DOE Patents title logo U.S. Department of Energy
Office of Scientific and Technical Information

Title: Intrusion detection apparatus, system and methods

Abstract

Described herein are various technologies for detection and mitigation of rogue terminal attacks on multiplex data buses. An intrusion detection device is incorporated between a bus controller and a bus of a multiplex data bus. The intrusion detection device receives message that are communicated among the bus controller and a plurality of remote terminals (by way of the bus). The intrusion detection device determines whether messages are unauthorized based upon origins of the messages and predefined rules. When a message is determined to be unauthorized, the intrusion detection device outputs a notification that the unauthorized message has been detected and can block the unauthorized message.

Inventors:
;
Issue Date:
Research Org.:
Sandia National Lab. (SNL-NM), Albuquerque, NM (United States)
Sponsoring Org.:
USDOE
OSTI Identifier:
1576345
Patent Number(s):
10410002
Application Number:
15/341,279
Assignee:
National Technology & Engineering Solutions of Sandia, LLC (Albuquerque, NM)
Patent Classifications (CPCs):
G - PHYSICS G06 - COMPUTING G06F - ELECTRIC DIGITAL DATA PROCESSING
H - ELECTRICITY H04 - ELECTRIC COMMUNICATION TECHNIQUE H04L - TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
DOE Contract Number:  
AC04-94AL85000
Resource Type:
Patent
Resource Relation:
Patent File Date: 2016 Nov 02
Country of Publication:
United States
Language:
English
Subject:
97 MATHEMATICS AND COMPUTING

Citation Formats

Jenkins, Chris, and Roesler, Alexander. Intrusion detection apparatus, system and methods. United States: N. p., 2019. Web.
Jenkins, Chris, & Roesler, Alexander. Intrusion detection apparatus, system and methods. United States.
Jenkins, Chris, and Roesler, Alexander. Tue . "Intrusion detection apparatus, system and methods". United States. https://www.osti.gov/servlets/purl/1576345.
@article{osti_1576345,
title = {Intrusion detection apparatus, system and methods},
author = {Jenkins, Chris and Roesler, Alexander},
abstractNote = {Described herein are various technologies for detection and mitigation of rogue terminal attacks on multiplex data buses. An intrusion detection device is incorporated between a bus controller and a bus of a multiplex data bus. The intrusion detection device receives message that are communicated among the bus controller and a plurality of remote terminals (by way of the bus). The intrusion detection device determines whether messages are unauthorized based upon origins of the messages and predefined rules. When a message is determined to be unauthorized, the intrusion detection device outputs a notification that the unauthorized message has been detected and can block the unauthorized message.},
doi = {},
journal = {},
number = ,
volume = ,
place = {United States},
year = {2019},
month = {9}
}

Works referenced in this record:

Embedded Guard-Sanitizer
patent-application, November 2011


Method for protecting vehicle data transmission system from intrusions
patent, February 2015


Broadcast Bus Frame Filter
patent-application, March 2018


Device, System and Method of Communicating Between a Bus Controller and One or More Remote Terminals
patent-application, July 2007


Multiple Carrier Signals on a Legacy Bus
patent-application, May 2009


Intrusion-Free Computer Architecture for Information and Data Security
patent-application, September 2006


Method and System to Add and Communicate with Remote Terminal Addresses Beyond a Standard Bus Protocol
patent-application, February 2016


Peer Based Authentication
patent-application, April 2015


Method and Apparatus for On-Demand Isolated I/O Channels for Secure Applications
patent-application, June 2017


System and Method of Monitoring Data Traffic on a MIL-STD-1553 Data Bus
patent-application, October 2018


Intrusion detection systems employing active detectors
patent, March 2000


Buses for Pattern-Recognition Processors
patent-application, July 2010


Data Filter
patent-application, September 2013


System and Method to Manage Sinkholes
patent-application, September 2014


System and Method of Efficiently Identifying and Removing Active Malware from a Computer
patent-application, June 2006


Behavioral Analysis to Automate Direct and Indirect Local Monitoring of Internet of Things Device Health
patent-application, September 2016


Embedded guard-sanitizer
patent, September 2017


Access Control Bus System
patent-application, November 2003


Secure Message Filtering to Vehicle Electronic Control Units with Secure Provisioning of Message Filtering Rules
patent-application, July 2014


Temporal anomaly detection on automotive networks
patent, September 2018


Network Controller for Digitally Controlling Remote Devices Via a Common Bus
patent-application, October 2006


Military Standard (MIL-STD-1760) Interface Bridge
patent-application, March 2015


Multiple Security Level Monitor for Monitoring a Plurality of MIL-STD-1553 Buses with Multiple Independent Levels of Security
patent-application, October 2018


MIL-STD-1553 interface device having concurrent remote terminal and monitor terminal operation
patent, June 1994


Bus Data Monitor
patent-application, October 2018


MIL-STD-1553 buffer/driver
patent, April 2001