CERTIFICATE ASSIGNMENT STRATEGIES FOR EFFICIENT OPERATION OF THE PKI-BASED SECURITY ARCHITECTURE IN A VEHICULAR NETWORK
First Claim
1. A method for assigning certificates in a public key based security architecture for a vehicle wireless communications network, said method comprising:
- separating an area into a plurality of geographic regions;
assigning certificates to vehicles that are selected based on what region the vehicle is in, said certificates identifying a binding relationship between a vehicle and a public key;
providing a certified revocation list to the vehicles in each region where the vehicles in a particular region receive information pertaining to revoked certificates for the region that they are in; and
disregarding messages received by a vehicle in a specific region that include a certificate for another region.
12 Assignments
0 Petitions
Accused Products
Abstract
A system and method for assigning certificates and reducing the size of the certificate revocation lists in a PKI based architecture for a vehicle wireless communications system that includes separating a country, or other area, into geographic regions and assigning region-specific certificates to the vehicles. Therefore, a vehicle need only process certificates and certificate revocation lists for the particular region that it is traveling in. Vehicles can be assigned multiple certificates corresponding to more than one region in the vehicles vicinity as advance preparation for possible travel or transmission into nearby regions. Further, the expiration time of certificates assigned to vehicles corresponding to a given geographic region can be tailored to be inversely proportional to the distance from a registered home region of the vehicle. A scalable design for a back-end certifying authority with region-based certificates can also be provided.
-
Citations
20 Claims
-
1. A method for assigning certificates in a public key based security architecture for a vehicle wireless communications network, said method comprising:
-
separating an area into a plurality of geographic regions; assigning certificates to vehicles that are selected based on what region the vehicle is in, said certificates identifying a binding relationship between a vehicle and a public key; providing a certified revocation list to the vehicles in each region where the vehicles in a particular region receive information pertaining to revoked certificates for the region that they are in; and disregarding messages received by a vehicle in a specific region that include a certificate for another region. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12)
-
-
13. A method for controlling messages sent within a vehicle wireless communications system, said method comprising:
-
identifying a certifying authority that assigns certificates to vehicles and generates certified revocation lists that identify certificates of users who have been revoked; separating an area into a plurality of geographic regions; assigning certificates to vehicles that are selected based on what region the vehicle is in, said certificates identifying a binding relationship between a vehicle and a public key, wherein assigning certificates includes assigning multiple certificates to a vehicle for different regions if the vehicle is in one region and is in the vicinity of one or more other regions; providing a certified revocation list to the vehicles in each region where the vehicles in a particular region receive information pertaining to revoked certificates for the region that they are in; and disregarding messages received by a vehicle in a specific region that include a certificate for another region, wherein messages transmitted by a vehicle include a signature based on a private key and the vehicle'"'"'s certificate. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method for controlling messages sent within a vehicle wireless communications network, said method comprising:
-
separating an area into a plurality of geographic regions; and assigning certificates to vehicles that are selected based on what region the vehicle is in, said certificates identifying a binding relationship between a vehicle and a public key.
-
Specification