VEHICLE CORRELATION SYSTEM FOR CYBER ATTACKS DETECTION AND METHOD THEREOF
First Claim
1. A vehicle correlation system for detection of at least one cyber-attack on one or more vehicles comprising a plurality of on-board communication agent modules communicating with one another, said system comprising:
- a. first on-board agent modules installed within a plurality of vehicles;
b. second on-board agent modules installed within road infrastructure and in a range of communication with at least one of said first on-board agent modules;
c. an on-site and/or remote cloud-based detection server comprising a correlation engine;
wherein said first agent modules and said at least one second agent module are operable to transmit and/or receive metadata to and/or from said correlation engine; and
said correlation engine is configured to indicate a probability of a cyberattack against one or more vehicles based on correlation calculation between said metadata received from one or more first agent modules installed within vehicles and/or from one or more second agent modules installed within road infrastructure;
further wherein said metadata comprises data parameters which correlate among one or more first agent modules installed within vehicles and/or from one or more second agent modules installed within road infrastructure are selected from a group consisting of;
a suspect and/or an identified threat on one or more vehicles, spread of a suspect and/or an identified attack among multiple vehicles, location of the vehicles, geographic information, vehicle unique identification, event time, vehicle-to-vehicle communication parameters, vehicle-to-infrastructure communication parameters, vehicle-to-cloud communication parameters, software applications downloaded and/or used in the vehicle and/or any combinations thereof.
1 Assignment
0 Petitions
Accused Products
Abstract
A system and method for detection of at least one cyber-attack on one or more vehicles including steps of transmitting and/or receiving by a first on-board agent module installed within one or more vehicles and/or a second on-board agent module installed within road infrastructure and in a range of communication with said first on-board agent module metadata to and/or from an on-site and/or remote cloud-based detection server including a correlation engine; detecting cyberattacks based on correlation calculation between the metadata received from one or more first agent module installed within vehicles and/or from one or more second agent modules installed within road infrastructure; indicating a probability of a cyber-attack against one or more vehicle based on correlation calculation; initiating blocking of vehicle-to-vehicle communication to present and/or stop a spread of an identified threat.
-
Citations
36 Claims
-
1. A vehicle correlation system for detection of at least one cyber-attack on one or more vehicles comprising a plurality of on-board communication agent modules communicating with one another, said system comprising:
-
a. first on-board agent modules installed within a plurality of vehicles; b. second on-board agent modules installed within road infrastructure and in a range of communication with at least one of said first on-board agent modules; c. an on-site and/or remote cloud-based detection server comprising a correlation engine; wherein said first agent modules and said at least one second agent module are operable to transmit and/or receive metadata to and/or from said correlation engine; and
said correlation engine is configured to indicate a probability of a cyberattack against one or more vehicles based on correlation calculation between said metadata received from one or more first agent modules installed within vehicles and/or from one or more second agent modules installed within road infrastructure;further wherein said metadata comprises data parameters which correlate among one or more first agent modules installed within vehicles and/or from one or more second agent modules installed within road infrastructure are selected from a group consisting of;
a suspect and/or an identified threat on one or more vehicles, spread of a suspect and/or an identified attack among multiple vehicles, location of the vehicles, geographic information, vehicle unique identification, event time, vehicle-to-vehicle communication parameters, vehicle-to-infrastructure communication parameters, vehicle-to-cloud communication parameters, software applications downloaded and/or used in the vehicle and/or any combinations thereof. - View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
2. (canceled)
-
3. (canceled)
-
19. A method for detection of at least one cyber-attack, said method comprising steps of:
-
a. transmitting and/or receiving by s-first on-board agent modules installed within vehicles and/or second on-board agent modules installed within road infrastructure and in a range of communication with at least one of said first on-board agent modules metadata to and/or from an on-site and/or remote cloud-based detection server comprising a correlation engine; b. indicating a probability of cyberattacks based on correlation calculation between said metadata received from one or more first agent module installed within vehicles and/or from one or more second agent modules installed within road infrastructure; further wherein said metadata comprises data parameters which correlate among one or more first agent modules installed within vehicles and/or from one or more second agent modules installed within road infrastructure are selected from a group consisting of;
a suspect and/or an identified threat on one or more vehicles, spread of a suspect and/or an identified attack among multiple vehicles, location of the vehicles, geographic information, vehicle unique identification, event time, vehicle-to-vehicle communication parameters, vehicle-to-infrastructure communication parameters, vehicle-to-cloud communication parameters, software applications downloaded and/or used in the vehicle and/or any combinations thereof.
-
-
20. (canceled)
-
21. (canceled)
Specification