What technology area does this patent fall under?

Primary CPC classification H04L9/0825. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue Oct 07 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Message authentication system including a network device having security proxy support

US12438728B2 · US · B2

Patent metadata
Field	Value
Publication number	US-12438728-B2
Application number	US-202318322922-A
Country	US
Kind code	B2
Filing date	May 24, 2023
Priority date	May 24, 2023
Publication date	Oct 7, 2025
Grant date	Oct 7, 2025

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication system. The security proxy device includes a processing unit in electronic communication with a network device. The network device includes a security module integrated into the security proxy device, a private domain including one or more unique ports and storing one or more transmit keys for authenticating messages generated by one of the private nodes of the private communication system, and a public domain including one or more public ports.

First claim

Opening claim text (preview).

What is claimed is: 1. A message authentication system for a network, the message authentication system comprising: a private communication system including one or more private nodes in electronic communication with one another; a public communication system including one or more public nodes in electronic communication with one another, wherein the public nodes require message authentication; and a security proxy device that electronically connects the private communication system to the public communication system, wherein the security proxy device includes a processing unit in electronic communication with a network device, and wherein the network device includes: a security module integrated into the security proxy device; a private domain including one or more unique ports and storing one or more transmit keys for authenticating messages generated by one of the private nodes of the private communication system, wherein each unique port of the private domain corresponds to one of the private nodes of the private communication system; and a public domain including one or more public ports, wherein the one or more public ports of the public domain are in electronic communication with one or more of the public nodes of the public communication system. 2. The message authentication system of claim 1 , wherein the private nodes lack support for message authentication. 3. The message authentication system of claim 1 , wherein the security module and a corresponding transmit key of the private domain of the network device generate a message authentication code for a message generated by one of the private nodes of the private communication system that is sent to one or more of the public nodes. 4. The message authentication system of claim 1 , wherein the private domain of the network device stores one or more receive keys, wherein each receive key corresponds to one of the public nodes. 5. The message authentication system of claim 4 , wherein the security module and a corresponding receive key of the network device verify a message authentication code for an incoming message generated by one of the public nodes of the public communication system that is transmitted to one or more of the private nodes. 6. The message authentication system of claim 1 , wherein the private domain of the network device stores a common transmit key that authenticates messages generated by any of the private nodes. 7. The message authentication system of claim 1 , wherein each public node of the public communication system includes a corresponding security module. 8. The message authentication system of claim 7 , wherein each public node of the public communication system includes a unique transmit key and receive keys, wherein the receive keys each correspond to one of the private nodes of the private communication system and the remaining public nodes that are part of the public communication system. 9. The message authentication system of claim 8 , wherein the corresponding security module and the unique transmit key that are part of a specific public node generate a message authentication code for messages sent by the specific public node. 10. The message authentication system of claim 9 , wherein the corresponding security module and a corresponding receive key that is part of the specific public node verifies message authentication codes for messages received by the specific public node. 11. The message authentication system of claim 1 , wherein the private nodes include one or more of the following: smart sensors, smart actuators, and electronic control units with input/output (I/O) interfaces that are part of a vehicle. 12. The message authentication system of claim 1 , wherein the public domain of the network device stores a public domain transmit key that authenticates messages generated by the public nodes that are transmitted over the network based on a hop-by-hop routing approach. 13. A message authentication system for a network, the message authentication system comprising: a private communication system including one or more private nodes in electronic communication with one another; a public communication system including one or more public nodes in electronic communication with one another, wherein the public nodes require message authentication, and wherein each public node of the public communication system includes a corresponding security module; and a security proxy device that electronically connects the private communication system to the public communication system, wherein the security proxy device includes a processing unit in electronic communication with a network device, and wherein the network device includes: a security module integrated into the security proxy device; a private domain including one or more unique ports and storing one or more transmit keys for authenticating messages generated by one of the private nodes of the private communication system, wherein each unique port of the private domain corresponds to one of the private nodes of the private communication system, wherein the security module and a corresponding transmit key stored by the private domain of the network device generate a message authentication code for a message generated by one of the private nodes of the private communication system that is sent to one or more of the public nodes; and a public domain including one or more public ports, wherein the one or more public ports of the public domain are in electronic communication with one or more of the public nodes of the public communication system. 14. The message authentication system of claim 13 , wherein the private domain of the network device stores one or more receive keys, wherein each receive key corresponds to one of the public nodes. 15. The message authentication system of claim 14 , wherein the security module and a corresponding receive key of the network device verify a message authentication code for an incoming message generated by one of the public nodes of the public communication system that is transmitted to one or more of the private nodes. 16. The message authentication system of claim 13 , wherein the private domain of the network device stores a common transmit key that authenticates messages generated by any of the private nodes. 17. The message authentication system of claim 13 , wherein each public node of the public communication system includes a corresponding security module. 18. The message authentication system of claim 17 , wherein each public node of the public communication system includes a unique transmit key and receive keys, wherein the receive keys each correspond to one of the private nodes of the private communication system and the remaining public nodes that are part of the public communication system. 19. The message authentication system of claim 18 , wherein the corresponding security module and the unique transmit key that are part of a specific public node generate a message authentication code for messages sent by the specific public node. 20. A message authentication system for a network, the message authentication system comprising: a private communication system including one or more private nodes in electronic communication with one another; a public communication system including one or more public nodes in electronic communication with one another, wherein the public nodes require message authentication, and wherein each public node of the public communication system includes a corresponding security module; and a securi

Assignees

Gm Global Tech Operations Llc

Inventors

Classifications

H04L9/0825Primary
using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates · CPC title
H04L9/3242Primary
involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC · CPC title
H04W4/12
Messaging; Mailboxes; Announcements · CPC title
H04W12/04
Key management, e.g. using generic bootstrapping architecture [GBA] · CPC title
H04W12/03
Protecting confidentiality, e.g. by encryption · CPC title

Patent family

Related publications grouped by family.

View patent family 93381771

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US12438728B2 cover?: A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication …
Who is the assignee on this patent?: Gm Global Tech Operations Llc
What technology area does this patent fall under?: Primary CPC classification H04L9/0825. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue Oct 07 2025 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).