Search

JP-2026076110-A - Application-selective API access restriction based on vehicle status

JP2026076110AJP 2026076110 AJP2026076110 AJP 2026076110AJP-2026076110-A

Abstract

[Problem] To provide API access prohibition based on application-selective vehicle status. [Solution] Application-selective vehicle state-based API access prohibition is implemented by receiving a command to execute an application, determining whether the application belongs to a first group of applications, detecting whether the vehicle is parked in response to the determination that the application belongs to the first group, and prohibiting the application from accessing one or more application programming interfaces (APIs) of the vehicle based on whether the vehicle is parked. [Selection Diagram] Figure 3

Inventors

  • 吉村 優一
  • 伊達 三雄
  • 樽岡 豊

Assignees

  • トヨタ自動車株式会社

Dates

Publication Date
20260511
Application Date
20250807
Priority Date
20241023

Claims (20)

  1. Receiving commands to run the application, Determining whether the aforementioned application belongs to the first group of applications, In response to the application determining that it is in the first group, the system detects whether the vehicle is parked or not. Based on whether the vehicle is in the parked state, the application's access to one or more application programming interfaces (APIs) of the vehicle is prohibited. A computer program that causes one or more processors to perform an action that includes [a specific action].
  2. The computer program according to claim 1, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is not in the parked state.
  3. The computer program according to claim 2, wherein the first group of applications includes applications that distract the driver's attention.
  4. The first group of applications includes applications that affect vehicle operation, as described in claim 2 or 3 of the computer program.
  5. The computer program according to claim 2 or 3, wherein the first group of applications includes applications that cannot be operated by voice input.
  6. The computer program according to claim 1, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is in the parked state.
  7. The computer program according to claim 6, wherein the first group of applications includes applications involving vehicle operation.
  8. The computer program according to claim 1 or 2, wherein the detection is based on at least one of a speedometer, accelerometer, or transmission gear sensor.
  9. The aforementioned operation is, Detecting OTA operations, In response to detecting that the vehicle is performing an OTA operation, the application's access to one or more APIs of the vehicle is prohibited. The computer program according to claim 1 or 2, further comprising:
  10. The aforementioned operation is, Detecting battery charging operation, In response to detecting that the vehicle is performing a charging operation, access to one or more APIs of the vehicle by an application is prohibited. The computer program according to claim 1 or 2, further comprising:
  11. A method performed by one or more processors, Receiving commands to run the application, Determining whether the aforementioned application belongs to the first group of applications, In response to the determination that the application is in the first group, the system detects whether the vehicle is parked or not. A method comprising prohibiting an application from accessing one or more application programming interfaces (APIs) of the vehicle, based on whether the vehicle is in the parked state.
  12. The method according to claim 11, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is not in the parked state.
  13. The method according to claim 12, wherein the first group of applications includes applications that distract the driver's attention.
  14. The method according to claim 11, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is in the parked state.
  15. The method according to claim 14, wherein the first group of applications includes applications involving vehicle operation.
  16. Receiving commands to run the application, To determine whether the aforementioned application belongs to the first group, In response to the determination that the application is in the first group, the system detects whether the vehicle is parked or not. Based on whether the vehicle is in the parked state, access by an application to one or more application programming interfaces (APIs) of the vehicle is prohibited. A device comprising a controller including a circuit configured to perform operations including those described above.
  17. The apparatus according to claim 16, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is not in the parked state.
  18. The apparatus according to claim 17, wherein the first group of applications includes applications that distract the driver's attention.
  19. The apparatus according to claim 16, wherein the prohibition includes prohibiting the first group of applications in response to detection that the vehicle is in the parked state.
  20. The apparatus according to claim 19, wherein the first group of applications includes applications involving vehicle operation.

Description

A vehicle system is composed of many ECUs (Electronic Control Units). Many ECUs can function as computers, possessing the ability to access externally stored data and communicate via packet-based networks. Software applications, executed by the ECUs, provide various services to the vehicle or its users. These software applications request vehicle information via Application Programming Interfaces (APIs). The aspects of this disclosure will be best understood from the following detailed description when read in conjunction with the accompanying drawings. Note that, according to standard industry practice, various features are not depicted to a constant scale. In fact, the dimensions of various features may be increased or decreased as appropriate for the sake of clarity in the discussion. Figure 1 is a schematic diagram of a system for prohibiting API access based on application-selective vehicle state, according to at least some embodiments of the present disclosure.Figure 2 shows an operational flow for API access management according to at least some embodiments of this disclosure.Figure 3 shows an operational flow for prohibiting API access based on application-selective vehicle state, according to at least some embodiments of this disclosure.Figure 4 is a block diagram of a hardware configuration for prohibiting API access based on application-selective vehicle state, according to at least some embodiments of the present disclosure. The following disclosure provides numerous different embodiments or examples for implementing different features of the subject matter provided. For the sake of simplicity, specific examples of components, values, behaviors, materials, and configurations are described below. These are, of course, merely examples and are not intended to be limiting. Other components, values, behaviors, materials, and configurations may be considered. In addition, this disclosure may repeat reference numbers and/or letters in various examples. This repetition is for simplicity and clarity and does not in itself indicate relationships between the various embodiments and/or configurations discussed. Exposing APIs for accessing vehicle data and control systems to different applications, such as original equipment manufacturer (OEM) applications or third-party applications, presents various risks. Managing such access to APIs allows for the reduction, mitigation, or avoidance of these risks. While various types of applications are designed for running in a vehicle, some applications are not suitable for running while the vehicle is in motion, and others are not suitable for running while the vehicle is stationary. In at least some embodiments described herein, access to the vehicle API from a first group of applications is prohibited based on whether the vehicle is moving or not. In at least some embodiments, access from the first group of applications is prohibited while the vehicle is parked. In at least some embodiments, access from the first group of applications is prohibited while the vehicle is not parked. In at least some embodiments, access from the first group of applications is prohibited while the vehicle is parked, and access from a second group of applications is prohibited while the vehicle is not parked. In at least some embodiments, the “parked” state is understood as being stopped, not driven, not moving, etc. In at least some embodiments, appropriately managing access from applications to the vehicle API based on whether or not a vehicle is parked can enhance vehicle safety. In at least some embodiments, the first group of applications includes applications that may distract the driver's attention. In at least some embodiments, the first group of applications includes game applications, applications for browsing information such as news, videos, and websites, or any other applications that utilize a display device to generate visual content. In at least some embodiments, the first group of applications includes applications that are not operable by voice input. In at least some embodiments, the operability of voice input is determined by whether or not there was VUI (Voice User Interface) operation during the application's last execution. In at least some embodiments, the first group of applications includes applications that affect vehicle operation, such as applications for seat adjustment and applications for setting driving modes, and applications whose operation has not yet been verified. In at least some embodiments, access to the vehicle API from the second group of applications is prohibited while the vehicle is stopped. In at least some embodiments, the second group of applications includes applications configured to affect vehicle operation, such as acceleration, braking, and steering. In at least some embodiments, access to the vehicle API is prohibited from all applications while the vehicle is stopped and performing OTA (Over-the-Air) operations, such as updating th