CERTIFICATING VEHICLE PUBLIC KEY WITH VEHICLE ATTRIBUTES
First Claim
1. ) A method for providing secure connection between vehicles over channels of a wireless communication network, comprising the steps of:
- a) providing to each vehicle, a first unique pair of digitally signed public key and private key;
b) providing to each vehicle, additional vehicle-related data being a visually static collection of attributes of said vehicle;
c) for each vehicle, generating a unique certificate number;
d) signing monolithic data consisting of said public key, said certificate number and said attributes by a trusted certificate generating authority;
e) prior to wireless communication between a first vehicle and a second vehicle, performing a verification step during which;
e1) said first vehicle sends its unique certificate to a second vehicle over a communication channel;
e2) said second vehicle verifies the authenticity of received unique certificate of said first vehicle and attributes by a camera or by other visual capturing devices being capable of capturing attributes of said first vehicle which are visible, using image processing means;
f) if said attributes are verified successfully, said second vehicle sends its unique certificate to said first vehicle over a communication channel, along with a secret session key, which is valid for the current session only;
g) said first vehicle verifies the authenticity of received unique certificate of said second vehicle and attributes by a camera or by other visual capturing devices being capable of capturing attributes of said second vehicle which are visible, using signal processing means; and
h) allowing both vehicles to securely exchange message or data using said secret session key.
0 Assignments
0 Petitions
Accused Products
Abstract
A method for providing secure connection between vehicles over channels of a wireless communication network, according to which, a first unique pair of digitally signed public key and private key is provided to each vehicle, along with additional vehicle-related data including a visually static collection of attributes of the vehicle. A unique certificate number is generated for each vehicle and monolithic data consisting of the public key, the certificate number and the attributes is signed by a trusted certificate generating authority. Prior to wireless communication between a first vehicle and a second vehicle, a verification step is performed during which the first vehicle sends its unique certificate number to a second vehicle over a communication channel; the second vehicle verifies the authenticity of received unique certificate number of the first vehicle and attributes by a camera that captures attributes which are visible, using image processing means. If the attributes are verified successfully, the second vehicle sends its unique certificate number to the first vehicle over a communication channel, along with a secret session key, which is valid for the current session only. Then the first vehicle verifies the authenticity of received unique certificate number of the second vehicle and attributes by a camera that captures attributes of the second vehicle which are visible, using signal processing means and both vehicles are allowed to securely exchange message or data using the secret session key.
68 Citations
6 Claims
-
1. ) A method for providing secure connection between vehicles over channels of a wireless communication network, comprising the steps of:
-
a) providing to each vehicle, a first unique pair of digitally signed public key and private key; b) providing to each vehicle, additional vehicle-related data being a visually static collection of attributes of said vehicle; c) for each vehicle, generating a unique certificate number; d) signing monolithic data consisting of said public key, said certificate number and said attributes by a trusted certificate generating authority; e) prior to wireless communication between a first vehicle and a second vehicle, performing a verification step during which; e1) said first vehicle sends its unique certificate to a second vehicle over a communication channel; e2) said second vehicle verifies the authenticity of received unique certificate of said first vehicle and attributes by a camera or by other visual capturing devices being capable of capturing attributes of said first vehicle which are visible, using image processing means; f) if said attributes are verified successfully, said second vehicle sends its unique certificate to said first vehicle over a communication channel, along with a secret session key, which is valid for the current session only; g) said first vehicle verifies the authenticity of received unique certificate of said second vehicle and attributes by a camera or by other visual capturing devices being capable of capturing attributes of said second vehicle which are visible, using signal processing means; and h) allowing both vehicles to securely exchange message or data using said secret session key. - View Dependent Claims (2, 3, 4, 5, 6)
-
Specification
-
- Resources
-
Current AssigneeLukasz Krzywiecki, Michael Segal, Nisha Panwar, Shlomi Dolev
-
Original AssigneeMichael Segal, Shlomi Dolev
-
InventorsDOLEV, Shlomi, PANWAR, Nisha, SEGAL, Michael, KRZYWIECKI, Lukasz
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current713/156
-
CPC Class CodesH04L 2209/84 VehiclesH04L 63/0823 using certificates cryptogr...H04L 9/3215 using a plurality of channe...H04L 9/3268 using certificate validatio...H04L 9/3278 using physically unclonable...H04W 12/04 Key management, e.g. using ...H04W 12/06 AuthenticationH04W 12/50 Secure pairing of devicesH04W 12/65 Environment-dependent, e.g....H04W 84/005 Moving wireless networks
