Device for detection and prevention of an attack on a vehicle
First Claim
1. A device executing instructions for detection and prevention of at least one attack on a vehicle via its one or more communication channels, said device comprising:
- a database storing real-time and/or offline data; and
at least one hardware processor coupled to the database for executing the following;
instructions to collect said real-time and/or offline data from one or more sources selected from a group consisting of;
one or more sensors,one or more network based services,one or more navigation applications or navigation devices,one or more electronic control units (ECU) of said vehicle,one or more bus-networks of said vehicle,one or more subsystems of said vehicle, andone or more on board diagnostics (OBD);
instructions to send an alert via said one or more communication channels and/or prevent said attack, by breaking or changing the attacked said one or more communication channels;
instructions to monitor simultaneously content, meta-data and physical-data of said real-time and/or offline data collected from said one or more sources;
instructions to detect said attack based on irregularities of—
or irrational-relation between—
said content and said meta-data,said content and said physical-data,said meta-data and said physical-data,at least two said meta-data, orat least two said physical-data.
4 Assignments
0 Petitions
Accused Products
Abstract
A new device for detection and prevention of an attack on a vehicle via its communication channels, having: an input-unit configured to collect real-time and/or offline data from various sources such as sensors, network based services, navigation applications, the vehicles electronic control units, the vehicle'"'"'s bus-networks, the vehicle'"'"'s subsystems, and on board diagnostics; a database, for storing the data; a detection-unit in communication with the input-unit; and an action-unit, in communication with the detection unit, configured for sending an alert via the communication channels and/or prevent the attack, by breaking or changing the attacked communication channels. The detection-unit is configured to simultaneously monitor the content, the meta-data and the physical-data of the data and detect the attack.
-
Citations
20 Claims
-
1. A device executing instructions for detection and prevention of at least one attack on a vehicle via its one or more communication channels, said device comprising:
-
a database storing real-time and/or offline data; and at least one hardware processor coupled to the database for executing the following; instructions to collect said real-time and/or offline data from one or more sources selected from a group consisting of; one or more sensors, one or more network based services, one or more navigation applications or navigation devices, one or more electronic control units (ECU) of said vehicle, one or more bus-networks of said vehicle, one or more subsystems of said vehicle, and one or more on board diagnostics (OBD); instructions to send an alert via said one or more communication channels and/or prevent said attack, by breaking or changing the attacked said one or more communication channels; instructions to monitor simultaneously content, meta-data and physical-data of said real-time and/or offline data collected from said one or more sources; instructions to detect said attack based on irregularities of—
or irrational-relation between—said content and said meta-data, said content and said physical-data, said meta-data and said physical-data, at least two said meta-data, or at least two said physical-data. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
-
-
12. A method for detecting and preventing at least one attack on a vehicle via its one or more communication channels, said method comprising:
-
using at least one hardware processor coupled to a database storing real-time and/or offline data for; collecting real-time and/or offline data from one or more sources selected from a group consisting of; one or more sensors, one or more network based services, one or more navigation applications or navigation devices, one or more electronic control units (ECU) of said vehicle, one or more bus-networks of said vehicle, one or more subsystems of said vehicle, and one or more on board diagnostics (OBD); storing said real-time and/or offline data in said database; monitoring said real-time and/or offline data for an attack; and
if detecting said attack,instructing sending an alert and/or preventing said attack by breaking or changing said one or more communication channels; wherein said monitoring includes simultaneous examination of content, meta-data and physical-data of said real-time and/or offline data collected from same or different said sources for said detecting of said attack, based on irregularities of—
or irrational-relation between—said content and said meta-data, said content and said physical-data, said meta-data and said physical-data, at least two said meta-data, or at least two said physical-data. - View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
-
Specification