Patents by Inventor Yoshiharu Imamoto
Yoshiharu Imamoto has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20240362325Abstract: An integrated ECU includes: a host virtual machine; an anomaly detector that detects a security anomaly in the host virtual machine; a service list storage that stores a service list indicating a list of a plurality of services executed by the in-vehicle system; a determiner that determines a specific service from among the plurality of services indicated in the service list when the anomaly detector detects the security anomaly, the specific service being a service which needs to be stopped or needs a change in a setting in order to resolve the security anomaly; and an anomaly countermeasures unit that executes an anomaly countermeasures process of stopping the specific service or changing the setting of the specific service, based on a determination result of the determiner.Type: ApplicationFiled: April 18, 2024Publication date: October 31, 2024Applicant: Panasonic Automotive Systems Co., Ltd.Inventors: Ryo HIRANO, Yoshiharu IMAMOTO, Shoichiro SEKIYA
-
Patent number: 12116002Abstract: An information processing apparatus includes: a communication device that communicates with an external apparatus outside the information processing apparatus; a memory that includes a protected region and an unprotected region; a processor that operates in a first mode and a second mode, the first mode being a mode in which access to the protected region and access to the unprotected region are allowed, the second mode being a mode in which access to the protected region is prohibited and access to the unprotected region is allowed; a first device controller that controls the communication device by the processor operating in the first mode; a virtual machine manager that causes one or more virtual machines to operate by the processor operating in the second mode; and a second device controller that controls the communication device by the processor operating in the second mode.Type: GrantFiled: September 3, 2021Date of Patent: October 15, 2024Assignee: PANASONIC AUTOMOTIVE SYSTEMS CO., LTD.Inventors: Hiroyuki Wada, Yoshiharu Imamoto, Toru Iwano, Takayuki Fujii
-
Patent number: 12103478Abstract: A vehicle system is a vehicle system used for a vehicle, and includes: a plurality of in-vehicle apparatuses installed in the vehicle; and at least one of (i) a controller that, in accordance with a depth of penetration of a malicious attack carried out on the plurality of in-vehicle apparatuses, changes at least one of a communication method with an outside of the vehicle, a defense method against the malicious attack, or a storage method for logs pertaining to the plurality of in-vehicle apparatuses, or (ii) a determiner that determines whether or not the malicious attack is being carried out based on anomaly detection in the plurality of in-vehicle apparatuses.Type: GrantFiled: April 23, 2021Date of Patent: October 1, 2024Assignee: Panasonic Automotive Systems Co., Ltd.Inventors: Kento Tamura, Jun Anzai, Yoshiharu Imamoto
-
Publication number: 20240086290Abstract: A monitoring device includes three or more monitors each monitoring, as a monitoring target, at least one of software and a communication log. The three or more monitors include a first monitor operating with a first execution privilege, a second monitor operating with a second execution privilege having a reliability level lower than the first execution privilege, and a third monitor operating with a third execution privilege having a reliability level that is the same as the second execution privilege or that is lower than the second execution privilege. The first monitor monitors software of the second monitor, and at least one of the first monitor or the second monitor monitors software of the third monitor.Type: ApplicationFiled: November 27, 2023Publication date: March 14, 2024Applicant: Panasonic Intellectual Property Corporation of AmericaInventors: Ryo HIRANO, Yoshihiro UJIIE, Takeshi KISHIKAWA, Tomoyuki HAGA, Jun ANZAI, Yoshiharu IMAMOTO
-
Publication number: 20240031199Abstract: In an anomaly determination method for determining an anomaly in a received message, a plurality of messages which include messages that are periodic and each of which includes a first field having a fixed value and a second field having a variable value are each received as the received message, and one of a plurality of combinations to be used for determination each of which includes at least one of a plurality of anomaly determinations including an anomaly determination utilizing a reception timing based on the periodicity or the number of received messages, an anomaly determination utilizing the first field, and an anomaly determination utilizing the second field, is selected according to one or more criteria among available execution time of the anomaly determination method, a load amount, a data amount, and the number of messages.Type: ApplicationFiled: October 4, 2023Publication date: January 25, 2024Inventors: Manabu MAEDA, Toshihisa NAKANO, Yoshiharu IMAMOTO
-
Publication number: 20230401083Abstract: An ECU (Electronic Control Unit) includes a HV (HyperVisor), and a first VM (Virtual Machine) and a second VM that operate on the HV. The first VM detects an abnormality in a process in the first VM. When the first VM detects an abnormality, the first VM notifies the second VM of information related to the abnormality via the HV. The second VM executes a process responsive to the abnormality, based on the information related to the abnormality provided from the first VM.Type: ApplicationFiled: August 22, 2023Publication date: December 14, 2023Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Yoshiharu IMAMOTO, Jun ANZAI, Toshihisa NAKANO
-
Patent number: 11843477Abstract: In an anomaly determination method for determining an anomaly in a received message, a plurality of messages which include messages that are periodic and each of which includes a first field having a fixed value and a second field having a variable value are each received as the received message, and one of a plurality of combinations to be used for determination each of which includes at least one of a plurality of anomaly determinations including an anomaly determination utilizing a reception timing based on the periodicity or the number of received messages, an anomaly determination utilizing the first field, and an anomaly determination utilizing the second field, is selected according to one or more criteria among available execution time of the anomaly determination method, a load amount, a data amount, and the number of messages.Type: GrantFiled: October 27, 2022Date of Patent: December 12, 2023Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Manabu Maeda, Toshihisa Nakano, Yoshiharu Imamoto
-
Publication number: 20230394149Abstract: The monitoring system is a system that monitors a virtualization system, the system including: a VM monitor and a request monitor each of which has a different authority, monitors the virtualization system, and detects an anomaly; and a determiner that determines a state of the virtualization system based on monitoring results from the VM monitor and the request monitor.Type: ApplicationFiled: August 21, 2023Publication date: December 7, 2023Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Kento TAMURA, Jun ANZAI, Toshihisa NAKANO, Yoshiharu IMAMOTO
-
Publication number: 20230306137Abstract: An information processing device includes a guest OS and a host OS that accesses a sector group in response to an access request from the guest OS. The host OS includes: an access log analyzer that generates, by reference to a sector-group database, a sector-group access log from the access request; a sector-group access determiner that determines, based on the sector-group access log, whether the access request seeks to access the sector group related to an application; and a manager that updates, based on a developer definition policy, a sector-group access rule database and the sector-group database if it is determined that the access request seeks to access the sector group and the guest OS makes a change to an application storage area.Type: ApplicationFiled: February 2, 2023Publication date: September 28, 2023Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Tomonori MITSUGI, Yoshiharu IMAMOTO
-
Publication number: 20230177140Abstract: An information processing device includes: a guest OS; a host OS that accesses a sector group stored in an external storage device in response to an access request from the guest OS; a virtualization control system that is executed on a hardware and controls execution of the guest OS and the host OS. The host OS includes: a back-end device driver that obtains the access request from the guest OS; and a sector group access determiner that determines whether or not the access request is anomalous, based on a sector group access rule database indicating a rule for accessing the sector group stored in the external storage device.Type: ApplicationFiled: November 28, 2022Publication date: June 8, 2023Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Hitoshi ONO, Yoshiharu IMAMOTO, Kento TAMURA
-
Patent number: 11615183Abstract: An information processing device includes: a storage that stores determination criterion information indicating a determination criterion for determining whether or not a behavior of an application operating on a device provided to a vehicle is normal; and a detector that obtains behavior information indicating the behavior of the application, and detects an anomaly in the behavior of the application, based on (i) state information that indicates a state of the mobility and is obtained via the mobility network and (ii) the behavior information obtained and the determination criterion information stored in the storage.Type: GrantFiled: May 26, 2022Date of Patent: March 28, 2023Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.Inventors: Takayoshi Ito, Kento Tamura, Yoshiharu Imamoto, Junichi Tsurumi, Hiroyuki Wada
-
Publication number: 20230048058Abstract: In an anomaly determination method for determining an anomaly in a received message, a plurality of messages which include messages that are periodic and each of which includes a first field having a fixed value and a second field having a variable value are each received as the received message, and one of a plurality of combinations to be used for determination each of which includes at least one of a plurality of anomaly determinations including an anomaly determination utilizing a reception timing based on the periodicity or the number of received messages, an anomaly determination utilizing the first field, and an anomaly determination utilizing the second field, is selected according to one or more criteria among available execution time of the anomaly determination method, a load amount, a data amount, and the number of messages.Type: ApplicationFiled: October 27, 2022Publication date: February 16, 2023Inventors: Manabu MAEDA, Toshihisa NAKANO, Yoshiharu IMAMOTO
-
Patent number: 11516045Abstract: In an anomaly determination method for determining an anomaly in a received message, a plurality of messages which include messages that are periodic and each of which includes a first field having a fixed value and a second field having a variable value are each received as the received message, and one of a plurality of combinations to be used for determination each of which includes at least one of a plurality of anomaly determinations including an anomaly determination utilizing a reception timing based on the periodicity or the number of received messages, an anomaly determination utilizing the first field, and an anomaly determination utilizing the second field, is selected according to one or more criteria among available execution time of the anomaly determination method, a load amount, a data amount, and the number of messages.Type: GrantFiled: June 1, 2021Date of Patent: November 29, 2022Assignee: PANASONIC INTELLECTUAL PROPERTY CORPORATION OF AMERICAInventors: Manabu Maeda, Toshihisa Nakano, Yoshiharu Imamoto
-
Publication number: 20220291944Abstract: In an ECU, virtualization software operates a first virtual machine (VM) and a second VM. A transfer unit of the second VM acknowledges communication data transmitted from the first VM and destined to the second VM. A transfer unit generates a parameter related to communication between the VMs, based on the communication data acknowledged. A detection unit of the second VM detects abnormal communication, based on the parameter generated by the transfer unit.Type: ApplicationFiled: June 1, 2022Publication date: September 15, 2022Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventor: Yoshiharu IMAMOTO
-
Publication number: 20220284092Abstract: An information processing device includes: a storage that stores determination criterion information indicating a determination criterion for determining whether or not a behavior of an application operating on a device provided to a vehicle is normal; and a detector that obtains behavior information indicating the behavior of the application, and detects an anomaly in the behavior of the application, based on (i) state information that indicates a state of the mobility and is obtained via the mobility network and (ii) the behavior information obtained and the determination criterion information stored in the storage.Type: ApplicationFiled: May 26, 2022Publication date: September 8, 2022Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Takayoshi ITO, Kento TAMURA, Yoshiharu IMAMOTO, Junichi TSURUMI, Hiroyuki WADA
-
Publication number: 20220080989Abstract: An information processing apparatus includes: a communication device that communicates with an external apparatus outside the information processing apparatus; a memory that includes a protected region and an unprotected region; a processor that operates in a first mode and a second mode, the first mode being a mode in which access to the protected region and access to the unprotected region are allowed, the second mode being a mode in which access to the protected region is prohibited and access to the unprotected region is allowed; a first device controller that controls the communication device by the processor operating in the first mode; a virtual machine manager that causes one or more virtual machines to operate by the processor operating in the second mode; and a second device controller that controls the communication device by the processor operating in the second mode.Type: ApplicationFiled: September 3, 2021Publication date: March 17, 2022Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Hiroyuki WADA, Yoshiharu IMAMOTO, Toru IWANO, Takayuki FUJII
-
Patent number: 11252057Abstract: An analysis ECU acquires information related to a first flow and information related to a second flow, the first flow and the second flow organizing packets transferred in a monitored system into respective groups. The analysis ECU acquires information related to a conversion that takes the first flow as input and the second flow as output. The analysis ECU acknowledges alert information generated in the monitored system and including information capable of identifying at least one flow. The analysis ECU generates, when the second flow is identified by the alert information, route information that includes at least one of the information related to the conversion and the information related to the first flow associated with the second flow in the information related to the conversion.Type: GrantFiled: March 10, 2020Date of Patent: February 15, 2022Assignee: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.Inventor: Yoshiharu Imamoto
-
Publication number: 20210297284Abstract: In an anomaly determination method for determining an anomaly in a received message, a plurality of messages which include messages that are periodic and each of which includes a first field having a fixed value and a second field having a variable value are each received as the received message, and one of a plurality of combinations to be used for determination each of which includes at least one of a plurality of anomaly determinations including an anomaly determination utilizing a reception timing based on the periodicity or the number of received messages, an anomaly determination utilizing the first field, and an anomaly determination utilizing the second field, is selected according to one or more criteria among available execution time of the anomaly determination method, a load amount, a data amount, and the number of messages.Type: ApplicationFiled: June 1, 2021Publication date: September 23, 2021Inventors: Manabu MAEDA, Toshihisa NAKANO, Yoshiharu IMAMOTO
-
Publication number: 20210237665Abstract: A vehicle system is a vehicle system used for a vehicle, and includes: a plurality of in-vehicle apparatuses installed in the vehicle; and at least one of (i) a controller that, in accordance with a depth of penetration of a malicious attack carried out on the plurality of in-vehicle apparatuses, changes at least one of a communication method with an outside of the vehicle, a defense method against the malicious attack, or a storage method for logs pertaining to the plurality of in-vehicle apparatuses, or (ii) a determiner that determines whether or not the malicious attack is being carried out based on anomaly detection in the plurality of in-vehicle apparatuses.Type: ApplicationFiled: April 23, 2021Publication date: August 5, 2021Applicant: Panasonic Intellectual Property Management Co., Ltd.Inventors: Kento TAMURA, Jun ANZAI, Yoshiharu IMAMOTO
-
Publication number: 20200296015Abstract: An analysis ECU acquires information related to a first flow and information related to a second flow, the first flow and the second flow organizing packets transferred in a monitored system into respective groups. The analysis ECU acquires information related to a conversion that takes the first flow as input and the second flow as output. The analysis ECU acknowledges alert information generated in the monitored system and including information capable of identifying at least one flow. The analysis ECU generates, when the second flow is identified by the alert information, route information that includes at least one of the information related to the conversion and the information related to the first flow associated with the second flow in the information related to the conversion.Type: ApplicationFiled: March 10, 2020Publication date: September 17, 2020Applicant: PANASONIC INTELLECTUAL PROPERTY MANAGEMENT CO., LTD.Inventor: Yoshiharu IMAMOTO