US2019325135A1PendingUtilityA1

Secure controller operation and malware prevention

61
Assignee: KARAMBA SECURITY LTDPriority: Apr 6, 2016Filed: Jun 7, 2019Published: Oct 24, 2019
Est. expiryApr 6, 2036(~9.7 yrs left)· nominal 20-yr term from priority
H04L 63/145G06F 21/568H04L 2209/84H04L 63/20G06F 21/64G06F 21/566G06F 21/577H04L 63/101G06F 21/554H04L 63/1441H04L 67/12G06F 21/606G06F 21/52H04W 12/128
61
PatentIndex Score
0
Cited by
0
References
0
Claims

Abstract

In one implementation, a method for providing security on an externally connected controller includes launching, by the controller, a kernel level security layer that includes a whitelist of permitted processes on the controller, the whitelist being part of a custom security policy for the controller; receiving, at the security layer, a request to run a particular process; determining, by the security layer, a signature for the particular process; identifying, by the security layer, a verified signature for the process from the whitelist; determining, by the security layer, whether the particular process is permitted to be run on the controller based on a comparison of the determined signature with the verified signature from the whitelist; and blocking by the security layer, the particular process from running on the automotive controller based on the determined signature not matching the verified signature for the process.

Claims

exact text as granted — not AI-modified
1 - 22 . (canceled) 
     
     
         23 . A non-transitory computer readable medium including instructions that, when executed by at least one processor, cause the at least one processor to perform operations for providing a visual indicator of a status of a vehicle's cybersecurity systems, comprising:
 performing a cybersecurity testing protocol within the vehicle, the cybersecurity testing protocol being performed by one or more anti-tampering agents and being configured to determine whether a security software layer installed on an ECU in the vehicle has been tampered with; and   determining, based on a result of the cybersecurity testing protocol, whether to display in a display panel of the vehicle a visual indicator of the security status of the ECU.   
     
     
         24 . The non-transitory computer readable medium of  claim 23 , wherein the visual indicator is configured to display a security status of a plurality of ECUs in the vehicle. 
     
     
         25 . The non-transitory computer readable medium of  claim 23 , wherein the cybersecurity testing protocol includes determining whether one or more whitelist hooks associated with the ECU in the vehicle have been removed. 
     
     
         26 . The non-transitory computer readable medium of  claim 25 , wherein the one or more whitelist hooks are configured to cause calls to the one or more kernel level processes to be forwarded to the security software layer. 
     
     
         27 . The non-transitory computer readable medium of  claim 26 , wherein the forwarded calls include process information identifying a kernel level process being called. 
     
     
         28 . The non-transitory computer readable medium of  claim 26 , wherein the forwarded calls include a pointer to a kernel level process being called. 
     
     
         29 . The non-transitory computer readable medium of  claim 23 , wherein the cybersecurity testing protocol includes determining whether one or more portions of a security policy associated with the ECU have been removed. 
     
     
         30 . The non-transitory computer readable medium of  claim 29 , wherein the one or more portions of the security policy are configured to implement a software stack inspection operation for the ECU. 
     
     
         31 . The non-transitory computer readable medium of  claim 29 , wherein the one or more portions of the security policy are configured to determine whether a sequence of process calls is consistent with a process map for the ECU. 
     
     
         32 . The non-transitory computer readable medium of  claim 29 , wherein the one or more portions of the security policy are based on static analysis of at least one of: permitted processes, binaries, scripts, network usage, or other ECU behaviors. 
     
     
         33 . A computer-implemented method for providing a visual indicator of a status of a vehicle's cybersecurity systems, the method comprising:
 performing a cybersecurity testing protocol within the vehicle, the cybersecurity testing protocol being performed by one or more anti-tampering agents and being configured to determine whether a security software layer installed on an ECU in the vehicle has been tampered with; and   determining, based on a result of the cybersecurity testing protocol, whether to display in a display panel of the vehicle a visual indicator of the security status of the ECU.   
     
     
         34 . The computer-implemented method of  claim 33 , wherein the visual indicator is configured to display a security status of a plurality of ECUs in the vehicle. 
     
     
         35 . The computer-implemented method of  claim 33 , wherein the cybersecurity testing protocol includes determining whether one or more whitelist hooks associated with the ECU in the vehicle have been removed. 
     
     
         36 . The computer-implemented method of  claim 35 , wherein the one or more whitelist hooks are configured to cause calls to the one or more kernel level processes to be forwarded to the security software layer. 
     
     
         37 . The computer-implemented method of  claim 36 , wherein the forwarded calls include process information identifying a kernel level process being called. 
     
     
         38 . The computer-implemented method of  claim 36 , wherein the forwarded calls include a pointer to a kernel level process being called. 
     
     
         39 . The computer-implemented method of  claim 33 , wherein the cybersecurity testing protocol includes determining whether one or more portions of a security policy associated with the ECU have been removed. 
     
     
         40 . The computer-implemented method of  claim 39 , wherein the one or more portions of the security policy are configured to implement a software stack inspection operation for the ECU. 
     
     
         41 . The computer-implemented method of  claim 39 , wherein the one or more portions of the security policy are configured to determine whether a sequence of process calls is consistent with a process map for the ECU. 
     
     
         42 . The computer-implemented method of  claim 39 , wherein the one or more portions of the security policy are based on static analysis of at least one of: permitted processes, binaries, scripts, network usage, or other ECU behaviors.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.