Who is the assignee on this patent?

Toyota Motor Co Ltd, Nat Univ Corp Yokohama Nat Uni

What technology area does this patent fall under?

Primary CPC classification H04L9/32. Mapped technology areas include Electricity.

When was this patent published?

Publication date Tue May 03 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.

What related patents are in patentsdb?

We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).

Message authentication method in communication system and communication system

US9331854B2 · US · B2

Patent metadata
Field	Value
Publication number	US-9331854-B2
Application number	US-201214355038-A
Country	US
Kind code	B2
Filing date	Oct 30, 2012
Priority date	Oct 31, 2011
Publication date	May 3, 2016
Grant date	May 3, 2016

How to read this patent

A practical reading order for non-experts. Skip the full description unless you need deep technical detail.

Title
What the patent document calls the invention.
Abstract
A short plain-language summary of the technical disclosure.
Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
Key dates
Filing, priority, publication, and grant dates set the timeline.
First independent claim
The legal scope of protection — read this for what is actually claimed.
CPC / IPC classifications
Technology tags used to group this patent with similar filings.
Citations and related patents
Prior art links and similar publications in this corpus.

Abstract

Official abstract text for this publication.

Each of ECUs counts the number of messages transmitted for each of CAN IDs. A transmission node that has transmitted a main message produces an MAC from a data field and the CAN ID in the main message and a counter value corresponding to the CAN ID, and transmits the MAC as an MAC message. A reception node that has received the main message produces an MAC from the data field and the CAN ID contained in the main message and the counter value corresponding to the CAN ID, and determines whether the MAC matches the MAC contained in the MAC message. By so doing, verification whether the main message is valid or not can be made. According to this configuration, message authentication by the MAC can be made without changing a CAN protocol.

First claim

Opening claim text (preview).

The invention claimed is: 1. A message authentication method in a communication system, in which a plurality of ECUs are connected via a controller area network (CAN), the message authentication method comprising: a step of incrementing, by each of the plurality of ECUs other than a transmission ECU, a counter value that is stored in each of the plurality of ECUs other than the transmission ECU, when each of the plurality of ECUs other than the transmission ECU detects a main message having a message ID being transported on the CAN that the each of the ECUs may transmit or receive; a step of transmitting, by the transmission ECU, the main message; a step of incrementing, by the transmission ECU, the counter value when transmitting the main message; a step of transmitting, by the transmission ECU, an MAC message containing a message authentication code that is produced based on the main message and the counter value; a step of receiving, by a reception ECU, the main message; a step of receiving, by the reception ECU, the MAC message; and a step of verifying, by the reception ECU, validity of the main message according to whether or not the message authentication code that is produced based on the main message and the counter value matches the message authentication code contained in the MAC message. 2. The message authentication method according to claim 1 , wherein the message authentication code is produced by an encryption algorithm using a common key. 3. A message authentication method in a communication system, in which a plurality of nodes are connected via a controller area network (CAN), the message authentication method comprising: a step of incrementing, by each of the plurality of ECUs other than a transmission ECU, a counter value that is stored in each of the plurality of ECUs other than the transmission ECU and that corresponds to a predetermined message ID, when the plurality of ECUs other than the transmission ECU detects a message having the predetermined message ID being transported on the CAN, the predetermined message ID being a message ID which the each of the plurality of ECUs may transmit or receive; a step of transmitting, by the transmission ECU, a main message containing a message ID and a data field; a step of incrementing, by the transmission ECU, the counter value corresponding to the message ID when transmitting the main message; a step of transmitting, by the transmission ECU, an MAC message containing a message authentication code that is produced based on the message ID, the data field, and the counter value corresponding to the message ID; a step of receiving, by a reception ECU, the main message; a step of receiving, by the reception ECU, a MAC message; and a step of verifying, by the reception ECU, validity of the main message according to whether or not the message authentication code that is produced based on the message ID and the data field contained in the main message and the counter value corresponding to the message ID matches the message authentication code contained in the MAC message. 4. The message authentication method according to claim 3 , wherein the message authentication code is produced by an encryption algorithm using a common key. 5. The message authentication method according to claim 4 , wherein the message authentication code is produced by extracting predetermined bits from a bit string that is produced by applying the encryption algorithm using the common key to the message ID, the data field, and the counter value corresponding to the message ID. 6. The message authentication method according to claim 3 , wherein a master ECU gives notification by broadcasting about an initial value of the counter value corresponding to each message ID, when the communication system is started. 7. The message authentication method according to claim 6 , wherein the master ECU produces a random number value for each message ID and transmits the random number value by broadcasting, and each ECU uses a numerical value, produced by applying the encryption algorithm using the common key to the received random number value, as the initial value of the counter value corresponding to each message ID. 8. A communication system, in which at least a transmission ECU and a reception ECU are connected via a controller area network (CAN), wherein the transmission ECU includes: counter value storing means for storing a counter value; counter value incrementing means for incrementing the counter value when it is detected that a main message is being transported on the CAN, and when the transmission ECU transmits the main message; main message transmitting means for transmitting the main message; and MAC message transmitting means for transmitting an MAC message containing a message authentication code that is produced based on the main message and the counter value, and the reception ECU includes: counter value storing means for storing the counter value; counter value incrementing means for incrementing the counter value when it is detected that the main message having a message ID which the reception ECU may transmit or receive is being transported on the CAN; receiving means for receiving the main message and the MAC message transmitted from the transmission ECU; and message verifying means for verifying validity of the main message according to whether or not the message authentication code that is produced based on the main message and the counter value matches the message authentication code contained in the MAC message. 9. The communication system according to claim 8 , wherein the MAC message transmitting means in the transmission ECU and the message verifying means in the reception ECU produce the message authentication code by an encryption algorithm using a common key. 10. A communication system, in which at least a transmission ECU and a reception ECU are connected via a controller area network (CAN), wherein the transmission ECU includes: counter value storing means for storing a counter value corresponding to a message ID; counter value incrementing means for incrementing the counter value corresponding to a predetermined message ID when it is detected that a main message having the predetermined message ID is being transported on the CAN, and when the transmission ECU transmits the main message having the predetermined message ID; main message transmitting means for transmitting the main message containing a message ID and a data field; and MAC message transmitting means for transmitting an MAC message containing a message authentication code that is produced based on the message ID, the data field, and the counter value corresponding to the message ID, and the reception ECU includes: counter value storing means for storing the counter value corresponding to the message ID; counter value incrementing means for incrementing the counter value corresponding to the predetermined message ID when it is detected that the main message having the predetermined message ID is being transported on the CAN, the predetermined message ID being a message ID which the each of the ECUs may transmit or receive; receiving means for receiving the main message and the MAC message transmitted from the transmission ECU; and message verifying means for verifying validity of the main message according to whether or not the message authentication code that is produced based on the message ID and the data field contained in the main message and the counter value corresponding to the message ID matches the message authentication code contained in the MAC message. 11. The communication system according to claim 10 , where

Assignees

Inventors

Classifications

H04L2209/84
Vehicles · CPC title
H04L9/32Primary
including means for verifying the identity or authority of a user of the system {or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials} · CPC title
H04L9/3242Primary
involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC · CPC title
H04L9/12
Transmitting and receiving encryption devices synchronised or initially set up in a particular manner · CPC title

Patent family

Related publications grouped by family.

View patent family 48192035

External sources

Frequently asked questions

Answers are generated from the same data shown on this page.

What does patent US9331854B2 cover?: Each of ECUs counts the number of messages transmitted for each of CAN IDs. A transmission node that has transmitted a main message produces an MAC from a data field and the CAN ID in the main message and a counter value corresponding to the CAN ID, and transmits the MAC as an MAC message. A reception node that has received the main message produces an MAC from the data field and the CAN ID con…
Who is the assignee on this patent?: Toyota Motor Co Ltd, Nat Univ Corp Yokohama Nat Uni
What technology area does this patent fall under?: Primary CPC classification H04L9/32. Mapped technology areas include Electricity.
When was this patent published?: Publication date Tue May 03 2016 00:00:00 GMT+0000 (Coordinated Universal Time) (B2). Legal status and post-grant events are not shown on this page.
What related patents are in patentsdb?: We list 8 related publications on this page (citations in our corpus or others sharing the same primary CPC).