Data transmission method, and tachograph system

US 8,484,475 B2
Filed: 01/07/2009
Issued: 07/09/2013
Est. Priority Date: 01/30/2008
Status: Active Grant

First Claim

Patent Images

1. A data transmission method for a tachograph system for transmission of digital messages between a velocity transmitter and a recording unit each having a respective key pair with a public key and a private key and a certificate derived from the respective key pair, the method comprising:

transmitting the velocity transmitter public key and the velocity transmitter certificate from the velocity transmitter to the recording unit;

transmitting the recording unit public key and the recording unit certificate from the recording unit to the velocity transmitter;

checking the velocity transmitter public key and the velocity transmitter certificate by the recording unit;

checking the recording unit public key and the recording unit certificate by the velocity transmitter;

capturing sensor data by the velocity transmitter;

producing a digital message by the velocity transmitter from the sensor data;

producing authentication information item for the digital message by the velocity transmitter based on its key pair;

transmitting the message and the authentication information item from the velocity transmitter to the recording unit; and

processing the message in the recording unit based a validity of the authentication information item as checked by the recording unit.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In a data transmission method for a tachograph system, digital messages are transmitted between a speed transmitter (MS) and a recording unit (RU). The digital messages contain a pair of keys including a public key (KMP, KRP) and a private key (KMS, KRS), as well as a certificate (ZM, ZR) derived from the respective pair of keys. The public keys (KMP, KRP) and the certificates (ZM, ZR) are mutually verified between the recording unit (RU) and the speed transmitter (MS). If the verification is positive, the speed transmitter (MS) detects sensor data, and a digital message is generated therefrom. In addition, the speed transmitter (MS) generates authentication data for the message in accordance with the pair of keys (KMP, KMS) thereof. The message and the authentication data are transmitted to the recording unit and are processed there in accordance with a validity of the authentication data verified by the recording unit (RU).

28 Citations

View as Search Results

15 Claims

1. A data transmission method for a tachograph system for transmission of digital messages between a velocity transmitter and a recording unit each having a respective key pair with a public key and a private key and a certificate derived from the respective key pair, the method comprising:
- transmitting the velocity transmitter public key and the velocity transmitter certificate from the velocity transmitter to the recording unit;
  
  transmitting the recording unit public key and the recording unit certificate from the recording unit to the velocity transmitter;
  
  checking the velocity transmitter public key and the velocity transmitter certificate by the recording unit;
  
  checking the recording unit public key and the recording unit certificate by the velocity transmitter;
  
  capturing sensor data by the velocity transmitter;
  
  producing a digital message by the velocity transmitter from the sensor data;
  
  producing authentication information item for the digital message by the velocity transmitter based on its key pair;
  
  transmitting the message and the authentication information item from the velocity transmitter to the recording unit; and
  
  processing the message in the recording unit based a validity of the authentication information item as checked by the recording unit.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The data transmission method as claimed in claim 1, wherein the respective key pairs of the recording unit and the velocity transmitter are based on an elliptic curve cryptography system.
  - 3. The data transmission method as claimed in claim 2, wherein the respective certificates of the recording unit and of the velocity transmitter are produced by a certification authority known to the recording unit and to the velocity transmitter.
  - 4. The data transmission method as claimed in claim 1, wherein the respective certificates of the recording unit and the velocity transmitter are produced by a certification authority known to both the recording unit and the velocity transmitter.
  - 5. The data transmission method as claimed in claim 1, wherein the production of the authentication information item comprises the message being signed with the velocity transmitter private key.
  - 6. The data transmission method as claimed in claim 5, wherein the validity of the authentication information item is checked with the velocity transmitter public key.
  - 7. The data transmission method as claimed in claim 1, further comprising:
    - transmitting a challenge from the recording unit to the velocity transmitter;
      
      ascertaining a response transmitted from the velocity transmitter to the recording unit from the challenge by the velocity transmitter with its private key; and
      
      ascertaining a validity of the response by the recording unit with the velocity transmitter public key;
      
      wherein the processing of the message is dependent on the validity of the ascertained response.
  - 8. The data transmission method as claimed in claim 1, further comprising producing a shared session key by the recording unit and the velocity transmitter using their respective key pairs for producing the authentication information item.
  - 9. The data transmission method as claimed in claim 8, wherein the validity of the authentication information item is checked with the session key.
  - 10. The data transmission method as claimed in claim 9, further comprisingtransmitting a challenge from the recording unit to the velocity transmitter;
    - ascertaining a response by the velocity transmitter from the challenge with the session key transmitted from the velocity transmitter to the recording unit; and
      
      checking a validity of the ascertained response is by the recording unit with the session key,wherein and the processing of the message is dependent on the validity of the ascertained response.
  - 11. The data transmission method as claimed in claim 8, in which the production of the session key comprises:
    - producing a first random number by the recording unit;
      
      signing, by the recording unit, the first random number with the recording unit private key;
      
      encrypting the signed first random number with the velocity transmitter public key by the recording unit;
      
      transmitting the encrypted and signed first random number from the recording unit to the velocity transmitter;
      
      decrypting the encrypted and signed first random number by the velocity transmitter;
      
      checking of the signature of the signed first random number with the recording unit public key by the velocity transmitter; and
      
      derivation of the shared session key from the first random number on the basis of a validity of the checked signature.
  - 12. The data transmission method as claimed in claim 8, wherein the production of the session key comprises:
    - producing a second random number by the velocity transmitter;
      
      signing the second random number with the velocity transmitter private key by the velocity transmitter;
      
      encrypting the signed second random number with the recording unit public key by the velocity transmitter;
      
      transmitting the encrypted and signed second random number from the velocity transmitter to the recording unit;
      
      decrypting the encrypted and signed second random number with the recording unit private key by the recording unit;
      
      checking the signature of the signed second random number with the velocity transmitter public key by the recording unit; and
      
      deriving the shared session key from the second random number based on the validity of the checked signature.
  - 13. The data transmission method as claimed in claim 8, wherein the production of the authentication information item is based on a symmetric cryptographic method.

14. A tachograph system comprising a velocity transmitter and a recording unit each having a respective key pair comprising a public key and a private key and a certificate derived from the respective key pair to reciprocally authenticate themselves by their public keys and their certificates, whereinthe velocity transmitter configured to:
- check the public key and the certificate of the recording unit;
  
  capture sensor data;
  
  produce a digital message from the sensor data and an authentication information item for the message on the basis of the key pair of said velocity transmitter, andtransmit the message with the authentication information item to the recording unit; and
  
  the recording unit configured to;
  
  check the public key and the certificate of the velocity transmitter;
  
  check the authentication information item; and
  
  process the message on the basis of a validity of the authentication information item.
- View Dependent Claims (15)
- - 15. The tachograph system as claimed in claim 14, wherein the key pairs of the recording unit and of the velocity transmitter are based on an elliptic curve cryptography system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Continental Automotive GmbH (Continental AG)
Original Assignee
Continental Automotive GmbH (Continental AG)
Inventors
Grill, Thomas, Hess, Erwin, Meyer, Bernd, Plankenhorn, Horst, Bhler, Detlef
Primary Examiner(s)
REVAK, CHRISTOPHER A

Application Number

US12/865,556
Publication Number

US 20100322423A1
Time in Patent Office

1,644 Days
Field of Search

701/35, 701/400, 701/517, 713/193, 713/194
US Class Current

713/175
CPC Class Codes

G01P 1/122   Speed recorders

H04L 2209/805   Lightweight hardware, e.g. ...

H04L 2209/84   Vehicles

H04L 63/0823   using certificates cryptogr...

H04L 63/12   Applying verification of th...

H04L 9/3263   involving certificates, e.g...

H04L 9/3271   using challenge-response

Data transmission method, and tachograph system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

28 Citations

15 Claims

Specification

Solutions

Use Cases

Quick Links

Data transmission method, and tachograph system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

28 Citations

15 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links