Secure start system for an autonomous vehicle

US 10,140,468 B2
Filed: 01/18/2018
Issued: 11/27/2018
Est. Priority Date: 03/18/2016
Status: Active Grant

First Claim

Patent Images

1. A secure start system for an autonomous vehicle, the secure start system comprising:

a communications router;

a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to enable an autonomous mode of the autonomous vehicle; and

wherein the compute stack comprises a master node including one or more memory resources that execute secure start instructions, causing the secure start system to;

based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router;

receive, when the credentials are authenticated, a tunnel key from the backend authentication system;

establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system;

retrieve a verification key and an autonomous key from the backend vault;

verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and

decrypt the file system using the autonomous key to enable the autonomous mode.

View all claims

4 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secure start system for an autonomous vehicle (AV) can transmit credentials to an authentication system based on detecting startup of the autonomous vehicle. When the credentials are authenticated the system can receive a tunnel key from the authentication system, and establish, using the tunnel key, a private communications session with a backend vault of the authentication system. The system may then retrieve a verification key and an autonomous key from the backend vault, and verify, using the verification key, that the file system was cryptographically signed by the authentication system, and decrypt the file system using the autonomous key to enable the autonomous mode.

Citations

20 Claims

1. A secure start system for an autonomous vehicle, the secure start system comprising:
- a communications router;
  
  a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to enable an autonomous mode of the autonomous vehicle; and
  
  wherein the compute stack comprises a master node including one or more memory resources that execute secure start instructions, causing the secure start system to;
  
  based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router;
  
  receive, when the credentials are authenticated, a tunnel key from the backend authentication system;
  
  establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system;
  
  retrieve a verification key and an autonomous key from the backend vault;
  
  verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and
  
  decrypt the file system using the autonomous key to enable the autonomous mode.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The secure start system of claim 1, wherein the executed instructions further cause the secure start system to:
    - retrieve, in response to detecting startup of the autonomous vehicle, a basic key from write protected memory of the secure start system; and
      
      unlock, using the basic key, a basic mode of an autonomous vehicle operating system (AVOS), the basic mode enabling network communications with the backend authentication system.
  - 3. The secure start system of claim 1, wherein the executed instructions further cause the secure start system to:
    - receive the credentials from a user of the autonomous vehicle.
  - 4. The secure start system of claim 3, wherein the credentials are received via one of a mobile computing device executing a designated application for operating the autonomous vehicle or an input interface of the autonomous vehicle.
  - 5. The secure start system of claim 1, wherein the tunnel key comprises an Internet Protocol Security (IPsec) tunnel key, and wherein the private communications session comprises an IPsec tunnel to the backend vault to retrieve the verification key and the autonomous key.
  - 6. The secure start system of claim 1, wherein the executed instructions cause the secure start system to transmit the credentials to a demilitarized zone of the backend authentication system to receive the tunnel key.
  - 7. The secure start system of claim 1, wherein the executed instructions further cause the secure start system to:
    - transmit the credentials to a communications gate of the backend vault; and
      
      receive, when the credentials are authenticated by the communications gate, a time-limited token to access the backend vault;
      
      wherein the executed instructions cause the secure start system to retrieve the verification key and the autonomous key from the backend vault using the time-limited token.

8. An autonomous vehicle comprising:
- a sensor system to dynamically generate sensor data indicating a situational environment of the autonomous vehicle;
  
  an acceleration, braking, and steering system;
  
  a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to operate the acceleration, braking, and steering system in an autonomous mode; and
  
  a secure start system connected to the compute stack, the secure start system comprising;
  
  a communications router;
  
  one or more processors; and
  
  one or more memory resources storing secure start instructions that, when executed by the one or more processors, cause the secure start system to;
  
  based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router;
  
  receive, when the credentials are authenticated, a tunnel key from the backend authentication system;
  
  establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system;
  
  retrieve a verification key and an autonomous key from the backend vault;
  
  verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and
  
  decrypt the file system using the autonomous key to enable the autonomous mode.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The autonomous vehicle of claim 8, wherein the executed instructions further cause the secure start system to:
    - retrieve, in response to detecting startup of the autonomous vehicle, a basic key from write protected memory of the secure start system; and
      
      unlock, using the basic key, a basic mode of an autonomous vehicle operating system (AVOS), the basic mode enabling network communications with the backend authentication system.
  - 10. The autonomous vehicle of claim 8, wherein the executed instructions further cause the secure start system to:
    - receive the credentials from a user of the autonomous vehicle.
  - 11. The autonomous vehicle of claim 10, wherein the credentials are received via one of a mobile computing device executing a designated application for operating the autonomous vehicle or an input interface of the autonomous vehicle.
  - 12. The autonomous vehicle of claim 8, wherein the tunnel key comprises an Internet Protocol Security (IPsec) tunnel key, and wherein the private communications session comprises an IPsec tunnel to the backend vault to retrieve the verification key and the autonomous key.
  - 13. The autonomous vehicle of claim 8, wherein the executed instructions cause the secure start system to transmit the credentials to a demilitarized zone of the backend authentication system to receive the tunnel key.
  - 14. The autonomous vehicle of claim 8, wherein the executed instructions further cause the secure start system to:
    - transmit the credentials to a communications gate of the backend vault; and
      
      receive, when the credentials are authenticated by the communications gate, a time-limited token to access the backend vault;
      
      wherein the executed instructions cause the secure start system to retrieve the verification key and the autonomous key from the backend vault using the time-limited token.

15. A non-transitory computer readable medium storing instructions that when executed by one or more processors of a secure start system of an autonomous vehicle (AV), cause the secure start system to:
- based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system using a communications router;
  
  receive, when the credentials are authenticated, a tunnel key from the backend authentication system;
  
  establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system;
  
  retrieve a verification key and an autonomous key from the backend vault;
  
  verify, using the verification key, that an encrypted file system of the AV was cryptographically signed by the backend authentication system; and
  
  decrypt the file system using the autonomous key to enable an autonomous mode of the autonomous vehicle.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. The non-transitory computer readable medium of claim 15, wherein the executed instructions further cause the secure start system to:
    - retrieve, in response to detecting startup of the autonomous vehicle, a basic key from write protected memory of the secure start system; and
      
      unlock, using the basic key, a basic mode of an autonomous vehicle operating system (AVOS), the basic mode enabling network communications with the backend authentication system.
  - 17. The non-transitory computer readable medium of claim 15, wherein the executed instructions further cause the secure start system to:
    - receive the credentials from a user of the autonomous vehicle.
  - 18. The non-transitory computer readable medium of claim 17, wherein the credentials are received via one of a mobile computing device executing a designated application for operating the autonomous vehicle or an input interface of the autonomous vehicle.
  - 19. The non-transitory computer readable medium of claim 15, wherein the tunnel key comprises an Internet Protocol Security (IPsec) tunnel key, and wherein the private communications session comprises an IPsec tunnel to the backend vault to retrieve the verification key and the autonomous key.
  - 20. The non-transitory computer readable medium of claim 19, wherein the executed instructions further cause the secure start system to:
    - transmit the credentials to a communications gate of the backend vault; and
      
      receive, when the credentials are authenticated by the communications gate, a time-limited token to access the backend vault;
      
      wherein the executed instructions cause the secure start system to retrieve the verification key and the autonomous key from the backend vault using the time-limited token.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Aurora Operations Incorporated (Aurora Innovation, Inc.)
Original Assignee
Uber Technologies, Inc.
Inventors
Valasek, Christopher, Miller, Charles
Primary Examiner(s)
Holder, Bradley

Application Number

US15/874,549
Publication Number

US 20180157862A1
Time in Patent Office

313 Days
Field of Search
US Class Current
CPC Class Codes

B60R 25/00   Fittings or systems for pre...

B60R 25/04   operating on the propulsion...

G05D 1/0022   characterised by the commun...

G06F 21/44   Program or device authentic...

G06F 21/575   Secure boot

G06F 21/6218   to a system of files or obj...

H04L 2209/84   Vehicles

H04L 63/0428   wherein the data content is...

H04L 63/062   for key distribution, e.g. ...

H04L 63/08   for authentication of entit...

H04L 63/0853   using an additional device,...

H04L 9/0844   with user authentication or...

H04L 9/0894   Escrow, recovery or storing...

H04W 12/04   Key management, e.g. using ...

H04W 12/065   Continuous authentication

H04W 12/068   using credential vaults, e....

Secure start system for an autonomous vehicle

First Claim

4 Assignments

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Secure start system for an autonomous vehicle

First Claim

4 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links