Secure start system for an autonomous vehicle
First Claim
1. A secure start system for an autonomous vehicle, the secure start system comprising:
- a communications router;
a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to enable an autonomous mode of the autonomous vehicle; and
wherein the compute stack comprises a master node including one or more memory resources that execute secure start instructions, causing the secure start system to;
based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router;
receive, when the credentials are authenticated, a tunnel key from the backend authentication system;
establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system;
retrieve a verification key and an autonomous key from the backend vault;
verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and
decrypt the file system using the autonomous key to enable the autonomous mode.
4 Assignments
0 Petitions
Accused Products
Abstract
A secure start system for an autonomous vehicle (AV) can transmit credentials to an authentication system based on detecting startup of the autonomous vehicle. When the credentials are authenticated the system can receive a tunnel key from the authentication system, and establish, using the tunnel key, a private communications session with a backend vault of the authentication system. The system may then retrieve a verification key and an autonomous key from the backend vault, and verify, using the verification key, that the file system was cryptographically signed by the authentication system, and decrypt the file system using the autonomous key to enable the autonomous mode.
-
Citations
20 Claims
-
1. A secure start system for an autonomous vehicle, the secure start system comprising:
-
a communications router; a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to enable an autonomous mode of the autonomous vehicle; and wherein the compute stack comprises a master node including one or more memory resources that execute secure start instructions, causing the secure start system to; based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router; receive, when the credentials are authenticated, a tunnel key from the backend authentication system; establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system; retrieve a verification key and an autonomous key from the backend vault; verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and decrypt the file system using the autonomous key to enable the autonomous mode. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An autonomous vehicle comprising:
-
a sensor system to dynamically generate sensor data indicating a situational environment of the autonomous vehicle; an acceleration, braking, and steering system; a compute stack storing a cryptographically signed and encrypted file system, and comprising a plurality of drives to execute the file system to operate the acceleration, braking, and steering system in an autonomous mode; and a secure start system connected to the compute stack, the secure start system comprising; a communications router; one or more processors; and one or more memory resources storing secure start instructions that, when executed by the one or more processors, cause the secure start system to; based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system via the communications router; receive, when the credentials are authenticated, a tunnel key from the backend authentication system; establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system; retrieve a verification key and an autonomous key from the backend vault; verify, using the verification key, that the file system was cryptographically signed by the backend authentication system; and decrypt the file system using the autonomous key to enable the autonomous mode. - View Dependent Claims (9, 10, 11, 12, 13, 14)
-
-
15. A non-transitory computer readable medium storing instructions that when executed by one or more processors of a secure start system of an autonomous vehicle (AV), cause the secure start system to:
-
based on detecting startup of the autonomous vehicle, transmit credentials to a backend authentication system using a communications router; receive, when the credentials are authenticated, a tunnel key from the backend authentication system; establish, using the tunnel key, a private communications session with a backend vault of the backend authentication system; retrieve a verification key and an autonomous key from the backend vault; verify, using the verification key, that an encrypted file system of the AV was cryptographically signed by the backend authentication system; and decrypt the file system using the autonomous key to enable an autonomous mode of the autonomous vehicle. - View Dependent Claims (16, 17, 18, 19, 20)
-
Specification