-
1.发明申请公开(公告)号:US20130111212A1
公开(公告)日:2013-05-02
申请号:US13557031
申请日:2012-07-24
IPC分类号: H04L9/32
摘要: A method for providing digital signatures for authenticating the source and content of binary files which are flash programmed into automotive embedded controllers. A piece of electronic content is digitally signed on a signing server by creating a hash value and encrypting it using the signer's private key. The content file and digital signature files are then delivered using one of several alternative approaches to a programming tool, which in turn loads the content and signature files onto the controller on which the content will execute. The controller verifies the content by decrypting the signature file to restore the hash value, and comparing the decrypted hash value to a hash value calculated from the content itself. Multiple signature files for a piece of content are supported.
摘要翻译: 一种用于提供用于认证闪存编程到汽车嵌入式控制器中的二进制文件的源和内容的数字签名的方法。 通过创建哈希值并使用签名者的私钥对签名服务器上的一个电子内容进行数字签名。 然后使用编程工具的几种替代方法之一来传递内容文件和数字签名文件,编程工具又将内容和签名文件加载到内容将要执行的控制器上。 控制器通过解密签名文件来恢复内容,以恢复哈希值,并将解密的哈希值与从内容本身计算的散列值进行比较。 支持一个内容的多个签名文件。
-
公开(公告)号:US09021246B2
公开(公告)日:2015-04-28
申请号:US13557046
申请日:2012-07-24
CPC分类号: G06F21/57 , H04L9/0891 , H04L9/3247 , H04L2209/84
摘要: A system and method for writing a new or replacement public key to a bootloader stored in a memory segment in the memory of a vehicle ECU without having to rewrite the entire bootloader. The method includes defining a key table in the bootloader memory segment includes a number of vacant memory slots that are available to store replacement public keys if they are needed. The key table is a separate section of the bootloader memory segment so that the key table memory slots are not used by the bootloader code.
摘要翻译: 一种用于将新的或替换的公钥写入存储在车辆ECU的存储器中的存储器段中的引导加载器的系统和方法,而不必重写整个引导加载器。 所述方法包括在所述引导加载器存储段中定义密钥表,其包括若干需要存储替换公钥的空闲存储器时隙。 密钥表是引导加载程序内存段的单独部分,以便引导程序代码不使用密钥表存储器插槽。
-
公开(公告)号:US20140032916A1
公开(公告)日:2014-01-30
申请号:US13560207
申请日:2012-07-27
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/572 , H04L9/3236
摘要: A system and method for securely flashing a controller, where the controller includes at least one main processor and at least one secondary processor, and where the processing duties are distributed between the processors. A programming tool provides a content file to be flashed and a digital signature to the controller. The controller calculates a hash value of the content file, decrypts the digital signature using a public key to generate a decrypted hash value, compares the decrypted hash value to the calculated hash value, and determines that the content file is valid if the decrypted hash code matches the calculated hash value, where one or more of the steps of calculating the hash value, decrypting the digital signature, comparing the decrypted hash value to the calculated hash value and determining that the content file is valid, is performed by the main processor for the secondary processor.
摘要翻译: 一种用于安全地闪烁控制器的系统和方法,其中控制器包括至少一个主处理器和至少一个辅助处理器,并且其中处理任务分布在处理器之间。 编程工具提供要闪存的内容文件和控制器的数字签名。 控制器计算内容文件的哈希值,使用公共密钥对数字签名进行解密以生成解密的散列值,将解密的哈希值与所计算的散列值进行比较,并确定内容文件是否有效,如果解密的哈希码 匹配所计算的散列值,其中计算哈希值的一个或多个步骤,解密数字签名,将解密的散列值与所计算的哈希值进行比较并确定内容文件是有效的,由主处理器执行 二级处理器。
-
公开(公告)号:US08856538B2
公开(公告)日:2014-10-07
申请号:US13560207
申请日:2012-07-27
IPC分类号: H04L9/32
CPC分类号: H04L9/3247 , G06F21/572 , H04L9/3236
摘要: A system and method for securely flashing a controller, where the controller includes at least one main processor and at least one secondary processor, and where the processing duties are distributed between the processors. A programming tool provides a content file to be flashed and a digital signature to the controller. The controller calculates a hash value of the content file, decrypts the digital signature using a public key to generate a decrypted hash value, compares the decrypted hash value to the calculated hash value, and determines that the content file is valid if the decrypted hash code matches the calculated hash value, where one or more of the steps of calculating the hash value, decrypting the digital signature, comparing the decrypted hash value to the calculated hash value and determining that the content file is valid, is performed by the main processor for the secondary processor.
摘要翻译: 一种用于安全地闪烁控制器的系统和方法,其中控制器包括至少一个主处理器和至少一个辅助处理器,并且其中处理任务分布在处理器之间。 编程工具提供要闪存的内容文件和控制器的数字签名。 控制器计算内容文件的哈希值,使用公共密钥对数字签名进行解密以生成解密的散列值,将解密的散列值与所计算的哈希值进行比较,并确定内容文件是否有效,如果解密的哈希码 匹配所计算的散列值,其中计算哈希值的一个或多个步骤,解密数字签名,将解密的散列值与所计算的哈希值进行比较并确定内容文件是有效的,由主处理器执行 二级处理器。
-
公开(公告)号:US08978160B2
公开(公告)日:2015-03-10
申请号:US13612225
申请日:2012-09-12
IPC分类号: G06F21/12
CPC分类号: G06F8/65 , G06F21/57 , G06F21/572 , G06F21/64
摘要: A system and method for validating a software file to be installed into a controller. The method includes preparing the software file including assigning a software version code to the software file, assigning a security version code to the software file, and signing the software file with the software file version code and the security version code. The signed software file is presented to the controller for installing on the controller and the controller verifies the software file signature to determine if the software file is valid and the security version code is valid. The controller allows the software file to be installed in the controller if both the signed software file is valid and the security version code is valid.
摘要翻译: 用于验证要安装到控制器中的软件文件的系统和方法。 该方法包括准备软件文件,包括向软件文件分配软件版本代码,向软件文件分配安全版本代码,并使用软件文件版本代码和安全版本代码对软件文件进行签名。 将签名的软件文件提交给控制器,以便在控制器上安装,并且控制器验证软件文件签名,以确定软件文件是否有效,并且安全版本代码是否有效。 如果签名的软件文件有效并且安全版本代码有效,则控制器允许将软件文件安装在控制器中。
-
公开(公告)号:US08930710B2
公开(公告)日:2015-01-06
申请号:US13557060
申请日:2012-07-24
CPC分类号: G06F11/261 , G05B19/0426 , G05B19/0428 , G05B2219/24034 , G06F11/26 , G06F21/51 , G06F21/57
摘要: A system and method for verifying that operating software and calibration files are present and valid after a bootloader flashes the files into the memory on a vehicle ECU before allowing the operating software to execute. The ECU memory defines a memory segment for the operating software and the calibration files. A software manifest is provided in a memory slot before the operating software segment in the memory. Likewise, a calibration manifest is provided in a memory slot before the calibration segment in the ECU memory. After the software has been flashed into the ECU memory, a software flag is set in the software manifest memory slot and each time a calibration file is flashed, a calibration flag for the particular calibration file is set in the calibration manifest.
摘要翻译: 在允许操作软件执行之前,引导加载程序将文件闪烁到车辆ECU上的存储器中之后,验证操作软件和校准文件是否存在并有效的系统和方法。 ECU存储器为操作软件和校准文件定义了一个存储器段。 在存储器中的操作软件段之前的存储器插槽中提供软件清单。 同样,在ECU存储器中的校准段之前的存储器插槽中提供校准清单。 在软件闪烁进入ECU存储器之后,在软件清单存储器插槽中设置软件标志,并且每当闪烁校准文件时,在校准清单中设置用于特定校准文件的校准标志。
-
公开(公告)号:US20140075197A1
公开(公告)日:2014-03-13
申请号:US13612225
申请日:2012-09-12
IPC分类号: H04L9/32
CPC分类号: G06F8/65 , G06F21/57 , G06F21/572 , G06F21/64
摘要: A system and method for validating a software file to be installed into a controller. The method includes preparing the software file including assigning a software version code to the software file, assigning a security version code to the software file, and signing the software file with the software file version code and the security version code. The signed software file is presented to the controller for installing on the controller and the controller verifies the software file signature to determine if the software file is valid and the security version code is valid. The controller allows the software file to be installed in the controller if both the signed software file is valid and the security version code is valid.
摘要翻译: 用于验证要安装到控制器中的软件文件的系统和方法。 该方法包括准备软件文件,包括向软件文件分配软件版本代码,向软件文件分配安全版本代码,并使用软件文件版本代码和安全版本代码对软件文件进行签名。 将签名的软件文件提交给控制器,以便在控制器上安装,并且控制器验证软件文件签名,以确定软件文件是否有效,并且安全版本代码是否有效。 如果签名的软件文件有效并且安全版本代码有效,则控制器允许将软件文件安装在控制器中。
-
公开(公告)号:US08881308B2
公开(公告)日:2014-11-04
申请号:US13612165
申请日:2012-09-12
CPC分类号: G06F21/64 , G06F1/24 , G06F8/61 , G06F9/4401 , G06F9/4411 , G06F21/51 , G06F21/572 , G06F2221/2105
摘要: A system and method for installing software on a secure controller without requiring the software to be properly signed. The method includes determining whether a by-pass flag has been set in the controller that identifies whether a file validation procedure is required to install the file and performing a pre-check operation to determine whether predetermined parameters of the file have been satisfied. The method also includes installing the file into a memory in the controller if the pre-check operation has been satisfied. The method further includes determining whether the file has a proper signature and indicating that the signature is proper if the by-pass flag is set and the file does not include a proper signature, and allowing the file to be installed if the signature has been indicated as being proper.
摘要翻译: 一种用于在安全控制器上安装软件的系统和方法,无需软件正确签名。 该方法包括确定在控制器中是否设置了旁路标志,其标识文件验证过程是否需要安装文件并执行预检操作以确定文件的预定参数是否已被满足。 该方法还包括如果已经满足了预先检查操作,则将文件安装到控制器中的存储器中。 该方法还包括确定文件是否具有适当的签名并且如果设置了旁路标志并且该文件不包括适当的签名并指示该签名是适当的,并且如果已经指示了签名,则允许该文件被安装 作为适当的
-
公开(公告)号:US20130111271A1
公开(公告)日:2013-05-02
申请号:US13557060
申请日:2012-07-24
IPC分类号: G06F11/36
CPC分类号: G06F11/261 , G05B19/0426 , G05B19/0428 , G05B2219/24034 , G06F11/26 , G06F21/51 , G06F21/57
摘要: A system and method for verifying that operating software and calibration files are present and valid after a bootloader flashes the files into the memory on a vehicle ECU before allowing the operating software to execute. The ECU memory defines a memory segment for the operating software and the calibration files. A software manifest is provided in a memory slot before the operating software segment in the memory. Likewise, a calibration manifest is provided in a memory slot before the calibration segment in the ECU memory. After the software has been flashed into the ECU memory, a software flag is set in the software manifest memory slot and each time a calibration file is flashed, a calibration flag for the particular calibration file is set in the calibration manifest.
摘要翻译: 在允许操作软件执行之前,引导加载程序将文件闪烁到车辆ECU上的存储器中之后,验证操作软件和校准文件是否存在并有效的系统和方法。 ECU存储器为操作软件和校准文件定义了一个存储器段。 在存储器中的操作软件段之前的存储器插槽中提供软件清单。 同样,在ECU存储器中的校准段之前的存储器插槽中提供校准清单。 在软件闪烁进入ECU存储器之后,在软件清单存储器插槽中设置软件标志,并且每当闪烁校准文件时,在校准清单中设置用于特定校准文件的校准标志。
-
10.发明申请AUTHORIZATION SCHEME TO ENABLE SPECIAL PRIVILEGE MODE IN A SECURE ELECTRONIC CONTROL UNIT 审中-公开在安全电子控制单元中启用特殊特权模式的授权方案公开(公告)号:US20140075517A1
公开(公告)日:2014-03-13
申请号:US13612139
申请日:2012-09-12
IPC分类号: G06F21/00
CPC分类号: H04W4/60 , G06F21/572 , H04L63/126 , H04L67/12 , H04L2209/84 , H04W4/40
摘要: A system and method for by-passing a security code to allow developmental software to be installed on a production controller without having to authenticate the software. The method includes requesting information from the controller and creating an information ticket in the controller in response to the request that identifies the controller. The information ticket is sent to a secure server that creates an authorization ticket that identifies the controller from the information ticket and creates a security code for the ticket. The authorization ticket is presented to the controller and if the security code is verified by the controller, the controller allows the developmental software to be installed.
摘要翻译: 一种用于旁路安全代码以允许开发软件安装在生产控制器上而不必对软件进行认证的系统和方法。 该方法包括响应于识别控制器的请求,从控制器请求信息并在控制器中创建信息票据。 信息票据被发送到安全服务器,该安全服务器创建从信息票据中标识控制器的授权票据,并为票据创建安全代码。 授权票据提交给控制器,如果安全代码由控制器验证,则控制器允许安装开发软件。
-
-
-
-
-
-
-
-
-
搜索结果
62 条记录 (耗时 0.026 秒)
