公开(公告)号：US20150363606A1

公开(公告)日：2015-12-17

申请号：US14302162

申请日：2014-06-11

Applicant: GM Global Technology Operations LLC

Inventor： David M. Nairn ,  Stephan Huang ,  Muralikrishnan K

IPC: G06F21/62 ,  G06F21/57 ,  G06F21/55

CPC classification number: G06F21/6218 ,  G06F21/78 ,  H04L63/1491

Abstract: A vehicle system and method of secure communication between a vehicle and an external device communicating with the vehicle in a diagnostics mode. The method includes the steps of: receiving a first diagnostic request at an electronic control unit (ECU) from the external device; determining an increased risk of security breach at the ECU based on the [nature of the] first request; and when it is determined that the increased risk exists, providing a misinformative response

Abstract translation: 一种车辆系统和在诊断模式下与车辆通信的车辆与外部设备之间的安全通信的方法。 该方法包括以下步骤：从外部设备在电子控制单元（ECU）处接收第一诊断请求; 根据[第一要求的性质]确定ECU在安全漏洞方面的风险增加; 并且当确定存在增加的风险时，提供错误的反应

公开(公告)号：US09477843B2

公开(公告)日：2016-10-25

申请号：US14302162

申请日：2014-06-11

Applicant: GM Global Technology Operations LLC

Inventor： David M. Nairn ,  Stephan Huang ,  Muralikrishnan K

IPC: G01M17/00 ,  G06F21/62 ,  G06F21/78

CPC classification number: G06F21/6218 ,  G06F21/78 ,  H04L63/1491

Abstract: A vehicle system and method of secure communication between a vehicle and an external device communicating with the vehicle in a diagnostics mode. The method includes the steps of: receiving a first diagnostic request at an electronic control unit (ECU) from the external device; determining an increased risk of security breach at the ECU based on the [nature of the] first request; and when it is determined that the increased risk exists, providing a misinformative response.

Abstract translation: 一种车辆系统和在诊断模式下与车辆通信的车辆与外部设备之间的安全通信的方法。 该方法包括以下步骤：从外部设备在电子控制单元（ECU）处接收第一诊断请求; 根据[第一要求的性质]确定ECU在安全漏洞方面的风险增加; 并且当确定存在增加的风险时，提供错误的反应。

公开(公告)号：US20160035148A1

公开(公告)日：2016-02-04

申请号：US14445821

申请日：2014-07-29

Applicant: GM Global Technology Operations LLC

Inventor： Stephan Huang ,  David M. Nairn ,  Muralikrishnan K

IPC: G07C5/00

CPC classification number: G07C5/008 ,  G07C2205/02 ,  H04L9/0866 ,  H04L2209/84

Abstract: A communication system in a vehicle is described and various methods for securely providing diagnostic data between a vehicle and a remote server using a vehicle diagnostic tool. The method may include the steps of: receiving at the remote from the diagnostic tool both a challenge question and encrypted data acquired by the diagnostic tool from a vehicle electronic control unit; using the challenge question to determine how to decrypt the encrypted data; and decrypting the encrypted data at the remote server.

Abstract translation: 描述车辆中的通信系统以及使用车辆诊断工具在车辆和远程服务器之间安全地提供诊断数据的各种方法。 该方法可以包括以下步骤：在距离诊断工具的远程处接收由诊断工具从车辆电子控制单元获取的质询问题和加密数据; 使用挑战问题来确定如何解密加密数据; 并解密远程服务器上的加密数据。

公开(公告)号：US11804981B2

公开(公告)日：2023-10-31

申请号：US17149453

申请日：2021-01-14

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  David M. Nairn ,  Thomas M. Forest

IPC: H04L12/40 ,  H04L9/08

CPC classification number: H04L12/40104 ,  H04L9/0866 ,  H04L9/0894 ,  H04L2012/40215 ,  H04L2012/40273 ,  H04L2209/84

Abstract: The present application relates to a method and apparatus for intelligent wireless protocol optimization including storing, in a memory, a first customer key and a second customer key, receiving, by a processor, a secret key, decrypting, by the processor, the secret key using a first customer key to extract a master key, provisioning, by the processor, an electronic control unit in response to the master key, and deleting, by the processor, the second customer key in response to the provisioning of electronic control unit in response to the master key.

公开(公告)号：US20160099806A1

公开(公告)日：2016-04-07

申请号：US14508355

申请日：2014-10-07

Applicant: GM Global Technology Operations LLC

Inventor： David W. Racklyeft ,  David M. Nairn ,  Thomas M. Forest

IPC: H04L9/08 ,  H04W12/04 ,  H04L29/06

CPC classification number: H04W12/04 ,  H04L9/0866 ,  H04L9/321 ,  H04L63/10 ,  H04L67/12 ,  H04L2209/84 ,  H04W12/08

Abstract: A system and method of controlling access to electronic control units (ECUs) includes: receiving, at an ECU supplier computer, a supplier encryption key derived from a master encryption key using a supplier identifier that identifies an ECU supplier; issuing an ECU identifier that identifies an ECU and includes the supplier identifier; generating for the ECU an ECU unlock authorization key using the supplier encryption key and the ECU identifier; and storing the ECU unlock authorization key and the ECU identifier in the ECU.

Abstract translation: 控制对电子控制单元（ECU）的访问的系统和方法包括：使用识别ECU供应商的供应商标识符，在ECU供应商计算机处接收从主加密密钥导出的供应商加密密钥; 发出识别ECU并包括供应商标识符的ECU标识符; 使用供应商加密密钥和ECU标识符为ECU生成ECU解锁授权密钥; 并将ECU解锁授权密钥和ECU识别符存储在ECU中。

公开(公告)号：US09998494B2

公开(公告)日：2018-06-12

申请号：US14481043

申请日：2014-09-09

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： David M. Nairn ,  Thomas M. Forest

IPC: H04L29/06

CPC classification number: H04L63/1466 ,  H04L63/126

Abstract: A method provides secure communication between a first module and a second module within a vehicle communication network. A first anti-replay counter is provided within the first module, and a second anti-replay counter is provided within the second module. A message is transmitted from the first module to the second module over the vehicle communication network. The message includes a partial counter including only a portion of the contents of the first anti-replay counter, and the message is authenticated based on the partial counter.

公开(公告)号：US20160026787A1

公开(公告)日：2016-01-28

申请号：US14340726

申请日：2014-07-25

Applicant: GM Global Technology Operations LLC

Inventor： David M. Nairn ,  Thomas M. Forest ,  Padma Sundaram ,  Mohammed Abdulla Yousuf

IPC: G06F21/44 ,  G06F13/42

CPC classification number: G06F13/4282 ,  G06F21/64 ,  G06F21/85

Abstract: A system and method of transmitting data within a vehicle over a vehicle bus includes: constructing at an electronic control unit (ECU) a serial bus message that includes a data message and a message authentication code (MAC) that is created using a secret key stored at the ECU, a MAC algorithm, and the data message; transmitting the serial bus message to a receiving ECU over the vehicle bus; and authenticating the serial bus message at the receiving ECU using a copy of the secret key stored at the receiving ECU by creating a copy of the MAC from the data message included in the serial bus message, the copy of the secret key, and the MAC algorithm; comparing the MAC included in the serial bus message with the copy of the MAC created at the receiving ECU; and rejecting or accepting the data message based on the comparison.

Abstract translation: 一种在车辆车辆内部传输数据的系统和方法包括：在电子控制单元（ECU）处构建包括数据消息的串行总线消息和使用存储的秘密密钥创建的消息认证码（MAC） 在ECU处，MAC算法和数据消息; 通过车辆总线将串行总线消息发送到接收ECU; 以及使用存储在接收ECU处的秘密密钥的副本，在接收ECU处验证串行总线消息，通过从包括在串行总线消息中的数据消息，秘密密钥和MAC的副本创建MAC的副本 算法; 将串行总线消息中包括的MAC与在接收ECU处创建的MAC的副本进行比较; 并基于比较拒绝或接受数据消息。

公开(公告)号：US20220224561A1

公开(公告)日：2022-07-14

申请号：US17149453

申请日：2021-01-14

Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLC

Inventor： Brian Farrell ,  David M. Nairn ,  Thomas M. Forest

IPC: H04L12/40 ,  H04L9/08

Abstract: The present application relates to a method and apparatus for intelligent wireless protocol optimization including storing, in a memory, a first customer key and a second customer key, receiving, by a processor, a secret key, decrypting, by the processor, the secret key using a first customer key to extract a master key, provisioning, by the processor, an electronic control unit in response to the master key, and deleting, by the processor, the second customer key in response to the provisioning of electronic control unit in response to the master key.

公开(公告)号：US10211990B2

公开(公告)日：2019-02-19

申请号：US15215078

申请日：2016-07-20

Applicant: GM Global Technology Operations LLC

Inventor： David M. Nairn ,  Thomas M. Forest ,  Padma Sundaram ,  Mohammed Abdulla Yousuf

IPC: H04L9/32 ,  G06F13/42 ,  G06F21/64 ,  G06F21/85

Abstract: A method of transmitting data within a vehicle includes: storing two copies of a data message; constructing at an electronic control unit (ECU) a serial bus message that includes one copy of the data message and a message authentication code (MAC) created using a secret key stored at the ECU, a MAC algorithm, and a different copy of the data message; transmitting the serial bus message to a receiving ECU over a vehicle bus; authenticating the serial bus message at the receiving ECU using a copy of the key stored at the receiving ECU by creating a copy of the MAC from the data message included in the serial bus message and the copy of the key; comparing the MAC from the serial bus message with the copy of the MAC created at the receiving ECU; and rejecting or accepting the data message based on the comparison.

公开(公告)号：US09619946B2

公开(公告)日：2017-04-11

申请号：US14445821

申请日：2014-07-29

Applicant: GM Global Technology Operations LLC

Inventor： Stephan Huang ,  David M. Nairn ,  Muralikrishnan K

IPC: G07C5/00 ,  H04L9/08

CPC classification number: G07C5/008 ,  G07C2205/02 ,  H04L9/0866 ,  H04L2209/84

Abstract: A communication system in a vehicle is described and various methods for securely providing diagnostic data between a vehicle and a remote server using a vehicle diagnostic tool. The method may include the steps of: receiving at the remote from the diagnostic tool both a challenge question and encrypted data acquired by the diagnostic tool from a vehicle electronic control unit; using the challenge question to determine how to decrypt the encrypted data; and decrypting the encrypted data at the remote server.