Patents by Inventor Hong-il Ju

Hong-il Ju has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Patent number: 11516194
    Abstract: Disclosed herein are an in-vehicle network apparatus and method. The in-vehicle network apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured to verify the integrity of software stored in advance in the executable memory, to generate a key table by sharing authentication information with a communication target, and to exchange an encrypted message with the communication target using the key table.
    Type: Grant
    Filed: July 31, 2020
    Date of Patent: November 29, 2022
    Assignee: Electronics and Telecommunications Research Institute
    Inventors: Dae-Won Kim, Dong-Wook Kang, Sang-Woo Lee, Jin-Yong Lee, Boo-Sun Jeon, Bo-Heung Chung, Hong-Il Ju, Byeong-Cheol Choi, Joong-Yong Choi
  • Patent number: 11502870
    Abstract: Disclosed herein are a method for managing an access control list based on an automotive Ethernet and an apparatus for the same. The method includes analyzing a new access control rule that is input to a vehicle in which the automotive Ethernet is applied, searching for any one target unit to manage the new access control rule in consideration of at least one of a destination and an application target corresponding to the new access control rule, and storing the new access control rule by transmitting a storage request message corresponding to the new access control rule to the target unit.
    Type: Grant
    Filed: October 22, 2020
    Date of Patent: November 15, 2022
    Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Joong-Yong Choi, Dong-Wook Kang, Dae-Won Kim, Sang-Woo Lee, Jin-Yong Lee, Boo-Sun Jeon, Bo-Heung Chung, Hong-Il Ju, Byeong-Cheol Choi
  • Patent number: 11418328
    Abstract: Disclosed is a system for performing key management of an in-vehicle network. The key management system of the in-vehicle network includes a reception unit configured to receive a shared secret key of a central gateway and a domain gateway, a memory configured to store a program for performing key management of the in-vehicle network using the shared secret key, and a processor configured to execute the program. The processor generates a secret key to be stored in a node of the in-vehicle network using the shared secret key and a unique ID of the node.
    Type: Grant
    Filed: November 26, 2019
    Date of Patent: August 16, 2022
    Assignee: Electronics and Telecommunications Research Institute
    Inventors: Hong Il Ju, Dae Won Kim, Jin Yong Lee, Boo Sun Jeon, Bo Heung Chung, Byeong Cheol Choi
  • Publication number: 20220210143
    Abstract: Disclosed are an apparatus and method for communicating data in an in-vehicle network. The method, performed by apparatuses for communicating data on a transmission side and a reception side, includes determining, by the apparatus on the transmission side, whether data collected from the in-vehicle network is changed; creating, by the apparatus on the transmission side, an authentication value based on the determination as to whether the data is changed, creating a message including the data and the authentication value and transmitting the message to the apparatus on the reception side; receiving, by the apparatus on the reception side, the message; creating, by the apparatus on the reception side, a verification value using data extracted from the message; and verifying, by the apparatus on the reception side, the integrity of the apparatus on the transmission side by comparing the authentication value extracted from the message with the verification value.
    Type: Application
    Filed: October 22, 2021
    Publication date: June 30, 2022
    Inventors: Bo-Heung CHUNG, Dae-Won KIM, Sang-Woo LEE, Jin-Yong LEE, Boo-Sun JEON, Hong-Il JU, Joong-Yong CHOI
  • Publication number: 20220166632
    Abstract: Disclosed herein are an apparatus and method for processing vehicle data security based on a cloud.
    Type: Application
    Filed: November 16, 2021
    Publication date: May 26, 2022
    Inventors: Sang-Woo LEE, Dae-Won KIM, Jin-Yong LEE, Boo-Sun JEON, Bo-Heung CHUNG, Hong-Il JU, Joong-Yong CHOI
  • Publication number: 20210185070
    Abstract: Disclosed herein are a lightweight intrusion detection method and apparatus for a vehicle network. The lightweight intrusion detection method may include collecting Ethernet packets from a domain gateway of a vehicle that provides a mirroring port, performing a primary intrusion detection check on the Ethernet packets using a rule-based intrusion detection technique, and performing a secondary intrusion detection check on the Ethernet packets using a machine learning-based intrusion detection technique when no intrusion attack is detected as a result of the primary intrusion detection check.
    Type: Application
    Filed: December 10, 2020
    Publication date: June 17, 2021
    Applicant: Electronics and Telecommunications Research Institute
    Inventors: Boo-Sun JEON, Dong-Wook KANG, Dae-Won KIM, Sang-Woo LEE, Jin-Yong LEE, Bo-Heung CHUNG, Hong-Il JU, Byeong-Cheol CHOI, Joong-Yong CHOI
  • Publication number: 20210184885
    Abstract: Disclosed herein are a method for managing an access control list based on an automotive Ethernet and an apparatus for the same. The method includes analyzing a new access control rule that is input to a vehicle in which the automotive Ethernet is applied, searching for any one target unit to manage the new access control rule in consideration of at least one of a destination and an application target corresponding to the new access control rule, and storing the new access control rule by transmitting a storage request message corresponding to the new access control rule to the target unit.
    Type: Application
    Filed: October 22, 2020
    Publication date: June 17, 2021
    Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Joong-Yong CHOI, Dong-Wook KANG, Dae-Won KIM, Sang-Woo LEE, Jin-Yong LEE, Boo-Sun JEON, Bo-Heung CHUNG, Hong-Il JU, Byeong-Cheol CHOI
  • Publication number: 20210174607
    Abstract: Disclosed herein are a method for replacing vehicle parts using an in-vehicle network based on an automotive Ethernet and a system for the same. The method is configured such that a vehicle diagnosis module included in a vehicle performs vehicle self-diagnosis, such that the vehicle and a vehicle manufacturer server perform an authentication process for a new part when a vehicle part is replaced based on a vehicle part replacement agreement procedure between the terminal of a vehicle owner and the maintenance terminal of a vehicle maintenance company, and such that the terminal of the vehicle owner checks whether replacement of the vehicle part is performed normally by requesting an integrity check result from each of the vehicle and the vehicle manufacturer server when the maintenance terminal transmits a part replacement completion message to the terminal of the vehicle owner after completion of the authentication process.
    Type: Application
    Filed: November 19, 2020
    Publication date: June 10, 2021
    Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Hong-Il JU, Dong-Wook KANG, Dae-Won KIM, Sang-Woo LEE, Jin-Yong LEE, Boo-Sun JEON, Bo-Heung CHUNG, Byeong-Cheol CHOI, Joong-Yong CHOI
  • Publication number: 20210165752
    Abstract: An electronic device includes a peripheral device, a processor, an interrupt controller configured to manage interrupts generated by the peripheral device and the processor on the basis of a register, and a virtualizer, wherein the virtualizer may be configured to virtualize a portion of the processor and a portion of the at least one peripheral device to generate a first partition, generate first interrupt information corresponding to an interrupt usable in the first partition, generate first processor information corresponding to a portion of the processor usable in the first partition, check whether a configuration of the register is related to at least one of the first interrupt information and the first processor information when the register is configured by the first partition, and allow the configuration of the register when the configuration of the register is related to the at least one information.
    Type: Application
    Filed: November 25, 2020
    Publication date: June 3, 2021
    Applicant: Electronics and Telecommunications Research Institute
    Inventors: Dong Wook KANG, Dae Won KIM, Jin Yong LEE, Boo Sun JEON, Bo Heung CHUNG, Hong Il JU, Joong Yong CHOI, Ik Kyun KIM, Byeong Cheol CHOI
  • Publication number: 20210136051
    Abstract: Disclosed herein are an in-vehicle network apparatus and method. The in-vehicle network apparatus includes one or more processors and executable memory for storing at least one program executed by the one or more processors. The at least one program is configured to verify the integrity of software stored in advance in the executable memory, to generate a key table by sharing authentication information with a communication target, and to exchange an encrypted message with the communication target using the key table.
    Type: Application
    Filed: July 31, 2020
    Publication date: May 6, 2021
    Applicant: Electronics and Telecommunications Research Institute
    Inventors: Dae-Won KIM, Dong-Wook KANG, Sang-Woo LEE, Jin-Yong LEE, Boo-Sun JEON, Bo-Heung CHUNG, Hong-Il JU, Byeong-Cheol CHOI, Joong-Yong CHOI
  • Patent number: 10785023
    Abstract: An apparatus and method for managing meter data. The apparatus for managing meter data includes a metering unit for acquiring meter data from a target device based on time information; a communication unit for receiving a message including the time information from a server device and transmitting the meter data to the server device; and a security unit for creating a private key using the time information and encrypting the meter data using the private key.
    Type: Grant
    Filed: June 4, 2018
    Date of Patent: September 22, 2020
    Assignee: ELECTRONICS AND TELECOMMUNCATIONS RESEARCH INSTIITUTE
    Inventors: Hong-Il Ju, Young-Ho Kim, Yun-Kyung Lee, Bo-Heung Chung, Jeong-Nyeo Kim, Jae-Deok Lim
  • Publication number: 20200174920
    Abstract: Disclosed herein are a method and apparatus for randomizing the address space layout of an embedded system based on hardware. The method is configured such that the hardware loader of the embedded system randomly arranges the respective address regions of multiple peripheral devices and memory using a random number each time a program is loaded, such that the respective random start addresses of the multiple peripheral devices and the memory, which are set based on the randomly arranged address regions, are recorded in an address table, and such that program code loaded into the memory is reengineered based on the address table so as to match the randomly arranged address regions.
    Type: Application
    Filed: November 26, 2019
    Publication date: June 4, 2020
    Applicant: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Jin-Yong LEE, Dae-Won KIM, Boo-Sun JEON, Bo-Heung CHUNG, Hong-Il JU, Byeong-Cheol CHOI
  • Publication number: 20200169392
    Abstract: Disclosed is a system for performing key management of an in-vehicle network. The key management system of the in-vehicle network includes a reception unit configured to receive a shared secret key of a central gateway and a domain gateway, a memory configured to store a program for performing key management of the in-vehicle network using the shared secret key, and a processor configured to execute the program. The processor generates a secret key to be stored in a node of the in-vehicle network using the shared secret key and a unique ID of the node.
    Type: Application
    Filed: November 26, 2019
    Publication date: May 28, 2020
    Applicant: Electronics and Telecommunications Research Institute
    Inventors: Hong Il JU, Dae Won KIM, Jin Yong LEE, Boo Sun JEON, Bo Heung CHUNG, Byeong Cheol CHOI
  • Publication number: 20200169555
    Abstract: A transmission method of a domain gateway over a vehicle network based on automotive Ethernet includes receiving, by a domain gateway of a first domain, transmission data on a CAN packet basis from a transmitting-side ECU; transmitting, by the domain gateway of the first domain, the transmission on an Ethernet packet basis to a domain gateway of a second domain; and transmitting, by the domain gateway of the second domain, the transmission data on a CAN packet basis to a receiving-side ECU. The CAN packet includes a CAN ID field, and the CAN ID field includes a CAN message section and an authentication section.
    Type: Application
    Filed: November 13, 2019
    Publication date: May 28, 2020
    Inventors: Bo Heung CHUNG, Dae Won KIM, Jin Yong LEE, Boo Sun JEON, Hong Il JU, Byeong Cheol CHOI
  • Patent number: 10637848
    Abstract: Disclosed herein is an apparatus for supporting authentication between devices, which includes a certificate information storage unit for storing certificate data of a first terminal for managing a certificate; a communication unit for receiving a request for a certificate of the first terminal, which uses a signature value and certificate-related information corresponding to the first terminal, from a second terminal and returning information corresponding to a valid certificate of the first terminal to the second terminal in order to enable the second terminal to authenticate the first terminal; and a certificate verification unit for verifying whether a certificate of the first terminal is valid.
    Type: Grant
    Filed: November 15, 2017
    Date of Patent: April 28, 2020
    Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Yun-Kyung Lee, Young-Ho Kim, Jeong-Nyeo Kim, Jae-Deok Lim, Bo-Heung Chung, Hong-Il Ju, Yong-Sung Jeon
  • Publication number: 20190132124
    Abstract: An apparatus and method for managing meter data. The apparatus for managing meter data includes a metering unit for acquiring meter data from a target device based on time information; a communication unit for receiving a message including the time information from a server device and transmitting the meter data to the server device; and a security unit for creating a private key using the time information and encrypting the meter data using the private key.
    Type: Application
    Filed: June 4, 2018
    Publication date: May 2, 2019
    Inventors: Hong-Il JU, Young-Ho KIM, Yun-Kyung LEE, Bo-Heung CHUNG, Jeong-Nyeo KIM, Jae-Deok LIM
  • Publication number: 20180349129
    Abstract: Disclosed herein is an apparatus for providing firmware update, which includes a state information analysis unit for analyzing device state information received from a firmware update target device and thereby acquiring information about a version of existing firmware and information about a storage unit of the firmware update target device; an image creation unit for creating a delta image in units of pages based on a flash memory page size included in the information about the storage unit and on a difference between the existing firmware and new firmware; an update information creation unit for creating update information in which an update method is specified; and a communication unit for transmitting the update information and the delta image to the firmware update target device in order to update the existing firmware of the firmware update target device based on the update method.
    Type: Application
    Filed: April 3, 2018
    Publication date: December 6, 2018
    Inventors: Hong-Il JU, Young-Ho KIM, Yun-Kyung LEE, Bo-Heung CHUNG, Jeong-Nyeo KIM, Jae-Deok LIM, Yong-Sung JEON
  • Publication number: 20180159846
    Abstract: Disclosed herein is an apparatus for supporting authentication between devices, which includes a certificate information storage unit for storing certificate data of a first terminal for managing a certificate; a communication unit for receiving a request for a certificate of the first terminal, which uses a signature value and certificate-related information corresponding to the first terminal, from a second terminal and returning information corresponding to a valid certificate of the first terminal to the second terminal in order to enable the second terminal to authenticate the first terminal; and a certificate verification unit for verifying whether a certificate of the first terminal is valid.
    Type: Application
    Filed: November 15, 2017
    Publication date: June 7, 2018
    Inventors: Yun-Kyung LEE, Young-Ho KIM, Jeong-Nyeo KIM, Jae-Deok LIM, Bo-Heung CHUNG, Hong-Il JU, Yong-Sung JEON
  • Patent number: 9904806
    Abstract: Provided is a method of updating an integrity check value (ICV) stored in a hardware security module (HSM). The method includes storing user authentication information of the terminal transferred from the terminal to preregister a user of the terminal, transferring an authentication information request message, requesting the user authentication information, to the terminal in response to an update request message which is transferred from the terminal and includes an update value of the ICV, comparing the user authentication information transferred from the terminal with the stored user authentication information to perform an authentication operation on the user of the terminal according to the authentication information request message; and when the user of the terminal is successfully authenticated, updating the stored ICV by using the update value.
    Type: Grant
    Filed: February 8, 2016
    Date of Patent: February 27, 2018
    Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventor: Hong Il Ju
  • Patent number: 9785591
    Abstract: The present invention relates to an apparatus and a method for transferring a data signal between a smartcard interface and an interface of a processor within an embedded system. According to an exemplary embodiment of the present invention, an interface conversion device communicating between a processor and a smartcard IC chip includes: an input/output signal conversion logic configured to transfer a signal between a first interface of the processor and a second interface of the smartcard IC chip; a clock generator configured to generate a clock signal driving the smartcard IC chip depending on a first control signal received from the processor and provide the generated clock signal to the smartcard IC chip; and a reset controller configured to generate a reset signal depending on a second control signal received from the processor and provide the generated reset signal to the smartcard IC chip.
    Type: Grant
    Filed: April 2, 2014
    Date of Patent: October 10, 2017
    Assignee: ELECTRONICS AND TELECOMMUNICATIONS RESEARCH INSTITUTE
    Inventors: Yong-Sung Jeon, Young-Sae Kim, Jeong-Nyeo Kim, Seung-Yong Yoon, Hong-Il Ju, Hyun-Sook Cho