Vehicle system and authentication method
First Claim
1. A vehicle system comprising a master Electronic Control Unit (ECU) and a general ECU,the master ECU being provided with, by a management device different from the master ECU and the general ECU:
- a private key of the master ECU; and
an electronic certificate of the general ECU which includes a public key of the general ECU and specified data related to an execution program stored in the general ECU; and
the general ECU being provided with, by the management device;
a private key of the general ECU; and
an electronic certificate of the master ECU which includes a public key of the master ECU and specified data related to an execution program stored in the master ECU, wherein;
the general ECU is configured to;
attach a first digital signature using the private key of the general ECU to first transmission data including generated specified data of the general ECU, andtransmit the first transmission data to the master ECU;
the master ECU is configured to;
verify, using the electronic certificate of the general ECU, the first transmission data attached with the first digital signature and transmitted from the general ECU,verify whether the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU,when the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, determine that the general ECU and the execution program stored in the general ECU are valid,attach a second digital signature using the private key of the master ECU to second transmission data including generated specified data of the master ECU and a session key, andtransmit the second transmission data to the general ECU; and
the general ECU is configured to;
verify, using the electronic certificate of the master ECU, the second transmission data attached with the second digital signature and transmitted from the master ECU,verify whether the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU,when the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, determine that the master ECU and the execution program stored in the master ECU are valid, anduse the session key included in the second transmission data as a common key when performing subsequent communications.
1 Assignment
0 Petitions
Accused Products
Abstract
A vehicle system includes a master ECU and a general ECU. The general ECU attaches a digital signature to transmission data including data (for example, a digest value of a program) and transmits the transmission data to the master ECU. The master ECU verifies the digital signature and the data and, when both the digital signature and the data are valid, determines that the general ECU is valid. The master ECU attaches a digital signature to transmission data including data of the master ECU and a session key and transmits the transmission data to the general ECU. The general ECU verifies the digital signature and the data and, when both the digital signature and the data are valid, the general ECU uses the session key included in the transmission data as a common key when performing subsequent communications.
13 Citations
13 Claims
-
1. A vehicle system comprising a master Electronic Control Unit (ECU) and a general ECU,
the master ECU being provided with, by a management device different from the master ECU and the general ECU: -
a private key of the master ECU; and an electronic certificate of the general ECU which includes a public key of the general ECU and specified data related to an execution program stored in the general ECU; and the general ECU being provided with, by the management device; a private key of the general ECU; and an electronic certificate of the master ECU which includes a public key of the master ECU and specified data related to an execution program stored in the master ECU, wherein; the general ECU is configured to; attach a first digital signature using the private key of the general ECU to first transmission data including generated specified data of the general ECU, and transmit the first transmission data to the master ECU; the master ECU is configured to; verify, using the electronic certificate of the general ECU, the first transmission data attached with the first digital signature and transmitted from the general ECU, verify whether the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, when the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, determine that the general ECU and the execution program stored in the general ECU are valid, attach a second digital signature using the private key of the master ECU to second transmission data including generated specified data of the master ECU and a session key, and transmit the second transmission data to the general ECU; and the general ECU is configured to; verify, using the electronic certificate of the master ECU, the second transmission data attached with the second digital signature and transmitted from the master ECU, verify whether the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, when the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, determine that the master ECU and the execution program stored in the master ECU are valid, and use the session key included in the second transmission data as a common key when performing subsequent communications. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. An authentication method in a vehicle system constituted by a master Electronic Control Unit (ECU) and a general ECU,
the master ECU being provided with, by a management device different from the master ECU and the general ECU: -
a private key of the master ECU; and an electronic certificate of the general ECU which includes a public key of the general ECU and specified data related to an execution program stored in the general ECU; and the general ECU being provided with, by the management device; a private key of the general ECU; and an electronic certificate of the master ECU which includes a public key of the master ECU and specified data related to an execution program stored in the master ECU, the authentication method comprising steps of; causing the general ECU to; attach a first digital signature using the private key of the general ECU to first transmission data including generated specified data of the general ECU, and transmit the first transmission data to the master ECU; causing the master ECU to; verify, using the electronic certificate of the general ECU, the first transmission data attached with the first digital signature and transmitted from the general ECU, verify whether the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, when the generated specified data included in the first transmission data matches the specified data included in the electronic certificate of the general ECU, determine that the general ECU and the execution program stored in the general ECU are valid; attach a second digital signature using the private key of the master ECU to second transmission data including generated specified data of the master ECU and a session key, and transmit the second transmission data to the general ECU; and causing the general ECU to; verify, using the electronic certificate of the master ECU, the second transmission data attached with the second digital signature and transmitted from the master ECU, verify whether the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, when the generated specified data included in the second transmission data matches the specified data included in the electronic certificate of the master ECU, determine that the master ECU and the execution program stored in the master ECU are valid, and use the session key included in the second transmission data as a common key when performing subsequent communications. - View Dependent Claims (9, 10, 11, 12, 13)
-
Specification