CN112311745A - Vehicle-mounted network control method and vehicle-mounted network - Google Patents
Vehicle-mounted network control method and vehicle-mounted network Download PDFInfo
- Publication number
- CN112311745A CN112311745A CN201910712759.5A CN201910712759A CN112311745A CN 112311745 A CN112311745 A CN 112311745A CN 201910712759 A CN201910712759 A CN 201910712759A CN 112311745 A CN112311745 A CN 112311745A
- Authority
- CN
- China
- Prior art keywords
- network
- vehicle
- gateway
- layer network
- intrusion detection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 22
- 238000001514 detection method Methods 0.000 claims abstract description 44
- 230000010365 information processing Effects 0.000 claims description 4
- 230000009545 invasion Effects 0.000 abstract description 3
- 238000013461 design Methods 0.000 description 4
- 238000011161 development Methods 0.000 description 4
- 238000002955 isolation Methods 0.000 description 4
- 238000010586 diagram Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 3
- 230000007123 defense Effects 0.000 description 2
- 230000009977 dual effect Effects 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/02—Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
- H04L63/0209—Architectural arrangements, e.g. perimeter networks or demilitarized zones
-
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R16/00—Electric or fluid circuits specially adapted for vehicles and not otherwise provided for; Arrangement of elements of electric or fluid circuits specially adapted for vehicles and not otherwise provided for
- B60R16/02—Electric or fluid circuits specially adapted for vehicles and not otherwise provided for; Arrangement of elements of electric or fluid circuits specially adapted for vehicles and not otherwise provided for electric constitutive elements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Mechanical Engineering (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention provides a vehicle-mounted network control method and a vehicle-mounted network. The vehicle-mounted network comprises a first gateway, a second gateway, an inner layer network, an intermediate layer network and an outer layer network, wherein the inner layer network is communicated with the intermediate layer network through the first gateway, the intermediate layer network is communicated with the outer layer network through the first gateway and the second gateway, and the control method comprises the following steps: carrying out intrusion detection on the vehicle-mounted network through the first gateway and the second gateway to obtain an intrusion detection result; when the intrusion detection result shows that the outer layer network is invaded, closing the route between the middle layer network and the outer layer network; and when the intrusion detection result shows that the middle layer network is invaded, closing the route between the inner layer network and the middle layer network. According to the scheme, the whole vehicle network is divided into three layers by using the double gateways: the outer layer, the middle layer and the inner layer, thereby increasing the difficulty of hacker invasion to the inner layer network and improving the safety factor of the vehicle.
Description
Technical Field
The invention relates to the field of automobiles, in particular to a vehicle-mounted network control method and a vehicle-mounted network.
Background
With the development of the automobile industry, the proportion of electronic control in the whole automobile control system is continuously improved. The continuous improvement of electronization degree leads the information interaction quantity among all electronic control units to be increased day by day, and the adoption of bus communication becomes an important direction for the development of automobile electronization.
At present, the mainstream vehicle-mounted buses include CAN, LIN, MOST, Ethernet and the like, the development of bus technology drives the development of a vehicle-mounted network, and the vehicle-mounted network becomes a bridge between electronic control units.
However, the current vehicle-mounted network is mainly designed for realizing various functions of the automobile, and the information security is not considered or is rarely considered, so that the vehicle on the market is often attacked by hackers, and a great hidden danger of the information security of the vehicle-mounted network exists.
Disclosure of Invention
The embodiment of the invention provides a vehicle-mounted network control method and a vehicle-mounted network, which are used for solving the problem that the vehicle-mounted network in the prior art has information potential safety hazards.
In order to solve the technical problems, the invention adopts the following technical scheme:
according to an aspect of the present invention, there is provided a vehicle network control method, the vehicle network including a first gateway, a second gateway, an inner network, a middle network, and an outer network, wherein the inner network and the middle network communicate through the first gateway, and the middle network and the outer network communicate through the first gateway and the second gateway, the control method including:
carrying out intrusion detection on the vehicle-mounted network through the first gateway and the second gateway to obtain an intrusion detection result;
when the intrusion detection result shows that the outer layer network is invaded, closing the route between the middle layer network and the outer layer network;
and when the intrusion detection result shows that the intermediate layer network is intruded, closing the route between the inner layer network and the intermediate layer network.
Optionally, the outer-layer network comprises a vehicle-mounted data link interface DLC, an interface module and a vehicle-mounted telematics system T-Box interconnected by the second gateway;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
Optionally, the method further comprises:
after closing the route between the intermediate layer network and the outer layer network, controlling the automobile instrument equipment or the automobile central control equipment to display an intrusion warning;
the intermediate layer network comprises the automobile instrument equipment and the automobile central control equipment which are interconnected through the first gateway.
Optionally, the inner network includes a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit and a driving assistance domain electronic control unit which are interconnected through the first gateway.
Optionally, the method further comprises:
controlling the vehicle to enter a limp home mode after closing a route between an inner network and the middle network.
In accordance with another aspect of the present invention, there is provided an in-vehicle network including:
the system comprises a first gateway, a second gateway, an inner layer network, an intermediate layer network and an outer layer network, wherein the inner layer network and the intermediate layer network communicate through the first gateway, and the intermediate layer network and the outer layer network communicate through the first gateway and the second gateway;
wherein the first gateway comprises:
the first intrusion detection module is used for carrying out first intrusion detection on the vehicle-mounted network to obtain a first intrusion detection result;
and the first control module is used for closing the route between the internal network and the intermediate network when the intrusion detection result shows that the intermediate network is intruded.
The second gateway includes:
the second intrusion detection module is used for carrying out second intrusion detection on the vehicle-mounted network to obtain a second intrusion detection result;
and the second control module is used for closing the route between the intermediate layer network and the outer layer network when the intrusion detection result shows that the outer layer network is invaded.
Optionally, the outer-layer network comprises a vehicle-mounted data link interface DLC, an interface module and a vehicle-mounted telematics system T-Box interconnected by the second gateway;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
Optionally, the second control module is further configured to control the automobile instrument device or the automobile central control device to display an intrusion warning after the route between the intermediate layer network and the outer layer network is closed;
the intermediate layer network comprises the automobile instrument equipment and the automobile central control equipment which are interconnected through the first gateway.
Optionally, the inner network includes a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit and a driving assistance domain electronic control unit which are interconnected through the first gateway.
Optionally, the first control module is further configured to control the vehicle to enter a limp home mode after closing a route between the inner network and the middle network.
The invention has the beneficial effects that:
according to the scheme, the whole vehicle network is divided into three layers by adopting double gateways: the outer layer, the middle layer and the inner layer prevent hackers from directly accessing the inner layer network, so that the hacker attack cost is improved, the difficulty of invading the inner layer network is increased, and the safety coefficient of vehicles is improved.
Drawings
Fig. 1 is a schematic diagram illustrating a vehicle-mounted network control method according to an embodiment of the present invention;
FIG. 2 is a schematic diagram of a vehicle network according to an embodiment of the present invention;
fig. 3 is a schematic diagram of a topology of an on-board network according to an embodiment of the present invention.
Description of reference numerals:
21-inner network; 22-a first gateway; 23-intermediate layer network; 24-a second gateway; 25-outer network; 221-a first intrusion detection module; 222-a first control module; 241-a second intrusion detection module; 242 — a second control module.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in detail with reference to the accompanying drawings and specific embodiments.
The invention provides a vehicle-mounted network control method and a vehicle-mounted network, aiming at the problem that the vehicle-mounted network has larger information safety hidden danger.
As shown in fig. 1, an embodiment of the present invention provides a vehicle network control method, where the vehicle network includes a first gateway 22, a second gateway 24, an inner network 21, an intermediate network 23, and an outer network 25, where the inner network 21 communicates with the intermediate network 23 through the first gateway 22, and the intermediate network 23 communicates with the outer network 25 through the first gateway 22 and the second gateway 24, and the control method includes:
s11: carrying out intrusion detection on the vehicle-mounted network through the first gateway 22 and the second gateway 24 to obtain an intrusion detection result;
s12: and when the intrusion detection result shows that the outer-layer network 25 is intruded, closing the route between the middle-layer network 23 and the outer-layer network 25.
It should be noted that, the route between the intermediate layer network 23 and the outer layer network 25 is closed in time, so as to avoid the intrusion of hackers on the intermediate layer network 23 through the outer layer network 25, and effectively protect the vehicle security. In addition, the vehicle at this time can normally run.
S13: and when the intrusion detection result shows that the intermediate layer network 23 is intruded, closing the route between the inner layer network 21 and the intermediate layer network 23.
It should be noted that, the route between the inner network 21 and the intermediate network 23 is closed in time, so as to avoid the intrusion of hackers into the inner network 21 via the intermediate network 23, and effectively protect the vehicle security.
Optionally, the outer network 25 comprises an onboard data link interface DLC, an interface module and an onboard telematics system T-Box interconnected by the second gateway 24;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
Optionally, the method further comprises:
after the route between the middle layer network 23 and the outer layer network 25 is closed, controlling the automobile instrument equipment or the automobile central control equipment to display an intrusion warning;
the intermediate network 23 includes the automobile instrument devices and the automobile central control device interconnected through the first gateway 22.
It should be noted that, after the outer network 25 is invaded, the automobile instrument device or the automobile central control device is controlled to display the invasion warning, so that the user can know the vehicle condition in time, and effective response is made to avoid the vehicle from being dangerous.
Alternatively, the inner network 21 includes a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit, and a driving assistance domain electronic control unit, which are interconnected by the first gateway 22.
It should be noted that, in the mainstream scheme at present, bluetooth or WIFI is generally set up in an interface module of the electronic control unit in the automobile body domain. Limited by gateway resources, the electronic control unit is not isolated, so that hackers can easily invade the intranet through Bluetooth or WIFI. In addition, the mainstream scheme usually adopts a single gateway, and has the problem of insufficient isolation, for example, the automobile instrument equipment and the automobile central control equipment are mixed with other electronic control units. As shown in fig. 3, the embodiment of the present invention designs a vehicle network topology from the perspective of information security, which is different from the general design from the perspective of functions, and adopts bus technologies such as CAN, CANFD, and Ethernet, and uses a dual gateway to divide the entire vehicle network into three layers: an inner network 21, an intermediate network 23 and an outer network 25. The interface module which is easy to be attacked by hackers is independent, the DLC and the vehicle-mounted remote information processing system T-Box are arranged on the outer layer network 25, and the important parts of the power domain electronic control unit, the chassis domain electronic control unit, the vehicle body domain electronic control unit and the driving auxiliary domain electronic control unit are arranged on the inner layer network 21, so that the cost and the difficulty of hacker intrusion are increased, and the vehicle safety is effectively protected.
Optionally, the method further comprises:
after closing the route between the inner network 21 and said intermediate network 23, the vehicle is controlled to enter a limp home mode.
In the embodiment of the invention, the vehicle-mounted network is divided into three layers by using double gateways according to the attack cost of the electric control unit: the outer layer, the middle layer and the inner layer integrate the Bluetooth interface, the WIFI interface, the USB interface and the like into the interface module, and information security measures such as intrusion detection, defense and isolation are conveniently and uniformly made. The electronic control unit or interface with the lowest intrusion cost is arranged on the outermost layer, so that a hacker is prevented from directly accessing the inner network, the hacker attack cost is increased, the difficulty of invading the inner network is increased, and the safety coefficient of the vehicle is improved.
As shown in fig. 2, an embodiment of the present invention further provides a vehicle-mounted network, including:
a first gateway 22, a second gateway 24, an inner network 21, an intermediate network 23, and an outer network 25, wherein the inner network 21 communicates with the intermediate network 23 through the first gateway 22, and the intermediate network 23 communicates with the outer network 25 through the first gateway 22 and the second gateway 24;
wherein the first gateway 22 comprises:
the first intrusion detection module 221 is configured to perform first intrusion detection on the vehicle-mounted network to obtain a first intrusion detection result;
and the first control module 222 is configured to close the route between the inner layer network 21 and the intermediate layer network 23 when the intrusion detection result indicates that the intermediate layer network 23 is intruded.
It should be noted that, the route between the inner network 21 and the intermediate network 23 is closed in time, so as to avoid the intrusion of hackers into the inner network 21 via the intermediate network 23, and effectively protect the vehicle security.
The second gateway 24 includes:
the second intrusion detection module 241 is configured to perform second intrusion detection on the vehicle-mounted network to obtain a second intrusion detection result;
and the second control module 242 is configured to close the route between the middle-layer network 23 and the outer-layer network 25 when the intrusion detection result indicates that the outer-layer network 25 is intruded.
It should be noted that, the route between the intermediate layer network 23 and the outer layer network 25 is closed in time, so as to avoid the intrusion of hackers on the intermediate layer network 23 through the outer layer network 25, and effectively protect the vehicle security. In addition, the vehicle at this time can normally run.
Optionally, the outer network 25 comprises an onboard data link interface DLC, an interface module and an onboard telematics system T-Box interconnected by the second gateway 24;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
Optionally, the second control module 242 is further configured to control the vehicle instrument device or the vehicle central control device to display an intrusion warning after the route between the middle layer network 23 and the outer layer network 25 is closed;
the intermediate network 23 includes the automobile instrument devices and the automobile central control device interconnected through the first gateway 22.
It should be noted that, after the outer network 25 is invaded, the automobile instrument device or the automobile central control device is controlled to display the invasion warning, so that the user can know the vehicle condition in time, and effective response is made to avoid the vehicle from being dangerous. Alternatively, the inner network 21 includes a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit, and a driving assistance domain electronic control unit, which are interconnected by the first gateway 22.
It should be noted that, in the mainstream scheme at present, bluetooth or WIFI is generally set up in an interface module of the electronic control unit in the automobile body domain. Limited by gateway resources, the electronic control unit is not isolated, so that hackers can easily invade the intranet through Bluetooth or WIFI. In addition, the mainstream scheme usually adopts a single gateway, and has the problem of insufficient isolation, for example, the automobile instrument equipment and the automobile central control equipment are mixed with other electronic control units. As shown in fig. 3, the embodiment of the present invention designs a vehicle network topology from the perspective of information security, which is different from the general design from the perspective of functions, and adopts bus technologies such as CAN, CANFD, and Ethernet, and uses a dual gateway to divide the entire vehicle network into three layers: an inner network 21, an intermediate network 23 and an outer network 25. The interface module which is easy to be attacked by hackers is independent, the DLC and the vehicle-mounted remote information processing system T-Box are arranged on the outer layer network 25, and the important parts of the power domain electronic control unit, the chassis domain electronic control unit, the vehicle body domain electronic control unit and the driving auxiliary domain electronic control unit are arranged on the inner layer network 21, so that the cost and the difficulty of hacker intrusion are increased, and the vehicle safety is effectively protected.
Optionally, the first control module 222 is further configured to control the vehicle to enter a limp home mode after closing the route between the inner network 21 and the middle network 23.
In the embodiment of the invention, the vehicle-mounted network is divided into three layers by using double gateways according to the attack cost of the electric control unit: the outer layer, the middle layer and the inner layer integrate the Bluetooth interface, the WIFI interface, the USB interface and the like into the interface module, and information security measures such as intrusion detection, defense and isolation are conveniently and uniformly made. The electronic control unit or the interface with the lowest intrusion cost is arranged on the outermost layer, so that the difficulty of hacker intrusion on the inner network is increased, and the safety coefficient of the vehicle is improved.
While the preferred embodiments of the present invention have been described, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention as defined in the following claims.
Claims (10)
1. A vehicle-mounted network control method, wherein the vehicle-mounted network includes a first gateway, a second gateway, an inner network, an intermediate network, and an outer network, wherein the inner network communicates with the intermediate network via the first gateway, and the intermediate network communicates with the outer network via the first gateway and the second gateway, the control method comprising:
carrying out intrusion detection on the vehicle-mounted network through the first gateway and the second gateway to obtain an intrusion detection result;
when the intrusion detection result shows that the outer layer network is invaded, closing the route between the middle layer network and the outer layer network;
and when the intrusion detection result shows that the intermediate layer network is intruded, closing the route between the inner layer network and the intermediate layer network.
2. The control method according to claim 1,
the outer layer network comprises a vehicle-mounted data link interface DLC, an interface module and a vehicle-mounted remote information processing system T-Box which are interconnected through the second gateway;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
3. The control method according to claim 1, characterized by further comprising:
after closing the route between the intermediate layer network and the outer layer network, controlling the automobile instrument equipment or the automobile central control equipment to display an intrusion warning;
the intermediate layer network comprises the automobile instrument equipment and the automobile central control equipment which are interconnected through the first gateway.
4. The control method according to claim 1,
the inner network comprises a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit and a driving auxiliary domain electronic control unit which are interconnected through the first gateway.
5. The control method according to claim 1, characterized by further comprising:
controlling the vehicle to enter a limp home mode after closing a route between an inner network and the middle network.
6. An in-vehicle network, comprising:
the system comprises a first gateway, a second gateway, an inner layer network, an intermediate layer network and an outer layer network, wherein the inner layer network and the intermediate layer network communicate through the first gateway, and the intermediate layer network and the outer layer network communicate through the first gateway and the second gateway;
wherein the first gateway comprises:
the first intrusion detection module is used for carrying out first intrusion detection on the vehicle-mounted network to obtain a first intrusion detection result;
the first control module is used for closing the route between the inner network and the intermediate network when the intrusion detection result shows that the intermediate network is intruded;
the second gateway includes:
the second intrusion detection module is used for carrying out second intrusion detection on the vehicle-mounted network to obtain a second intrusion detection result;
and the second control module is used for closing the route between the intermediate layer network and the outer layer network when the intrusion detection result shows that the outer layer network is invaded.
7. The in-vehicle network of claim 6,
the outer layer network comprises a vehicle-mounted data link interface DLC, an interface module and a vehicle-mounted remote information processing system T-Box which are interconnected through the second gateway;
wherein the interface module at least comprises one of a Wi-Fi interface, a Bluetooth interface and a USB interface.
8. The in-vehicle network of claim 6,
the second control module is also used for controlling the automobile instrument equipment or the automobile central control equipment to display intrusion warning after the route between the middle layer network and the outer layer network is closed;
the intermediate layer network comprises the automobile instrument equipment and the automobile central control equipment which are interconnected through the first gateway.
9. The in-vehicle network of claim 6,
the inner network comprises a power domain electronic control unit, a chassis domain electronic control unit, a vehicle body domain electronic control unit and a driving auxiliary domain electronic control unit which are interconnected through the first gateway.
10. The in-vehicle network of claim 6,
the first control module is further configured to control the vehicle to enter a limp home mode after closing a route between an inner network and the middle network.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910712759.5A CN112311745B (en) | 2019-08-02 | 2019-08-02 | Vehicle-mounted network control method and vehicle-mounted network |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910712759.5A CN112311745B (en) | 2019-08-02 | 2019-08-02 | Vehicle-mounted network control method and vehicle-mounted network |
Publications (2)
Publication Number | Publication Date |
---|---|
CN112311745A true CN112311745A (en) | 2021-02-02 |
CN112311745B CN112311745B (en) | 2023-04-07 |
Family
ID=74486647
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910712759.5A Active CN112311745B (en) | 2019-08-02 | 2019-08-02 | Vehicle-mounted network control method and vehicle-mounted network |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112311745B (en) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113407362A (en) * | 2021-06-16 | 2021-09-17 | 武汉光庭信息技术股份有限公司 | SOMEIP communication intermediate layer implementation method and system based on SOA architecture of vehicle-mounted Android system |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070083304A1 (en) * | 2005-10-06 | 2007-04-12 | Denso Corporation | On-vehicle network diagnosis system and on-vehicle control apparatus thereof |
CN103685000A (en) * | 2012-09-05 | 2014-03-26 | 罗伯特·博世有限公司 | Gateway module, communication system and method for transmitting data among users |
CN105083165A (en) * | 2015-07-29 | 2015-11-25 | 成都信息工程大学 | Intrusion prevention system for vehicle-mounted information system |
CN106953796A (en) * | 2017-04-13 | 2017-07-14 | 北京汽车集团有限公司 | Security gateway, data processing method, device, vehicle network topology and vehicle |
CN107454190A (en) * | 2017-08-30 | 2017-12-08 | 北京新能源汽车股份有限公司 | Network architecture of intelligent networked automobile and automobile |
CN107819730A (en) * | 2016-09-13 | 2018-03-20 | 比亚迪股份有限公司 | Data transmission method, safety insulating device and vehicle-mounted Ethernet system |
CN108521410A (en) * | 2018-03-19 | 2018-09-11 | 北京航空航天大学 | The security architecture of vehicle-mounted Ethernet |
-
2019
- 2019-08-02 CN CN201910712759.5A patent/CN112311745B/en active Active
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20070083304A1 (en) * | 2005-10-06 | 2007-04-12 | Denso Corporation | On-vehicle network diagnosis system and on-vehicle control apparatus thereof |
CN103685000A (en) * | 2012-09-05 | 2014-03-26 | 罗伯特·博世有限公司 | Gateway module, communication system and method for transmitting data among users |
CN105083165A (en) * | 2015-07-29 | 2015-11-25 | 成都信息工程大学 | Intrusion prevention system for vehicle-mounted information system |
CN107819730A (en) * | 2016-09-13 | 2018-03-20 | 比亚迪股份有限公司 | Data transmission method, safety insulating device and vehicle-mounted Ethernet system |
CN106953796A (en) * | 2017-04-13 | 2017-07-14 | 北京汽车集团有限公司 | Security gateway, data processing method, device, vehicle network topology and vehicle |
CN107454190A (en) * | 2017-08-30 | 2017-12-08 | 北京新能源汽车股份有限公司 | Network architecture of intelligent networked automobile and automobile |
CN108521410A (en) * | 2018-03-19 | 2018-09-11 | 北京航空航天大学 | The security architecture of vehicle-mounted Ethernet |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113407362A (en) * | 2021-06-16 | 2021-09-17 | 武汉光庭信息技术股份有限公司 | SOMEIP communication intermediate layer implementation method and system based on SOA architecture of vehicle-mounted Android system |
Also Published As
Publication number | Publication date |
---|---|
CN112311745B (en) | 2023-04-07 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US11411917B2 (en) | Method for detecting, blocking and reporting cyber-attacks against automotive electronic control units | |
KR102281914B1 (en) | A device for detection and prevention of an attack on a vehicle | |
US11451579B2 (en) | System and method for protecting electronics systems of a vehicle from cyberattacks | |
EP3018635B1 (en) | In-vehicle communication system | |
Narayanan et al. | OBD_SecureAlert: An anomaly detection system for vehicles | |
RU2725033C2 (en) | System and method of creating rules | |
Narayanan et al. | Using data analytics to detect anomalous states in vehicles | |
CN105278518B (en) | Prevent the access to sensitive vehicle diagnostic data | |
Wright | Hacking cars | |
US7917261B2 (en) | System and methods for controlling vehicular functions | |
CN105871830A (en) | Firewall of vehicle-mounted information system of automobile | |
EP3547191B1 (en) | System and method of generating rules for blocking a computer attack on a vehicle | |
Kennedy | New threats to vehicle safety: how cybersecurity policy will shape the future of autonomous vehicles | |
CN112752682A (en) | Method and system for improving vehicle safety | |
CN112311745B (en) | Vehicle-mounted network control method and vehicle-mounted network | |
KR20190064116A (en) | Apparatus and method for alerting vehicle network intrusion | |
Groza et al. | Designing security for in-vehicle networks: a Body Control Module (BCM) centered viewpoint | |
Trope et al. | Why smart car safety depends on cybersecurity | |
US20220029855A1 (en) | Relay device system | |
Ibarra et al. | Cyber-security as an attribute of active safety systems and their migration towards vehicle automation | |
Caberto et al. | A method of securing a vehicle’s controller area network | |
JP2003312392A (en) | Onboard information terminal | |
CN118944998A (en) | Safety multi-bus control system for recreational vehicle | |
Richards | Dangerous driving? | |
Balough et al. | Cyberterrorism on Wheels: Are Today's Cars Vulnerable to Attack? |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |