公开(公告)号：US12130903B2

公开(公告)日：2024-10-29

申请号：US17697291

申请日：2022-03-17

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell

IPC: G06F21/44 ,  G06F8/65 ,  H04L9/08 ,  H04L9/32

CPC classification number: G06F21/44 ,  G06F8/65 ,  H04L9/0866 ,  H04L9/0869 ,  H04L9/3242 ,  G06F2221/2103

Abstract: A method and system for authenticating soft part updates to an electronic control unit (ECU) or other processing device is contemplated. The authenticating may include a back office providing authentication data to a programming tool whereupon the ECU interacts with the programming tool to authenticate the soft part updates. The authenticating may optionally include the ECU identifying whether the soft part update is to be authenticated according to different types of authentications.

公开(公告)号：US12278811B2

公开(公告)日：2025-04-15

申请号：US18073540

申请日：2022-12-01

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Sherif Aly ,  Mohamed A. Layouni ,  Manohar Reddy Nanjundappa

IPC: G06F21/00 ,  H04L9/40

Abstract: An electronic control unit (ECU), or node, is configured to use a single key for generating requests from a security peripheral for a MAC. The security peripheral includes the stored shared key. The security peripheral may further include a policy enabling it to detect if a request from the V-ECU is valid, in which case it generates a MAC. The security peripheral is also used to store information in a MAC Generate Allow List (MGAL). In some embodiments, the receiving nodes in a network receive data based on a security peripheral's response to a transmit nodes requests for a MAC. The receiving nodes use this knowledge to avoid being spoofed.

公开(公告)号：US12151692B2

公开(公告)日：2024-11-26

申请号：US17847812

申请日：2022-06-23

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Joseph E. Ploucha

IPC: B60W50/02 ,  B60W50/00

Abstract: A method for performance tuning an electronic control unit (ECU). The performance tuning may include determining one or more tunable values stored on a tunable implementation memory of the ECU to specify tunable calibration data for one or more tunable calibration parameters selected for performance tuning and controlling an application software of the ECU to execute according to the tunable calibration data.

公开(公告)号：US20240187401A1

公开(公告)日：2024-06-06

申请号：US18073540

申请日：2022-12-01

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Sherif Aly ,  Mohamed A. Layouni ,  Manohar Reddy Nanjundappa

IPC: H04L9/40

CPC classification number: H04L63/083 ,  H04L63/20

Abstract: An electronic control unit (ECU), or node, is configured to use a single key for generating requests from a security peripheral for a MAC. The security peripheral includes the stored shared key. The security peripheral may further include a policy enabling it to detect if a request from the V-ECU is valid, in which case it generates a MAC. The security peripheral is also used to store information in a MAC Generate Allow List (MGAL). In some embodiments, the receiving nodes in a network receive data based on a security peripheral's response to a transmit nodes requests for a MAC. The receiving nodes use this knowledge to avoid being spoofed.

公开(公告)号：US20240143772A1

公开(公告)日：2024-05-02

申请号：US17975695

申请日：2022-10-28

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell

IPC: G06F21/57 ,  G06F9/4401 ,  H04L9/30 ,  H04L9/32

CPC classification number: G06F21/575 ,  G06F9/4401 ,  G06F21/572 ,  H04L9/30 ,  H04L9/3242 ,  G06F2221/034

Abstract: A system for implementing a secure boot event includes a system on a chip (SoC). The SoC includes key hashes stored within one-time programmable memory. Each of the key hashes is configured for use with one of a plurality of candidate authentication key sets. The SoC further includes firmware stored within RAM. The firmware includes a secondary bootloader, a plurality of public keys, and corresponding signatures. The public keys and corresponding signatures are configured for use with one of the key sets. The SoC further includes a primary bootloader utilizing fuses stored within the programmable memory. The fuses activate a selected key hash based upon an ecosystem in which the system is to operate. The selected hash and a corresponding public key and signature define an active authentication key set. During the event, the primary bootloader utilizes the active authentication key set to authenticate a downloaded update to the firmware.

公开(公告)号：US20230418944A1

公开(公告)日：2023-12-28

申请号：US17848629

申请日：2022-06-24

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Joseph E. Ploucha

IPC: G06F21/57 ,  G06F8/65 ,  B60R16/023

CPC classification number: G06F21/577 ,  B60R16/023 ,  G06F8/65 ,  G06F21/575

Abstract: A method for securing an electronic control unit (ECU). The method may include generating a granular security control adjustment authorization ticket (G-SCAAT) for securing the ECU according to a plurality of security parameters determined based on to a role selected for a corresponding user. The G-SCAAT may include security values to be used in controlling the ECU to operate according to the security parameters.

公开(公告)号：US20230415754A1

公开(公告)日：2023-12-28

申请号：US17847812

申请日：2022-06-23

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Joseph E. Ploucha

IPC: B60W50/02

CPC classification number: B60W50/0205 ,  B60W50/0225 ,  B60W2050/021 ,  B60W2050/0083

Abstract: A method for performance tuning an electronic control unit (ECU). The performance tuning may include determining one or more tunable values stored on a tunable implementation memory of the ECU to specify tunable calibration data for one or more tunable calibration parameters selected for performance tuning and controlling an application software of the ECU to execute according to the tunable calibration data.

公开(公告)号：US20230073884A1

公开(公告)日：2023-03-09

申请号：US17470295

申请日：2021-09-09

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Thomas M. Forest

IPC: G06F21/57 ,  G06F21/54 ,  G06F21/60 ,  G06F21/79

Abstract: A method to perform secure boot procedure using a multi-stage security verification is provided. The procedure includes, within a microcontroller, referring to a table to identify a first defined memory region including code useful to start-up application programming of the microcontroller, wherein the application programming is operable to provide a function of the microcontroller to the vehicle, and a second defined memory region, including programming and data useful to operation of the application programming of the microcontroller. The procedure further includes, within a first stage, verifying authenticity of contents of the first region and starting-up the application programming of the microcontroller based upon verifying the authenticity of the contents of the first region. The procedure further includes, within a second stage, verifying authenticity of contents of the second region and operating the application programming to provide the function based upon verifying the authenticity of the contents of the second region.

公开(公告)号：US20250080358A1

公开(公告)日：2025-03-06

申请号：US18459603

申请日：2023-09-01

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  Sherif Aly ,  Manohar Reddy Nanjundappa

IPC: H04L9/32 ,  H04L9/08

Abstract: An electronic control unit (ECU), or node, is configured to use a single key for generating requests from a security peripheral for a MAC. The security peripheral includes the stored shared key. The security peripheral may further include a policy enabling it to detect if a request from the V-ECU is valid, in which case it generates a MAC. The security peripheral is also used to store information in a MAC Generate Allow List (MGAL). In some embodiments, the receiving nodes in a network receive data based on a security peripheral's response to a transmit nodes requests for a MAC. The receiving nodes use this knowledge to avoid being spoofed.

公开(公告)号：US12238097B2

公开(公告)日：2025-02-25

申请号：US18073410

申请日：2022-12-01

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell

IPC: H04L9/40 ,  B60R16/023

Abstract: An electronic control unit (ECU), or node, is configured to use a single key for all virtual ECUs (V-ECUs) having a message to transmit. The ECU also may include a security peripheral that includes the stored shared key. The security peripheral may further include a policy enabling it to detect if a request from the V-ECU is valid, in which case it generates a MAC. The security peripheral is also used to store information in a MAC Generate Allow List (MGAL), which may define the policy about when the V-ECU can transmit. The ECU may include a crypto-engine, which stores shared keys from other nodes used to verify MACs transmitted by other nodes.