On-Demand Secure Key Generation

US 20120155636A1
Filed: 12/20/2010
Published: 06/21/2012
Est. Priority Date: 12/20/2010
Status: Active Grant

First Claim

Patent Images

1. A method of generating on-demand cryptographic keys in a vehicle-to-vehicle communication system, the method comprising the steps of:

enabling a vehicle start operation for a host vehicle;

obtaining at least one unique identifier relating to a user of the vehicle;

the host vehicle generating cryptographic keys for encrypting, decrypting, and authenticating secured messages between the host vehicle and at least one remote vehicle in the vehicle-to-vehicle communication system in response to enabling the vehicle start operation, the cryptographic keys being generated as a function of the at least one unique identifier;

temporarily storing a respective cryptographic key used to decrypt or encrypt messages communicated between the host vehicle and the at least one remote entity in a memory device of the host vehicle;

enabling vehicle-to-vehicle communications with the at least one remote entity, wherein the host vehicle utilizes the respective cryptographic key to decrypt or encrypt a secure message transmitted between the host vehicle and the remote vehicle; and

deleting the respective cryptographic key temporarily stored in the memory device of the host vehicle after the vehicle-to-vehicle communications of the host vehicle is disabled.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method is provided for generating on-demand cryptographic keys in a vehicle-to-vehicle communication system. At least one unique identifier is obtained relating to a user of the vehicle. The host vehicle generates cryptographic keys for encrypting, decrypting, and authenticating secured messages between the host vehicle and at least one remote vehicle in the vehicle-to-vehicle communication system. The cryptographic keys are generated as a function of the at least one unique identifier. A respective cryptographic key used to decrypt or encrypt messages communicated between the host vehicle and the at least one remote entity is temporarily stored in a memory device of the host vehicle. The host vehicle utilizes the respective cryptographic key to decrypt or encrypt a secure message transmitted between the host vehicle and the remote vehicle. The respective cryptographic key temporarily stored in the memory device of the host vehicle is deleted after the vehicle-to-vehicle communications of the host vehicle is disabled.

95 Citations

View as Search Results

20 Claims

1. A method of generating on-demand cryptographic keys in a vehicle-to-vehicle communication system, the method comprising the steps of:
- enabling a vehicle start operation for a host vehicle;
  
  obtaining at least one unique identifier relating to a user of the vehicle;
  
  the host vehicle generating cryptographic keys for encrypting, decrypting, and authenticating secured messages between the host vehicle and at least one remote vehicle in the vehicle-to-vehicle communication system in response to enabling the vehicle start operation, the cryptographic keys being generated as a function of the at least one unique identifier;
  
  temporarily storing a respective cryptographic key used to decrypt or encrypt messages communicated between the host vehicle and the at least one remote entity in a memory device of the host vehicle;
  
  enabling vehicle-to-vehicle communications with the at least one remote entity, wherein the host vehicle utilizes the respective cryptographic key to decrypt or encrypt a secure message transmitted between the host vehicle and the remote vehicle; and
  
  deleting the respective cryptographic key temporarily stored in the memory device of the host vehicle after the vehicle-to-vehicle communications of the host vehicle is disabled.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11)
- - 2. The method of claim 1 wherein a one way function is used in generating the cryptographic keys.
  - 3. The method of claim 2 wherein the cryptographic keys include a private cryptographic key and a public cryptographic key, wherein a plurality of unique identifiers are obtained corresponding the user, wherein multiple hashes are obtained for each unique identifier using the one way function, and wherein a subset of the multiple hashes are selected for generating the private cryptographic key.
  - 4. The method of claim 3 wherein the public cryptographic key is generated using the private cryptographic key.
  - 5. The method of claim 1 wherein the at least one unique identifier is associated with the user of the vehicle.
  - 6. The method of claim 5 wherein the at least one unique identifier includes at least one biometric characteristic corresponding to the user of the vehicle.
  - 7. The method of claim 1 wherein the at least one unique identifier includes a code entered by the user of the vehicle.
  - 8. The method of claim 1 wherein the at least one unique identifier is obtained passively from the user of the vehicle.
  - 9. The method of claim 1 wherein messages transmitted within the vehicle-to-vehicle communication system are encrypted and decrypted using a public-key infrastructure technique, wherein the cryptographic keys include a private cryptographic key and a public cryptographic key, wherein the private cryptographic key is temporarily stored in the memory device of the host vehicle and the public cryptographic key is provided to the remote entity.
  - 10. The method of claim 9 wherein a certificate authority is used to certify ownership of the public cryptographic key, wherein the certificate authority registers the public cryptographic key and generates a corresponding certificate for the public cryptographic key, wherein certificate authority encrypts the certificate, and wherein the certificate authority provides the encrypted certificate to the host vehicle, wherein the host vehicle decrypts the certificate with the private cryptographic key for use when communicating secure messages.
  - 11. The method of claim 1 wherein messages transmitted within the vehicle-to-vehicle communication system are encrypted and decrypted using a symmetric-key infrastructure technique, wherein the cryptographic keys include a set of substantially identical cryptographic keys that each provide encrypting and decrypting functionality, wherein the host vehicle retains a first of the substantially identical cryptographic keys and the remote vehicle retains a second of the substantially identical cryptographic keys.

12. An on-demand cryptographic key generation system for vehicle-to-vehicle communications, the vehicle-to-vehicle communications being enabled upon a vehicle start operation, the system comprising:
- an identification input device for obtaining at least one unique identifier corresponding to a user of the host vehicle is used by the host vehicle to generate the set of cryptographic keys;
  
  a host vehicle processing unit for generating cryptographic keys used to encrypt, decrypt, and authenticate secured messages between a host vehicle and a remote vehicle in response to enabling the vehicle start operation, the cryptographic keys being generated as a function of the at least one unique identifier;
  
  a vehicle-to-vehicle communication system for transmitting and receiving secure messages between the host vehicle and the a remote vehicle, the vehicle-to-vehicle communication system being enabled upon the start operation; and
  
  a memory device for temporarily storing at least one respective cryptographic key generated by the host vehicle;
  
  wherein a secure message is generated between the host vehicle and the remote vehicle, wherein the at least one cryptographic key stored by the host vehicle is used to decrypt or encrypt the secure message, and wherein the respective cryptographic key temporarily stored in the memory device is deleted from the memory device after the vehicle-to-vehicle communications of the host vehicle is disabled.
- View Dependent Claims (13, 14, 15, 16, 17, 18, 19, 20)
- - 13. The system of claim 12 wherein the host vehicle processing unit obtains a plurality of unique identifiers, wherein multiple hashes are generated for each unique identifier, wherein a subset of the multiple hashes are selected for determining a private cryptographic key, and wherein the private cryptographic key is used by the host vehicle processing unit to generate a public cryptographic key.
  - 14. The system of claim 12 wherein the identification input device includes a device for entering a code by the user of the host vehicle.
  - 15. The system of claim 12 wherein the identification input device includes at least one biometric sensing device for obtaining at least one biometric characteristic of the user of the host vehicle for identifying the user.
  - 16. The system of claim 15 wherein the at least one biometric sensing device includes a fingerprint scan device.
  - 17. The system of claim 15 wherein the at least one biometric sensing device includes a retinal scan device.
  - 18. The system of claim 15 wherein the at least one biometric sensing device includes a voice recognition device.
  - 19. The system of claim 15 wherein the identification input device includes a personal portable device carried by a user that wirelessly communicates with the host vehicle for providing a unique identifier.
  - 20. The system of claim 12 wherein the host vehicle processing unit is an on-board unit of the host vehicle that controls vehicle-to-vehicle communications and security.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
GM Global Technology Operations LLC (General Motors Company)
Original Assignee
GM Global Technology Operations LLC (General Motors Company)
Inventors
Muthaiah, Skanda N.

Granted Patent

US 8,526,606 B2
Time in Patent Office

Days
Field of Search
US Class Current

380/44
CPC Class Codes

H04L 2209/84   Vehicles

H04L 9/0825   using asymmetric-key encryp...

H04L 9/3231   Biological data, e.g. finge...

On-Demand Secure Key Generation

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

95 Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

On-Demand Secure Key Generation

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

95 Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links