PRODUCTION OF CRYPTOGRAPHIC KEYS FOR AN EMBEDDED PROCESSING DEVICE

US 20090323967A1
Filed: 06/30/2008
Published: 12/31/2009
Est. Priority Date: 06/30/2008
Status: Active Grant

First Claim

Patent Images

1. A method of producing cryptographic keys for use in communicating with a manufactured product having an embedded processing device, comprising the steps of:

(a) providing a manufactured product having an embedded processing device that includes a pseudo random number generator;

(b) obtaining entropy data;

(c) generating public and private cryptographic keys using the pseudo random number generator and the entropy data;

(d) storing the private key within the manufactured product;

(e) transmitting the public key from the manufactured product for storage in a database external to the manufactured product; and

(f) transferring possession of the manufactured product to another entity.

View all claims

16 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for producing cryptographic keys for use by an embedded processing device within a manufactured product. A pseudo random number generator is seeded with entropy data gathered by the embedded device, and the result is used to generate a public-private key pair. The process can be carried out during manufacturing so that the public key of each manufactured product can be stored in a database along with a unique identifier for the embedded device associated with the key. In one particular example, a vehicle having an installed telematics unit uses the key generating process to self-generate keys using entropy data available to the vehicle.

75 Citations

View as Search Results

20 Claims

1. A method of producing cryptographic keys for use in communicating with a manufactured product having an embedded processing device, comprising the steps of:
- (a) providing a manufactured product having an embedded processing device that includes a pseudo random number generator;
  
  (b) obtaining entropy data;
  
  (c) generating public and private cryptographic keys using the pseudo random number generator and the entropy data;
  
  (d) storing the private key within the manufactured product;
  
  (e) transmitting the public key from the manufactured product for storage in a database external to the manufactured product; and
  
  (f) transferring possession of the manufactured product to another entity.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The method of claim 1, wherein the manufactured product is an automobile and the embedded processing device is a telematics unit installed in the automobile as original equipment.
  - 3. The method of claim 1, wherein steps (b) through (d) are carried out prior to step (f) as a part of an initialization routine for the embedded processing device.
  - 4. The method of claim 1, wherein step (b) further comprises obtaining data from at least one independent data source accessible by the embedded processing device.
  - 5. The method of claim 4, wherein the independent data source comprises a vehicle system module.
  - 6. The method of claim 5, wherein the obtained data comprises a sensor reading obtained from the vehicle system module.
  - 7. The method of claim 5, wherein the obtained data comprises a time value.
  - 8. The method of claim 5, wherein the obtained data comprises a unique identifier obtained from the vehicle system module.
  - 9. The method of claim 1, wherein step (b) further comprises generating the entropy data by obtaining data from a plurality of data sources accessible by the embedded processing device and combining the obtained data together.
  - 10. The method of claim 9, wherein the step of combining the obtained data further comprises performing a cryptographic hash function on the obtained data.
  - 11. The method of claim 1, wherein step (e) further comprises transmitting the public key along with a unique identifier for the embedded processing device.
  - 12. The method of claim 11, wherein the unique identifier is a MAC address associated with the embedded processing device.
  - 13. The method of claim 11, wherein the unique identifier is a serial number associated with the embedded processing device.

14. A method of producing cryptographic keys for use in communicating with a vehicle having an installed telematics unit, comprising the steps of:
- (a) manufacturing a vehicle, including the step of installing a telematics unit in the vehicle such that the telematics unit is in communication with one or more vehicle system modules;
  
  (b) obtaining entropy data under control of the telematics unit by collecting unrelated data from at least two different data sources;
  
  (c) seeding the pseudo random number generator within the telematics unit with the entropy data;
  
  (d) generating public and private cryptographic keys using the pseudo random number generator;
  
  (e) storing the private key within the vehicle;
  
  (f) transmitting the public key to an external database along with at least one unique identifier associated with the telematics unit; and
  
  (g) distributing the vehicle.

15. A vehicle electronics system for self-generating cryptographic keys used for secure wireless communication with the vehicle, comprising:
- a telematics unit having a processor, memory, and a cellular chipset, wherein said processor executes instructions stored in said memory and controls wireless communication of cellular voice and data calls via said cellular chipset;
  
  a communications bus connected to said telematics unit; and
  
  a plurality of vehicle system modules, at least some of which are connected to said communications bus such that said telematics unit can receive data from said connected vehicle system modules;
  
  wherein said telematics unit includes a pseudo random number generator and is operable under control of said processor to obtain entropy data from at least one independent data source external to said telematics unit and to generate cryptographic keys using said pseudo random number generator and said entropy data.
- View Dependent Claims (16, 17, 18, 19, 20)
- - 16. A vehicle electronics system as defined in claim 15, wherein said at least one independent data source comprises at least one of said vehicle system modules.
  - 17. A vehicle electronics system as defined in claim 16, wherein said entropy data comprises at least in part sensor data obtained from one of said vehicle system modules.
  - 18. A vehicle electronics system as defined in claim 16, wherein said entropy data comprises at least in part a unique identifier obtained from one of said vehicle system modules.
  - 19. A vehicle electronics system as defined in claim 15, wherein said telematics unit is operable under control of said processor to obtain unrelated data from at least two independent data sources, at least one of which is external to said telematics unit.
  - 20. A vehicle electronics system as defined in claim 15, wherein said cryptographic keys include a public key and a private key and wherein said telematics unit is operable under control of said processor to save said private key in memory and transmit said public key wirelessly via said cellular chipset.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
GM Global Technology Operations LLC (General Motors Company)
Original Assignee
General Motors Corporation (Motors Liquidation Co. GUC Trust)
Inventors
Madhavan, Sethu K., Peirce, Kenneth L., Alrabady, Ansaf I.

Granted Patent

US 8,761,390 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/278
CPC Class Codes

H04L 2209/80   Wireless network architectu...

H04L 2209/84   Vehicles

H04L 9/0869   involving random numbers or...

PRODUCTION OF CRYPTOGRAPHIC KEYS FOR AN EMBEDDED PROCESSING DEVICE

First Claim

16 Assignments

0 Petitions

Accused Products

Abstract

75 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

PRODUCTION OF CRYPTOGRAPHIC KEYS FOR AN EMBEDDED PROCESSING DEVICE

First Claim

16 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

75 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links