WO2019016294A1 - Système d'information récréative pour un véhicule automobile - Google Patents

Système d'information récréative pour un véhicule automobile Download PDF

Info

Publication number
WO2019016294A1
WO2019016294A1 PCT/EP2018/069572 EP2018069572W WO2019016294A1 WO 2019016294 A1 WO2019016294 A1 WO 2019016294A1 EP 2018069572 W EP2018069572 W EP 2018069572W WO 2019016294 A1 WO2019016294 A1 WO 2019016294A1
Authority
WO
WIPO (PCT)
Prior art keywords
infotainment system
control unit
display
data
encrypted
Prior art date
Application number
PCT/EP2018/069572
Other languages
German (de)
English (en)
Inventor
Markus Klein
Kamil Zawadzki
Changsup Ahn
Original Assignee
Audi Ag
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Audi Ag filed Critical Audi Ag
Publication of WO2019016294A1 publication Critical patent/WO2019016294A1/fr

Links

Classifications

    • BPERFORMING OPERATIONS; TRANSPORTING
    • B60VEHICLES IN GENERAL
    • B60RVEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
    • B60R16/00Electric or fluid circuits specially adapted for vehicles and not otherwise provided for; Arrangement of elements of electric or fluid circuits specially adapted for vehicles and not otherwise provided for
    • B60R16/02Electric or fluid circuits specially adapted for vehicles and not otherwise provided for; Arrangement of elements of electric or fluid circuits specially adapted for vehicles and not otherwise provided for electric constitutive elements
    • B60R16/023Electric or fluid circuits specially adapted for vehicles and not otherwise provided for; Arrangement of elements of electric or fluid circuits specially adapted for vehicles and not otherwise provided for electric constitutive elements for transmission of signals between vehicle parts or subsystems
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2101/00Indexing scheme associated with group H04L61/00
    • H04L2101/60Types of network addresses
    • H04L2101/618Details of network addresses
    • H04L2101/627Controller area network [CAN] identifiers

Definitions

  • the present invention relates to an infotainment system for a
  • a motor vehicle which is protected against control by non-system components, and a method of operating the infotainment system.
  • infotainment is a key word from information and entertainment (entertainment). Infotainment systems typically include several distributed throughout the vehicle components, including control units, control units and
  • Display units These individual components may be connected, for example, via a common bus system, e.g. a CAN bus or a CAN FD bus, be connected to each other.
  • a common bus system e.g. a CAN bus or a CAN FD bus
  • Element control or operate the infotainment system can be undesirable.
  • the invention is therefore based on the object to provide a I nfota in ment system for a motor vehicle, against a control or operation is protected by non-system components.
  • a method for operating such an infotainment system is to be made available.
  • the object is achieved by encrypting the communication of the operation of the infotainment system, such as a control panel and / or a touch-sensitive screen.
  • a heartbeat signal sent from a display to a control unit is additionally encrypted.
  • CN 202271934 U discloses a device for preventing disassembly of a vehicle part based on CAN bus technology.
  • the device prevents intentional removal of the vehicle part by
  • Vehicle part and a control unit of an engine.
  • the invention relates to an infotainment system for a motor vehicle, which comprises at least one control unit, at least one control unit, and at least one display.
  • the at least one control unit is set up to exchange data with the at least one control unit and optionally the at least one display, in particular
  • Communication data and control data wherein the data is encrypted by the transmitter and decrypted by the receiver.
  • the infotainment system only the components belonging to the system have the key for encryption and decoding of the data contents required for operation or control of the infotainment system.
  • the system is against control or operation by non-system components
  • An additional advantage of the infotainment system according to the invention is that theft of individual system components becomes unattractive because the individual components outside the system are not functional since they can only communicate encrypted with other components.
  • At least one display is a flat screen. In another embodiment, at least one display is a touch-sensitive screen. In a In another embodiment, at least one operating part is a touch-sensitive screen. In one embodiment, the touch screen functions as both a keypad and an indicator.
  • the infotainment system In one embodiment of the infotainment system, the
  • the encrypted data is exchanged over a CAN bus.
  • the CAN bus complies with the standard defined in ISO 1 898.
  • the infotainment system the
  • the at least one control device is set up to exchange video data with at least one display, in particular to send a video data stream to the display.
  • the exchange takes place via a
  • the replacement is via Low Voltage Differential Signaling (LVDS).
  • LVDS Low Voltage Differential Signaling
  • At least one display is configured to send a heartbeat signal to the at least one controller and the at least one controller is configured to inhibit data exchange with the display in the absence of the heartbeat signal is this
  • Control unit configured to mute the audio channels of the infotainment system in the absence of the heartbeat signal mute.
  • the heartbeat signal is transmitted in encrypted form.
  • the at least one control device is set up to mute the audio channels of the infotainment system upon detection of a third-party device, eg a touch screen, which transmits unencrypted operator data on the communication channel, eg a CAN bus.
  • the data communication between the control unit, control unit and display is encrypted, the data being encrypted by the transmitter and decrypted by the receiver.
  • the at least one control unit, the at least one control unit and the at least one display are coupled via a vehicle-specific data key.
  • the data contents necessary for operation on the communication channel e.g. a CAN bus or CAN-FD bus, the infotainment system encrypted.
  • Different data contents lead to different encrypted messages.
  • the encrypted messages each have a length of up to 64 bytes.
  • a portion of the message consists of random bytes. This makes it difficult to decrypt the message without the vehicle-specific data key.
  • a 64-byte message may contain up to 60 random bytes, which makes it difficult to decode the message by a brute-force attack.
  • the encrypted messages each have a length of 8 bytes.
  • the message to be encrypted has a length of 8 bytes, with the first 4 bytes containing the data content
  • the message to be encrypted has a length of 8 bytes, the first 4 bytes representing the data content, the following byte reserved, and the last 3 bytes are chosen randomly. The randomly selected bytes are discarded after the message is decrypted at the receiver.
  • the choice and transmission of the data key occurs once when the components are installed. It is done by a pairing of control unit, control panel and display.
  • the key is vehicle-specific, therefore, an identical encrypted message is generated from an identical data content in each vehicle.
  • the invention also provides a method for operating an infotainment system according to the invention, in which the data contents necessary for the operation are encrypted by the transmitter with a key, transmitted in encrypted form on a communication bus or a control bus, for example CAN or CAN-FD, and at
  • Recipients are decrypted with the key.
  • Figure 1 is a schematic representation of a pairing of a control unit and a control panel
  • Figure 2 is a schematic representation of an embodiment of the infotainment system according to the invention and its interaction with a non-system control device
  • Figure 3 is a schematic representation of another embodiment of the infotainment system according to the invention and its interaction with a non-system control device.
  • FIG. 1 shows as a flowchart the sequence of a pairing of a control device and a control unit.
  • other pairings also occur, e.g. Pair a display, keypad, and controller, or pair a touchscreen with a controller.
  • the heartbeat may also be implemented as a question-answer protocol using e.g. An encrypted random number is sent as a question to the display and in response an encrypted and random number derived number is sent back.
  • step 00 it is queried whether a data key is already present in the control unit. If so, the process is complete.
  • a key is selected in step 1 0 and a container file is generated with the key.
  • step 200 it is checked whether a data key is already present in the control unit. If so, the process is complete. If this is not the case, in step 210, the key from the container file in the Key memory of the keypad written. Subsequently, an acknowledgment is sent to the control unit in step 220. In step 230, the key is then also in the keystore of the controller
  • FIG. 2 shows a schematic representation of an embodiment of the infotainment system 10 according to the invention and its interaction with a non-system control unit 1 7.
  • the illustrated infotainment system comprises a control unit 1 1, a control unit 12 and a display 13, which via a communication bus, here a CAN bus 14 is connected.
  • the controller 1 1 and the display 13 are also connected via a video channel, which here is an LVDS link comprising a transmission channel 15 for an LVDS data stream and a transmission channel 16 for a LVDS video stream.
  • a system-external control unit 17 is connected via an interface 18 to the CAN bus 14 and via an LVDS switch 19 with the LVDS link. According to the data content of communication between
  • Control unit 12 and control unit 1 1 and the communication between
  • FIG. 3 shows a schematic representation of another embodiment of the infotainment system 10 according to the invention and its interaction with a non-system control unit 1 7.
  • the illustrated infotainment system comprises a control unit 11 and a touch-sensitive screen 22 ("touchscreen") that performs the functions of the control panel and display , which are connected via a CAN bus 14.
  • the control unit 1 1 and the touch screen 22 are also connected via an LVDS link, which includes a transmission channel 15 for an LVDS data stream and a
  • Transmission channel 16 for a LVDS video stream is connected via an interface 18 to the CAN bus 14 and via an LVDS switch 19 with the LVDS link.
  • Infotainment system encrypted.
  • Control signals of the non-system controller 17 can from the
  • Touch screen 22 can not be detected. Since no heartbeat signal is sent to the controller 1 1, this locks the LVDS link; an LVDS video stream sent from the non-system controller 17 is received by the Touchscreen 22 not played. The non-system controller 17 in turn can not decrypt the messages of the touch screen 22.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Mechanical Engineering (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Selective Calling Equipment (AREA)

Abstract

La présente invention concerne un système d'information récréative pour un véhicule automobile, qui est protégé contre une commande ou un actionnement par des composants n'appartenant pas au système, ainsi qu'un procédé de fonctionnement du système d'information récréative.
PCT/EP2018/069572 2017-07-19 2018-07-19 Système d'information récréative pour un véhicule automobile WO2019016294A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE102017212344.3 2017-07-19
DE102017212344.3A DE102017212344A1 (de) 2017-07-19 2017-07-19 Infotainmentsystem für ein Kraftfahrzeug

Publications (1)

Publication Number Publication Date
WO2019016294A1 true WO2019016294A1 (fr) 2019-01-24

Family

ID=63047319

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2018/069572 WO2019016294A1 (fr) 2017-07-19 2018-07-19 Système d'information récréative pour un véhicule automobile

Country Status (2)

Country Link
DE (1) DE102017212344A1 (fr)
WO (1) WO2019016294A1 (fr)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005116834A1 (fr) * 2004-04-29 2005-12-08 Bayerische Motoren Werke Aktiengesellschaft Authentification d'appareils de commande dans un vehicule
GB2460923A (en) 2008-06-16 2009-12-23 Ibm Integrating consumer electronics devices into an in-car system
US20110176428A1 (en) * 2007-06-06 2011-07-21 Veedims, Llc System for integrating a plurality of modules using a power/data backbone network
US20120013201A1 (en) 2010-07-14 2012-01-19 Sinoelectric Powertrain Corporation Battery pack fault communication and handling
CN202271934U (zh) 2011-10-24 2012-06-13 天泽信息产业股份有限公司 一种基于can总线技术的车载终端防拆装置
WO2012126547A1 (fr) * 2011-03-22 2012-09-27 Audi Ag Appareil de commande pour véhicule automobile avec dispositif cryptographique
WO2015150872A1 (fr) * 2014-04-02 2015-10-08 Continental Automotive Gmbh Affichage de logo précoce dans une architecture multiprocesseur
DE102015225787A1 (de) * 2015-12-17 2017-06-22 Volkswagen Aktiengesellschaft Verfahren und Vorrichtung zur Empfängerauthentifikation in einem Fahrzeugnetzwerk

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
BRPI1008451A2 (pt) * 2009-02-18 2016-02-23 Commw Scient Ind Res Org método e aparelho para apresentar um sinal de pulsação de bit mascarado
US20110093639A1 (en) * 2009-10-19 2011-04-21 Microchip Technology Incorporated Secure Communications Between and Verification of Authorized CAN Devices
EP2618258A3 (fr) * 2012-01-19 2014-06-18 Cinemo GmbH Système de rendu multimédia
US9608739B2 (en) * 2013-10-15 2017-03-28 Visteon Global Technologies, Inc. System and method for a blended signal

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2005116834A1 (fr) * 2004-04-29 2005-12-08 Bayerische Motoren Werke Aktiengesellschaft Authentification d'appareils de commande dans un vehicule
US20110176428A1 (en) * 2007-06-06 2011-07-21 Veedims, Llc System for integrating a plurality of modules using a power/data backbone network
GB2460923A (en) 2008-06-16 2009-12-23 Ibm Integrating consumer electronics devices into an in-car system
US20120013201A1 (en) 2010-07-14 2012-01-19 Sinoelectric Powertrain Corporation Battery pack fault communication and handling
WO2012126547A1 (fr) * 2011-03-22 2012-09-27 Audi Ag Appareil de commande pour véhicule automobile avec dispositif cryptographique
CN202271934U (zh) 2011-10-24 2012-06-13 天泽信息产业股份有限公司 一种基于can总线技术的车载终端防拆装置
WO2015150872A1 (fr) * 2014-04-02 2015-10-08 Continental Automotive Gmbh Affichage de logo précoce dans une architecture multiprocesseur
DE102015225787A1 (de) * 2015-12-17 2017-06-22 Volkswagen Aktiengesellschaft Verfahren und Vorrichtung zur Empfängerauthentifikation in einem Fahrzeugnetzwerk

Also Published As

Publication number Publication date
DE102017212344A1 (de) 2019-01-24

Similar Documents

Publication Publication Date Title
DE102016218982B3 (de) Verfahren zur Kommunikation von Fahrzeugen
DE102010026433A1 (de) Steuernetzwerk für ein Schienenfahrzeug
DE102006048029B4 (de) Verfahren und Vorrichtung zur Übertragung von Daten zwischen einem Fahrtschreiber und einer Datenverarbeitungseinrichtung
DE10147446A1 (de) Verfahren und Vorrichtung zur Überwachung eines Bussystems und Bussystem
DE102017202022A1 (de) Kraftfahrzeug mit einem fahrzeuginternen Datennetzwerk sowie Verfahren zum Betreiben des Kraftfahrzeugs
EP3332348B1 (fr) Procédé de fonctionnement d'un véhicule automobile et système de fonctionnement d'un véhicule automobile
DE102008018001A1 (de) Verfahren und Vorrichtung zur Übertragung von Nachrichten in Echtzeit
WO2018077528A1 (fr) Détection de manipulations dans un réseau can par vérification d'identifiants can
EP3496975B1 (fr) Véhicule automobile ayant un réseau de données divisé en plusiers domaines séparés et procédé d'exploitation du réseau de données
DE102006024634B4 (de) Aktivierung der Empfangsbereitschaft eines Fahrzeugnetzwerks
EP3026640A1 (fr) Procede de preparation de donnees d'un vehicule automobile, procede d'evaluation de donnees d'au moins un vehicule et procede de surveillance de la circulation
DE102013202716A1 (de) Verfahren und Vorrichtung zum Freischalten mindestens einer softwarebasierten Funktion in mindestens einer elektronischen Steuereinheit eines Kraftfahrzeugs
DE102013001412A1 (de) Verfahren zur Steuerung einer Kommunikation zwischen einer Diagnosestelle eines Fahrzeugs und einem Fahrzeugnetz sowie entsprechende Steuerung für ein Fahrzeug
DE102004036810A1 (de) Kommunikationsverfahren für wenigstens zwei Systemkomponenten eines Kraftfahrzeugs
WO2018007049A1 (fr) Procédé d'authentification sécurisée de dispositifs de commande dans un véhicule automobile
DE102014206545A1 (de) Verfahren, Kommunikationssystem und Daten-Zugangsknoten zur Übermittlung von Daten
DE102011002713A1 (de) Verfahren und Vorrichtung zum Bereitstellen von kyptographischen Credentials für Steuergeräte eines Fahrzeugs
DE102010052486B4 (de) Steuerungsanordnung zur Steuerung des Betriebs eines spurgebundenen Fahrzeugs sowie Verfahren zum Herstellen der Steuerungsanordnung
DE102018200820A1 (de) Steuerungssystem für ein Kraftfahrzeug, Verfahren zum Betreiben des Steuerungssystems sowie Kraftfahrzeug mit einem derartigen Steuerungssystem
WO2019016294A1 (fr) Système d'information récréative pour un véhicule automobile
DE112014003345T5 (de) Datenausschlussvorrichtung
DE102019203307B3 (de) Kraftfahrzeug mit einer Anzeigeeinrichtung und Verfahren zum Anzeigen von Fahrzeuginformationen
DE19960959C2 (de) Vorrichtung zum manipulationssicheren Datenaustausch in einem Kraftfahrzeug
DE102018220324A1 (de) Verfahren zur Überwachung eines Datenübertragungssystems, Datenübertragungssystem und Kraftfahrzeug
DE102019001192B3 (de) Steuerungsvorrichtung und Verfahren zur Übernahme der Kontrolle

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 18746864

Country of ref document: EP

Kind code of ref document: A1

122 Ep: pct application non-entry in european phase

Ref document number: 18746864

Country of ref document: EP

Kind code of ref document: A1