Patents by Inventor Hans-Joachim Hof
Hans-Joachim Hof has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 10067486Abstract: A system for providing a control program code (SPC) for controlling a device connected to a control device has: an authentication service which, after successful authentication of the device with respect to the authentication service, transmits a device ID (FG-ID) of the authenticated device to a commissioning service which, on the basis of the device ID (FG-ID) of the authenticated device, transmits a control program code (SPC) to a control device which controls the authenticated device using the control program code (SPC).Type: GrantFiled: September 3, 2012Date of Patent: September 4, 2018Assignee: Siemens AktiengesellschaftInventors: Steffen Fries, Jürgen Gessner, Hans-Joachim Hof, Angela Schattleitner
-
Patent number: 10051465Abstract: In a method and system for securely transferring a message (N) from a transmitter unit (SE) to a receiver unit (EE), a message sent by a transmitter unit (SE) is thereby transmitted to a receiving antenna array (EAA) comprising a plurality of receiving nodes (EK). The receiving nodes (EK) of the receiving antenna array (EAA) each verify the received message as originating from an authorized transmitter unit (SE) before the verified message is forwarded by each receiving node (EK) to the receiving unit (EE). The method and system effectively protects the message transmission from the introduction of undesired data by an attacker, and by an attack wherein the lifespan or operating time of the partially battery-powered nodes is reduced by increased current consumption.Type: GrantFiled: December 15, 2009Date of Patent: August 14, 2018Assignee: SIEMENS AKTIENGESELLSCHAFTInventors: Rainer Falk, Hans-Joachim Hof
-
Patent number: 9843926Abstract: A system for preventing an attack on a networked vehicle via a wireless communication device including a wireless data traffic network, a security status determination unit for controlling access to the wireless network depending on a security status based on evaluation of a configuration and/or on log data of the vehicle and/or on time that has passed since a software update, and a communication device and an access control device. A method for preventing an attack on a networked vehicle via a wireless communication device, where a security status is determined based on an evaluation of a current configuration of the vehicle and/or on log data of the vehicle and/or on time that has passed since an update of relevant software a network access rule set is determined and actuated for the access to the data traffic network based on the determined security status.Type: GrantFiled: February 17, 2011Date of Patent: December 12, 2017Assignee: Continental Automotive GmbHInventors: Roland Dietz, Rainer Falk, Hans-Joachim Hof, Franz Stadler
-
Patent number: 9204305Abstract: A method for transmitting data in a sensor network, which comprises at least one sensor node and a central processor, is provided. The at least one sensor node repeatedly transmits a status message comprising at least one unique identifier associated with the sensor node and a data value determined by the sensor node to the central processor. Furthermore, at least one secure value range message is provided to the central processor for the at least one sensor node, which message is valid for a particular time span and comprises at least bounds for valid data values. The value contained in the status message is further processed by the central processor only if the data value is within the bounds indicated in the value range message.Type: GrantFiled: July 19, 2010Date of Patent: December 1, 2015Assignee: SIEMENS AKTIENGESELLSCHAFTInventors: Rainer Falk, Hans-Joachim Hof
-
Patent number: 9094818Abstract: A method transmits data between network nodes of a network in a cryptographically protected manner. The network nodes are, for example, sensor nodes of a wireless sensor network. In the method, in order to transmit the data in a message, a NONCE value is created from a count value which is updated in the transmission of the message and from a constant value which is provided in a shared manner to the network nodes of the network. The data transmitted in the message is then encrypted and decrypted within the network nodes by a cryptographic key and the created NONCE value. The method offers in particular protection against replay attacks while at the same time minimizing the use of resources of the network nodes.Type: GrantFiled: August 19, 2009Date of Patent: July 28, 2015Assignee: SIEMENS AKTIENGESELLSCHAFTInventors: Rainer Falk, Hans-Joachim Hof, Ulrike Meyer
-
Publication number: 20140358257Abstract: A system for providing a control program code (SPC) for controlling a device connected to a control device has: an authentication service which, after successful authentication of the device with respect to the authentication service, transmits a device ID (FG-ID) of the authenticated device to a commissioning service which, on the basis of the device ID (FG-ID) of the authenticated device, transmits a control program code (SPC) to a control device which controls the authenticated device using the control program code (SPC).Type: ApplicationFiled: September 3, 2012Publication date: December 4, 2014Inventors: Steffen Fries, Jürgen Gessner, Hans-Joachim Hof, Angela Schattleitner
-
Patent number: 8799652Abstract: In a method for activating a destination network node (SN) to be woken up in a wireless network (1), in particular a sensor network, the destination network node (SN) is woken from a sleep operating mode if the destination network node verifies a received secret wake-up token (WUT) by a predefined test function and at least one stored wake-up token reference value (WUTRV). The method protects network nodes in a wireless network (1) from attacks which reduce the lifetime of the network nodes by preventing a sleep operating mode. The method is particularly suitable for sensor networks.Type: GrantFiled: December 2, 2009Date of Patent: August 5, 2014Assignee: Siemens AktiengesellschaftInventors: Rainer Falk, Hans-Joachim Hof
-
Publication number: 20130162038Abstract: An apparatus and a method for stabilizing an electrical power import from a power distribution system by way of at least one subscriber connected to the power distribution system via an electrical connection. An electrical power import anomaly when electrical power is imported by the respective subscriber from the power distribution system is identified using transmitted control messages, which are determined for the respective subscriber or originate from the respective subscriber. Once an electrical power import anomaly has been identified, power consumption units or power generation units are driven correspondingly. The apparatus effectively protects the power distribution system from third-party intervention or implementation errors which can bring about an unstable system response.Type: ApplicationFiled: March 8, 2011Publication date: June 27, 2013Applicant: SIEMENS AKTIENGESELLSCHAFTInventors: Rainer Falk, Steffen Fries, Hans-Joachim Hof
-
Publication number: 20130104186Abstract: A system for preventing an attack on a networked vehicle via a wireless communication device including a wireless data traffic network, a security status determination unit for controlling access to the wireless network depending on a security status based on evaluation of a configuration and/or on log data of the vehicle and/or on time that has passed since a software update, and a communication device and an access control device. A method for preventing an attack on a networked vehicle via a wireless communication device, where a security status is determined based on an evaluation of a current configuration of the vehicle and/or on log data of the vehicle and/or on time that has passed since an update of relevant software a network access rule set is determined and actuated for the access to the data traffic network based on the determined security status.Type: ApplicationFiled: February 17, 2011Publication date: April 25, 2013Applicant: Continental Automotive GmbHInventors: Roland Dietz, Rainer Falk, Hans-Joachim Hof, Franz Stadler
-
Publication number: 20120158903Abstract: A method for transmitting data in a sensor network, which comprises at least one sensor node and a central processor, is provided. The at least one sensor node repeatedly transmits a status message comprising at least one unique identifier associated with the sensor node and a data value determined by the sensor node to the central processor. Furthermore, at least one secure value range message is provided to the central processor for the at least one sensor node, which message is valid for a particular time span and comprises at least bounds for valid data values. The value contained in the status message is further processed by the central processor only if the data value is within the bounds indicated in the value range message.Type: ApplicationFiled: July 19, 2010Publication date: June 21, 2012Inventors: Rainer Falk, Hans-Joachim Hof
-
Publication number: 20120110331Abstract: In a method for activating a destination network node (SN) to be woken up in a wireless network (1), in particular a sensor network, the destination network node (SN) is woken from a sleep operating mode if the destination network node verifies a received secret wake-up token (WUT) by a predefined test function and at least one stored wake-up token reference value (WUTRV). The method protects network nodes in a wireless network (1) from attacks which reduce the lifetime of the network nodes by preventing a sleep operating mode. The method is particularly suitable for sensor networks.Type: ApplicationFiled: December 2, 2009Publication date: May 3, 2012Inventors: Rainer Falk, Hans-Joachim Hof
-
Publication number: 20110312284Abstract: In a method and system for securely transferring a message (N) from a transmitter unit (SE) to a receiver unit (EE), a message sent by a transmitter unit (SE) is thereby transmitted to a receiving antenna array (EAA) comprising a plurality of receiving nodes (EK). The receiving nodes (EK) of the receiving antenna array (EAA) each verify the received message as originating from an authorized transmitter unit (SE) before the verified message is forwarded by each receiving node (EK) to the receiving unit (EE). The method and system effectively protects the message transmission from the introduction of undesired data by an attacker, and by an attack wherein the lifespan or operating time of the partially battery-powered nodes is reduced by increased current consumption.Type: ApplicationFiled: December 15, 2009Publication date: December 22, 2011Applicant: Siemens AktiengesellschaftInventors: Rainer Falk, Hans-Joachim Hof
-
Publication number: 20110158410Abstract: A method transmits data between network nodes of a network in a cryptographically protected manner. The network nodes are, for example, sensor nodes of a wireless sensor network. In the method, in order to transmit the data in a message, a NONCE value is created from a count value which is updated in the transmission of the message and from a constant value which is provided in a shared manner to the network nodes of the network. The data transmitted in the message is then encrypted and decrypted within the network nodes by a cryptographic key and the created NONCE value. The method offers in particular protection against replay attacks while at the same time minimizing the use of resources of the network nodes.Type: ApplicationFiled: August 19, 2009Publication date: June 30, 2011Inventors: Rainer Falk, Hans-Joachim Hof, Ulrike Meyer