources for said detecting of said attack, based on irregularities of—
or irrational-relation between—said content and said meta-data, said content and said physical-data, said meta-data and said physical-data, at least two said meta-data, or at least two said physical-data. - View Dependent Claims (53, 54, 55, 56, 57, 58, 59, 60)
-
Specification