MANAGEMENT SYSTEM, KEY GENERATION DEVICE, IN-VEHICLE COMPUTER, MANAGEMENT METHOD, AND COMPUTER PROGRAM
First Claim
1. A management system comprising:
- a key generation device; and
an in-vehicle computer which is installed in a vehicle,wherein the key generation device includesa vehicle interface configured to transmit and receive data to and from the vehicle,a key generation unit configured to generate a first key and a second key which are stored in the in-vehicle computer,an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, and encrypts the second key with the first key to generate second encrypted data,an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key, anda verification unit configured to verify a measured value received from the vehicle through the vehicle interface on the basis of the expected value,wherein the first encrypted data and the second encrypted data are transmitted to the vehicle through the vehicle interface, andwherein the in-vehicle computer includesan interface unit configure to transmit and receive data to and from a device outside of the in-vehicle computer,an cryptographic processing unit configured to decrypt the first encrypted data received from the key generation device through the interface unit with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, and decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, anda measured value calculation unit configure to calculate the measured value of the stored data which is stored in advance in the in-vehicle computer using the acquired second key,wherein the measured value is transmitted to the key generation device through the interface unit.
1 Assignment
0 Petitions
Accused Products
Abstract
Provided are a key generation device and an in-vehicle computer which is installed in a vehicle. The key generation device includes a vehicle interface, a key generation unit that generates first and second keys, an cryptographic processing unit that encrypts the first key with an initial key to generate first encrypted data and encrypts the second key with the first key to generate second encrypted data, an expected value calculation unit that calculates an expected value of stored data using the second key, and a verification unit that verifies a received measured value on the basis of the expected value, and the key generation device transmits the first and second encrypted data to the vehicle. The in-vehicle computer includes an interface unit, an cryptographic processing unit that decrypts the received first encrypted data, and decrypts the received second encrypted data, and a measured value calculation unit.
-
Citations
25 Claims
-
1. A management system comprising:
-
a key generation device; and an in-vehicle computer which is installed in a vehicle, wherein the key generation device includes a vehicle interface configured to transmit and receive data to and from the vehicle, a key generation unit configured to generate a first key and a second key which are stored in the in-vehicle computer, an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, and encrypts the second key with the first key to generate second encrypted data, an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key, and a verification unit configured to verify a measured value received from the vehicle through the vehicle interface on the basis of the expected value, wherein the first encrypted data and the second encrypted data are transmitted to the vehicle through the vehicle interface, and wherein the in-vehicle computer includes an interface unit configure to transmit and receive data to and from a device outside of the in-vehicle computer, an cryptographic processing unit configured to decrypt the first encrypted data received from the key generation device through the interface unit with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, and decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, and a measured value calculation unit configure to calculate the measured value of the stored data which is stored in advance in the in-vehicle computer using the acquired second key, wherein the measured value is transmitted to the key generation device through the interface unit. - View Dependent Claims (2)
-
-
3. A management system comprising:
-
a key generation device; and an in-vehicle computer which is installed in a vehicle, wherein the key generation device includes a vehicle interface configured to transmit and receive data to and from the vehicle, a key generation unit configured to generate a first key and a second key which are stored in the in-vehicle computer, an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key, and an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypts the second key with the first key to generate second encrypted data, and encrypts the expected value with the first key to generate fourth encrypted data, wherein the first encrypted data, the second encrypted data and the fourth encrypted data are transmitted to the vehicle through the vehicle interface, and wherein the in-vehicle computer includes an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer, an cryptographic processing unit configured to decrypt the first encrypted data received from the key generation device through the interface unit with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, decrypts the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, and decrypts the fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the expected value, and a measurement unit configured to calculate a measured value of the stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verifies the measured value on the basis of the acquired expected value, wherein a verification result for the measured value is transmitted through the interface unit. - View Dependent Claims (4)
-
-
5. A management system comprising:
-
a key generation device; and an in-vehicle computer which is installed in a vehicle, wherein the key generation device includes a vehicle interface configured to transmit and receive data to and from the vehicle, a key generation unit configured to generate a first key and a second key which are stored in the in-vehicle computer, an expected value calculation unit configure to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key, and an cryptographic processing unit configure to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypts the second key with the first key to generate second encrypted data, and encrypts the expected value with the first key to generate fourth encrypted data, wherein a verification value, the first encrypted data, the second encrypted data and the fourth encrypted data are transmitted to the vehicle through the vehicle interface, wherein the in-vehicle computer includes an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer, an cryptographic processing unit configure to decrypt the first encrypted data received from the key generation device through the interface unit with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, and decrypt the fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the expected value, and a measurement unit configured to calculate a measured value of the stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verify the measured value on the basis of the acquired expected value, wherein a verification result for the measured value is transmitted through the interface unit, wherein the in-vehicle computer transmits the verification result which is inclusive of the verification value received from the key generation device through the interface unit in a case where the verification of the measured value has been passed, and transmits the verification result which is not inclusive of the verification value received from the key generation device through the interface unit in a case where the verification of the measured value has failed, and wherein the key generation device further includes a verification unit configured to verify a verification value included in the verification result received from the vehicle through the vehicle interface on the basis of the verification value supplied to the vehicle. - View Dependent Claims (6)
-
-
7. A key generation device comprising:
-
a vehicle interface that transmits and receives data to and from a vehicle; a key generation unit that generates a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, and encrypt the second key with the first key to generate second encrypted data; an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; and a verification unit configured to verify a measured value received from the vehicle through the vehicle interface on the basis of the expected value, wherein the first encrypted data and the second encrypted data are transmitted to the vehicle through the vehicle interface.
-
-
8. An in-vehicle computer which is installed in a vehicle, comprising:
-
an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer, an cryptographic processing unit configured to decrypt first encrypted data received from a key generation device through the interface unit with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, and decrypt second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key; and a measured value calculation unit configured to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, wherein the measured value is transmitted to the key generation device through the interface unit.
-
-
9. A key generation device comprising:
-
a vehicle interface configured to transmit and receive data to and from a vehicle; a key generation unit configured to generate a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; and an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypt the second key with the first key to generate second encrypted data, and encrypt the expected value with the first key to generate fourth encrypted data, wherein the first encrypted data, the second encrypted data and the fourth encrypted data are transmitted to the vehicle through the vehicle interface.
-
-
10. An in-vehicle computer which is installed in a vehicle, comprising:
-
an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer; an cryptographic processing unit configured to decrypt first encrypted data received from a key generation device through the interface unit with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, decrypt second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key, and decrypt fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire an expected value; and a measurement unit configured to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verify the measured value on the basis of the acquired expected value, wherein a verification result for the measured value is transmitted through the interface unit.
-
-
11. A key generation device comprising:
-
a vehicle interface configured to transmit and receive data to and from a vehicle; a key generation unit configured to generate a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; an expected value calculation unit configured to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; and an cryptographic processing unit configured to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypt the second key with the first key to generate second encrypted data, and encrypt the expected value with the first key to generate fourth encrypted data, wherein the key generation device is a key generation device configured to transmit a verification value, the first encrypted data, the second encrypted data and the fourth encrypted data to the vehicle through the vehicle interface, and the key generation device further includes a verification unit configured to verify a verification value received from the vehicle through the vehicle interface on the basis of the verification value supplied to the vehicle.
-
-
12. An in-vehicle computer which is installed in a vehicle, comprising:
-
an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer, an cryptographic processing unit configured to decrypt first encrypted data received from a key generation device through the interface unit with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, decrypt second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key, and decrypt fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire an expected value; and a measurement unit configured to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verify the measured value on the basis of the acquired expected value, wherein a verification result for the measured value is transmitted through the interface unit, and the in-vehicle computer transmits the verification result which is inclusive of a verification value received from the key generation device through the interface unit in a case where the verification of the measured value has been passed, and transmits the verification result which is not inclusive of the verification value received from the key generation device through the interface unit in a case where the verification of the measured value has failed.
-
-
13. A method of managing a management system including a key generation device and an in-vehicle computer which is installed in a vehicle, the method comprising:
-
causing the key generation device to generate a first key and a second key which are stored in the in-vehicle computer; causing the key generation device to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, and to encrypt the second key with the first key to generate second encrypted data; causing the in-vehicle computer to decrypt the first encrypted data received from the key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, and to decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key; causing the in-vehicle computer to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key; causing the in-vehicle computer to transmit the measured value to the key generation device through the interface unit; causing the key generation device to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; and causing the key generation device to verify the measured value received from the vehicle through a vehicle interface that transmits and receives data to and from the vehicle on the basis of the expected value.
-
-
14. A method of managing a management system including a key generation device and an in-vehicle computer which is installed in a vehicle, the method comprising:
-
causing the key generation device to generate a first key and a second key which are stored in the in-vehicle computer; causing the key generation device to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; causing the key generation device to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, to encrypt the second key with the first key to generate second encrypted data, and to encrypt the expected value with the first key to generate fourth encrypted data; causing the in-vehicle computer to decrypt the first encrypted data received from the key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, to decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, and to decrypt the fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the expected value; causing the in-vehicle computer to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verify the measured value on the basis of the acquired expected value; and causing the in-vehicle computer to transmit a verification result for the measured value through the interface unit.
-
-
15. A method of managing a management system including a key generation device and an in-vehicle computer which is installed in a vehicle, the method comprising:
-
causing the key generation device to generate a first key and a second key which are stored in the in-vehicle computer; causing the key generation device to calculate an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; causing the key generation device to encrypt the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, to encrypt the second key with the first key to generate second encrypted data, and to encrypt the expected value with the first key to generate fourth encrypted data; causing the in-vehicle computer to decrypt the first encrypted data received from the key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with the initial key which is stored in advance in the in-vehicle computer to acquire the first key, to decrypt the second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the second key, and to decrypt the fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire the expected value; causing the in-vehicle computer to calculate a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verify the measured value on the basis of the acquired expected value; causing the in-vehicle computer to generate a verification result for the measured value which is inclusive of a verification value received from the key generation device through the interface unit in a case where the verification of the measured value has been passed, and to generate the verification result which is not inclusive of the verification value received from the key generation device through the interface unit in a case where the verification of the measured value has failed; causing the in-vehicle computer to transmit the verification result through the interface unit; and causing the key generation device to verify a verification value included in the verification result received from the vehicle through a vehicle interface on the basis of the verification value supplied to the vehicle.
-
-
16. A non-transitory computer-readable recording medium storing a computer program causing a computer of a key generation device having a vehicle interface that transmits and receives data to and from a vehicle to execute the following processes of:
-
generating a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; encrypting the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, and encrypting the second key with the first key to generate second encrypted data; calculating an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; verifying a measured value received from the vehicle through the vehicle interface on the basis of the expected value; and transmitting the first encrypted data and the second encrypted data to the vehicle through the vehicle interface.
-
-
17. A non-transitory computer-readable recording medium storing a computer program causing an in-vehicle computer which is installed in a vehicle to execute the following processes of:
-
decrypting first encrypted data received from a key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, and decrypting second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key; calculating a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key; and transmitting the measured value to the key generation device through the interface unit.
-
-
18. A non-transitory computer-readable recording medium storing a computer program causing a computer of a key generation device having a vehicle interface that transmits and receives data to and from a vehicle to execute the following processes of:
-
generating a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; calculating an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; encrypting the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypting the second key with the first key to generate second encrypted data, and encrypting the expected value with the first key to generate fourth encrypted data; and transmitting the first encrypted data, the second encrypted data and the fourth encrypted data to the vehicle through the vehicle interface.
-
-
19. A non-transitory computer-readable recording medium storing a computer program causing an in-vehicle computer which is installed in a vehicle to execute the following processes of:
-
decrypting first encrypted data received from a key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, decrypting second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key, and decrypting fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire an expected value; calculating a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verifying the measured value on the basis of the acquired expected value; and transmitting a verification result for the measured value through the interface unit.
-
-
20. A non-transitory computer-readable recording medium storing a computer program causing a computer of a key generation device having a vehicle interface that transmits and receives data to and from a vehicle to execute the following processes of:
-
generating a first key and a second key which are stored in an in-vehicle computer installed in the vehicle; calculating an expected value of stored data which is stored in advance in the in-vehicle computer using the second key; encrypting the first key with an initial key which is stored in advance in the in-vehicle computer to generate first encrypted data, encrypting the second key with the first key to generate second encrypted data, and encrypting the expected value with the first key to generate fourth encrypted data; transmitting a verification value, the first encrypted data, the second encrypted data and the fourth encrypted data to the vehicle through the vehicle interface; and verifying a verification value received from the vehicle through the vehicle interface on the basis of the verification value supplied to the vehicle.
-
-
21. A non-transitory computer-readable recording medium storing a computer program causing an in-vehicle computer which is installed in a vehicle to execute the following processes of:
-
decrypting first encrypted data received from a key generation device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer with an initial key which is stored in advance in the in-vehicle computer to acquire a first key, decrypting second encrypted data received from the key generation device through the interface unit with the acquired first key to acquire a second key, and decrypting fourth encrypted data received from the key generation device through the interface unit with the acquired first key to acquire an expected value; calculating a measured value of stored data which is stored in advance in the in-vehicle computer using the acquired second key, and verifying the measured value on the basis of the acquired expected value; and transmitting a verification result for the measured value through the interface unit, wherein in the transmission, the verification result which is inclusive of a verification value received from the key generation device through the interface unit is transmitted in a case where the verification of the measured value has been passed, and the verification result which is not inclusive of the verification value received from the key generation device through the interface unit is transmitted in a case where the verification of the measured value has failed.
-
-
22. A management system comprising:
-
a data providing device; and an in-vehicle computer which is installed in a vehicle, wherein the data providing device includes a vehicle interface configured to transmit and receive data to and from the vehicle, and an expected value calculation unit configured to calculate an expected value of applied data which is applied to the in-vehicle computer, wherein the applied data and the expected value are transmitted to the vehicle through the vehicle interface, and wherein the in-vehicle computer includes an interface unit configured to transmit and receive data to and from a device outside of the in-vehicle computer, and a measurement unit configured to calculate a measured value of the applied data received from the data providing device through the interface unit, and verify the measured value on the basis of the expected value received from the data providing device through the interface unit, wherein a verification result for the measured value is transmitted to the data providing device through the interface unit.
-
-
23. A method of managing a management system including a data providing device and an in-vehicle computer which is installed in a vehicle, the method comprising:
-
causing the data providing device to calculate an expected value of applied data which is applied to the in-vehicle computer; causing the data providing device to transmit the applied data and the expected value to the vehicle through a vehicle interface that transmits and receives data to and from the vehicle; causing the in-vehicle computer to calculate a measured value of the applied data received from the data providing device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer, and to verify the measured value on the basis of the expected value received from the data providing device through the interface unit; and causing the in-vehicle computer to transmit a verification result for the measured value to the data providing device through the interface unit.
-
-
24. A non-transitory computer-readable recording medium storing a computer program causing a computer of a data providing device including a vehicle interface that transmits and receives data to and from a vehicle to execute the following processes of:
-
calculating an expected value of applied data which is applied to an in-vehicle computer which is installed in the vehicle; transmitting the applied data and the expected value to the vehicle through the vehicle interface; and receiving a verification result for a measured value of the applied data from the vehicle through the vehicle interface.
-
-
25. A non-transitory computer-readable recording medium storing a computer program causing an in-vehicle computer which is installed in a vehicle to execute the following processes of:
-
calculating a measured value of applied data received from a data providing device through an interface unit that transmits and receives data to and from a device outside of the in-vehicle computer, and verifying the measured value on the basis of an expected value received from the data providing device through the interface unit; and transmitting a verification result for the measured value to the data providing device through the interface unit.
-
Specification