VEHICLE SECURITY NETWORK DEVICE AND DESIGN METHOD THEREFOR
First Claim
Patent Images
1. A vehicular security network device, comprising:
- a conduit configured to connect, to an external network, a first security zone including a plurality of functional elements having a same risk level assessed based on a vehicular security risk assessment matrix; and
a first gate keeper disposed on the conduit and configured to control an access to the plurality of functional elements.
2 Assignments
0 Petitions
Accused Products
Abstract
A security system capable of preventing a security attack/threat on a vehicle network is provided. At least one security zone is set by using a risk level which is evaluated for a plurality of vehicle functional elements. In addition, a security countermeasure corresponding to the risk level of the security zone can be provided to a conduit of the security zone so as to perform gate keeping.
-
Citations
20 Claims
-
1. A vehicular security network device, comprising:
-
a conduit configured to connect, to an external network, a first security zone including a plurality of functional elements having a same risk level assessed based on a vehicular security risk assessment matrix; and a first gate keeper disposed on the conduit and configured to control an access to the plurality of functional elements. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A vehicular security network designing device comprising at least one processor, the device comprising:
-
a risk level assigner configured to assign a risk level to each of a plurality of functional elements connected to a controller area network (CAN) of a vehicle based on a result of lookup from a risk assessment matrix, in response to an input of a level of likelihood of damage (D) indicating a level of a likelihood of damage caused by a security attack, a level of severity (S) when the damage occurs, and a level of controllability (C) when the damage occurs; a zone setter configured to set at least one security zone by grouping the plurality of functional elements into security zones based on the assigned risk level; and a design unit configured to dispose, on a conduit between a first security zone and an external network, a first gate keeper corresponding to a first risk level of the first security zone among the at least one security zone. - View Dependent Claims (11, 12, 13, 14, 15)
-
-
16. A method of designing a vehicular security network to be performed by hardware comprising at least one processor, the method comprising:
-
assessing a risk level of a plurality of functional elements of a vehicle using a risk assessment matrix; setting at least one security zone by grouping the plurality of functional elements into security zones based on the assessed risk level; and designing a first gate keeper of a security level corresponding to a first risk level of a first security zone among the at least one security zone to be disposed on a conduit between the first security zone and an external network. - View Dependent Claims (17, 18, 19)
-
-
20. (canceled)
Specification