Trusted context self learning method for an in-vehicle network intrusion detection system developed to limit calibration proliferation and development costs

Assignee

• GM GLOBAL TECHNOLOGY OPERATIONS LLC · US

Inventors

• Mayssaa El Rifai · Tulsa, US
• Samuel B. Kupfer · Oak Park, US
• Joseph E. Ploucha · Sterling Heights, US
• Ron C. Carleton · Waldenburg, US

Key dates

Classification

• Technology area (CPC H)Electricity
• CPC primaryH04L2012/40273
• WIPO fieldComputer technology
• WIPO sectorElectrical engineering

Abstract

In various embodiments, methods, systems, and vehicle apparatuses are provided. A method for determining a trusted context of operation by an in-vehicle Network Intrusion Detection System (NIDS) for learning of a vehicle platform, including executing the NIDS to monitor a set of Electronic Control Units (ECUs) and vehicle state elements by receiving a set of vehicle derived inputs about a vehicle's operating state; in response to a determination about the vehicle's operating state, identifying the trusted window during which learning about network topology and whitelisted messages contained in a vehicle platform is allowable; creating a vehicle-specific configuration containing a list of networks of topologies and whitelisted messages in use by the ECUs in the vehicle platform, and preventing misconfiguring of at least one network in the list of network topologies and whitelisted messages of the vehicle-specific configuration in the vehicle platform outside the trusted window.