Threat mitigation in a vehicle-to-vehicle communication network
First Claim
1. A method of obtaining a certificate revocation list (CRL) for a vehicle in a vehicle-to-vehicle communication system, the method comprising the steps of:
- providing a portable security unit to access secured operations for the vehicle, the portable security unit being relocatable from the vehicle;
linking the portable security unit to a network device having access to a communication network, wherein the network device is remote from the vehicle, wherein the communication network is separate from the vehicle-to-vehicle communication system, and wherein the communication network is in communication with a certificate authority for issuing an updated CRL;
downloading the updated CRL from the certificate authority to the portable security unit via the communication network;
establishing a communication link between the portable security unit and a vehicle processor unit;
exchanging mutual authentication between the portable security unit and the vehicle processing unit, wherein the updated CRL stored in the portable security unit is downloaded to a memory of the vehicle in response to a successful mutual authentication; and
wherein establishing the link between the portable security unit and a vehicle processing unit is initiated by inserting an ignition key in a vehicle ignition.
4 Assignments
0 Petitions
Accused Products
Abstract
A method is provided for obtaining a certificate revocation list (CRL) for a vehicle in a vehicle-to-vehicle communication system. A portable security unit is provided to access secured operations for the vehicle. The portable security unit is linked to a device having access to a communication network. The communication network is in communication with a certificate authority for issuing an updated CRL. The updated CRL is downloaded from the certificate authority to the portable security unit. At a later time, when a user enters the vehicle, a communication link is established between the portable security unit and a vehicle processor unit. Mutual authentication is exchanged between the portable security unit and the vehicle processing unit. The updated CRL stored in the portable security unit is downloaded to a memory of the vehicle communication system in response to a successful mutual authentication.
-
Citations
19 Claims
-
1. A method of obtaining a certificate revocation list (CRL) for a vehicle in a vehicle-to-vehicle communication system, the method comprising the steps of:
-
providing a portable security unit to access secured operations for the vehicle, the portable security unit being relocatable from the vehicle; linking the portable security unit to a network device having access to a communication network, wherein the network device is remote from the vehicle, wherein the communication network is separate from the vehicle-to-vehicle communication system, and wherein the communication network is in communication with a certificate authority for issuing an updated CRL; downloading the updated CRL from the certificate authority to the portable security unit via the communication network; establishing a communication link between the portable security unit and a vehicle processor unit; exchanging mutual authentication between the portable security unit and the vehicle processing unit, wherein the updated CRL stored in the portable security unit is downloaded to a memory of the vehicle in response to a successful mutual authentication; and wherein establishing the link between the portable security unit and a vehicle processing unit is initiated by inserting an ignition key in a vehicle ignition. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A vehicle-to-vehicle communication system comprising:
-
a vehicle communication processing unit for controlling a broadcast of wireless messages within the vehicle-to-vehicle communication system, the vehicle communication processing unit having a memory for storing certificate revocation lists (CRL); and a portable security unit for linking to the vehicle processing unit, the portable security unit being relocatable from the vehicle, the portable security unit communicating with the processing unit for performing mutual authentication between the portable security unit and the vehicle communication processing unit in response to being linked to one another, the portable security unit having a non-volatile memory for storing an updated certification revocation list; wherein the portable security unit links to a network device having access to a communication network, the network device being remote from the vehicle, the communication network being separate from the vehicle-to-vehicle communication system, and the communication network being in communication with a certificate authority for issuing an updated CRL, wherein the updated CRL is downloaded from the certificate authority to the portable security unit via the communication network, wherein the portable security unit establishes a communication link to the vehicle communication system in response to initiating a vehicle security operation, and wherein the updated CRL stored in the portable security unit is downloaded to the memory of the vehicle in response to the mutual authentication between the portable security unit and the vehicle processing unit; and wherein the portable security unit and the vehicle communication processor exchanges mutual authentication in response to an ignition key being inserted within an ignition. - View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19)
-
Specification