Secure telematics

US 8,719,592 B2
Filed: 01/22/2008
Issued: 05/06/2014
Est. Priority Date: 01/28/2003
Status: Expired due to Fees

First Claim

Patent Images

1. A method of providing access to resources, comprising:

receiving at a security controller located within a vehicle a request to access a first proprietary resource located within the vehicle;

determining by the security controller a plurality of factors indicating a degree of risk associated with the request;

establishing security conditions that are required to be met in order to grant the request to access the first proprietary resource, wherein the security conditions include receiving location information by the security controller indicating a location of the vehicle when the request to access the first proprietary resource is received, and wherein the location information includes trusted time and location information;

providing the trusted time and location information from a second proprietary resource located within the vehicle to the security controller;

in response to receiving the trusted time and location information and verifying by the security controller that the security conditions have been met, the security controller granting the requested access to the first proprietary resource;

providing first information from the first proprietary resource.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A telematics system that includes a security controller is provided. The security controller is responsible for ensuring secure access to and controlled use of resources in the vehicle. The security measures relied on by the security controller can be based on digital certificates that grant rights to certificate holders, e.g., application developers. In the case in which applications are to be used with vehicle resources, procedures are implemented to make sure that certified applications do not jeopardize vehicle resources'"'"' security and vehicle users'"'"' safety. Relationships among interested entities are established to promote and support secure vehicle resource access and usage. The entities can include vehicle makers, communication service providers, communication apparatus vendors, vehicle subsystem suppliers, application developers, as well as vehicle owners/users. At least some of the entities can be members of a federation established to enhance and facilitate secure access and usage of vehicle resources.

Citations

25 Claims

1. A method of providing access to resources, comprising:
- receiving at a security controller located within a vehicle a request to access a first proprietary resource located within the vehicle;
  
  determining by the security controller a plurality of factors indicating a degree of risk associated with the request;
  
  establishing security conditions that are required to be met in order to grant the request to access the first proprietary resource, wherein the security conditions include receiving location information by the security controller indicating a location of the vehicle when the request to access the first proprietary resource is received, and wherein the location information includes trusted time and location information;
  
  providing the trusted time and location information from a second proprietary resource located within the vehicle to the security controller;
  
  in response to receiving the trusted time and location information and verifying by the security controller that the security conditions have been met, the security controller granting the requested access to the first proprietary resource;
  
  providing first information from the first proprietary resource.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1,wherein the second proprietary resource is a GPS receiver, and wherein the security conditions include geographic limitations.
  - 3. The method of claim 1, further comprising:
    - receiving a query request from the security controller at a policy decision engine, wherein the policy decision engine is operable to act on the query request;
      
      in response to a request from the policy decision engine comprising a request for payment credentials, providing to the policy decision engine payment credentials from a credential repository;
      
      placing the security controller and a vendor in communication with one another using a communication device, wherein the vendor is provided with the security credentials returned by the credential repository.
  - 4. The method of claim 3, wherein the communication device comprises a wireless communication device, and wherein the security controller, the policy decision engine, and the communication device are located within the vehicle.
  - 5. The method of claim 3, further comprising:
    - presenting a payment request to a user using a human interface, wherein the human interface is operable to receive at least one of the payment request and approval by the user of the payment request.
  - 6. The method of claim 3, wherein receiving a payment request includes receiving user identification information.
  - 7. The method of claim 6, wherein the user identification information includes biometric information.
  - 8. The method of claim 2, wherein the GPS receiver is integral to the security controller.
  - 9. The method of claim 1, wherein the vehicle resource is located within the vehicle.
  - 10. The method of claim 1, further comprising:
    - after granting access to the first and second proprietary resources, the security controller monitoring activity involving the first and second proprietary resources to ensure that the security conditions continue to be met.

11. A communication system, comprising:
- a wireless communication device;
  
  a first proprietary resource, wherein a first entity holds rights to the first proprietary resource;
  
  a second proprietary resource, wherein a second entity holds rights to the second proprietary resource, and wherein the second proprietary resource provides trusted vehicle location information;
  
  a security controller, wherein the wireless communication device, the first proprietary resource, the second proprietary resource, and the security controller located within a vehicle are in communication with one another, wherein the security controller is operable to monitor communications between the wireless communication device, the first proprietary resource, and the second proprietary resource, wherein the security controller operates so that only communications that are authenticated by the security controller are allowed between the wireless communication device and the first proprietary resource and between the wireless communication device and the second proprietary resource, and wherein at least some communications are authenticated only when the vehicle location information indicates that the vehicle is in an authorized location.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
- - 12. The system of claim 11, wherein the security controller controls use of the first proprietary resource utilizing certificate information that includes stored certificate information accessible by the security controller that relates to approval of use of the first proprietary resource by a holder of a first certificate.
  - 13. The system of claim 12, wherein approval of use of the first proprietary resource by the holder of at least a first certificate involves at least the first entity having proprietary rights associated with the first proprietary resource, and wherein the proprietary rights are evidenced by the first certificate.
  - 14. The system of claim 11, wherein the second proprietary resource includes a global positioning system (GPS) receiver associated with the security controller, wherein approval of use of the first proprietary resource involves determining a location of at least one of the wireless communication device, the first proprietary resource, the second proprietary resource, and the security controller using location information from the GPS receiver at the time the security controller performs authentication with respect to a request for use of the first proprietary resource.
  - 15. The system of claim 11, wherein the first proprietary resource is at least one of:
    - a first vehicle bus, a first vehicle device, a first interface, a first subsystem, a first storage memory, a first application, first connectivity hardware, first connectivity software, and a first communication device.
  - 16. The system of claim 15, wherein the first proprietary resource is a first subsystem, and wherein the first subsystem includes at least one of:
    - an electronic control unit, a navigational global positioning system, an inflator subsystem, a personal digital assistant, a laptop computer, a vehicle monitoring system, and an accident and emergency notification alarm.
  - 17. The system of claim 15, wherein the first proprietary resource is a first application, and wherein the first application includes at least one of an application related to:
    - entertainment delivered to the vehicle, data gathering from the vehicle, educational information delivered to the vehicle, information sent to the vehicle for use by a subsystem, information sent to the vehicle for use by a device.
  - 18. The system of claim 17, wherein the first application is further related to at least one of:
    - a security service, a multi-user service, a vehicle to vehicle communication service, a geographical service, a regulatory service, a communication service, and a commerce service.
  - 19. The system of claim 15, wherein the wireless communication device is a cellular telephone.

20. A method for controlling utilization of resources in a vehicle, comprising:
- receiving by a wireless communication device located in the vehicle first information, wherein the first information includes vehicle location information;
  
  authenticating the first information by a security controller located in the vehicle;
  
  in response to authenticating the first information, passing the first information to a first proprietary resource, wherein the first proprietary resource is located within the vehicle, and wherein rights in the first proprietary resource are held by a first entity;
  
  generating in the first proprietary resource located in the vehicle second information;
  
  in response to determining from the vehicle location information that the vehicle is in an authorized location, authenticating the second information by the security controller;
  
  in response to authenticating the second information, passing the second information to the wireless communication device for transmission.
- View Dependent Claims (21, 22, 23, 24, 25)
- - 21. The method of claim 20, wherein the first information includes a first command.
  - 22. The method of claim 21, wherein the first information includes a second command, the method further comprising:
    - in response to authenticating the first information, passing the second command to a second proprietary resource, wherein the second proprietary resource is located within the vehicle, and wherein rights in the second proprietary resource are held by a second entity;
      
      generating in the second proprietary resource located in the vehicle third information;
      
      passing the third information to the wireless communication device for transmission.
  - 23. The method of claim 20, wherein the first proprietary resource is at least a first one of a vehicle bus, a vehicle device, an interface, a subsystem, storage memory, an application executed in the vehicle, connectivity hardware, connectivity software, and a communication device.
  - 24. The method of claim 23, further comprising:
    - displaying at least a portion of at least one of the first information and the second information on a third proprietary resource in the vehicle.
  - 25. The method of claim 22, wherein the first proprietary resource is a global positioning system, and wherein the second proprietary resource is a vehicle electronic control unit.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
CyberCare, Incorporated
Original Assignee
Cellport Systems Incorporated
Inventors
Kennedy, Patrick J., Fuchs, Axel, Spaur, Charles W.
Primary Examiner(s)
Abrishamkar, Kaveh

Application Number

US12/017,467
Publication Number

US 20080148374A1
Time in Patent Office

2,296 Days
Field of Search

713/168, 380/270
US Class Current

713/193
CPC Class Codes

B60R 2325/10   Communication protocols, co...

B60R 2325/101   Bluetooth

B60R 2325/202   Personal digital assistant ...

B60R 2325/205   Mobile phones

B60R 25/01   operating on vehicle system...

B60R 25/04   operating on the propulsion...

B60R 25/1001   Alarm systems associated wi...

B60R 25/20   Means to switch the anti-th...

B60R 25/209   Remote starting of engine

B60R 25/241   whereby access privileges a...

B60R 25/25   using biometry

B60R 25/252   Fingerprint recognition

B60R 25/255   Eye recognition

B60R 25/257   Voice recognition

B60R 25/33   of global position, e.g. by...

G06F 21/6236   between heterogeneous systems

G07C 5/008   communicating information t...

G07C 5/085   using electronic data carriers

H04L 2209/80   Wireless

H04L 2209/84   Vehicles

H04L 2463/082 : applying multi-factor authe...

H04L 63/0823 : using certificates cryptogr...

H04L 63/0861 : using biometrical features,...

H04L 63/102 : Entity profiles

H04L 9/3263 : involving certificates, e.g...

H04W 12/068 : using credential vaults, e....

H04W 12/069 : using certificates or pre-s...

View All

Secure telematics

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

Citations

25 Claims

Specification

Solutions

Use Cases

Quick Links

Secure telematics

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

25 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links