Intrusion detection apparatus, system and methods
| DWPI Title: Communications system for detection and mitigation of rogue terminal attacks on multiplex data buses in military and civil aircraft by stub intrusion detection device, comprises a multiplex data bus and a bus controller |
| Abstract: Described herein are various technologies for detection and mitigation of rogue terminal attacks on multiplex data buses. An intrusion detection device is incorporated between a bus controller and a bus of a multiplex data bus. The intrusion detection device receives message that are communicated among the bus controller and a plurality of remote terminals (by way of the bus). The intrusion detection device determines whether messages are unauthorized based upon origins of the messages and predefined rules. When a message is determined to be unauthorized, the intrusion detection device outputs a notification that the unauthorized message has been detected and can block the unauthorized message. |
| Use: Communications system for detection and mitigation of rogue terminal attacks on multiplex data buses in military and civil aircraft by stub intrusion detection device. |
| Advantage: After determining that a message violates one or more of the predefined rules, a stub intrusion detection device can output a notification that a that an unauthorized message has been detected. |
| Novelty: The communications system (100) comprises a multiplex data bus (110). A bus controller (120) is configured to issue commands by way of the multiplex data bus to multiple remote terminals (130,132,134) that send and receive messages over the multiplex data bus. A hardware logic controller is in communication with the bus controller and the multiplex data bus. The hardware logic controller is connected between the bus controller and the multiplex data bus, such that the bus controller receives messages from the multiplex data bus and transmits messages to the multiplex data bus by way of the hardware logic controller. The hardware logic controller receives a message from the bus controller. The message is addressed to a remote terminal in multiple remote terminals. The message is determined to cause the remote terminal to operate outside an operating limit of the remote terminal. |
| Filed: 11/2/2016 |
| Application Number: US15341279A |
| Tech ID: SD 13743.1 |
| This invention was made with Government support under Contract No. DE-NA0003525 awarded by the United States Department of Energy/National Nuclear Security Administration. The Government has certain rights in the invention. |
| Data from Derwent World Patents Index, provided by Clarivate All rights reserved. Republication or redistribution of Clarivate content, including by framing or similar means, is prohibited without the prior written consent of Clarivate. Clarivate and its logo, as well as all other trademarks used herein are trademarks of their respective owners and used under license. |