Authentication of vehicle components

US 7,137,001 B2
Filed: 06/28/2002
Issued: 11/14/2006
Est. Priority Date: 06/28/2002
Status: Active Grant

First Claim

Patent Images

1. A method for authentication of a first component and a component class of a second component for use in a vehicle, the method comprising the steps of:

obtaining from a first certification authority a first certification that a first authentic component having a first cryptographic key unique to the first authentic component, is associated with a second cryptographic key corresponding to the first cryptographic key, wherein the first authentic component has at least a first authentic component computing unit, a first authentic component cryptographic unit, and a first authentic component memory, the first authentic component memory storing data related to the first authentic component;

utilizing, by a vehicle cryptographic unit, the second cryptographic key in cryptographic communication with a cryptographic unit of a first prospective component;

determining whether the first prospective component is the first authentic component based on whether the second cryptographic key is successfully utilized in the cryptographic communication;

obtaining from a second certification authority a second certification that a second authentic component is a member of the component class, the second authentic component have a third cryptographic key being associated with a fourth cryptographic key, wherein the third cryptographic key and fourth cryptographic are unique to the component class of the second prospective component and wherein the second authentic component has at least a second authentic component computing unit, a second authentic component cryptographic unit, a second authentic component memory, the second authentic component memory storing data related to the second authentic component;

utilizing the fourth cryptographic key in cryptographic communication with a cryptographic unit of the second prospective component, wherein the fourth cryptographic key is stored in a second prospective component memory of the second prospective component; and

determining whether the second prospective component is the second authentic component based on whether the fourth cryptographic key is successfully utilized in the cryptographic communication,wherein the above steps are performed by the vehicle and the vehicale has at least a vehicle computing unit, the vehicle cryptographic unit, a vehicle component memory, the vehicle memory storing data related to the vehicle.

View all claims

3 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A vehicle authenticates a first prospective component by obtaining from a certification authority a certification that an authentic component is associated with a cryptographic key unique to the first prospective component and determining whether the first prospective component is the authentic component based on whether the cryptographic key is successfully utilized in cryptographic communication with the first prospective component. The vehicle authenticates a component class of a second prospective component by obtaining from a certification authority a certification that an authentic component of the component class is associated with a second cryptographic key unique to the component class and determining whether the second prospective component is an authentic component of the component class based on whether the second cryptographic key is successfully utilized in the cryptographic communication with the second prospective component.

62 Citations

View as Search Results

20 Claims

1. A method for authentication of a first component and a component class of a second component for use in a vehicle, the method comprising the steps of:
- obtaining from a first certification authority a first certification that a first authentic component having a first cryptographic key unique to the first authentic component, is associated with a second cryptographic key corresponding to the first cryptographic key, wherein the first authentic component has at least a first authentic component computing unit, a first authentic component cryptographic unit, and a first authentic component memory, the first authentic component memory storing data related to the first authentic component;
  
  utilizing, by a vehicle cryptographic unit, the second cryptographic key in cryptographic communication with a cryptographic unit of a first prospective component;
  
  determining whether the first prospective component is the first authentic component based on whether the second cryptographic key is successfully utilized in the cryptographic communication;
  
  obtaining from a second certification authority a second certification that a second authentic component is a member of the component class, the second authentic component have a third cryptographic key being associated with a fourth cryptographic key, wherein the third cryptographic key and fourth cryptographic are unique to the component class of the second prospective component and wherein the second authentic component has at least a second authentic component computing unit, a second authentic component cryptographic unit, a second authentic component memory, the second authentic component memory storing data related to the second authentic component;
  
  utilizing the fourth cryptographic key in cryptographic communication with a cryptographic unit of the second prospective component, wherein the fourth cryptographic key is stored in a second prospective component memory of the second prospective component; and
  
  determining whether the second prospective component is the second authentic component based on whether the fourth cryptographic key is successfully utilized in the cryptographic communication,wherein the above steps are performed by the vehicle and the vehicale has at least a vehicle computing unit, the vehicle cryptographic unit, a vehicle component memory, the vehicle memory storing data related to the vehicle.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The method of claim 1 wherein at least one of the first certification and the second certification comprises a digital certificate.
  - 3. The method of claim 1 wherein at least one of the first certification and the second certification comprises a digital signature of a corresponding at least one of the first certification authority and the second certification authority.
  - 4. The method of claim 1 wherein at least one of the first certification authority and the second certification authority is authenticated by a third certification authority.
  - 5. The method of claim 1 wherein at least one of the first certification authority and the second certification authority is a component supplier of a corresponding at least one of the first authentic component and the second authentic component.
  - 6. The method of claim 1, farther comprising the step of determining that at least one of the first certification authority and the second certification authority is authorized to certify a corresponding at least one of the first authentic component and the second authentic component.
  - 7. The method of claim 1 wherein the first cryptographic key is accessible only by the first authentic component.
  - 8. The method of claim 1 wherein the third cryptographic key is accessible only by the second authentic component.
  - 9. The method of claim 1 wherein the first cryptographic key is a private cryptographic key of the first authentic component and the second cryptographic key is a public cryptographic key of the first authentic component.
  - 10. The method of claim 1 wherein the third cryptographic key is a private cryptographic key of the second prospective component and the fourth cryptographic key is a public cryptographic key of the second authentic component.

11. A system for authentication of a first component and a component class of a second component for use in a vehicle, comprising:
- a vehicle obtaining a first prospective component and obtaining a second prospective component, wherein the first prospective and second prospective components have at least a computing unit, a cryptographic unit, and memory, the memory storing data related to the components,a computing unit of the vehicle obtaining from a first certification authority a first certification that a first authentic component having a first cryptographic key unique to a first prospective component, wherein the first prospective component is associated with a second cryptographic key corresponding to the first cryptographic key and the computing unit of the vehicle obtaining from a second certification authority a second certification that a second authentic component is a member of the component class, the second authentic component having a third cryptographic key associated with a fourth cryptographic key, wherein the third cryptographic key and fourth cryptographic key are unique to the component class of the second prospective component;
  
  a cryptographic unit of the vehicle utilizing the second cryptographic key in cryptographic communication with the cryptographic unit of the first prospective component and utilizing the fourth cryptographic key in cryptographic communication with the cryptographic unit of the second prospective component, wherein the second and fourth cryptographic keys are stored in the memory of the components; and
  
  the computing unit of the vehicle determining whether the first prospective component is the first authentic component based on whether the second cryptographic key is successfully utilized in the cryptographic communication and determining whether the second prospective component is the second authentic component based on whether the fourth cryptographic key is successfully utilized in the cryptographic communication.
- View Dependent Claims (12, 13, 14, 15, 16, 17, 18, 19, 20)
- - 12. The system of claim 11 wherein at least one of the first certification and the second certification comprises a digital certificate.
  - 13. The system of claim 11 wherein at least one of the first certification and the second certification comprises a digital signature of a corresponding at least one of the first certification authority and the second certification authority.
  - 14. The system of claim 11 wherein at least one of the first certification authority and the second certification authority is authenticated by a third certification authority.
  - 15. The system of claim 11 wherein at least one of the first certification authority and the second certification authority is a component supplier of a corresponding at least one of the first authentic component and the second authentic component.
  - 16. The method of claim 11 wherein the computing unit determines that at least one of the first certification authority and the second certification authority is authorized to certify a corresponding at least one of the first authentic component and the second authentic component.
  - 17. The system of claim 11 wherein the first cryptographic key is accessible only by the first authentic component.
  - 18. The system of claim 11 wherein the third cryptographic key is accessible only by the second authentic component.
  - 19. The system of claim 11 wherein the first cryptographic key is a private cryptographic key of the first authentic component and the second cryptographic key is a public cryptographic key of the first authentic component.
  - 20. The system of claim 11 wherein the third cryptographic key is a private cryptographic key of the second prospective component and the fourth cryptographic key is a public cryptographic key of the second authentic component.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Continental Automotive Systems, Inc. (Continental AG)
Original Assignee
Motorola, Inc. (Motorola Solutions, Inc.)
Inventors
Dabbish, Ezzat A., Puhl, Larry C.
Primary Examiner(s)
Louis-Jacques, Jacques
Assistant Examiner(s)
NALVEN, ANDREW L

Application Number

US10/186,370
Publication Number

US 20040003245A1
Time in Patent Office

1,600 Days
Field of Search

713/156, 713/155, 713/175, 726/30
US Class Current

713/168
CPC Class Codes

B60R 25/04   operating on the propulsion...

B60R 25/25   using biometry

B60R 25/307   using data concerning maint...

H04L 2209/84   Vehicles

H04L 9/3247   involving digital signatures

H04L 9/3263   involving certificates, e.g...

H04L 9/3271   using challenge-response

Authentication of vehicle components

First Claim

3 Assignments

0 Petitions

Accused Products

Abstract

62 Citations

20 Claims

Specification

Use Cases

Quick Links

Others

Authentication of vehicle components

First Claim

3 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

62 Citations

20 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others