Connecting mobile devices, internet-connected vehicles, and cloud services
First Claim
Patent Images
1. A method performed by a mobile device, of establishing a trust relationship between the mobile device, a vehicle system, and a cloud-based service comprising:
- performing an out of band exchange of data between the mobile device and the vehicle system to exchange data used to establish a first trust relationship;
determining access rights of the mobile device to the cloud-based service that supports the vehicle system by accessing a database storing information defining the role of the mobile device as guest or owner and data specific to the vehicle system; and
establishing a second trust relationship between the mobile device and cloud-based service based on data provided by the vehicle system received by the mobile device during the performing of the out of band exchange including the vehicle system sending a symmetric key and mobile device identifier to the mobile device and to the cloud-based service, wherein a pre-existing trust relationship between the vehicle system and the cloud-based service includes a digital certificate for the vehicle system and another digital certificate for the cloud-based service, wherein the digital certificates for the vehicle system is built-in during a vehicle manufacturing process.
1 Assignment
0 Petitions
Accused Products
Abstract
A three-way trust relationship is established between a mobile device, Internet-connected vehicle system, and a cloud-based service. Access rights are granted to the mobile device from the vehicle system, such that the mobile device can securely connect to, and obtain status information and/or control the Internet-connected vehicle system, through the cloud-based service.
-
Citations
21 Claims
-
1. A method performed by a mobile device, of establishing a trust relationship between the mobile device, a vehicle system, and a cloud-based service comprising:
-
performing an out of band exchange of data between the mobile device and the vehicle system to exchange data used to establish a first trust relationship; determining access rights of the mobile device to the cloud-based service that supports the vehicle system by accessing a database storing information defining the role of the mobile device as guest or owner and data specific to the vehicle system; and establishing a second trust relationship between the mobile device and cloud-based service based on data provided by the vehicle system received by the mobile device during the performing of the out of band exchange including the vehicle system sending a symmetric key and mobile device identifier to the mobile device and to the cloud-based service, wherein a pre-existing trust relationship between the vehicle system and the cloud-based service includes a digital certificate for the vehicle system and another digital certificate for the cloud-based service, wherein the digital certificates for the vehicle system is built-in during a vehicle manufacturing process. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
-
-
11. A mobile device comprising:
-
one or more processors; memory configured to the one or more processors, having instructions to; perform an initial startup to connect to a vehicle system; perform an out of band exchange of data between the mobile device and the vehicle system including the vehicle system sending a symmetric key and mobile device identifier to the mobile device and to a cloud-based service to establish a trust relationship with the vehicle system and the mobile device; determine access rights as to the mobile device to the cloud-based service that supports the vehicle system by accessing a database storing information defining the role of the mobile device as guest or owner and data specific to the vehicle system, wherein the vehicle system and the cloud-based service have a pre-existing trust relationship that includes digital certificates that are built-in during a vehicle manufacturing process, wherein the digital certificates include a separate digital certificate for the vehicle system and the cloud-based service; and establish a second trust relationship between the mobile device and the cloud-based service using data that was exchanged during the out of band exchange of data. - View Dependent Claims (12, 13, 14, 15, 16)
-
-
17. One or more non-transitory computer-readable media having stored thereon computer executable instructions that, when executed, perform a method comprising:
-
starting an initial exchange with a vehicle system; performing an out of band exchange of data between a mobile device and the vehicle system including the vehicle system sending a symmetric key and mobile device identifier to the mobile device and to a cloud-based service in order to establish a trust relationship between the mobile device and the vehicle system; receiving access rights at the mobile device to the cloud-based service that controls the vehicle system upon accessing, at the cloud-based service, a database storing information defining the role of the mobile device as guest or owner and data specific to the vehicle system, wherein a pre-existing trust relationship between the vehicle system and the cloud-based service includes a digital certificate for the vehicle system and another digital certificate for the cloud-based service, wherein the digital certificates for the vehicle system is built-in during a vehicle manufacturing process; and establishing a second trust relationship with the mobile device and the cloud-based service based on data received during the out of band exchange of data. - View Dependent Claims (18, 19, 20, 21)
-
Specification