Vehicle network system

US 9,413,732 B2
Filed: 03/02/2012
Issued: 08/09/2016
Est. Priority Date: 03/04/2011
Status: Active Grant

First Claim

Patent Images

1. A vehicle network system, comprising:

a plurality of control circuits provided on a vehicle and network-connected to each other communicatively to communicate via a control area network (CAN) protocol format,the plurality of control circuits including;

a first control circuit that has a secret key from among the secret key and a public key that form a pair and are set by execution of initialization processing for activating the system; and

a second control circuit that has the public key, whereina second identifier is allocated to the second control circuit, the second identifier is an identifier is that is added to a communication having the CAN protocol format,the second control circuit is configured to create authentication information from the public key and information specifying the second control circuit, add the authentication information and the second identifier to the communication which is to be transmitted to another control circuit, and transmit the communication with the authentication information added to the first control circuit via the network; and

the first control circuit is configured to acquire the authentication information that has been added to the communication transmitted from the second control circuit and estimate reliability of the communication on the basis of the acquired authentication information and the secret key, the first control circuit broadcasts an indication that the communication from the second control circuit is not authorized when the communication is determined to be unreliable.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

In a vehicle network system, a plurality of ECUs are network-connected. The plurality of ECUs include a first ECU that has set therein a secret key from among the secret key and a public key that form a pair and are set on the basis of initialization processing performed when the vehicle network system is created, and a second ECU that has set therein the public key. The second ECU adds, to a transmission signal, an authentication keyword created from the public key and information capable of specifying the second ECU and transmits the transmission signal with the authentication keyword added thereto to the network. The first ECU acquires the authentication keyword and estimates the reliability of the communication signal on the basis of the acquired authentication keyword and the secret key.

Citations

12 Claims

1. A vehicle network system, comprising:
- a plurality of control circuits provided on a vehicle and network-connected to each other communicatively to communicate via a control area network (CAN) protocol format,the plurality of control circuits including;
  
  a first control circuit that has a secret key from among the secret key and a public key that form a pair and are set by execution of initialization processing for activating the system; and
  
  a second control circuit that has the public key, whereina second identifier is allocated to the second control circuit, the second identifier is an identifier is that is added to a communication having the CAN protocol format,the second control circuit is configured to create authentication information from the public key and information specifying the second control circuit, add the authentication information and the second identifier to the communication which is to be transmitted to another control circuit, and transmit the communication with the authentication information added to the first control circuit via the network; and
  
  the first control circuit is configured to acquire the authentication information that has been added to the communication transmitted from the second control circuit and estimate reliability of the communication on the basis of the acquired authentication information and the secret key, the first control circuit broadcasts an indication that the communication from the second control circuit is not authorized when the communication is determined to be unreliable.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
- - 2. The vehicle network system according to claim 1, whereinthe second control circuit is configured to divide the authentication information into a plurality of information pieces, successively add the divided authentication information that has been obtained by division to communications, and transmit the communications with the divided authentication information added;
    - andthe first control circuit is configured to receive successively the communications, reconfigure the authentication information before the division from the divided authentication information and estimate reliability of the communications on the basis of the reconfigured authentication information.
  - 3. The vehicle network system according to claim 1, whereinthe first control circuit is configured to generate the secret key and the public key by execution of the initialization processing and sets the secret key to the first control circuit and sets the public key to the second control device.
  - 4. The vehicle network system according to claim 3, wherein the first control circuit sets the public key to the second control circuit via the network.
  - 5. The vehicle network system according to claim 1, wherein the second control circuit creates the authentication information at a timing at which the public key is set.
  - 6. The vehicle network system according to claim 1, wherein after creating the authentication information, the second control circuit deletes the public key that has been set.
  - 7. The vehicle network system according to claim 1, wherein the second control circuit transmits the authentication information to the network prior to transmitting the communication each time the vehicle network system is started, and the first control circuit is configured to acquire and store the authentication information that has been received prior to receiving the communication from the second control circuit and to estimate reliability of the communication by comparing the stored authentication information with the authentication information added to the communication.
  - 8. The vehicle network system according to claim 1, wherein the broadcast from the first control circuit indicating that the communication transmitted by the second control circuit is not authorized prohibits use of communications from the second control circuit in the vehicle network system.

9. A vehicle network system, comprising:
- a plurality of control circuits provided on a vehicle and network-connected to each other communicatively to communicate via a control area network (CAN) protocol format,the plurality of control circuits including;
  
  a first control circuit that has a secret key from among the secret key and a public key that form a pair and are set by execution of initialization processing for activating the system; and
  
  a second control circuit that has the public key, whereina first identifier is allocated to the first control circuit and a second identifier is allocated to the second control circuit, the first identifier and the second identifier are identifiers that are added to a communication having the CAN protocol format, the first identifier and the second identifiers are different from each other, and the second identifier is associated with the first identifier;
  
  the first control circuit is configured to transmit the communication, to which the first identifier is added, to another control circuit via the network and also transmit an authentication communication, to which the second identifier is added, created on the basis of the secret key and original authentication data generated on the basis of the communication; and
  
  the second control circuit is configured to receive the communication and the authentication communication and estimate reliability of the communication, based on the added second identifier and the added first identifier, on the basis of comparison of reproduced authentication data generated on the basis of the received communication and decoded authentication data decoded on the basis of the authentication communication and the public key, the second control circuit broadcasts an indication that the communication from the first control circuit is not authorized when the communication is determined to be unreliable.
- View Dependent Claims (10, 11, 12)
- - 10. The vehicle network system according to claim 9, wherein the first control circuit is configured to generate the authentication communication by encrypting, with the secret key, the original authentication data calculated by applying a hash function to the communication, and the second control circuit is configured to calculate the reproduced authentication data by applying the hash function to the received communication and estimate reliability of the communication on the basis of comparison of the reproduced authentication data with decoded authentication data obtained by decoding the authentication communication.
  - 11. The vehicle network system according to claim 9, wherein the first control circuit is configured to generate the secret key and the public key by execution of the initialization processing and sets the secret key to the first control circuit and sets the public key to the second control circuit.
  - 12. The vehicle network system according to claim 11, wherein the first control circuit sets the public key to the second control circuit via the network.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Toyota Jidosha Kabushiki Kaisha (Toyota Motor Corporation)
Original Assignee
Toyota Jidosha Kabushiki Kaisha (Toyota Motor Corporation)
Inventors
Koide, Shohei, Ninagawa, Yuji, Inoue, Noriaki
Primary Examiner(s)
Sholeman, Abu

Application Number

US14/002,542
Publication Number

US 20140040992A1
Time in Patent Office

1,621 Days
Field of Search

726/4, 726/1, 726/22, 726/26, 726/34, 713/169, 713/156, 709/223
US Class Current

1/1
CPC Class Codes

H04L 12/403   with centralised control, e...

H04L 2012/40215   Controller Area Network CAN

H04L 2012/40273   the transportation system b...

H04L 2209/84   Vehicles

H04L 63/0442   wherein the sending and rec...

H04L 63/06   for supporting key manageme...

H04L 63/0869   for achieving mutual authen...

H04L 63/123   received data contents, e.g...

H04L 67/12   specially adapted for propr...

H04L 9/3242   involving keyed hash functi...

H04L 9/3247   involving digital signatures

Vehicle network system

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

12 Claims

Specification

Solutions

Use Cases

Quick Links

Vehicle network system

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

12 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links