Patents by Inventor Jun Anzai

Jun Anzai has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).

  • Publication number: 20190165946
    Abstract: A method for verifying content data to be used in a vehicle is provided. The method includes acquiring content data, acquiring, from partial data divided from the content data, a respective plurality of first hash values, acquiring a signature generated by using the first hash values and a key, acquiring state information that indicates a state of a vehicle, determining an integer N that is greater than or equal to one based on the acquired state information, generating, from N pieces of partial data included in the partial data, respective second hash values, verifying the content data by using each of (a) a subset of the plurality of first hash values respectively generated from partial data other than the N pieces of partial data, (b) the second hash values, and (c) the signature, and outputting information that indicates a result of the verifying.
    Type: Application
    Filed: February 1, 2019
    Publication date: May 30, 2019
    Inventors: YUJI UNAGAMI, MANABU MAEDA, TOMOYUKI HAGA, HIDEKI MATSUSHIMA, JUN ANZAI
  • Publication number: 20190124091
    Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the in-vehicle network bus via the second control circuit over wired communication and/or wireless communication. The first control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. The second control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule, and, upon determining that the frame conforms to the second rule, transmits the frame to the in-vehicle network bus.
    Type: Application
    Filed: December 12, 2018
    Publication date: April 25, 2019
    Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA
    Inventors: Yoshihiro UJIIE, Jun ANZAI, Yoshihiko KITAMURA, Masato TANABE, Hideki MATSUSHIMA, Tomoyuki HAGA, Takeshi KISHIKAWA, Ryota SUGIYAMA
  • Patent number: 10193859
    Abstract: A security apparatus is provided that is connected to a bus. The security apparatus includes a receiver that receives a first frame from the bus, a memory that stores an examination parameter defining a content of an examination on the first frame, and processing circuitry that performs operations. The performed operations include first determining whether a predetermined condition is satisfied for the first frame. The performed operations also include, in a case where the first determining determined that the predetermined condition is satisfied, updating the examination parameter stored in the memory. The performed operations further include second determining whether the first frame is an attack frame based on the updated examination parameter stored in the memory.
    Type: Grant
    Filed: March 29, 2018
    Date of Patent: January 29, 2019
    Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA
    Inventors: Manabu Maeda, Jun Anzai, Yoshihiro Ujiie, Masato Tanabe, Takeshi Kishikawa
  • Patent number: 10193896
    Abstract: An electronic control unit is connected to an in-vehicle network bus in an in-vehicle network system including a plurality of apparatuses that perform communication of frames via the bus. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the bus via the second control circuit over wired communication and/or wireless communication. The second control circuit performs a first determination process on a received frame received from the bus to determine the conformity with a first rule related to at least a reception interval, and, upon determining that the received frame conforms to the first rule, executes a predetermined process based on the content of the received frame. The first control circuit performs a second determination process on the received frame, received via the second control circuit, to determine the conformity with a second rule different from the first rule.
    Type: Grant
    Filed: January 17, 2017
    Date of Patent: January 29, 2019
    Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA
    Inventors: Yoshihiro Ujiie, Jun Anzai, Yoshihiko Kitamura, Masato Tanabe, Hideki Matsushima, Tomoyuki Haga, Takeshi Kishikawa, Ryota Sugiyama
  • Patent number: 10165442
    Abstract: A transmission device has a detector, a generator, and a transmitter. When the detector has detected that a communication rule of a message that has been broadcasted to a network by another transmission device coincides with a communication rule of a message that is broadcasted to the network by the present transmission device, the generator generates an abnormality notification message. Then, the transmitter broadcasts an abnormality notification message to the network.
    Type: Grant
    Filed: May 25, 2015
    Date of Patent: December 25, 2018
    Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Masato Tanabe, Jun Anzai, Yoshihiko Kitamura
  • Publication number: 20180351915
    Abstract: An information processing device includes: a first communication unit which transmits and receives communication data through a network connected to a first GW, a second GW, and at least one electronic control unit; a monitoring unit which determines whether the communication data is normal; and a notification unit which transmits, at least to the second GW, a notification that brings the network to a state in which one of a transfer function of the first GW and a transfer function of the second GW gateway is active and the other one of the transfer functions is inactive, when the monitoring unit does not determine that the communication data is normal.
    Type: Application
    Filed: July 23, 2018
    Publication date: December 6, 2018
    Applicant: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LT D.
    Inventors: Toshihisa NAKANO, Jun ANZAI, Masato TANABE, Kaoru YOKOTA
  • Publication number: 20180316721
    Abstract: An information processing device is provided. A first communication unit transmits and receives communication data through a network. The network is connected to a first gateway, a second gateway, and at least one electronic control unit. A monitoring unit determines whether the communication data is normal. A notification unit transmits, at least to the second gateway, a notification that brings the network to a state in which one of a transfer function of the first gateway and a transfer function of the second gateway is active and the other one of the transfer functions is inactive, when the monitoring unit determines that the communication data is not normal.
    Type: Application
    Filed: April 6, 2018
    Publication date: November 1, 2018
    Applicant: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Toshihisa NAKANO, Jun ANZAI, Masato TANABE, Kaoru YOKOTA
  • Publication number: 20180314571
    Abstract: A communication unit receives a message in a network. A first anomaly detector detects an anomalous message by detecting values of a plurality of monitoring items from the message received by the communication unit and determining whether each of the detected values of the plurality of monitoring items is inside a corresponding first reference range and a corresponding second reference range. The second reference range is narrower than the first reference range. The first anomaly detector detects the message as the anomalous message, when any of the detected values is outside the first reference range, and detects the message as the anomalous message, when any of the detected values is inside the first reference range and is outside the second reference range and when a predetermined rule is satisfied.
    Type: Application
    Filed: December 9, 2016
    Publication date: November 1, 2018
    Inventors: MASATO TANABE, JUN ANZAI, MANABU MAEDA, YOSHIHIRO UJIIE, TAKESHI KISHIKAWA
  • Publication number: 20180302422
    Abstract: An unauthorized activity detection method is provided in an onboard network system having multiple electronic units (ECU) that perform communication via a bus, such that an occurrence of an unauthorized state can be detected by monitoring frames transmitted over the bus. The unauthorized activity detection method determines, by a monitoring electronic control unit using unauthorized activity detection rule information indicating a first condition, whether or not a set of frames received from the bus satisfies the first condition. The first condition being a condition regarding a relation in content between a first frame having a first identifier and a second frame having a second identifier that differs from the first identifier. And the method further detects the occurrence of the unauthorized state in a case where the first condition is not satisfied.
    Type: Application
    Filed: June 19, 2018
    Publication date: October 18, 2018
    Inventors: TAKESHI KISHIKAWA, YOSHIHIRO UJIIE, JUN ANZAI, HIDEKI MATSUSHIMA, MASATO TANABE
  • Publication number: 20180295147
    Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.
    Type: Application
    Filed: June 11, 2018
    Publication date: October 11, 2018
    Inventors: TOMOYUKI HAGA, HIDEKI MATSUSHIMA, MANABU MAEDA, YOSHIHIRO UJIIE, TAKESHI KISHIKAWA, JUNICHI TSURUMI, JUN ANZAI
  • Publication number: 20180229739
    Abstract: A monitoring apparatus includes a storage unit, a reception unit, a collation information generation unit, and a response unit. The storage unit stores a criterion for determining normality of a frame transmitted from a first electronic device. The reception unit receives the frame from a bus network. The collation information generation unit generates, when the reception unit receives a frame of a first identifier (ID) transmitted from the first electronic device, collation information which is information for collation with the criterion stored in the storage unit, based on the frame. The response unit transmits, when the reception unit receives a frame of a second ID transmitted from the second electronic device, information which is based on the criterion stored in the storage unit and the collation information generated by the collation information generation unit and which enables a check whether the first electronic device is valid, to the second electronic device.
    Type: Application
    Filed: January 25, 2018
    Publication date: August 16, 2018
    Inventors: YOSHIHARU IMAMOTO, JUN ANZAI, MASATO TANABE
  • Publication number: 20180234248
    Abstract: A communication system includes a first electronic device, and a second electronic device that monitors a state of the first electronic device. The first electronic device includes a transmitter that transmits a first frame including a first verification value forming a Hash chain to a bus network. The second electronic device includes a storage unit that stores the first verification value included in the first frame received from the bus network. The transmitter transmits, after transmission of the first frame, a second frame including a second verification value forming the Hash chain to the bus network. The second electronic device further includes a determination unit that determines that the state of the first electronic device is normal when the second verification value included in the second frame received from the bus network and the first verification value stored in the storage unit construct the Hash chain.
    Type: Application
    Filed: January 23, 2018
    Publication date: August 16, 2018
    Inventors: YOSHIHARU IMAMOTO, JUN ANZAI, KAZUYA FUJIMURA, MASATO TANABE, KOUJI KOBAYASHI, FEIYU CHEN
  • Publication number: 20180219832
    Abstract: A security apparatus is provided that is connected to a bus. The security apparatus includes a receiver that receives a first frame from the bus, a memory that stores an examination parameter defining a content of an examination on the first frame, and processing circuitry that performs operations. The performed operations include first determining whether a predetermined condition is satisfied for the first frame. The performed operations also include, in a case where the first determining determined that the predetermined condition is satisfied, updating the examination parameter stored in the memory. The performed operations further include second determining whether the first frame is an attack frame based on the updated examination parameter stored in the memory.
    Type: Application
    Filed: March 29, 2018
    Publication date: August 2, 2018
    Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICA
    Inventors: Manabu MAEDA, Jun ANZAI, Yoshihiro UJIIE, Masato TANABE, Takeshi KISHIKAWA
  • Publication number: 20180204011
    Abstract: An evaluation device for evaluating security of an electronic control system in which a plurality of electronic control units are connected to a bus used for communication includes a recording medium that holds attack procedure information indicative of contents and a transmission order of a plurality of frames, a transmitter that transmits the plurality of frames to the bus in the transmission order indicated by the attack procedure information, a monitor that monitors an actuator unit controlled by any of the plurality of electronic control units, and an evaluator that makes the evaluation on basis of a monitoring result obtained by the monitor when the transmitter transmits the plurality of frames to the bus.
    Type: Application
    Filed: March 16, 2018
    Publication date: July 19, 2018
    Inventors: TOSHIHISA NAKANO, JUN ANZAI, TOHRU WAKABAYASHI, KIMIO MINAMI
  • Publication number: 20180167360
    Abstract: A gateway serving as a security apparatus connected to one or a plurality of buses includes a receiver that receives a frame from a bus, a parameter storage that stores an examination parameter defining a content of an examination of the frame, an updater configured to, in a case where a predetermined condition is satisfied for the frame received by the receiver, update the examination parameter stored in the parameter storage, and an examiner that performs an examination, based on the examination parameter stored in the parameter storage, in terms of judgment of whether or not the frame received by the receiver is an attack frame.
    Type: Application
    Filed: January 26, 2018
    Publication date: June 14, 2018
    Inventors: Manabu Maeda, Jun Anzai, Yoshihiro Ujiie, Masato Tanabe, Takeshi Kishikawa
  • Publication number: 20180159870
    Abstract: A communication device includes: a communication section that transmits and receives a message in a network; an acquisition unit that acquires state information on a state of an object for which the network is provided; an estimation unit that estimates the state of the object based on the state information acquired in the acquisition unit; a setting unit that sets a filtering rule based on the state estimated in the estimation unit; and a filter unit that executes filtering processing for the message in accordance with the filtering rule set in the setting unit.
    Type: Application
    Filed: June 28, 2016
    Publication date: June 7, 2018
    Inventors: MASATO TANABE, JUN ANZAI, YOSHIHIKO KITAMURA, SEIJI SAKAKI, YOSHIHIRO UJIIE, HIDEKI MATSUSHIMA
  • Publication number: 20180148006
    Abstract: A gateway connected to a bus, a bus, and the like used by a plurality of electronic control units for communication includes a frame communication unit that receives a frame, a transfer control unit that removes verification information used to verify a frame from the content of the frame received by the frame communication unit and transfers the frame to a destination bus or that adds verification information to the content of the frame and transfers the frame to the destination bus, and the like.
    Type: Application
    Filed: January 29, 2018
    Publication date: May 31, 2018
    Inventors: TOMOYUKI HAGA, TOSHIHISA NAKANO, JUN ANZAI, HIDEKI MATSUSHIMA, YOSHIHIRO UJIIE, YUJI UNAGAMI
  • Publication number: 20170346808
    Abstract: An information device includes a reader, and a data processor. The reader reads, from a removable medium, ticket data that is provided from a server upon successful authentication, and that includes information representing a content of data processing to be executable upon the successful authentication. The data processor executes the data processing represented in the ticket data.
    Type: Application
    Filed: May 30, 2017
    Publication date: November 30, 2017
    Applicant: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.
    Inventors: Jun ANZAI, Yoshihiko KITAMURA, Mami KURAMITSU
  • Publication number: 20170192770
    Abstract: A gateway device, connected to one or more buses used in communication by a plurality of ECUs on-board a vehicle, is provided with: a receiving unit that receives, from a server that acts as an external device external to the vehicle, firmware update information that includes updated firmware to be applied to one ECU from among the plurality of ECUs; and a control unit that determines, based on certain information about the ECU on which to apply the updated firmware, whether or not the ECU satisfies a certain condition, and if the certain condition is satisfied, causes the ECU to execute a certain process related to updating firmware, whereas if the certain condition is not satisfied, causes equipment other than the ECU to execute the certain process.
    Type: Application
    Filed: March 22, 2017
    Publication date: July 6, 2017
    Inventors: YOSHIHIRO UJIIE, HIDEKI MATSUSHIMA, JUN ANZAI, TOSHIHISA NAKANO, TOMOYUKI HAGA, MANABU MAEDA, TAKESHI KISHIKAWA
  • Publication number: 20170134164
    Abstract: An update management method causes an external tool, capable of transmitting an update message to update data such as shared keys within electronic control units (ECUs) making up an onboard network, to update shared keys and the like within the ECUs, while reducing the risk of all ECUs being unauthorizedly rewritten in a case where secret information given to the external tool is leaked. The update management method receives and verifies update authority information indicating authority of the external tool. In a case that an update message instructing updating of shared keys or the like of one or multiple ECUs has been transmitted from the external tool, if the verification is successful and the update authority information indicates that the transmission of the update message is within the range of authority of the external tool, the update is executed at the ECU, and otherwise, update at the ECU is inhibited.
    Type: Application
    Filed: January 26, 2017
    Publication date: May 11, 2017
    Inventors: TOMOYUKI HAGA, HIDEKI MATSUSHIMA, MANABU MAEDA, YUJI UNAGAMI, JUN ANZAI