Vehicle system and authentication method
US-2017111177-A1 · Apr 20, 2017 · US
Vehicle system and authentication method
US10484184B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-10484184-B2 |
| Application number | US-201615258576-A |
| Country | US |
| Kind code | B2 |
| Filing date | Sep 7, 2016 |
| Priority date | Oct 19, 2015 |
| Publication date | Nov 19, 2019 |
| Grant date | Nov 19, 2019 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A vehicle system includes a master ECU and a general ECU. The general ECU attaches a digital signature to transmission data including data (for example, a digest value of a program) and transmits the transmission data to the master ECU. The master ECU verifies the digital signature and the data and, when both the digital signature and the data are valid, determines that the general ECU is valid. The master ECU attaches a digital signature to transmission data including data of the master ECU and a session key and transmits the transmission data to the general ECU. The general ECU verifies the digital signature and the data and, when both the digital signature and the data are valid, the general ECU uses the session key included in the transmission data as a common key when performing subsequent communications.
First claim
Opening claim text (preview).
What is claimed is: 1. A vehicle system comprising a master Electronic Control Unit (ECU) and a general ECU, the master ECU being provided with, by a management device different from the master ECU and the general ECU: a private key of the master ECU; and an electronic certificate of the general ECU which includes a public key of the general ECU and specified data related to an execution program stored in the general ECU; and the general ECU being provided with, by the management device: a private key of the general ECU; and an electronic certificate of the master ECU which includes a public key of the master ECU and specified data related to an execution program stored in the master ECU, wherein: the general ECU is configured to: attach a first digital signature using the private key of the general ECU to first transmission data including generated specified data of the general ECU, and transmit the first transmission data to the master ECU; the master ECU is configured to: verify, using the electronic certificate of the general ECU, the first transmission data attached with the first digital signature and transmitted from the general ECU, verify whether the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, when the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, determine that the general ECU and the execution program stored in the general ECU are valid, attach a second digital signature using the private key of the master ECU to second transmission data including generated specified data of the master ECU and a session key, and transmit the second transmission data to the general ECU; and the general ECU is configured to: verify, using the electronic certificate of the master ECU, the second transmission data attached with the second digital signature and transmitted from the master ECU, verify whether the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, when the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, determine that the master ECU and the execution program stored in the master ECU are valid, and use the session key included in the second transmission data as a common key when performing subsequent communications. 2. The vehicle system according to claim 1 , wherein: the general ECU exists in plurality; the master ECU is provided with an electronic certificate of each of the plurality of the general ECUs; the master ECU is configured to transmit a same key as the session key to each respective one of the plurality of the general ECUs; and the plurality of the general ECUs are configured to use the session key as the common key for communication with the master ECU and for communication with each other. 3. The vehicle system according to claim 1 , wherein: the specified data included in the electronic certificate of the general ECU is a valid digest value of the execution program stored in the general ECU; the specified data included in the electronic certificate of the master ECU is a valid digest value of the execution program stored in the master ECU; and the general ECU and the master ECU are each configured to calculate a digest value of an execution program stored in respective devices as the generated specified data of the respective devices, attach a digital signature to transmission data including the calculated digest value, and transmit the transmission data. 4. The vehicle system according to claim 1 , wherein the specified data included in the electronic certificate of the general ECU includes an ID of the general ECU; the specified data included in the electronic certificate of the master ECU includes an ID of the master ECU; and the general ECU and the master ECU are each configured to attach a digital signature to transmission data including the ID of respective devices, and transmit the transmission data after confirming integrity of the execution program stored in the respective devices using a secure boot. 5. The vehicle system according to claim 1 , wherein the master ECU and the general ECU are each configured to store a root public key that is a public key of a root certificate authority in an unrewritable memory. 6. The vehicle system according to claim 1 , wherein the master ECU and the general ECU are each configured to: store a root public key that is a public key of a root certificate authority in a rewritable memory, and when storing the root public key in the rewritable memory, store the root public key in association with a digital signature created using the private key of the master ECU or the private key of the general ECU. 7. The vehicle system according to claim 1 , wherein: the master ECU is provided with the electronic certificate of the master ECU, and the general ECU is provided with the electronic certificate of the general ECU; when the general ECU does not have the electronic certificate of the master ECU: the general ECU transmits the electronic certificate of the general ECU together with the first transmission data attached with the first digital signature, to the master ECU, and the master ECU verifies the electronic certificate of the general ECU transmitted from the general ECU using a root public key, and stores the electronic certificate of the general ECU when the electronic certificate of the general ECU is valid; and when the master ECU does not have the electronic certificate of the general ECU: the master ECU transmits the electronic certificate of the master ECU together with the second transmission data attached with the second digital signature, to the general ECU, and the general ECU verifies the electronic certificate of the master ECU transmitted from the master ECU using the root public key and stores the electronic certificate of the master ECU when the electronic certificate of the master ECU is valid. 8. An authentication method in a vehicle system constituted by a master Electronic Control Unit (ECU) and a general ECU, the master ECU being provided with, by a management device different from the master ECU and the general ECU: a private key of the master ECU; and an electronic certificate of the general ECU which includes a public key of the general ECU and specified data related to an execution program stored in the general ECU; and the general ECU being provided with, by the management device: a private key of the general ECU; and an electronic certificate of the master ECU which includes a public key of the master ECU and specified data related to an execution program stored in the master ECU, the authentication method comprising steps of: causing the general ECU to: attach a first digital signature using the private key of the general ECU to first transmission data including generated specified data of the general ECU, and transmit the first transmission data to the master ECU; causing the master ECU to: verify, using the electronic certificate of the general ECU, the first transmission data attached with the first digital signature and transmitted from the general ECU, verify whether the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, when the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general
Assignees
Inventors
Classifications
- H04L9/3263Primary
involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements (network architectures or network communication protocols for supporting authentication of entities using certificates in a packet data network H04L63/0823) · CPC title
specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks · CPC title
involving digital signatures · CPC title
for key exchange, e.g. in peer-to-peer networks (cryptographic mechanisms or cryptographic arrangements for key agreement H04L9/0838) · CPC title
using certificates (cryptographic mechanisms or cryptographic arrangements for entity authentication involving certificates H04L9/3263) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US10484184B2 cover?
- A vehicle system includes a master ECU and a general ECU. The general ECU attaches a digital signature to transmission data including data (for example, a digest value of a program) and transmits the transmission data to the master ECU. The master ECU verifies the digital signature and the data and, when both the digital signature and the data are valid, determines that the general ECU is valid…
- Who is the assignee on this patent?
- Toyota Motor Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification H04L9/3263. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Nov 19 2019 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 2 related publications on this page (citations in our corpus or others sharing the same primary CPC).