Patents by Inventor Tomoyuki Haga
Tomoyuki Haga has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Patent number: 12063235Abstract: A communication control device connects an engine ECU to a network and includes: a communicator that receives a message from the engine ECU and transmits the message to the network, and receives a message from the network and transmits the message to the engine ECU; a transmission ID list holder that holds a transmission ID list including a transmission ID included in the message from the engine ECU; and a controller that controls the communicator and the transmission ID list holder. When the transmission ID included in the message from the engine ECU is not in the transmission ID list, the controller adds the transmission ID to the transmission ID list and transmits information related to the transmission ID list to the network.Type: GrantFiled: September 9, 2020Date of Patent: August 13, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Takeshi Kishikawa, Tomoyuki Haga, Hideki Matsushima
-
Publication number: 20240250976Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.Type: ApplicationFiled: February 28, 2024Publication date: July 25, 2024Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Tomoyuki HAGA, Hideki MATSUSHIMA, Manabu MAEDA, Yoshihiro UJIIE, Takeshi KISHIKAWA, Junichi TSURUMI, Jun ANZAI
-
Publication number: 20240232356Abstract: A malware detection method for a home network system including one or more home appliances that are connected to a home network includes: obtaining a plurality of setting values including at least information indicating a device type and an operating state of a target device subject to malware detection; selecting one detection model out of a plurality of detection models according to the plurality of setting values obtained; obtaining power consumption or current consumption of the target device; and detecting whether the target device is infected with malware, based on stable power or stable current obtained in the obtaining of the power consumption or the current consumption using the one detection model selected in the selecting, when the power consumption indicates stable power that varies within a predetermined range or the current consumption indicates stable current that varies within a predetermined range.Type: ApplicationFiled: January 2, 2024Publication date: July 11, 2024Applicant: Panasonic Intellectual Property Corporation of AmericaInventors: Ryo KATO, Manabu MAEDA, Tomoyuki HAGA, Naohisa NISHIDA
-
Publication number: 20240236115Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit that operates on a first operating system and a second control circuit that operates on a second operating system. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on frames to determine conformity of the frames with a first rule. Upon determining that the frames conform to the first rule, the second control circuit transmits contents of the frames to the first control circuit. The first control circuit performs a second determination process on the contents of the frames to determine conformity with a second rule. The second rule is different from the first rule.Type: ApplicationFiled: February 22, 2024Publication date: July 11, 2024Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Yoshihiro UJIIE, Jun ANZAI, Yoshihiko KITAMURA, Masato TANABE, Hideki MATSUSHIMA, Tomoyuki HAGA, Takeshi KISHIKAWA, Ryota SUGIYAMA
-
Patent number: 12028353Abstract: A threat information analysis server includes: an update manager that manages update information indicating that function addition to an IoT device is performed; a threat information manager that stores threat information of a cyberattack; a risk level manager that manages risk level information defining a risk level of the IoT device; a related threat information manager that manages the threat information and related threat information associating the IoT device with the risk level; a risk level updater that associates the threat information and the risk level of the IoT device with each other and updates the related threat information, based on the update information; and an outputter that outputs the related threat information managed by the related threat information manager.Type: GrantFiled: March 24, 2021Date of Patent: July 2, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Tomoyuki Haga, Takamitsu Sasaki, Hajime Tasaki, Hideki Matsushima
-
Patent number: 11995181Abstract: A vehicle surveillance device for an in-vehicle network system that includes one or more electronic control units includes: a frame transmitter and receiver that receives a frame flowing over the in-vehicle network system; and a score calculator that detects a suspicious behavior different from a normal driving behavior based on the frame received by the frame transmitter and receiver and vehicle data including information on one or more frames received by the frame transmitter and receiver prior to receiving the frame, and calculates, based on a detection result, a score indicating a likelihood that reverse engineering has been performed on a vehicle provided with the in-vehicle network system.Type: GrantFiled: July 20, 2021Date of Patent: May 28, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Takeshi Kishikawa, Ryo Hirano, Yoshihiro Ujiie, Tomoyuki Haga
-
Publication number: 20240169083Abstract: A verification method includes: obtaining log information items generated in a device; storing the log information items in storage, and storing, in a blockchain, converted information items obtained by converting the log information items; and conducting, at a predetermined frequency, verification as to whether at least one of a target log information item or a target converted information item has been tampered with, based on the target log information item and the target converted information item, the target log information item being included in the log information items and targeted for verification, the target converted information item being included in the converted information items and corresponding to the target log information item. A higher frequency is determined as the predetermined frequency when a time point at which the target converted information item was stored in the blockchain is closer to a current time at which the verification is conducted.Type: ApplicationFiled: January 29, 2024Publication date: May 23, 2024Inventors: Ayaka NAKASAKA, Yuji UNAGAMI, Kakuya YAMAMOTO, Tomoyuki HAGA
-
Patent number: 11971978Abstract: A vehicle network system employing a controller area network protocol includes a bus, a first electronic control unit, and a second electronic control unit. The first electronic control unit transmits, via the bus, at least one data frame including an identifier relating to data used for a calculation for obtaining a message authentication code indicating authenticity of transmission content. The second electronic control unit receives the at least one data frame transmitted vis the bus and verifies the message authentication code in accordance with the identifier included in the at least one data frame.Type: GrantFiled: August 4, 2021Date of Patent: April 30, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Yoshihiro Ujiie, Masato Tanabe, Takeshi Kishikawa, Tomoyuki Haga, Hideki Matsushima
-
Publication number: 20240134983Abstract: A malware detection method for a home network system including one or more home appliances that are connected to a home network includes: obtaining a plurality of setting values including at least information indicating a device type and an operating state of a target device subject to malware detection; selecting one detection model out of a plurality of detection models according to the plurality of setting values obtained; obtaining power consumption or current consumption of the target device; and detecting whether the target device is infected with malware, based on stable power or stable current obtained in the obtaining of the power consumption or the current consumption using the one detection model selected in the selecting, when the power consumption indicates stable power that varies within a predetermined range or the current consumption indicates stable current that varies within a predetermined range.Type: ApplicationFiled: January 2, 2024Publication date: April 25, 2024Applicant: Panasonic Intellectual Property Corporation of AmericaInventors: Ryo KATO, Manabu MAEDA, Tomoyuki HAGA, Naohisa NISHIDA
-
Publication number: 20240126877Abstract: A malware detection method for a home network system including one or more home appliances that are connected to a home network includes: obtaining a plurality of setting values including at least information indicating a device type and an operating state of a target device subject to malware detection; selecting one detection model out of a plurality of detection models according to the plurality of setting values obtained; obtaining power consumption or current consumption of the target device; and detecting whether the target device is infected with malware, using the one detection model selected in the selecting and based on the power consumption or the current consumption obtained.Type: ApplicationFiled: December 22, 2023Publication date: April 18, 2024Applicant: Panasonic Intellectual Property Corporation of AmericaInventors: Ryo KATO, Manabu MAEDA, Tomoyuki HAGA, Naohisa NISHIDA
-
Patent number: 11962653Abstract: A device monitoring method includes: receiving a message transmitted from a first device to a second device and addressed to the second device; determining whether the message contains a device control command for controlling the second device; if the message contains the device control command, further determining whether to transmit the message to the second device based on a predetermined condition; and when the message is determined to be transmitted to the second device, transmitting the message to the second device. The predetermined condition includes a first condition that the first device is registered as a device having a predetermined function in a device list containing information about whether each of the devices is a device having the predetermined function. The message is determined to be transmitted to the second device when the predetermined condition is satisfied.Type: GrantFiled: October 27, 2021Date of Patent: April 16, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Manabu Maeda, Tomoyuki Haga, Yuji Unagami
-
Patent number: 11956262Abstract: An anomaly detection device (IDS ECU) includes a detection rule generator that monitors a communication establishment frame flowing over Ethernet in a communication establishment phase of service-oriented communication and that generates, for each communication ID, a detection rule including the communication ID written in the communication establishment frame and a server (or client) address written in the communication establishment frame; an anomaly detector that monitors a communication frame flowing over the Ethernet in a communication phase of the service-oriented communication and that, by referring to a detection rule that includes a communication ID written in the communication frame, detects the communication frame as an anomalous frame when a server (or client) address written in the communication frame differs from a server (or client) address included in the detection rule; and an anomaly notifier that provides a notification of an anomaly in response to the anomalous frame being detected.Type: GrantFiled: May 25, 2021Date of Patent: April 9, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Ryo Hirano, Takeshi Kishikawa, Yoshihiro Ujiie, Tomoyuki Haga
-
Patent number: 11949705Abstract: An anomaly detection server is provided. The anomaly detection server is a server for counteracting an anomalous frame transmitted on an on-board network of a single vehicle. The anomaly detection server acquires information about multiple frames received on one or multiple on-board networks of one or multiple vehicles, including the single vehicle. The anomaly detection server, acting as an assessment unit that, based on the information about the multiple frames and information about a frame received on the on-board network of the single vehicle after the acquisition of the information about the multiple frames, assesses an anomaly level of the frame received on the on-board network of the single vehicle.Type: GrantFiled: January 6, 2023Date of Patent: April 2, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Tomoyuki Haga, Hideki Matsushima, Manabu Maeda, Yoshihiro Ujiie, Takeshi Kishikawa, Junichi Tsurumi, Jun Anzai
-
Patent number: 11943243Abstract: In an anomaly detection method that determines whether each frame in observation data constituted by a collection of frames sent and received over a communication network system is anomalous, a difference between a data distribution of a feature amount extracted from the frame in the observation data and a data distribution for a collection of frames sent and received over the communication network system, obtained at a different timing from the observation data, is calculated. A frame having a feature amount for which the difference is predetermined value or higher is determined to be an anomalous frame. An anomaly contribution level of feature amounts extracted from the frame determined to be an anomalous frame is calculated, and an anomalous payload part, which is at least one part of the payload corresponding to the feature amount for which the anomaly contribution level is at least the predetermined value, is output.Type: GrantFiled: May 17, 2021Date of Patent: March 26, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Takamitsu Sasaki, Tomoyuki Haga, Daiki Tanaka, Makoto Yamada, Hisashi Kashima, Takeshi Kishikawa
-
Patent number: 11943233Abstract: An electronic control unit is connected to a network in an in-vehicle network system. The electronic control unit includes a first control circuit and a second control circuit. The first control circuit is connected to the network via the second control circuit. The second control circuit performs a first determination process on a frame to determine conformity of the frame with a first rule. Upon determining that the frame conforms to the first rule, the second control circuit transmits the frame to the first control circuit. The first control circuit performs a second determination process on the frame to determine conformity of the frame with a second rule. The second rule is different from the first rule.Type: GrantFiled: December 22, 2021Date of Patent: March 26, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Yoshihiro Ujiie, Jun Anzai, Yoshihiko Kitamura, Masato Tanabe, Hideki Matsushima, Tomoyuki Haga, Takeshi Kishikawa, Ryota Sugiyama
-
Publication number: 20240086290Abstract: A monitoring device includes three or more monitors each monitoring, as a monitoring target, at least one of software and a communication log. The three or more monitors include a first monitor operating with a first execution privilege, a second monitor operating with a second execution privilege having a reliability level lower than the first execution privilege, and a third monitor operating with a third execution privilege having a reliability level that is the same as the second execution privilege or that is lower than the second execution privilege. The first monitor monitors software of the second monitor, and at least one of the first monitor or the second monitor monitors software of the third monitor.Type: ApplicationFiled: November 27, 2023Publication date: March 14, 2024Applicant: Panasonic Intellectual Property Corporation of AmericaInventors: Ryo HIRANO, Yoshihiro UJIIE, Takeshi KISHIKAWA, Tomoyuki HAGA, Jun ANZAI, Yoshiharu IMAMOTO
-
Patent number: 11930021Abstract: An unauthorized frame detection device that can keep an unauthorized ECU from spoofing as a legitimate server or client while suppressing an overhead during communication is provided. The unauthorized frame detection device includes a plurality of communication ports corresponding to the respective of networks, a communication controller, and an unauthorized frame detector. The plurality of communication ports are each connected to a corresponding predetermined network among the plurality of networks and each transmit or receive a frame via the predetermined network. The unauthorized frame detector determines whether an identifier of a service, a type of the service, and port information that are each included in the frame match a permission rule set in advance and outputs a result of the determination.Type: GrantFiled: June 22, 2021Date of Patent: March 12, 2024Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Takeshi Kishikawa, Ryo Hirano, Yoshihiro Ujiie, Tomoyuki Haga
-
Publication number: 20240064169Abstract: A gateway that notifies a fraud detection server located outside a vehicle of information about an in-vehicle network system including an in-vehicle network includes: a priority determiner that determines a priority using at least one of: a state of the vehicle including the in-vehicle network system; an identifier of a message communicated on the in-vehicle network; and a result of fraud detection performed on the message; a frame transmitter-receiver that transmits and receives the message communicated on the in-vehicle network; a frame interpreter that extracts information about the in-vehicle network based on the message received by the frame transmitter-receiver; and a frame uploader that notifies the fraud detection server of notification information including the priority and the information about the in-vehicle network.Type: ApplicationFiled: October 27, 2023Publication date: February 22, 2024Inventors: Takeshi KISHIKAWA, Hideki MATSUSHIMA, Tomoyuki HAGA, Manabu MAEDA, Takamitsu SASAKI
-
Publication number: 20240053977Abstract: A gateway device is connected to a plurality of electronic controllers on-board a vehicle. The gateway device acquires firmware update information, which includes at least a part of updated firmware to be applied to a first electronic controller, patch data, and information indicating where to apply the patch data. When the gateway device determines that the first electronic controller does not include a firmware cache for performing a pre-update firmware cache operation, the gateway device executes a proxy process. In this regard, the gateway device requests the first electronic controller to transmit boot ROM data to the gateway device, merges the patch data and existing firmware to create updated boot ROM data with updated firmware, and transmits the updated boot ROM data to the first electronic controller that updates the boot ROM data and resets the first electronic controller with the updated firmware.Type: ApplicationFiled: October 27, 2023Publication date: February 15, 2024Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Yoshihiro UJIIE, Hideki MATSUSHIMA, Jun ANZAI, Toshihisa NAKANO, Tomoyuki HAGA, Manabu MAEDA, Takeshi KISHIKAWA
-
Publication number: 20240039932Abstract: A module for a vehicle includes: a first communication module that transmits and receives first data to and from a first in-vehicle module; a second communication module that transmits and receives second data to and from a second in-vehicle module; and a control module that controls relay of third data among the first communication module and the second communication module. In a case where reception data received by the control module from the first or second communication module is unauthorized, the control module stops relaying the third data in accordance with a traveling state of the vehicle satisfying a predetermined condition, The traveling state includes: the vehicle being stopped; a vehicle speed being at or below a predetermined speed; brakes being applied; a hazard indicator being on; a driver being in a state capable of driving; and/or self-driving functions being in an off state.Type: ApplicationFiled: October 4, 2023Publication date: February 1, 2024Applicant: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Yuishi TORISAKI, Takamitsu SASAKI, Tomoyuki HAGA