SYSTEM AND METHOD FOR SECURE AND PERFORMANT ECU PAIRING

Organization Name

Robert Bosch GmbH

Inventor(s)

Pradeep Pappachan of Pittsburgh PA (US)

Jorge Guajardo Merchan of Pittsburgh PA (US)

Christian Matthias Didong of Sinzig (DE)

Shalabh Jain of Pittsburgh PA (US)

Stefan Gehrer of Pittsburgh PA (US)

SYSTEM AND METHOD FOR SECURE AND PERFORMANT ECU PAIRING - A simplified explanation of the abstract

This abstract first appeared for US patent application 18122958 titled 'SYSTEM AND METHOD FOR SECURE AND PERFORMANT ECU PAIRING

The abstract of this patent application describes a system and method for pairing two electronic control units (ECUs) by exchanging identification data, session keys, and tokens to establish secure communication between them.

• First ECU transmits its identification data to the second ECU.
• Second ECU receives the first ECU's identification data and sends its own identification data back.
• After a pairing request, the first ECU receives session data from a server containing a session ID, master session key (MSK), tokens, and security information of the second ECU.
• The first ECU derives session keys from the MSK and transmits the session ID and first token's encryption to the second ECU.
• The first ECU receives and decrypts the second token from the second ECU to establish secure communication using the session keys.

Potential Applications: - Automotive industry for secure communication between different ECUs in a vehicle. - Industrial automation for pairing control units in manufacturing processes. - Internet of Things (IoT) devices for establishing secure connections between devices.

Problems Solved: - Ensures secure communication between ECUs by exchanging session keys and tokens. - Prevents unauthorized access to sensitive data transmitted between ECUs.

Benefits: - Enhanced security for communication between electronic control units. - Simplified pairing process for establishing secure connections. - Improved reliability of data exchange between ECUs.

Commercial Applications: Title: Secure Communication System for Electronic Control Units This technology can be used in various industries such as automotive, manufacturing, and IoT for secure communication between electronic control units, enhancing data security and reliability in connected systems.

Questions about the technology: 1. How does the system ensure the authenticity of the second ECU during the pairing process? 2. What measures are in place to prevent unauthorized access to the session keys and tokens exchanged between ECUs?

Original Abstract Submitted

Systems and methods relate to pairing a first electronic control unit (ECU) to a second ECU. First identification data of the first ECU is transmitted to the second ECU. Second identification data of the second ECU is received from the second ECU. After a request to pair, the first ECU receives session data from a server. The session data includes a session identifier (ID) to identify the pairing, a master session key (MSK), a first token, and security information of the second ECU. The first ECU derives session keys based on the MSK. The session ID and the first token's encryption first token are transmitted to the second ECU. The first ECU receives and decrypts encryption of a second token from the second ECU. Secure communication is established between the first ECU and the second ECU via the session keys after the first ECU validates the second token.