Securing a command path between a vehicle and personal wireless device
First Claim
1. A method of establishing a secure communication channel between a vehicle and a mobile device, comprising the steps of:
- providing to a call center a unique mobile device identifier and a unique vehicle telematics unit (VTU) identifier;
receiving at the mobile device a first private key that is associated at least in part with the unique mobile identifier and that is associated at least in part with the unique VTU identifier, wherein the first private key is generated at a wireless service provider (WSP) and received by the mobile device within a first cryptographic envelope signed with a first cryptographic key by the WSP; and
establishing a secure communication channel between the VTU and mobile device, wherein the mobile device transmits message(s) to the VTU signed with the first private key and the mobile device receives message(s) from the VTU which are signed with a second private key, wherein the second private key is associated at least in part with the unique mobile identifier and at least in part with the unique VTU identifier, wherein the VTU received the second private key from the call center or the WSP within a second cryptographic envelope signed with a second cryptographic key, wherein the second cryptographic envelope is different than the first cryptographic envelope.
3 Assignments
0 Petitions
Accused Products
Abstract
A system and a method using that system is provided for establishing a secure communication channel between a vehicle and a mobile device. The method may include providing at least one unique mobile device identifier and at least one unique vehicle telematics unit identifier associated with the mobile device identifier to a call center. At least one of the two identifiers may be provided to a wireless service provider. Two private keys may be generated—a first private key based on the at least one unique mobile identifier and a second private key based on the at least one unique vehicle telematics unit identifier. The first private key may be provided to the mobile device within a first cryptographic envelope signed with a first cryptographic key. And the second private key may be provided to the vehicle telematics unit within a second cryptographic envelope signed with a second cryptographic key.
28 Citations
20 Claims
-
1. A method of establishing a secure communication channel between a vehicle and a mobile device, comprising the steps of:
-
providing to a call center a unique mobile device identifier and a unique vehicle telematics unit (VTU) identifier; receiving at the mobile device a first private key that is associated at least in part with the unique mobile identifier and that is associated at least in part with the unique VTU identifier, wherein the first private key is generated at a wireless service provider (WSP) and received by the mobile device within a first cryptographic envelope signed with a first cryptographic key by the WSP; and establishing a secure communication channel between the VTU and mobile device, wherein the mobile device transmits message(s) to the VTU signed with the first private key and the mobile device receives message(s) from the VTU which are signed with a second private key, wherein the second private key is associated at least in part with the unique mobile identifier and at least in part with the unique VTU identifier, wherein the VTU received the second private key from the call center or the WSP within a second cryptographic envelope signed with a second cryptographic key, wherein the second cryptographic envelope is different than the first cryptographic envelope. - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A method of receiving a secure communication at a vehicle from a mobile device, comprising the steps of:
-
establishing short range wireless communication (SRWC) between a mobile device and a vehicle telematics unit (VTU); receiving at the VTU at least one communication via SRWC from the mobile device, wherein the at least one communication is digitally signed using a first private key, wherein the first private key is associated at least in part with a unique identifier associated with a first subscriber identity module (SIM) within the mobile device, wherein the at least one communication includes a first public key associated with the first private key; and decrypting the at least one communication at the VTU using the first public key, wherein the first private key was received by the mobile device previous to the receiving step in a first cryptographic envelope signed by a wireless service provider (WSP) using a first cryptographic key and transmitted from the WSP to the mobile device via cellular transmission, wherein the WSP provides cellular services using infrastructure associated with a wireless carrier system. - View Dependent Claims (9, 10, 11, 12)
-
-
13. A method of receiving a secure communication at a vehicle from a mobile device, comprising the steps of:
-
establishing short range wireless communication (SRWC) between a mobile device and a vehicle telematics unit (VTU); receiving at the VTU at least one communication from the mobile device, wherein the at least one communication is digitally signed using a first private key, wherein the first private key is associated at least in part with a unique identifier associated with a first subscriber identity module (SIM) within the mobile device, wherein the at least one communication includes a first public key associated with the first private key; decrypting the at least one communication at the VTU using the first public key, wherein the first private key was received by the mobile device previous to the receiving step in a first cryptographic envelope signed with a first cryptographic key from a wireless service provider (WSP); and validating the at least one communication by sending a challenge message from the VTU to the mobile device via SRWC, wherein the challenge message is digitally signed using a second private key, wherein the second private key was received by the VTU previous to the receiving step in a second cryptographic envelope signed with a second cryptographic key, wherein the challenge message includes a challenge query and a second public key associated with the second private key whereby the mobile device may decipher the challenge message. - View Dependent Claims (14, 15, 16, 17, 18, 19)
-
-
20. A method of secure communication between a vehicle and a mobile device, comprising the steps of:
-
(a) establishing short range wireless communication (SRWC) between a mobile device and a vehicle telematics unit (VTU); (b) receiving at the VTU a command communication to perform a vehicle function via SRWC from the mobile device, wherein the command communication is digitally signed using a first private key associated with a unique identifier of the mobile device, wherein the first private key was transmitted to the mobile device from a wireless service provider (WSP) previous to step (a) in a first cryptographic envelope signed by the WSP; (c) decrypting the command communication at the VTU; (d) in response to step (c), generating a challenge communication at the VTU using a second private key, wherein the second private key is associated with a unique identifier of the VTU, wherein the second private key was received by the VTU from the WSP previous to step (a) in a second cryptographic envelope signed by the WSP; (e) providing the challenge communication from the VTU to the mobile device via SRWC; (f) receiving at the VTU an accurate response communication from the mobile device via SRWC, wherein the response communication is associated with the mobile device receiving the challenge communication; and (g) based on the accuracy of the response communication, executing the command communication to perform the vehicle function.
-
Specification