Methods, systems, and apparatus for a threat detection system. The threat detection system includes a threat forensics platform. The threat forensics platform includes a memory. The memory is configured to store a baseline model of controller area network (CAN) data. The threat forensics platform includes a processor coupled to the memory. The processor is configured to obtain CAN data including multiple messages. The processor is configured to compare the CAN data including the multiple messages with the baseline model. The processor is configured to determine a threat score for the CAN data based on the comparison and determine that there is a threat within the CAN data based on the threat score. The processor is configured to provide an indication that there is the threat to a driver of a vehicle or to a service provider.

Methods and systems of enabling a non-interfering mode in a telematics device are provided. In one aspect, a method includes receiving a co-presence policy from a telematics server, receiving asset data from the asset, determining a presence of a second device on the asset communications bus based on the co-presence policy, and activating a non-interfering mode of operation based on determining the presence of the second device and on the co-presence policy. The method may be used to prevent interference between a telematics device and a diagnostic tool connected to the same vehicle communications bus. Advantageously, tasks such as reading diagnostic trouble codes and firmware updates are not disrupted.

A network hub device used for building a simple network configuration in an in-vehicle network system is provided. A network hub device (35) is coupled to a trunk network and performs input/output of a signal to/from an in-vehicle device via a plurality of device side communication ports. A signal conversion section (35a, 35b) configured to perform signal conversion between a digital control signal and an analog control signal is provided between a trunk side communication port and an analog port. A second signal conversion section (70) configured to perform signal conversion between a digital control signal and an analog control signal is provided between a digital port (49) and a predetermined in-vehicle device (353).

An anomaly handling method using a roadside device is disclosed. The method includes receiving, from a vehicle, an anomaly detection notification, which includes level information indicating a level affecting safety, and a location of the vehicle. The method also includes obtaining a location of the roadside device and determining whether a distance between the location of the vehicle and the location of the roadside device is within a predetermined range. When the distance is within the predetermined range and is shorter than a first predetermined distance, not changing the level information and transmitting the received anomaly detection notification externally from the one vehicle. When the distance is within the predetermined range and is longer than or equal to the first predetermined distance, changing to decrement a level indicated by the level information, and transmitting changed anomaly detection notification externally from the one vehicle.

An abnormality detection apparatus for a mobility entity and for detecting an abnormality in a network system is provided. The network system includes a first network and a second network that use different communication protocols. A first communication circuit receives state information indicating a state of the mobility entity. The state information is acquired from the second network. A second communication circuit transmits and receives a first frame according to a communication protocol used in the first network. A memory stores an abnormality detection rule. A processor detects, based on the state information and the abnormality detection rule, whether a control command included in the first frame received by the second communication circuit is abnormal. In a case where the control command is abnormal, the processor prohibits the control command from being transmitted.

A system for detecting anomalies in electrical wiring in a truck trailer. The system measures and compares current drawn from the truck tractor with the current drawn by a circuit at a particular trailer component or other location in the trailer wiring. If the two current measurements differ in excess of a predetermined threshold, the system can report a wiring anomaly. The location of the anomaly can then be determined by performing the operation for different trailer components thus testing multiple different branches of the trailer power distribution circuit, and using the results of these tests to determine that an anomaly is present, and possibly the location of the issue. The system may then send a notification to a remote computing device, to the truck tractor, or any combination thereof.

A vehicle communication system includes a switching hub incorporated in a vehicle and including a switch IC and an external CPU. The switch IC includes an internal CPU and performs a transfer process of transferring information to a communication device. The external CPU is provided outside the switch IC and connected to the switch IC, and has higher information processing capability than the internal CPU. The external CPU can perform a transfer order process of ordering to transfer information to the communication device and perform a security process of securing the security of the information to be transferred when the transfer order process is performed. The internal CPU monitors the operation of the external CPU and when the external CPU is abnormal, performs the transfer order process instead of the external CPU.

A method for controlling controller area network (CAN) communication in a vehicle including a plurality of electronic control units (ECUs) and a plurality of CAN databases accessible by the plurality of ECUs can include: storing CAN message information in the plurality of CAN databases such that each CAN database stores a unique configuration of the CAN message information; establishing a plurality of periodic intervals; and when a subsequent interval among the plurality of periodic intervals begins: receiving a plurality of measurement values deriving from a plurality of sensors equipped in the vehicle, calculating a database reference number based upon the plurality of measurement values, the database reference number newly identifying a particular CAN database among the plurality of CAN databases, and performing CAN communication, by each ECU, based upon the uniquely configured CAN message information stored in the newly identified CAN database.

Embodiments of the invention include a vehicle telematics device that performs vehicle CAN bus discovery using bit timing analysis. In an embodiment, the vehicle telematics device enters a vehicle CAN bus protocol discovery mode, samples a vehicle CAN bus signal, performs bit timing analysis of the CAN bus signal, calculates a BAUD rate of the vehicle CAN bus based on the bit timing analysis, determines a data packet format of data packets on the vehicle CAN bus, and identifies a vehicle CAN bus protocol from a plurality of vehicle CAN bus protocols based on the calculated BAUD rate and data packet format.

A shared data management system configured to receive frames comprising data from one or more producer devices and to transmit reconstructed frames to one or more consumer devices, a producer device and a consumer device being connected to the shared data management system by way of a communication network using a communication protocol. The shared data management system comprises a memory system having one or more memories. The shared data management system advantageously comprises a central controller configured to store at least some of the data encapsulated in a frame received from a producer device in a target memory area of the memory system, the central controller being configured to compute, for each datum to be stored, the address of the target memory based on an index associated with the datum in the received frame.