APPARATUS AND METHOD FOR PROTECTION OF CRITICAL EMBEDDED SYSTEM COMPONENTS VIA HARDWARE-ISOLATED SECURE ELEMENT-BASED MONITOR
First Claim
1. A secure element for providing hardware isolation of a mission critical subsystem, the secure element comprising:
- a memory; and
a processor coupled to the memory and an unsecure path, the processor configured to;
perform actuation operation received across the unsecure path that modifies the state of the mission critical subsystem;
perform a diagnostic operation received across the unsecure path that request state information of the mission critical subsystem;
store information used to determine which of the diagnostic operation and the actuation operation received across the unsecure path are performed; and
flash an execution image of an electronic control unit when the execution image of the electronic control unit is received across the unsecure path,wherein the secure element is coupled to the electronic control unit.
1 Assignment
0 Petitions
Accused Products
Abstract
An apparatus and method of a hardware isolated secure element protecting a plurality of mission critical subsystems are provided. The method includes performing an actuation operation received across an unsecure path that modifies the state of a mission critical subsystem, performing a diagnostic operation received across the unsecure path that requests state information of the mission critical subsystem, storing information used to determine which of the diagnostic operation and the actuation operation received across the unsecure path are performed, and flashing an execution image of an electronic control unit when the execution image of the electronic control unit is received across the unsecure path.
-
Citations
18 Claims
-
1. A secure element for providing hardware isolation of a mission critical subsystem, the secure element comprising:
-
a memory; and a processor coupled to the memory and an unsecure path, the processor configured to; perform actuation operation received across the unsecure path that modifies the state of the mission critical subsystem; perform a diagnostic operation received across the unsecure path that request state information of the mission critical subsystem; store information used to determine which of the diagnostic operation and the actuation operation received across the unsecure path are performed; and flash an execution image of an electronic control unit when the execution image of the electronic control unit is received across the unsecure path, wherein the secure element is coupled to the electronic control unit. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A method in a hardware isolated secure element for protecting a mission critical subsystem, the method comprising:
-
performing an actuation operation received across an unsecure path that modifies the state of mission critical subsystem; performing a diagnostic operation received across the unsecure path that request state information of the mission critical subsystem; storing information used to determine which of the diagnostic operation and the actuation operation received across the unsecure path are performed; and flashing an execution image of an electronic control unit when the execution image of the electronic control unit is received across the unsecure path. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17, 18)
-
Specification