Secure communication of IOT devices for vehicles
First Claim
1. A method for establishing secure communication between a plurality of devices, each device including a hardware processor, associated memory, a unique identification, a digital identity token and a cryptographic key, the method comprising:
- transmitting over a communication network an invitation to a second device by a first device to establish a communication line with the first device by receiving a digital identity token from the second device;
authenticating a communication line between the first device and the second device;
issuing a digital certificate to the communication line to establish a secure communication line between the first device and the second device;
grouping the plurality of devices into different groups based on a predetermined criteria and storing the different groups in a storage device;
storing group memberships for the different groups in respective attribute certificates of the respective devices; and
preventing a device for which a secure communication line to any one of the plurality of devices has not been established, or which is not a member of a group with an approved attribute certificate, from communicating with said any one of the plurality of devices.
1 Assignment
0 Petitions
Accused Products
Abstract
Method for establishing secure communication between a plurality of IoT devices in one or more vehicles include: provisioning the plurality of IoT devices by providing a unique identification, a digital identity token and a cryptographic key to each of the plurality of IoT devices; establishing a secure communication line between the plurality of IoT devices by authenticating respective communication lines between respective IoT devices and issuing a digital certificate to the respective communication lines; grouping the plurality of IoT devices into different groups based on a predetermined criteria; and including a group membership for a group of the different groups in an attribute certificate indicating group characterization.
-
Citations
5 Claims
-
1. A method for establishing secure communication between a plurality of devices, each device including a hardware processor, associated memory, a unique identification, a digital identity token and a cryptographic key, the method comprising:
-
transmitting over a communication network an invitation to a second device by a first device to establish a communication line with the first device by receiving a digital identity token from the second device; authenticating a communication line between the first device and the second device; issuing a digital certificate to the communication line to establish a secure communication line between the first device and the second device; grouping the plurality of devices into different groups based on a predetermined criteria and storing the different groups in a storage device; storing group memberships for the different groups in respective attribute certificates of the respective devices; and preventing a device for which a secure communication line to any one of the plurality of devices has not been established, or which is not a member of a group with an approved attribute certificate, from communicating with said any one of the plurality of devices. - View Dependent Claims (2, 3, 4, 5)
-
Specification
-
- Resources
-
Current AssigneeT-Central, Inc.
-
Original AssigneeT-Central, Inc.
-
InventorsKravitz, David W., Graham, III, Donald Houston, Boudett, Josselyn L., Dietz, Russell S., Stacy, Kent William
-
Primary Examiner(s)Truong, Thanhnga B
-
Application NumberUS15/890,140Publication NumberTime in Patent Office504 DaysField of Search713156, 713163, 709245, 37920201, 37920301, 379245, 37914201, 700287, 370445, 370337, 290 1 A, 307 91, 380278US Class CurrentCPC Class CodesH04L 2209/84 VehiclesH04L 63/0823 using certificates cryptogr...H04L 63/0876 based on the identity of th...H04L 63/10 for controlling access to d...H04L 9/0819 Key transport or distributi...H04L 9/3255 using group based signature...H04L 9/3268 using certificate validatio...H04W 12/06 AuthenticationH04W 12/08 Access securityH04W 12/71 Hardware identityH04W 12/76 Group identity
