公开(公告)号：US20190306149A1

公开(公告)日：2019-10-03

申请号：US15940415

申请日：2018-03-29

申请人： NIO USA, Inc.

发明人： Francisco Javier Vazquez Vidal ,  Abraham T. Chen

IPC分类号： H04L29/06 ,  H04L9/08 ,  H04L9/32

摘要： Embodiments of the present disclosure are directed to a secure vehicle communication interface device that authorizes communication to one or more systems of a vehicle through a diagnostic, or other, communication port. A service device used to access the secure communication channel may be configured as a small apparatus that is connected to a port to authenticate communications across the port. Without the device, the port would remain locked and prevent access to any systems or subsystems of the vehicle.

公开(公告)号：US20190187971A1

公开(公告)日：2019-06-20

申请号：US15849131

申请日：2017-12-20

申请人： NIO USA, Inc.

发明人： Qiyan Wang ,  Abraham T. Chen ,  Veysel Özer

IPC分类号： G06F8/65 ,  H04L29/06 ,  H04W12/04 ,  H04L29/08

CPC分类号： G06F8/65 ,  H04L63/0823 ,  H04L67/34 ,  H04W12/04

摘要： Embodiments of the present disclosure are directed to methods and systems for providing secure over-the-air firmware updates to one or more vehicles. More specifically, the present disclosure describes applying to firmware images distributed to one or more vehicles encryption that is unique to each update version. The encryption is also unique to each vehicle receiving the update. Embodiments of the present disclosure can also include determining and verifying the integrity of an available OTA firmware update prior to authorizing installation of the firmware update in a vehicle.

公开(公告)号：US10530816B2

公开(公告)日：2020-01-07

申请号：US15599256

申请日：2017-05-18

申请人： NIO USA, Inc.

发明人： Abraham T. Chen

IPC分类号： H04L29/06 ,  H04L9/32 ,  H04L9/00 ,  H04W12/02 ,  G06F21/33 ,  G06F21/85 ,  H04W12/10 ,  H04W12/12 ,  H04W12/00 ,  H04W4/40

摘要： Embodiments of the present disclosure monitor certificates or other credentials loaded to various components and systems of a vehicle. A set of information identifying credentials that are expected to be present and/or in use can be saved. Periodically, on request, or upon the occurrence of an event or condition, checks can be performed on the credentials individually or in the aggregate using the saved information to determine whether the certificates present and/or in use are those expected or if a change has occurred. If a change is detected, i.e., a difference between the current set of certificates and the saved set of information, the network security system can take some action. The action, depending on the nature of the change detected, can vary from recording and/or reporting the condition up to and including isolating or even disabling a particular component or system on which the changed certificate is used.