ELECTRONIC CONTROL UNIT NETWORK SECURITY
First Claim
1. A method of controlling access to a vehicle network that includes a plurality of electronic control units (ECUs) communicating over the network, comprising the steps of:
- operating a network of ECUs that include at least first and second ECUs in communication with each other over the network, wherein the first ECU comprises an external access point that enables access to the network via the first ECU by devices external to the network;
establishing communication between the first ECU and an external device;
providing the external device with limited privilege access to the network via the first ECU, wherein the step of providing limited privilege access comprises one or both of;
(i) sending instructions from the first ECU to the second ECU based on a communication received at the first ECU from the external device; and
(ii) transmitting from the vehicle via the first ECU data that is sent from the second ECU to the first ECU;
detecting unauthorized escalated privilege access of the first ECU; and
in response to the detection, at least partially restricting use of the first ECU as the external access point, thereby preventing external devices from using the first ECU for the limited privilege access to the network.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method of controlling access to a vehicle network that includes a plurality of electronic control units (ECUs) communicating over the network. The method carried out by the system operates a network of ECUs that include at least first and second ECUs in communication with each other over the network. The first ECU may be an external access point which can establish communication with an external device. The first ECU provides the external device with limited privilege access to the network. The method further includes detecting unauthorized escalated privilege access of the first ECU, and in response to the detection, at least partially restricting use of the first ECU as the external access point, thereby preventing external devices from using the first ECU for the limited privilege access to the network.
-
Citations
18 Claims
-
1. A method of controlling access to a vehicle network that includes a plurality of electronic control units (ECUs) communicating over the network, comprising the steps of:
-
operating a network of ECUs that include at least first and second ECUs in communication with each other over the network, wherein the first ECU comprises an external access point that enables access to the network via the first ECU by devices external to the network; establishing communication between the first ECU and an external device; providing the external device with limited privilege access to the network via the first ECU, wherein the step of providing limited privilege access comprises one or both of; (i) sending instructions from the first ECU to the second ECU based on a communication received at the first ECU from the external device; and (ii) transmitting from the vehicle via the first ECU data that is sent from the second ECU to the first ECU; detecting unauthorized escalated privilege access of the first ECU; and in response to the detection, at least partially restricting use of the first ECU as the external access point, thereby preventing external devices from using the first ECU for the limited privilege access to the network. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A vehicle network of electronic control units (ECUs), comprising:
-
a plurality of ECUs; and a communication means for enabling communication between one or more of the plurality of ECUs, wherein at least one of the plurality of ECUs is an external access point ECU, wherein the external access point ECU is programmed to execute a process that detects an unauthorized escalation of privileges at the external access point ECU. - View Dependent Claims (13, 14, 15, 16, 17, 18)
-
Specification