US 12,250,240 B2
Systems and methods for assessing risk in networked vehicle components
Mordechay Sorani, Rishot Lezion (IL); and Amir Sharon, Tel Mond (IL)
Assigned to Cymotive Technologies Ltd., Tel Aviv-Jaffa (IL)
Appl. No. 17/622,252
Filed by Cymotive Technologies Ltd., Tel Aviv-Jaffa (IL)
PCT Filed Jun. 22, 2020, PCT No. PCT/IL2020/050694
§ 371(c)(1), (2) Date Dec. 23, 2021,
PCT Pub. No. WO2020/261262, PCT Pub. Date Dec. 30, 2020.
Claims priority of provisional application 62/865,370, filed on Jun. 24, 2019.
Prior Publication US 2022/0394053 A1, Dec. 8, 2022
Int. Cl. H04L 9/40 (2022.01)
CPC H04L 63/1433 (2013.01) 21 Claims
OG exemplary drawing
 
1. A computer-implemented method of evaluating risk for a vehicle, the method comprising:
a. obtaining a configuration of the vehicle, the configuration comprising descriptions of a plurality of units;
b. obtaining specifications of a plurality of vulnerabilities;
c. automatically matching at least one of the vulnerabilities with the plurality of units included in the configuration;
d. automatically simulating an attack on the vehicle according to the matched vulnerabilities and the descriptions of the units, thereby identifying compromised units;
e. automatically associating the vehicle with a first risk level value based on a criticality of the identified compromised units;
f. selecting at least one action to perform based on the first risk level value, wherein the selected at least one action is a configuration modification;
g. determining the configuration modification such that the first risk level value is decreased; and
h. suggesting the configuration modification to a user.