Secure start system for an autonomous vehicle
First Claim
1. A secure start system for an autonomous vehicle, the secure start system comprising:
- a compute stack comprising a plurality of encrypted drives that, when decrypted, enable one or more functions of the autonomous vehicle; and
a communications router connected to the compute stack, the communications router comprising;
an encrypted router drive; and
an input interface to receive a boot-loader comprising a basic decryption key to (i) decrypt the encrypted router drive, and (ii) enable network communications with a backend system;
wherein the secure start system (i) utilizes a tunnel key from the backend system to establish a private communications session with a backend data vault, and (ii) retrieves a set of decryption keys from the backend data vault, via the private communications session, to decrypt the plurality of encrypted drives.
5 Assignments
0 Petitions
Accused Products
Abstract
A secure start system for an autonomous vehicle (AV) can include a compute stack and a communications router. The communications router can include an encrypted router drive and an input interface to receive a boot-loader that includes a basic decryption key to decrypt the encrypted router drive and enable network communications with a backend system. The secure start system can utilizes a tunnel key from the backend system to establish a private communications session with a backend data vault, and retrieve a set of decryption keys from the backend data vault, via the private communications session, to decrypt a plurality of encrypted drives of the AV.
23 Citations
20 Claims
-
1. A secure start system for an autonomous vehicle, the secure start system comprising:
-
a compute stack comprising a plurality of encrypted drives that, when decrypted, enable one or more functions of the autonomous vehicle; and a communications router connected to the compute stack, the communications router comprising; an encrypted router drive; and an input interface to receive a boot-loader comprising a basic decryption key to (i) decrypt the encrypted router drive, and (ii) enable network communications with a backend system; wherein the secure start system (i) utilizes a tunnel key from the backend system to establish a private communications session with a backend data vault, and (ii) retrieves a set of decryption keys from the backend data vault, via the private communications session, to decrypt the plurality of encrypted drives. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. An autonomous vehicle comprising:
-
a sensor system to dynamically generate sensor data indicating a situational environment of the autonomous vehicle; acceleration, braking, and steering systems; a compute stack comprising a plurality of encrypted drives that, when decrypted, (i) processes the sensor data to identify features when the autonomous vehicle operates in an autonomous drive mode, and (ii) utilizes the processed sensor data to operate the acceleration, braking, and steering systems in the autonomous drive mode; and a secure start system connected to the compute stack, the secure start system comprising; a communications router including an encrypted router drive; and an input interface to receive a boot-loader comprising a basic decryption key to (i) decrypt the encrypted router drive, and (ii) enable network communications with a backend system; wherein the secure start system (i) utilizes a tunnel key from the backend system to establish a private communications session with a backend data vault, and (ii) retrieves a set of decryption keys from the backend data vault, via the private communications session, to decrypt the plurality of encrypted drives. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16)
-
-
17. A non-transitory computer-readable medium storing instructions that, when executed by one or more processors of a secure start system for an autonomous vehicle, cause the one or more processors to:
-
retrieve a basic decryption key from a boot-loader to (i) decrypt a router drive, and (ii) enable network communications with a backend system; transmit credentials to the backend system; when the credentials are authenticated, receive a tunnel key from the backend system; utilize the tunnel key to establish a private communications session with a backend data vault; and retrieve a set of decryption keys from the backend data vault, via the private communications session, to (i) decrypt a plurality of encrypted drives of the autonomous vehicle, and (ii) initiate an autonomous mode of the autonomous vehicle. - View Dependent Claims (18, 19, 20)
-
Specification