Method for protecting vehicle data transmission system from intrusions
First Claim
Patent Images
1. A system for protecting a vehicle data bus from intrusions and bugs, the system comprising:
- a vehicle data bus based on a CAN (Controller Area Network) standard;
a vehicle bus protection module attached to the vehicle data bus and configured to monitor a state of the vehicle data bus indicative of a malicious data sequence on the vehicle data bus;
a transceiver implemented as part of the vehicle bus protection module,wherein if there is no malicious data sequence detected;
the transceiver is configured to monitor a resistive or a capacitive vehicle bus state and to detect a lower resistance or a higher capacitance of the vehicle data bus that indicates a presence of intrusion in the vehicle data bus; and
the vehicle data bus protection module is configured to detect an additional device attached to the vehicle data bus by estimating a total number of the devices based on a measured resistance of the vehicle data bus and to send a notification about the additional device to a driver display panel if the measured resistance is abnormal.
5 Assignments
0 Petitions
Accused Products
Abstract
A system and method for detecting an intrusion or a bug in a vehicle data transmission system. A hardware-software complex (HSC) is used to find a bug or intrusion device in a vehicle electronic system. The HSC is connected to CAN-buses in the vehicle and also scans radio waves, which can be used to transmit data to a bug. This complex is a self-teaching CAN-system used to monitor and block harmful commands in the vehicle. Each vehicle (of each model, type and settings) has its own reference bus data (parameters), which is used to detect added modules and malicious data sent over the vehicle'"'"'s CAN bus.
44 Citations
19 Claims
-
1. A system for protecting a vehicle data bus from intrusions and bugs, the system comprising:
-
a vehicle data bus based on a CAN (Controller Area Network) standard; a vehicle bus protection module attached to the vehicle data bus and configured to monitor a state of the vehicle data bus indicative of a malicious data sequence on the vehicle data bus; a transceiver implemented as part of the vehicle bus protection module, wherein if there is no malicious data sequence detected; the transceiver is configured to monitor a resistive or a capacitive vehicle bus state and to detect a lower resistance or a higher capacitance of the vehicle data bus that indicates a presence of intrusion in the vehicle data bus; and the vehicle data bus protection module is configured to detect an additional device attached to the vehicle data bus by estimating a total number of the devices based on a measured resistance of the vehicle data bus and to send a notification about the additional device to a driver display panel if the measured resistance is abnormal. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method for detecting an intrusion or a presence of a bug on a vehicle data bus, the method comprising:
-
detecting a malicious data sequence on the vehicle data bus; displaying a notification of a potential threat; checking a resistive or a capacitive state of the vehicle data bus, if no malicious data sequence is detected; displaying the notification of the potential threat, if the resistive or the capacitive state of the vehicle data bus is not normal; detecting external radio waves; estimating a potential threat based on the detected radio waves; and displaying the threat notification to the driver if the detected radio waves are deemed malicious. - View Dependent Claims (9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
19. A system for protecting a vehicle data bus from intrusions and bugs, the system comprising:
-
a vehicle data bus based on a CAN (Controller Area Network) standard; a vehicle bus protection module attached to the vehicle data bus and configured to monitor a state of the vehicle data bus indicative of a malicious intrusion into the vehicle data bus; a transceiver implemented as part of the vehicle bus protection module, wherein; the transceiver is configured to monitor a resistive vehicle bus state and to detect a lower resistance of the vehicle data bus that indicates a presence of intrusion in the vehicle data bus; the vehicle data bus protection module is configured to detect an additional device attached to the vehicle data bus by estimating a total number of the devices based on a measured resistance of the vehicle data bus, and the vehicle data bus protection module is configured to send a notification about the additional device as indicative of the malicious intrusion to a driver display panel.
-
Specification