METHOD FOR SELECTIVE SOFTWARE ROLLBACK

US 20140075197A1
Filed: 09/12/2012
Published: 03/13/2014
Est. Priority Date: 09/12/2012
Status: Active Grant

First Claim

Patent Images

1. A method for validating a software file to be installed into a controller, said method comprising:

preparing the software file;

assigning a software version code to the software file;

assigning a security version code to the software file;

digitally signing the software file with the software file version code and the security version code;

presenting the signed software file to the controller for installing on the controller;

verifying the software file signature in the controller to determine if the software file is valid;

determining whether the security version code in the software file is valid if the controller determines that the signed software file is valid; and

allowing the software file to be installed in the controller if the signed software file is valid and the security version code is valid.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A system and method for validating a software file to be installed into a controller. The method includes preparing the software file including assigning a software version code to the software file, assigning a security version code to the software file, and signing the software file with the software file version code and the security version code. The signed software file is presented to the controller for installing on the controller and the controller verifies the software file signature to determine if the software file is valid and the security version code is valid. The controller allows the software file to be installed in the controller if both the signed software file is valid and the security version code is valid.

30 Citations

17 Claims

1. A method for validating a software file to be installed into a controller, said method comprising:
- preparing the software file;
  
  assigning a software version code to the software file;
  
  assigning a security version code to the software file;
  
  digitally signing the software file with the software file version code and the security version code;
  
  presenting the signed software file to the controller for installing on the controller;
  
  verifying the software file signature in the controller to determine if the software file is valid;
  
  determining whether the security version code in the software file is valid if the controller determines that the signed software file is valid; and
  
  allowing the software file to be installed in the controller if the signed software file is valid and the security version code is valid.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The method according to claim 1 wherein assigning a security version code to the software file includes keeping the security version code the same if the software file has not been prepared for correcting a security vulnerability and increasing the security version code if the software file has been prepared for correcting a security vulnerability.
  - 3. The method according to claim 2 wherein determining whether the security version code in the software file is valid includes determining whether the security version code is an older version of the security version code stored in the controller, and if so, not allowing the software file to be loaded in the controller.
  - 4. The method according to claim 2 wherein determining whether the security version code in the software file is valid includes determining whether the security version code is the same or a later version of the security version code stored in the controller, and if so, allowing the software file to be loaded in the controller.
  - 5. The method according to claim 4 further comprising changing the stored version of the security version code in the controller to the security version code assigned to the software file if the security version code assigned to the software file is greater than the stored version of the security version code.
  - 6. The method according to claim 1 wherein signing the software file includes using asymmetric key cryptography employing digital signatures and public and private keys and verifying the software file includes digital signature verification.
  - 7. The method according to claim 1 wherein the controller is an electronic control unit (ECU) on a vehicle.

8. A method for validating a software file to be installed into an electronic control unit (ECU) on a vehicle, said method comprising:
- preparing the software file;
  
  assigning a software version code to the software file;
  
  assigning a security version code to the software file, wherein assigning a security version code to the software file includes keeping the security version code the same if the software file has not been prepared for correcting a security vulnerability and increasing the security version code if the software file has been prepared for correcting a security vulnerability;
  
  digitally signing the software file with the software file version code and the security version code;
  
  presenting the signed software file to the ECU for installing on the controller;
  
  verifying the software file signature in the ECU to determine if the software file is valid; and
  
  determining whether the security version code in the software file is valid if the ECU determines that the signed software file is valid, wherein determining whether the security version code in the software file is valid includes determining whether the security version code is an older version of the security version code stored on the controller, and if so, not allowing the software file to be installed in the controller, and if not, allowing the software file to be installed in the controller.
- View Dependent Claims (9, 10)
- - 9. The method according to claim 8 further comprising changing the stored version of the security version code in the controller to the security version code assigned to the software file if the security version code assigned to the software file is greater than the stored version of the security version code.
  - 10. The method according to claim 8 wherein signing the software file includes using asymmetric key cryptography employing digital signatures and public and private keys and verifying the software file includes digital signature verification.

11. A system for validating a software file to be installed into a controller, said system comprising:
- means for preparing the software file;
  
  means for assigning a software version code to the software file;
  
  means for assigning a security version code to the software file;
  
  means for signing the software file with the software file version code and the security version code;
  
  means for presenting the signed software file to the controller for installing on the controller;
  
  means for verifying the software file signature in the controller to determine if the software file is valid;
  
  means for determining whether the security version code in the software file is valid if the controller determines that the signed software file is valid; and
  
  means for allowing the software file to be installed in the controller if the software file is valid and the security version code is valid.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The system according to claim 11 wherein the means for assigning a security version code to the software file keeps the security version code the same if the software file has not been prepared for correcting a security vulnerability and increasing the security version code if the software file has been prepared for correcting a security vulnerability.
  - 13. The system according to claim 12 wherein the means for determining whether the security version code in the software file is valid determines whether the security version code is an older version of the security version code stored on the controller, and if so, not allowing the software file to be loaded in the controller.
  - 14. The system according to claim 12 wherein the means for determining whether the security version code in the software file is valid determines whether the security version code is the same or a later version of the security version code stored on the controller, and if so, allowing the software file to be loaded in the controller.
  - 15. The system according to claim 14 further comprising means for changing the stored version of the security version code in the controller to the security version code assigned to the software file if the security version code assigned to the software file is greater than the stored version of the security version code.
  - 16. The system according to claim 11 wherein the means for signing the software file uses asymmetric key cryptography employing digital signatures and public and private keys and the means for verifying the software file employs digital signature verification.
  - 17. The system according to claim 11 wherein the controller is an electronic control unit (ECU) on a vehicle.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
GM Global Technology Operations LLC (General Motors Company)
Original Assignee
GM Global Technology Operations LLC (General Motors Company)
Inventors
Alrabady, Ansaf I., Baltes, Kevin M., Forest, Thomas M.

Granted Patent

US 8,978,160 B2
Time in Patent Office

Days
Field of Search
US Class Current

713/176
CPC Class Codes

G06F 21/57   Certifying or maintaining t...

G06F 21/572   Secure firmware programming...

G06F 21/64   Protecting data integrity, ...

G06F 8/65   Updates security arrangemen...

METHOD FOR SELECTIVE SOFTWARE ROLLBACK

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

30 Citations

17 Claims

Specification

Solutions

Use Cases

Quick Links

METHOD FOR SELECTIVE SOFTWARE ROLLBACK

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

30 Citations

17 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links