Security device, vehicle authentication device, method and program
First Claim
Patent Images
1. A security device for use in a vehicle authenticating device which is mounted on a vehicle capable of running in accordance with engine startup information and which authenticates a user of the vehicle based on an electronic key device having electronic key data (K) stored therein, the security device comprising:
- key information storage device for storing an encrypted engine master key (E (EK)) obtained by encrypting an engine master key (EK) in accordance with the electronic key data (K);
certificate information storage device having an ID device certificate verification key (CK) to verify a certificate (C) in an ID device having a personal information for specifying an individual user, the certificate (C), and a user specific key (I) stored therein;
a device for verifying the certificate (C) input from the ID device by using the IC device certificate verification key (CK) in the certificate information storage device to confirm validity of the ID device;
a device for, after confirming the validity of the ID device, causing the ID device to verify user inputted authentication information by transmitting the user inputted authentication information to the ID device, the ID device verifying the user inputted authentication information based on the personal information;
a signature verification key storage device storing an electronic key data signature verification key (VMK) to verify a digital signature applied to an electronic key data (K);
an authentication device for, when a verification result by the ID device has been successfully obtained, authenticating the digital signature of the electronic key data (K) based on the electronic key data signature verification key (VMK), the electronic key data (K) inputting from the electronic key device;
a device for, when authentications of the digital signature of the electronic key data (K) have been successfully made, decrypting the encrypted engine master key (E (EK)), and then, obtaining an engine master key (EK), based on the electronic key data (K);
a device for producing the engine startup information by using the engine master key (EK); and
a device for outputting the obtained engine startup information.
5 Assignments
0 Petitions
Accused Products
Abstract
Apart from authentication of an electronic key, authentication of an ID card and authentication of user authentication information are executed. When all the authentications have been successfully made, engine startup information is produced. In this manner, even if electronic key data or an electronic key device has been copied, vehicle theft can be prevented.
24 Citations
11 Claims
-
1. A security device for use in a vehicle authenticating device which is mounted on a vehicle capable of running in accordance with engine startup information and which authenticates a user of the vehicle based on an electronic key device having electronic key data (K) stored therein, the security device comprising:
-
key information storage device for storing an encrypted engine master key (E (EK)) obtained by encrypting an engine master key (EK) in accordance with the electronic key data (K); certificate information storage device having an ID device certificate verification key (CK) to verify a certificate (C) in an ID device having a personal information for specifying an individual user, the certificate (C), and a user specific key (I) stored therein; a device for verifying the certificate (C) input from the ID device by using the IC device certificate verification key (CK) in the certificate information storage device to confirm validity of the ID device; a device for, after confirming the validity of the ID device, causing the ID device to verify user inputted authentication information by transmitting the user inputted authentication information to the ID device, the ID device verifying the user inputted authentication information based on the personal information; a signature verification key storage device storing an electronic key data signature verification key (VMK) to verify a digital signature applied to an electronic key data (K); an authentication device for, when a verification result by the ID device has been successfully obtained, authenticating the digital signature of the electronic key data (K) based on the electronic key data signature verification key (VMK), the electronic key data (K) inputting from the electronic key device; a device for, when authentications of the digital signature of the electronic key data (K) have been successfully made, decrypting the encrypted engine master key (E (EK)), and then, obtaining an engine master key (EK), based on the electronic key data (K); a device for producing the engine startup information by using the engine master key (EK); and a device for outputting the obtained engine startup information. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A vehicle authenticating method for use in a vehicle authenticating device which is mounted on a vehicle capable of running in accordance with engine startup information and which authenticates a user of the vehicle based on an electronic key device having electronic key data (K) stored therein, the method comprising:
-
storing an encrypted engine master key (E (EK)) obtained by encrypting an engine master key (EK) in accordance with the electronic key data (K); storing in a memory an ID device certificate verification key (CK) to verify a certificate (C) in an ID device having a personal information for specifying an individual user, the certificate (C), and a user specific key (I); verifying the certificate (C) input from the ID device by using an IC device certificate verification key (CK) in the memory to confirm validity of the ID device; after confirming the validity of the ID device, causing the ID device to verify a user inputted authentication information by transmitting the user inputted authentication information to the ID device, the ID device verifying the user inputted authentication information based on the personal information; storing in the memory an electronic key data signature verification key (VMK) to verify a digital signature applied to an electronic key data (K); when a verification result by the ID device has been successfully obtained, authenticating the digital signature of the electronic key data (K) based on the electronic key data signature verification key (VMK), the electronic key data (K) inputting from the electronic key device; when authentication of the digital signature of the electronic key data (K) has been successfully made, decrypting the encrypted engine master key (E (EK)), and then, obtaining an engine master key (EK), based on the electronic key data (K); producing the engine startup information by using the engine master key (EK); and outputting the obtained engine startup information.
-
-
11. A program for use in a computer of a vehicle authenticating device which is mounted on a vehicle capable of running in accordance with engine startup information and which authenticates a user of the vehicle based on an electronic key device having electronic key data (K) stored therein, the program stored in the vehicle authenticating device, the program comprising:
-
a first program code for causing the computer to execute a processing operation of storing in a memory an encrypted engine master key (E (EK)) produced when an engine master key (EK) is encrypted in accordance with the electronic key data (K); a second program code for causing the computer to execute a processing operation of storing in a memory an ID device certificate verification key (CK) to verify a certificate (C) in an ID device having a personal information for specifying an individual user, the certificate, and a user specific key (I); a third program code for causing the computer to execute a processing operation of verifying the certificate (C) input from the ID device by using an ID device certificate verification key (CK) in the memory to confirm validity of the ID device; a fourth program code for causing the computer to execute a processing operation of, after confirming the validity of the ID device, causing the ID device to verify user inputted authentication information by transmitting the user inputted authentication information to the ID device, the ID device verifying the user inputted authentication information based on the personal information; a fifth program code for causing the computer to execute a processing operation of storing in the memory an electronic key data signature verification key (VMK) to verify a digital signature applied to an electronic key data (K); a sixth program code for causing the computer to execute a processing operation of, when a verification result by the ID device has been successfully obtained, authenticating the digital signature of the electronic key data (K) based on the electronic key data signature verification key (VMK), the electronic key data (K) inputting from the electronic key device; a seventh program code for causing the computer to execute a processing operation of, when authentication of the digital signature of the electronic key data (K) has been successfully made, decrypting the encrypted engine master key (E (EK)), and then, obtaining an engine master key (EK), based on the electronic key data (K); an eighth program code for causing the computer to execute a processing operation of producing the engine startup information by using the engine master key (EK); and a ninth program code for causing the computer to execute a processing operation of outputting the obtained engine startup information.
-
Specification