Systems and methods for enabling trusted communications between controllers
US-2018013569-A1 · Jan 11, 2018 · US
Session unique access token for communications with a vehicle
US11488404B2 · US · B2
| Field | Value |
|---|---|
| Publication number | US-11488404-B2 |
| Application number | US-201916601076-A |
| Country | US |
| Kind code | B2 |
| Filing date | Oct 14, 2019 |
| Priority date | Oct 14, 2019 |
| Publication date | Nov 1, 2022 |
| Grant date | Nov 1, 2022 |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A system includes a first computer including a processor programmed to receive, from a remote device, a first digital document including a digital signature from a server and specifying access to one or more vehicle systems for a user. The processor is further programmed to receive, from the server, a second digital document authorizing the specified access to the one or more vehicle systems; and provide, to the remote device, the specified access to the one or more vehicle systems based on the first digital document and second digital document.
First claim
Opening claim text (preview).
What is claimed is: 1. A system comprising a vehicle gateway computer including a first processor and a first memory, the first memory including instructions such that the first processor is programmed to: receive, from a remote device, a session access token that specifies access to a vehicle and includes a digital signature from a server and specifies access to one or more vehicle systems for the remote device; send, to a server, a first digital document including the session access token that specifies access to one or more vehicle systems for the remote device; receive, from the server, a second digital document that is based on the first digital document including the session access token previously received from the remote device and that authorizes the specified access to the one or more vehicle systems; and provide, to the remote device, the specified access to the one or more vehicle systems based on receiving an expected result from decrypting the second digital document. 2. The system of claim 1 , wherein the second digital document includes one or more third digital documents, the one or more third digital documents authorizing the specified access to vehicle systems of the one or more vehicle systems. 3. The system of claim 2 , wherein the first processor is further programmed to: install each of the one or more third digital documents in a respective vehicle system for which the respective third digital document authorizes the specified access. 4. The system of claim 3 , wherein the second digital document includes a script to install at least one of the one or more third digital documents in the respective vehicle system; and the first processor is further programmed to: execute the script. 5. The system of claim 1 , wherein the specified access to the one or more vehicle systems is based on a user identifier. 6. The system of claim 1 , wherein the second digital document is encrypted based on a server private key; and the first processor is further programmed to: decrypt the second digital document based on a server public key. 7. The system of claim 1 , wherein the first processor is further programmed to: transmit a request to the server prior to receiving the second digital document from the server, the request including identifiers for the one or more vehicle systems and data from the first digital document. 8. The system of claim 7 , wherein the first processor is further programmed to: authenticate the second digital document based in part on the second digital document including data from the request to the server. 9. The system of claim 1 , further comprising the server including a second processor and a second memory, the second memory including instructions such that the second processor is programmed to: receive a message from the remote device, requesting access to the one or more vehicle systems; generate the first digital document specifying the access to the one or more vehicle systems for the remote device and including the digital signature from the server; and transmit the first digital document to the remote device. 10. The system of claim 9 , wherein the second processor is further programmed to: specify the access to the one or more vehicle systems based on at least one of a user identifier and a remote device identifier included in the message. 11. The system of claim 9 , wherein the second processor is further programmed to: generate the first digital document based on determining that a user identifier in the message is included in a list of authorized user identifiers. 12. The system of claim 9 , wherein the second processor is further programmed to: generate the first digital document based on determining that a remote device identifier in the message is included in a list of authorized remote devices. 13. The system of claim 9 , wherein the second processor is further programmed to: upon receiving the message from the first processor, confirm that the message includes the first digital document; and based on the confirmation, generate the second digital document. 14. The system of claim 9 , wherein the second processor is further programmed to: generate a challenge response to a challenge number from one of the one or more vehicle systems in the message; and include the challenge response in the second digital document. 15. A method comprising: receiving, from a remote device, a session access token that specifies access to a vehicle and includes a digital signature from a server and specifies access to one or more vehicle systems for the remote device; sending, to a server, a first digital document including the session access token that specifies access to one or more vehicle systems for the remote device; receiving, from the server, a second digital document that is based on the first digital document including the session access token previously received from the remote device and that authorizes the specified access to the one or more vehicle systems; and providing, to the remote device, the specified access to the one or more vehicle systems based on receiving an expected result from decrypting the second digital document. 16. The method of claim 15 , wherein the second digital document includes one or more third digital documents, the one or more third digital documents authorizing the specified access to vehicle systems of the one or more vehicle systems. 17. The method of claim 16 , further comprising: installing each of the one or more third digital documents in a respective vehicle system for which the respective third digital document authorizes the specified access. 18. The method of claim 17 , wherein the second digital document includes a script to install at least one of the one or more third digital documents in the respective vehicle system, further comprising: executing the script. 19. The method of claim 15 , wherein the specified access to the one or more vehicle systems is based on a user identifier. 20. The method of claim 15 , wherein the second digital document is encrypted based on a server private key, further comprising: decrypting the second digital document based on a server public key.
Assignees
Inventors
Classifications
- H04N1/32128Primary
attached to the image data, e.g. file header, transmitted message header, information on the same page or in the same computer file as the image (for information embedded in the image H04N1/32144) · CPC title
wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption (cryptographic mechanisms or cryptographic arrangements for public-key encryption H04L9/30) · CPC title
Diagnosing performance data (testing of vehicles G01M17/00; testing of electrical installation on vehicles G01R31/005) · CPC title
Vehicles · CPC title
for remote control or remote monitoring of applications · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US11488404B2 cover?
- A system includes a first computer including a processor programmed to receive, from a remote device, a first digital document including a digital signature from a server and specifying access to one or more vehicle systems for a user. The processor is further programmed to receive, from the server, a second digital document authorizing the specified access to the one or more vehicle systems; a…
- Who is the assignee on this patent?
- Ford Global Tech Llc
- What technology area does this patent fall under?
- Primary CPC classification H04N1/32128. Mapped technology areas include Electricity.
- When was this patent published?
- Publication date Tue Nov 01 2022 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).