公开(公告)号：US20110238987A1

公开(公告)日：2011-09-29

申请号：US12731075

申请日：2010-03-24

申请人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

发明人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

IPC分类号： H04L9/32 ,  H03M13/00

CPC分类号： H04L9/3268 ,  H04L1/0041 ,  H04L1/0057 ,  H04L41/5009 ,  H04L41/5038 ,  H04L63/0823 ,  H04L63/123 ,  H04L67/12 ,  H04L2209/84 ,  H04W12/06

摘要： A method for improving the reliability and performance of Vehicle-to-Vehicle (V2V) networks where digital certificates are necessary for message authentication and some messages may be lost in transmission. The method uses Forward Error Correcting (FEC) codes to encode a digital certificate into multiple segments, and attaches one or more segment to each message transmitted. Nodes receiving the messages can reconstruct the certificate as long as they successfully receive a minimum number of the transmitted messages, where the minimum number is less than the total number of messages transmitted. This allows message authentication to continue uninterrupted, even in a network environment where some messages are lost in transmission. Two different types of FEC codes are described, and adaptive schemes are included to optimize message throughput based on such network conditions as node density.

摘要翻译： 一种用于提高车载到车辆（V2V）网络的可靠性和性能的方法，其中数字证书对于消息认证是必要的，并且一些消息可能在传输中丢失。 该方法使用前向纠错（FEC）码将数字证书编码成多个段，并将一个或多个段附加到每个发送的消息。 接收消息的节点可以重建证书，只要它们成功地接收到发送的消息的最小数量，其中最小数目小于发送的消息总数。 这样即使在传输中丢失某些消息的网络环境中，也可以使消息认证继续不间断。 描述了两种不同类型的FEC码，并且包括自适应方案以基于诸如节点密度的网络条件来优化消息吞吐量。

公开(公告)号：US20120265995A1

公开(公告)日：2012-10-18

申请号：US13086864

申请日：2011-04-14

申请人： Arzad A. Kherani ,  Debojyoti Bhattacharya ,  Skanda N. Muthaiah

发明人： Arzad A. Kherani ,  Debojyoti Bhattacharya ,  Skanda N. Muthaiah

IPC分类号： H04L9/00

CPC分类号： H04L63/08 ,  H04L9/3247 ,  H04L63/12 ,  H04L67/12 ,  H04L2209/805 ,  H04L2209/84 ,  H04W4/046 ,  H04W4/70 ,  H04W12/06 ,  H04W12/10 ,  H04W84/005

摘要： A method for securing communications in a vehicle-to-vehicle (V2V) system including an on-board computer of a broadcasting vehicle predicting a value for a vehicle parameter, generating a heavyweight signature corresponding to the predicted value, and obtaining an actual value for the vehicle parameter. The method also includes the computer comparing the predicted value to the actual value to determine if the predicted value bears a first relationship to the actual value. If the computer determines that the predicted value bears the relationship to the actual value, the on-board computer generates a lightweight authenticating signature to correspond to the predicted value and broadcasts a data message having the predicted value with the corresponding heavyweight authenticating signature and the corresponding lightweight authenticating signature.

摘要翻译： 一种用于确保车辆到车辆（V2V）系统中的通信的方法，该系统包括预测车辆参数值的广播车辆的车载计算机，生成与预测值相对应的重量级签名，并获得实际值 车辆参数。 该方法还包括计算机将预测值与实际值进行比较以确定预测值是否与实际值具有第一关系。 如果计算机确定预测值与实际值具有关系，则车载计算机生成轻量级认证签名以对应于预测值，并且广播具有相应重量级认证签名的预测值的数据消息和对应的 轻量级认证签名。

公开(公告)号：US20110238986A1

公开(公告)日：2011-09-29

申请号：US12731063

申请日：2010-03-24

申请人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

发明人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

IPC分类号： H04L9/32

CPC分类号： H04L1/0041 ,  H04L1/0057 ,  H04L9/3268 ,  H04L43/0829 ,  H04L43/0882 ,  H04L63/0823 ,  H04L67/12 ,  H04L2209/84 ,  H04W12/06

摘要： A method for improving the reliability and performance of Vehicle-to-Vehicle (V2V) networks where digital certificates are necessary for message authentication and some messages may be lost in transmission. The method uses a variable inter-certificate refresh period to optimize communications throughput based on network conditions such as node density and bandwidth saturation. In some network conditions, the inter-certificate refresh period may be increased, such that more certificate digests are sent between full digital certificates, to decrease average message size. In other network conditions, the inter-certificate refresh period may be decreased, to allow for more frequent message authentication by receiving nodes. Empirical data and an adaptive controller are used to select the refresh period which will provide the best performance based on network conditions.

摘要翻译： 一种用于提高车载到车辆（V2V）网络的可靠性和性能的方法，其中数字证书对于消息认证是必要的，并且一些消息可能在传输中丢失。 该方法使用可变的证书间刷新周期来根据网络条件（如节点密度和带宽饱和度）优化通信吞吐量。 在一些网络条件下，可以增加证书间刷新周期，使得在全数字证书之间发送更多的证书摘要，以减少平均消息大小。 在其他网络条件下，可以减少证书间刷新周期，以允许接收节点进行更频繁的消息认证。 经验数据和自适应控制器用于选择基于网络条件提供最佳性能的刷新周期。

公开(公告)号：US08756430B2

公开(公告)日：2014-06-17

申请号：US13086864

申请日：2011-04-14

申请人： Arzad A. Kherani ,  Debojyoti Bhattacharya ,  Skanda N. Muthaiah

发明人： Arzad A. Kherani ,  Debojyoti Bhattacharya ,  Skanda N. Muthaiah

IPC分类号： H04L9/32

CPC分类号： H04L63/08 ,  H04L9/3247 ,  H04L63/12 ,  H04L67/12 ,  H04L2209/805 ,  H04L2209/84 ,  H04W4/046 ,  H04W4/70 ,  H04W12/06 ,  H04W12/10 ,  H04W84/005

摘要： A method for securing communications in a vehicle-to-vehicle (V2V) system including an on-board computer of a broadcasting vehicle predicting a value for a vehicle parameter, generating a heavyweight signature corresponding to the predicted value, and obtaining an actual value for the vehicle parameter. The method also includes the computer comparing the predicted value to the actual value to determine if the predicted value bears a first relationship to the actual value. If the computer determines that the predicted value bears the relationship to the actual value, the on-board computer generates a lightweight authenticating signature to correspond to the predicted value and broadcasts a data message having the predicted value with the corresponding heavyweight authenticating signature and the corresponding lightweight authenticating signature.

摘要翻译： 一种用于确保车辆到车辆（V2V）系统中的通信的方法，该系统包括预测车辆参数值的广播车辆的车载计算机，生成与预测值相对应的重量级签名，并获得实际值 车辆参数。 该方法还包括计算机将预测值与实际值进行比较以确定预测值是否与实际值具有第一关系。 如果计算机确定预测值与实际值具有关系，则车载计算机生成与预测值相对应的轻量级认证签名，并且广播具有相应重量级认证签名的具有预测值的数据消息，并且对应于 轻量级认证签名。

公开(公告)号：US08627073B2

公开(公告)日：2014-01-07

申请号：US12731075

申请日：2010-03-24

申请人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

发明人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

IPC分类号： H04L9/00 ,  H04L9/28 ,  H04L12/24 ,  H04K1/00 ,  H03M13/03

CPC分类号： H04L9/3268 ,  H04L1/0041 ,  H04L1/0057 ,  H04L41/5009 ,  H04L41/5038 ,  H04L63/0823 ,  H04L63/123 ,  H04L67/12 ,  H04L2209/84 ,  H04W12/06

摘要： A method for improving the reliability and performance of Vehicle-to-Vehicle (V2V) networks where digital certificates are necessary for message authentication and some messages may be lost in transmission. The method uses Forward Error Correcting (FEC) codes to encode a digital certificate into multiple segments, and attaches one or more segment to each message transmitted. Nodes receiving the messages can reconstruct the certificate as long as they successfully receive a minimum number of the transmitted messages, where the minimum number is less than the total number of messages transmitted. This allows message authentication to continue uninterrupted, even in a network environment where some messages are lost in transmission. Two different types of FEC codes are described, and adaptive schemes are included to optimize message throughput based on such network conditions as node density.

摘要翻译： 一种用于提高车载到车辆（V2V）网络的可靠性和性能的方法，其中数字证书对于消息认证是必需的，并且一些消息可能在传输中丢失。 该方法使用前向纠错（FEC）码将数字证书编码成多个段，并将一个或多个段附加到每个发送的消息。 接收消息的节点可以重建证书，只要它们成功地接收到发送的消息的最小数量，其中最小数目小于发送的消息总数。 这样即使在传输中丢失某些消息的网络环境中，也可以使消息认证继续不间断。 描述了两种不同类型的FEC码，并且包括自适应方案以基于诸如节点密度的网络条件来优化消息吞吐量。

公开(公告)号：US08499155B2

公开(公告)日：2013-07-30

申请号：US12731063

申请日：2010-03-24

申请人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

发明人： Arzad A. Kherani ,  Skanda N. Muthaiah ,  Debojyoti Bhattacharya

IPC分类号： H04L9/32 ,  H04L29/06

CPC分类号： H04L1/0041 ,  H04L1/0057 ,  H04L9/3268 ,  H04L43/0829 ,  H04L43/0882 ,  H04L63/0823 ,  H04L67/12 ,  H04L2209/84 ,  H04W12/06

摘要： A method for improving the reliability and performance of Vehicle-to-Vehicle (V2V) networks where digital certificates are necessary for message authentication and some messages may be lost in transmission. The method uses a variable inter-certificate refresh period to optimize communications throughput based on network conditions such as node density and bandwidth saturation. In some network conditions, the inter-certificate refresh period may be increased, such that more certificate digests are sent between full digital certificates, to decrease average message size. In other network conditions, the inter-certificate refresh period may be decreased, to allow for more frequent message authentication by receiving nodes. Empirical data and an adaptive controller are used to select the refresh period which will provide the best performance based on network conditions.

摘要翻译： 一种用于提高车载到车辆（V2V）网络的可靠性和性能的方法，其中数字证书对于消息认证是必需的，并且一些消息可能在传输中丢失。 该方法使用可变的证书间刷新周期来根据网络条件（如节点密度和带宽饱和度）优化通信吞吐量。 在一些网络条件下，可以增加证书间刷新周期，使得在全数字证书之间发送更多的证书摘要，以减少平均消息大小。 在其他网络条件下，可以减少证书间刷新周期，以允许接收节点进行更频繁的消息认证。 经验数据和自适应控制器用于选择基于网络条件提供最佳性能的刷新周期。

公开(公告)号：US08386790B2

公开(公告)日：2013-02-26

申请号：US12712349

申请日：2010-02-25

申请人： Debojyoti Bhattacharya ,  Arzad A. Kherani

发明人： Debojyoti Bhattacharya ,  Arzad A. Kherani

IPC分类号： H04L9/32 ,  H04L9/00 ,  H04K1/00 ,  H04L9/28

CPC分类号： H04L9/3252 ,  H04L9/3066 ,  H04L51/00 ,  H04L63/12 ,  H04L63/1441 ,  H04L2209/38 ,  H04L2209/80 ,  H04L2209/84 ,  H04W12/10

摘要： A method is provided of authenticating a digitally signed message. A chain of messages is generated. A Winternitz pair of keys is generated for each respective message. A sequence number is assigned to each of the messages. Each of the sequence numbers cooperatively identify an order of Winternitz verifiers assigned to each of the messages. A signature to a first message in the chain of messages is signed using a digital signature algorithm private key. Signatures to each of the following messages in the chain of messages are signed using both Winternitz private keys and digital signature algorithm private keys. The signed messages are broadcast from a sender to a receiver. The first signed broadcast message is authenticated at the receiver by verifying the digital signature algorithm signature. At least some of the following signed broadcast messages are authenticated at the receiver by verifying only the Winternitz signature.

摘要翻译： 提供了一种验证数字签名消息的方法。 生成消息链。 为每个相应的消息生成一个Winternitz对密钥。 序列号被分配给每个消息。 每个序列号协同地标识分配给每个消息的Winternitz验证器的顺序。 使用数字签名算法私钥对消息链中的第一个消息进行签名。 使用Winternitz私钥和数字签名算法私钥对签名链中的每个以下消息进行签名。 签名的消息从发送方广播到接收方。 通过验证数字签名算法签名，在接收方对第一个签署的广播消息进行认证。 通过仅验证Winternitz签名，在接收器处认证至少一些以下签名的广播消息。

公开(公告)号：US20110208971A1

公开(公告)日：2011-08-25

申请号：US12712349

申请日：2010-02-25

申请人： Debojyoti Bhattacharya ,  Arzad A. Kherani

发明人： Debojyoti Bhattacharya ,  Arzad A. Kherani

IPC分类号： H04L9/32 ,  H04L9/30

CPC分类号： H04L9/3252 ,  H04L9/3066 ,  H04L51/00 ,  H04L63/12 ,  H04L63/1441 ,  H04L2209/38 ,  H04L2209/80 ,  H04L2209/84 ,  H04W12/10

摘要： A method is provided of authenticating a digitally signed message. A chain of messages is generated. A Winternitz pair of keys is generated for each respective message. A sequence number is assigned to each of the messages. Each of the sequence numbers cooperatively identify an order of Winternitz verifiers assigned to each of the messages. A signature to a first message in the chain of messages is signed using a digital signature algorithm private key. Signatures to each of the following messages in the chain of messages are signed using both Winternitz private keys and digital signature algorithm private keys. The signed messages are broadcast from a sender to a receiver. The first signed broadcast message is authenticated at the receiver by verifying the digital signature algorithm signature. At least some of the following signed broadcast messages are authenticated at the receiver by verifying only the Winternitz signature.

摘要翻译： 提供了一种验证数字签名消息的方法。 生成消息链。 为每个相应的消息生成一个Winternitz对密钥。 序列号被分配给每个消息。 每个序列号协同地标识分配给每个消息的Winternitz验证器的顺序。 使用数字签名算法私钥对消息链中的第一个消息进行签名。 使用Winternitz私钥和数字签名算法私钥对签名链中的每个以下消息进行签名。 签名的消息从发送方广播到接收方。 通过验证数字签名算法签名，在接收方对第一个签署的广播消息进行认证。 通过仅验证Winternitz签名，在接收器处认证至少一些以下签名的广播消息。

公开(公告)号：US08549284B1

公开(公告)日：2013-10-01

申请号：US13467193

申请日：2012-05-09

申请人： Arzad A. Kherani

发明人： Arzad A. Kherani

IPC分类号： H04L29/06 ,  H04N7/167

CPC分类号： H04W12/06 ,  H04L63/0823

摘要： A method and system is provide for performing a certificate validity check between a vehicle receiving a message and an entity transmitting the message in a vehicle-to-entity communication system. The message includes a digital certificate. A determination is made whether the digital certificate is expired. A determination is made whether the digital certificate is listed in a local certificate revocation list stored in a memory of the vehicle in response to a determination that the digital certificate is not expired, otherwise, disregarding the message. An elapsed time is determined since a last freshness check in response the digital certificate not listed in the local certificate revocation list. The elapsed time is compared to a threshold requirement. The digital message is accepted for additional processing in response to the freshness check meeting the threshold requirement, otherwise, the message is disregarded.

摘要翻译： 提供一种方法和系统，用于在接收消息的车辆和在车对实体通信系统中发送消息的实体之间执行证书有效性检查。 该消息包括数字证书。 确定数字证书是否到期。 响应于确定数字证书未过期而确定数字证书是否列在存储在车辆的存储器中的本地证书撤销列表中，否则忽略该消息。 自从上次新鲜度检查以响应未在本地证书撤销列表中列出的数字证书确定经过时间。 将经过的时间与阈值要求进行比较。 数字消息被接受用于响应满足阈值要求的新鲜度检查的附加处理，否则消息被忽略。