Exploiting application characteristics for multiple-authenticator broadcast authentication schemes
First Claim
1. A method, for securing communications between automotive vehicles in a vehicle-to-vehicle communications system, comprising:
- predicting, by an on-board computer of a broadcasting vehicle, a future value for a vehicle parameter, yielding a predicted future-vehicle-parameter value, the predicted future-vehicle-parameter value corresponding to a pre-identified future time;
generating, by the on-board computer of the broadcasting vehicle, a heavyweight authenticating signature to correspond to the predicted future-vehicle-parameter value;
obtaining, by the on-board computer of the broadcasting vehicle, subsequent to predicting the predicted future-vehicle-parameter value and generating the heavyweight authenticating signature to correspond to the predicted future-vehicle-parameter value, an actual value for the vehicle parameter, yielding an actual-vehicle-parameter value;
comparing, by the on-board computer of the broadcasting vehicle, in a first comparison, the predicted future-vehicle-parameter value for the vehicle parameter to the actual-vehicle-parameter value for the vehicle parameter to determine whether the predicted future-vehicle-parameter value for the vehicle parameter bears a first relationship to the actual-vehicle-parameter value for the vehicle parameter; and
in response to the on-board computer of the broadcasting vehicle determining in the first comparison that the predicted future-vehicle-parameter value bears the first relationship to the actual-vehicle-parameter value;
generating, by the on-board computer of the broadcasting vehicle, a lightweight authenticating signature to correspond to the predicted future-vehicle-parameter value, the lightweight authenticating signature having a lower security level than the heavyweight authenticating signature; and
broadcasting, by the on-board computer of the broadcasting vehicle, a data message having the predicted future-vehicle-parameter value, the actual-vehicle-parameter value, the corresponding heavyweight authenticating signature, and the corresponding lightweight authenticating signature;
receiving, by an on-board computer of a receiving vehicle, the data message broadcasted by the on-board computer of the broadcasting vehicle;
comparing, by the on-board computer of the receiving vehicle, in a second comparison, the predicted future-vehicle-parameter value to the actual-vehicle-parameter value to determine whether the predicted future-vehicle-parameter value bears a second predetermined relationship to the actual-vehicle-parameter value; and
in response to the on-board computer of the receiving vehicle determining, in the second comparison, that the predicted future-vehicle-parameter value bears the second relationship to the actual-vehicle-parameter value;
processing, by the on-board computer of the receiving vehicle, the heavyweight authenticating signature and the lightweight authenticating signature to verify the predicted future-vehicle-parameter value; and
utilizing, by the on-board computer of the receiving vehicle, after verifying the predicted future-vehicle-parameter value, the predicted future-vehicle-parameter value.
3 Assignments
0 Petitions
Accused Products
Abstract
A method for securing communications in a vehicle-to-vehicle (V2V) system including an on-board computer of a broadcasting vehicle predicting a value for a vehicle parameter, generating a heavyweight signature corresponding to the predicted value, and obtaining an actual value for the vehicle parameter. The method also includes the computer comparing the predicted value to the actual value to determine if the predicted value bears a first relationship to the actual value. If the computer determines that the predicted value bears the relationship to the actual value, the on-board computer generates a lightweight authenticating signature to correspond to the predicted value and broadcasts a data message having the predicted value with the corresponding heavyweight authenticating signature and the corresponding lightweight authenticating signature.
10 Citations
17 Claims
-
1. A method, for securing communications between automotive vehicles in a vehicle-to-vehicle communications system, comprising:
-
predicting, by an on-board computer of a broadcasting vehicle, a future value for a vehicle parameter, yielding a predicted future-vehicle-parameter value, the predicted future-vehicle-parameter value corresponding to a pre-identified future time; generating, by the on-board computer of the broadcasting vehicle, a heavyweight authenticating signature to correspond to the predicted future-vehicle-parameter value; obtaining, by the on-board computer of the broadcasting vehicle, subsequent to predicting the predicted future-vehicle-parameter value and generating the heavyweight authenticating signature to correspond to the predicted future-vehicle-parameter value, an actual value for the vehicle parameter, yielding an actual-vehicle-parameter value; comparing, by the on-board computer of the broadcasting vehicle, in a first comparison, the predicted future-vehicle-parameter value for the vehicle parameter to the actual-vehicle-parameter value for the vehicle parameter to determine whether the predicted future-vehicle-parameter value for the vehicle parameter bears a first relationship to the actual-vehicle-parameter value for the vehicle parameter; and in response to the on-board computer of the broadcasting vehicle determining in the first comparison that the predicted future-vehicle-parameter value bears the first relationship to the actual-vehicle-parameter value; generating, by the on-board computer of the broadcasting vehicle, a lightweight authenticating signature to correspond to the predicted future-vehicle-parameter value, the lightweight authenticating signature having a lower security level than the heavyweight authenticating signature; and broadcasting, by the on-board computer of the broadcasting vehicle, a data message having the predicted future-vehicle-parameter value, the actual-vehicle-parameter value, the corresponding heavyweight authenticating signature, and the corresponding lightweight authenticating signature; receiving, by an on-board computer of a receiving vehicle, the data message broadcasted by the on-board computer of the broadcasting vehicle; comparing, by the on-board computer of the receiving vehicle, in a second comparison, the predicted future-vehicle-parameter value to the actual-vehicle-parameter value to determine whether the predicted future-vehicle-parameter value bears a second predetermined relationship to the actual-vehicle-parameter value; and in response to the on-board computer of the receiving vehicle determining, in the second comparison, that the predicted future-vehicle-parameter value bears the second relationship to the actual-vehicle-parameter value; processing, by the on-board computer of the receiving vehicle, the heavyweight authenticating signature and the lightweight authenticating signature to verify the predicted future-vehicle-parameter value; and utilizing, by the on-board computer of the receiving vehicle, after verifying the predicted future-vehicle-parameter value, the predicted future-vehicle-parameter value. - View Dependent Claims (2, 3, 4, 5, 6)
-
-
7. A method, for securing communications between automotive vehicles in a vehicle-to-vehicle communications system according to a prediction-and-multiple-authenticator protocol, comprising:
-
generating, by an on-board computer of the broadcasting vehicle, a first value for a vehicle parameter, yielding a generated actual vehicle-parameter value; preparing, by the on-board computer of the broadcasting vehicle, a first authenticating signature, having a first security level, to correspond with the generated actual vehicle-parameter value; predicting, by the on-board computer of the broadcasting vehicle, a second, future value for the vehicle parameter having lower accuracy than an accuracy of the first value for the vehicle parameter, yielding a predicted future-vehicle-parameter value; generating, by the on-board computer of the broadcasting vehicle, a second authenticating signature to correspond with the predicted future-vehicle-parameter value for the vehicle parameter, the second authenticating signature having a lower security level than the security level of the first authenticating signature; preparing and broadcasting, by the on-board computer of the broadcasting vehicle, a data message including the generated actual vehicle-parameter value, the predicted future-vehicle-parameter value, and the corresponding authenticating signatures; receiving, by an on-board computer of a receiving vehicle, the data message; determining, by the on-board computer of the receiving vehicle, which level of data accuracy is preferred; processing, by the on-board computer of the receiving vehicle, the authenticating signature corresponding to the level of data accuracy preferred; and utilizing, by the on-board computer of the receiving vehicle, the data having the preferred accuracy; wherein; predicting, by the on-board computer of the broadcasting vehicle, the predicted future-vehicle-parameter value includes predicting the future-vehicle-parameter value to be a relatively high-accuracy prediction of the vehicle parameter; preparing by the on-board computer of the broadcasting vehicle, the first authenticating signature includes preparing the first authenticating signature to have a relatively-high level of security; the method further comprises; predicting, by the on-board computer of the broadcasting vehicle, with relatively moderate accuracy a third, moderate-accuracy predicted value for the vehicle parameter; and generating, by the on-board computer of the broadcasting vehicle, a relatively moderate-security authenticating signature to correspond with the moderate-accuracy predicted value for the vehicle parameter; and preparing and broadcasting, by the on-board computer of the broadcasting vehicle, the data message comprises preparing the message to include the actual-vehicle-parameter value, the predicted future-vehicle-parameter value, the third, moderate-accuracy value, and the corresponding authenticating signatures. - View Dependent Claims (8, 9, 10)
-
-
11. A method, for securing communications between automobiles in a vehicle-to-vehicle communications system according to a delayed-authentication protocol, comprising:
-
determining, by an on-board computer of a broadcasting vehicle, in a determination, whether to predict a future value for a vehicle parameter; performing, in response to the on-board computer of the broadcasting vehicle determining, in the determination, to predict the future value, operations comprising; predicting, by the on-board computer of the broadcasting vehicle, the future value for the vehicle parameter, yielding a predicted future-vehicle parameter value; generating, by the on-board computer of the broadcasting vehicle, using an authenticating key, an authenticating signature to correspond to the predicted future-vehicle parameter value; preparing and broadcasting, by the on-board computer of the broadcasting vehicle, an initial predicted-value message including the predicted future-vehicle parameter value and the corresponding authenticating signature; and preparing and broadcasting, by the on-board computer of the broadcasting vehicle, a subsequent predicted-value message including the authenticating key, for use by receiving vehicles to;
authenticate the authenticating signature received in the initial predicted-value message for using the predicted future-vehicle parameter value received in the initial predicted-value message; andperforming, in response to the on-board computer of the broadcasting vehicle determining in the determining not to predict the future-vehicle parameter value, operations comprising; preparing, by the on-board computer of the broadcasting vehicle, an actual-vehicle parameter value for the vehicle parameter; generating, by the on-board computer of the broadcasting vehicle, an authenticating signature to correspond to the actual-vehicle parameter value; and broadcasting, by the on-board computer of the broadcasting vehicle, an actual-value message including the actual-vehicle parameter value and the corresponding authenticating signature. - View Dependent Claims (12)
-
-
13. A method, for securing communications between automobiles in a vehicle-to-vehicle communications system according to a delayed-authentication protocol, comprising:
-
predicting, by an on-board computer of a broadcasting vehicle, a future-vehicle parameter value for a vehicle parameter; generating, by the on-board computer of the broadcasting vehicle, a first authenticating signature, using an authenticating key, to correspond to the predicted future-vehicle parameter value; preparing and generating, by the on-board computer of the broadcasting vehicle, an initial message including the predicted future-vehicle parameter value and first authenticating signature; preparing, by the on-board computer of the broadcasting vehicle, an actual-vehicle parameter value of the vehicle parameter; generating, by the on-board computer of the broadcasting vehicle, a second authenticating signature to correspond to the actual-vehicle parameter value; preparing and broadcasting, by the on-board computer of the broadcasting vehicle, a subsequent message including the actual-vehicle parameter value, the second authenticating signature, and the authenticating key used to generate the first authenticating signature, so that receiving vehicles can determine which of the first authenticating signature and the second authenticating signature to process for accessing the predicted future-vehicle parameter value or the actual-vehicle parameter value, respectively; receiving, by an on-board computer of a receiving vehicle, the broadcasted initial message; receiving, by the on-board computer of the receiving vehicle, the broadcasted subsequent message; and determining, by the on-board computer of the receiving vehicle, whether to process the first authenticating signature for authenticating the predicted future-vehicle parameter value or to process the second authenticating signature for authenticating the actual-vehicle parameter value; wherein determining, by the on-board computer of the receiving vehicle, whether to process the first authenticating signature, using the authenticating key, for authenticating the predicted future-vehicle parameter value, or to process the second authenticating signature for authenticating the actual-vehicle parameter value, includes considering needs of an application of the receiving vehicle. - View Dependent Claims (14, 15)
-
-
16. A method, for securing communications between automotive vehicles in a vehicle-to-vehicle communications system according to a prediction-and-multiple-authenticator protocol, comprising:
-
generating, by an on-board computer of a broadcasting vehicle, a first value for a vehicle parameter, yielding a generated actual vehicle-parameter value; preparing, by the on-board computer of the broadcasting vehicle, a first authenticating signature, having a first security level, to correspond with the generated actual vehicle-parameter value; predicting, by the on-board computer of the broadcasting vehicle, a second, future value for the vehicle parameter having lower accuracy than an accuracy of the first value for the vehicle parameter, yielding a predicted future-vehicle-parameter value; generating, by the on-board computer of the broadcasting vehicle, a second authenticating signature to correspond with the predicted future-vehicle-parameter value for the vehicle parameter, the second authenticating signature having a lower security level than the security level of the first authenticating signature; preparing and broadcasting, by the on-board computer of the broadcasting vehicle, a data message including the generated actual vehicle-parameter value, the predicted future-vehicle-parameter value, and the corresponding authenticating signatures; receiving, by an on-board computer of a receiving vehicle, the data message; determining, by the on-board computer of the receiving vehicle, which level of data accuracy is preferred; processing, by the on-board computer of the receiving vehicle, the authenticating signature corresponding to the level of data accuracy preferred; utilizing, by the on-board computer of the receiving vehicle, the data having the preferred accuracy; and determining, by the on-board computer of the broadcasting vehicle, whether to predict any future value of the vehicle parameter; wherein a group of steps, performed in response to a positive result from the determining, comprise; (1) generating, by the on-board computer of the broadcasting vehicle, the actual-vehicle-parameter value for the vehicle parameter; (2) preparing, by the on-board computer of the broadcasting vehicle, the first authenticating signature; (3) preparing, by the on-board computer of the broadcasting vehicle, the predicted future-vehicle-parameter value for the vehicle parameter; (4) generating, by the on-board computer of the broadcasting vehicle, the second authenticating signature; (5) preparing and broadcasting, by the on-board computer of the broadcasting vehicle, the data message; (6) receiving, by the on-board computer of the receiving vehicle, the data message; (7) determining, by the on-board computer of the receiving vehicle, which level of data accuracy it prefers; (8) processing, by the on-board computer of the receiving vehicle, the authenticating signature corresponding to the preferred level of data accuracy; and (9) utilizing, by the on-board computer of the receiving vehicle, the data having the preferred accuracy.
-
-
17. A method, for securing communications between automobiles in a vehicle-to-vehicle communications system according to a delayed-authentication protocol, comprising:
-
predicting, by an on-board computer of a broadcasting vehicle, a future-vehicle parameter value for a vehicle parameter; generating, by the on-board computer of the broadcasting vehicle, a first authenticating signature, using an authenticating key, to correspond to the predicted future-vehicle parameter value; preparing and generating, by the on-board computer of the broadcasting vehicle, an initial message including the predicted future-vehicle parameter value and first authenticating signature; preparing, by the on-board computer of the broadcasting vehicle, an actual-vehicle parameter value of the vehicle parameter; generating, by the on-board computer of the broadcasting vehicle, a second authenticating signature to correspond to the actual-vehicle parameter value; and preparing and broadcasting, by the on-board computer of the broadcasting vehicle, a subsequent message including the actual-vehicle parameter value, the second authenticating signature, and the authenticating key used to generate the first authenticating signature, so that receiving vehicles can determine which of the first authenticating signature and the second authenticating signature to process for accessing the predicted future-vehicle parameter value or the actual-vehicle parameter value, respectively; receiving, by an on-board computer of a receiving vehicle, the broadcasted initial message; receiving, by the on-board computer of the receiving vehicle, the broadcasted subsequent message; determining, by the on-board computer of the receiving vehicle, whether to process the first authenticating signature for authenticating the predicted future-vehicle parameter value or to process the second authenticating signature for authenticating the actual-vehicle parameter value; and authenticating, by the on-board computer of the receiving vehicle, in response to the on-board computer of the receiving vehicle determining to process the second authenticating signature for authenticating the predicted future-vehicle parameter value, the second authenticating signature and, upon the authentication, uses the actual-vehicle parameter value.
-
Specification