-
公开(公告)号:US20230247037A1
公开(公告)日:2023-08-03
申请号:US18134183
申请日:2023-04-13
Inventor: Yuishi TORISAKI , Takayoshi ITO , Kaoru YOKOTA , Akihito TAKEUCHI , Toshihisa NAKANO
IPC: H04L9/40
CPC classification number: H04L63/1425
Abstract: A log management module includes: an anomaly detection information receiver that receives anomaly detection information; a detection history information storage that stores detection history information; an attack route information storage that stores attack route information indicating a candidate for an attack route in the CAN bus; an attack route estimator that estimates an attack route including the specific device, based on the attack route information; and a collection target determiner that, upon receipt of the anomaly detection information by the anomaly detection information receiver, determines, as collection targets whose log information for analysis which is for analyzing presence or absence of an undetected anomaly in the CAN bus is to be collected, one or more candidate devices which have been narrowed down from the devices, are present on the attack route estimated by the attack route estimator, and have no history of anomaly detection.
-
公开(公告)号:US20220261304A1
公开(公告)日:2022-08-18
申请号:US17738695
申请日:2022-05-06
Inventor: Akihiko TAKEUCHI , Toshihisa NAKANO , Kaoru YOKOTA , Yuishi TORISAKI
IPC: G06F11/07
Abstract: An information processing device that detects an anomaly in an in-vehicle network provided in a vehicle includes: a local rule storage in which at least an individual rule which is a rule generated for the vehicle is stored; a global rule storage in which an integrated rule which is a rule generated for a plurality of vehicles including the vehicle is stored; and a processing unit that performs, using a rule stored in at least one of the local rule storage or the global rule storage, an anomaly detection process on a frame transmitted on the in-vehicle network.
-
公开(公告)号:US20230319084A1
公开(公告)日:2023-10-05
申请号:US18101762
申请日:2023-01-26
Inventor: Shoichiro SEKIYA , Yuishi TORISAKI , Takayoshi ITO
CPC classification number: H04L63/1425 , H04L63/1441 , H04L67/12
Abstract: An on-vehicle device according to the present disclosure is capable of communicating with a server and mounted on a vehicle. The on-vehicle device includes a memory, and a hardware processor coupled to the memory. The hardware processor is configured to: receive, from the server, a log acquisition requirement including an anomaly detected point portion that designates one or more anomaly detected points and a log acquisition target portion that indicates one or more logs to be acquired when an anomaly is detected at the one or more anomaly detected points designated by the anomaly detected point portion; store the log acquisition requirement; detect an anomaly of the vehicle; acquire, when detecting an anomaly, a log based on a part where an anomaly is detected and the log acquisition requirement; and transmit the acquired log to the server.
-
公开(公告)号:US20230262505A1
公开(公告)日:2023-08-17
申请号:US18135531
申请日:2023-04-17
Inventor: Toshihisa NAKANO , Yuishi TORISAKI , Jun ANZAI
Abstract: A management device includes: an obtainer that obtains, from a processing device, a log of operation performed by the processing device and verification data for certifying that the log is valid information; a verifier that performs verification of whether the log is valid information, based on the verification data obtained by the obtainer; and a controller that performs storage control for storing the log as an analysis log for analyzing an anomaly into a storage device, in accordance with a result of the verification performed by the verifier.
-
Patent Agency Ranking
公开(公告)号:US20230262080A1
公开(公告)日:2023-08-17
申请号:US18137168
申请日:2023-04-20
Inventor: Kou ISHII , Kaoru YOKOTA , Yuishi TORISAKI , Toshihisa NAKANO , Jun ANZAI
IPC: H04L9/40
CPC classification number: H04L63/1425 , H04L63/1416
Abstract: An information processing device includes: an obtainer that obtains, from an anomaly detection sensor that detects an anomaly in a network, a detection log related to the anomaly in the network and the detection time of the anomaly indicated in the detection log; an occurrence time determiner that determines the occurrence time of an attack on the network based on the obtained detection time, and records the determined occurrence time; and an end time determiner that determines the expected end time of the attack on the network based on the obtained detection log, and records the determined expected end time.
-
公开(公告)号:US20230350714A1
公开(公告)日:2023-11-02
申请号:US18220532
申请日:2023-07-11
Inventor: Shoichiro SEKIYA , Yuishi TORISAKI
CPC classification number: G06F9/4881 , H04L63/1425 , H04L63/1433
Abstract: A priority determination system incudes a processor, a terminal, and a memory. The processor obtains anomaly data items, each indicating an anomaly in a corresponding one of moving bodies, and obtains state data items, each indicating a state of a corresponding one of the moving bodies. The processor calculates, for each anomaly data item, a risk value indicating a risk of the anomaly based on a state data item of the corresponding one of the moving bodies, determines a priority of a task for dealing with the anomaly indicated by each anomaly data item based on the risk value, and provides an output to the terminal to execute the task. The terminal displays an alert related to at least one of the priority of the task, the risk value, or an estimated dealing time required for completing the task.
-
公开(公告)号:US20220413907A1
公开(公告)日:2022-12-29
申请号:US17900283
申请日:2022-08-31
Inventor: Shoichiro SEKIYA , Yuishi TORISAKI
Abstract: A priority determination system includes: an anomaly obtainer that obtains anomaly data items each indicating anomaly in a corresponding one of moving bodies; a state obtainer that obtains state data items each indicating a state of a corresponding one of the moving bodies; a risk value calculator that calculates, for each of the anomaly data items, a risk value indicating a risk of the anomaly based on a state data item of the corresponding one of the moving bodies; a priority determiner that determines a priority of a task for dealing with the anomaly indicated by each of the anomaly data items, based on the risk value of the anomaly data item; and an outputter that provides output based on a result of the determination.
-
公开(公告)号:US20220103583A1
公开(公告)日:2022-03-31
申请号:US17479734
申请日:2021-09-20
Inventor: Yuishi TORISAKI , Kaoru YOKOTA , Takayuki FUJII , Akihito TAKEUCHI
IPC: H04L29/06
Abstract: An information transmission device is provided in an object that including one or more devices and a monitoring sensor monitoring each device. The information transmission device includes: an obtainer that obtains, from the monitoring sensor, first detection information indicating that an anomaly is detected in any device; and a transmitter that transmits, to an external device, monitoring information including the first detection information and relevance information. The relevance information indicates relevance between the first detection information and second detection information which is obtained from the monitoring sensor and transmitted from the transmitter to the external device prior to the transmission of the first detection information. The second detection information indicating that an anomaly is detected in any device, and relating to the first detection information.
-
公开(公告)号:US20210359927A1
公开(公告)日:2021-11-18
申请号:US17318415
申请日:2021-05-12
Inventor: Takayoshi ITO , Yuishi TORISAKI , Takamitsu SASAKI
Abstract: A server as an information processing device includes: a communicator that communicates with mobile a body; a monitoring data storage that stores past monitoring data of the mobile body received by the communicator; and an alive monitor that determines whether a current state of the mobile body is anomalous, based on the past monitoring data stored in the monitoring data storage.
-
-
-
-
-
-
-
-
Search Results
9
records
(took 0.018 seconds)
