A method and system for intrusion detection and defense based on doip protocol
A technology of intrusion detection and protocol, which is applied in the field of vehicle security, can solve problems such as inability to meet the security requirements of vehicle network communication, and achieve the effects of improving security legality, reducing transmission frequency, and high detection efficiency
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0060] Such as figure 1 As shown, the embodiment of the present invention proposes an intrusion detection and defense method based on the DoIP protocol, and the intrusion detection and defense method includes:
[0061] S101: setting the DoIP protocol module in the external test equipment, and setting the DoIP protocol module and the DoIP intrusion detection module in the DoIP entity in the vehicle;
[0062] S102: Set the DoIP message format, DoIP message scene and DoIP message interval detection strategy in the DoIP entity in the vehicle;
[0063] Specifically, the detection strategy of the DoIP packet format includes: a packet header format detection strategy, and a packet type, packet length, and packet transport layer protocol detection strategy;
[0064] The packet header format detection strategy is the detection strategy of the legal value domain of the packet header parameter, and the packet header parameter includes protocol version information, protocol version bitwi...
Embodiment 2
[0083] On the basis of the above-mentioned embodiment 1, in the embodiment of the present invention, the method further includes: the in-vehicle DoIP entity detects the packet header format, the packet type, and the In the process of the message length, after detecting and learning that the DoIP message is an illegal message, notify its DoIP protocol module to send a negative response, and the DoIP intrusion detection module records the error log of the DoIP message and finishes exiting; In the process of detecting the message transport layer protocol, the working scene of the message and the message interval through its DoIP intrusion detection module, the internal DoIP entity detects that the DoIP message is an illegal message, and intrudes through the DoIP The detection module records the error log of the DoIP message and exits.
[0084] The DoIP entity in the vehicle also includes before detecting the packet header format by its DoIP intrusion detection module: the DoIP en...
Embodiment 3
[0095] On the basis of the above-mentioned embodiment 1 or embodiment 2, in the embodiment of the present invention, the DoIP intrusion detection module is also set in the external test equipment; DoIP message format, DoIP message scene and DoIP message are set in the external test equipment The detection strategy of the message interval; when the external test equipment receives the diagnostic communication response of the DoIP entity in the vehicle, the external test equipment performs the DoIP message format, DoIP message scene and DoIP message sequentially according to the detection strategy. Text gap detection.
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com