Securing electronic control unit code

US 8,321,933 B2
Filed: 11/14/2007
Issued: 11/27/2012
Est. Priority Date: 11/14/2007
Status: Active Grant

First Claim

Patent Images

1. A method for securing program code for an electronic control unit, comprising:

transmitting an order for the program code to a developer, the order including specifications and an authentication certificate and requesting the developer to develop the program code based on the specifications;

after the program code is developed by the developer, receiving the developed program code and a digital signature from the developer;

verifying the digital signature to determine whether the developer was an authorized source of the developed program code;

generating metadata identifying the authorized source of the developed program code;

embedding the metadata in the developed program code; and

verifying the developed program code to determine whether the developed program code is within the specifications of the order, wherein determining whether the developed program code is within the specifications of the order includes checking memory allocation parameters of the developed program code.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

Methods and systems are provided for securing electronic control unit code. In one implementation, a method is provided. According to the method, an order for the program code may be transmitted to a developer. The order may include specifications and an authentication key. The method may further include receiving the program code and the authentication certification from the developer and verifying the authentication certificate to determine whether the developer was an authorized source of the program code. The method may generate metadata identifying the authorized source of the program code and embed the metadata in the program code.

Citations

20 Claims

1. A method for securing program code for an electronic control unit, comprising:
- transmitting an order for the program code to a developer, the order including specifications and an authentication certificate and requesting the developer to develop the program code based on the specifications;
  
  after the program code is developed by the developer, receiving the developed program code and a digital signature from the developer;
  
  verifying the digital signature to determine whether the developer was an authorized source of the developed program code;
  
  generating metadata identifying the authorized source of the developed program code;
  
  embedding the metadata in the developed program code; and
  
  verifying the developed program code to determine whether the developed program code is within the specifications of the order, wherein determining whether the developed program code is within the specifications of the order includes checking memory allocation parameters of the developed program code.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The method of claim 1, wherein determining whether the developed program code is within the specifications of the order further includes checking whether the developed program code is within operating parameters of a machine.
  - 3. The method of claim 1, further comprising:
    - transmitting a message indicating that the developer has a revoked status.
  - 4. The method of claim 1, further comprising:
    - transmitting a message indicating that the developed program code has a revoked status.
  - 5. The method of claim 1, further comprising:
    - transmitting a message indicating that all program code associated with an employee number has a revoked status.
  - 6. The method of claim 1, further comprising generating metadata identifying industry specific properties of the developed program code.
  - 7. The method of claim 6, wherein the industry specific properties of the developed program code include an identification of a machine component.
  - 8. The method of claim 6, wherein the industry specific properties of the developed program code include an identification of a machine operating parameter.

9. A system for securing program code for an electronic control unit, comprising:
- a server, the server adapted to;
  
  transmit an order for the program code to a developer, the order including specifications and an authentication certificate and requesting the developer to develop the program code based on the specifications;
  
  after the program code is developed by the developer, receive the developed program code and a digital signature from the developer;
  
  verify the digital signature to determine whether the developer was an authorized source of the developed program code; and
  
  when the developer is verified as an authorized source of the developed program code;
  
  generate metadata identifying the authorized source of the developed program code;
  
  embed the metadata in the developed program code; and
  
  make the developed program code with the embedded metadata available for distribution over an electronic network; and
  
  transmit a message indicating at least one of that the developer has a revoked status, that the developed program code has a revoked status, or that all program code associated with an employee number has a revoked status.
- View Dependent Claims (10, 11, 12, 13, 14, 15, 19)
- - 10. The system of claim 9, the server further adapted to:
    - verify the developed program code to determine whether the developed program code is within the specifications of the order.
  - 11. The system of claim 10, wherein determining whether the developed program code is within the specifications of the order includes checking memory allocation parameters of the developed program code.
  - 12. The system of claim 10, wherein determining whether the developed program code is within the specifications of the order includes checking whether the developed program code is within operating parameters of a machine.
  - 13. The system of claim 9, the server further adapted to:
    - generate metadata identifying industry specific properties of the developed program code.
  - 14. The system of claim 13, wherein the industry specific properties of the developed program code include an identification of a machine component.
  - 15. The system of claim 13, wherein the industry specific properties of the developed program code include an identification of a machine operating parameter.
  - 19. The system of claim 10, wherein determining whether the developed program code is within the specifications of the order includes checking whether the developed program code is within operating parameters of a machine.

16. A method for securing program code for an electronic control unit, comprising:
- transmitting an order for the program code to a developer, the order including specifications and an authentication certificate and requesting the developer to develop the program code based on the specifications;
  
  after the program code is developed by the developer, receiving the developed program code and a digital signature from the developer;
  
  verifying the digital signature to determine whether the developer was an authorized source of the developed program code;
  
  when the developer is verified as an authorized source of the developed program code;
  
  generating first metadata identifying the authorized source of the developed program code;
  
  generate second metadata identifying industry specific properties of the developed program code, wherein the industry specific properties of the developed program code include at least one of an identification of a machine component or an identification of a machine operating parameter;
  
  embedding the first and second metadata in the developed program code; and
  
  distributing, over an electronic network, the developed program code with the embedded metadata to one or more terminals for loading to the electronic control units of one or more machines.
- View Dependent Claims (17, 18, 20)
- - 17. The method of claim 16, further comprising verifying the developed program code to determine whether the developed program code is within the specifications of the order.
  - 18. The method of claim 17, wherein determining whether the developed program code is within the specifications of the order includes checking memory allocation parameters of the developed program code.
  - 20. The method of claim 16, further comprising transmitting a message indicating at least one of that the developer has a revoked status, that the developed program code has a revoked status, or that all program code associated with an employee number has a revoked status.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Caterpillar Incorporated
Original Assignee
Caterpillar Incorporated
Inventors
Traenkenschuh, John L., Bierdeman, Paul W., Wagner, Todd
Primary Examiner(s)
Barron, Jr., Gilberto
Assistant Examiner(s)
Cribbs, Malcolm

Application Number

US11/984,178
Publication Number

US 20090126028A1
Time in Patent Office

1,840 Days
Field of Search

713156-158, 713/168, 713175-181, 713189-194, 717168-173, 726/10, 726 26- 33
US Class Current

726/22
CPC Class Codes

G06F 21/572 Secure firmware programming...

Securing electronic control unit code

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

20 Claims

Specification

Solutions

Use Cases

Quick Links

Securing electronic control unit code

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

20 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links