WO2020126365A1 - Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung - Google Patents

Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung Download PDF

Info

Publication number
WO2020126365A1
WO2020126365A1 PCT/EP2019/082704 EP2019082704W WO2020126365A1 WO 2020126365 A1 WO2020126365 A1 WO 2020126365A1 EP 2019082704 W EP2019082704 W EP 2019082704W WO 2020126365 A1 WO2020126365 A1 WO 2020126365A1
Authority
WO
WIPO (PCT)
Prior art keywords
computing device
messages
cryptography module
designed
received messages
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/EP2019/082704
Other languages
German (de)
English (en)
French (fr)
Inventor
Christopher Pohl
Frederic Stumpf
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Robert Bosch GmbH
Original Assignee
Robert Bosch GmbH
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Robert Bosch GmbH filed Critical Robert Bosch GmbH
Priority to CN201980083258.3A priority Critical patent/CN113169925A/zh
Priority to JP2021534678A priority patent/JP7372975B2/ja
Priority to EP19809829.5A priority patent/EP3900275B1/de
Priority to US17/312,600 priority patent/US11960611B2/en
Publication of WO2020126365A1 publication Critical patent/WO2020126365A1/de
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/40Bus networks
    • H04L12/403Bus networks with centralised control, e.g. polling
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • H04L9/3242Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/40Bus networks
    • H04L2012/40267Bus for use in transportation systems
    • H04L2012/40273Bus for use in transportation systems the transportation system being a vehicle
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/84Vehicles

Definitions

  • the disclosure relates to a computing device, in particular for a
  • Control unit of a motor vehicle the computing device being designed to receive messages from at least one external unit.
  • the disclosure further relates to a method for operating such a computing device.
  • Preferred embodiments relate to a computing device, in particular for a control unit of a motor vehicle, the
  • the computing device is designed to receive messages from at least one external unit, for example further control devices, the computing device being designed to store the received messages at least temporarily and a plurality of the received ones
  • Computing device is designed to receive a result of the check from the cryptography module and to process at least one of the plurality of messages received depending on the result of the check.
  • Computing device is designed to wait for a predeterminable minimum number of received messages before the majority of the received messages are transmitted to the cryptography module.
  • the computing device is designed to wait for a predefinable period of time before the majority of the messages received, in particular during the predeterminable period of time, is transmitted to the cryptography module.
  • the at least temporarily storing received messages comprises at least temporarily storing the received messages in a storage device which both the computing device and the cryptography module can access, the transmission comprising the following steps:
  • the first control information comprises at least one pointer and / or a number of the messages received.
  • the computing device is designed to transfer second control information to the cryptography module, the second control information characterizing a memory area or an address in the memory device, into which memory area or to which address the cryptography module should write or the result of the check.
  • Computing device is designed to carry out no processing of a received message if the received message has not already been checked by the cryptography module. This ensures that only messages checked by the cryptography module are processed.
  • the cryptography module is integrated into the computing device and / or that the cryptography module is arranged on the same semiconductor substrate as the computing device, which results in a particularly small configuration.
  • the computing device generally receives or ascertains data or messages from other sources (for example, data or messages itself formed by the computing device) and optionally under
  • Application of a cryptographic process can be edited or edited (in particular by the cryptographic module), for example provided or provided with a cryptographic signature.
  • the computing device can transmit the messages (obtained from other sources and / or self-generated) to the cryptography module, preferably in turn a plurality of the messages mentioned, the cryptography module in further preferred embodiments these messages (e.g. instead of the above
  • the cryptographic signature preferably all of the above-mentioned majority of the messages are initially provided with the signature, and in further preferred embodiments the messages provided with the signature are then transmitted to the computing device, which in further preferred embodiments then sends the signed messages to, for example further computing devices or control devices transmitted.
  • Further preferred embodiments relate to a method for operating a computing device, in particular for a control device of a motor vehicle, the computing device receiving messages from at least one external unit, the computing device storing the received messages at least temporarily and transmitting a plurality of the received messages to a cryptography module, which is designed to check the transmitted messages. Further preferred embodiments relate to a cryptography module for a computing device, in particular for a computing device according to the embodiments, wherein the cryptography module is designed to receive a plurality of messages from the computing device and to carry out a check of the received messages.
  • CMAC Cipher-based Message Authentication Code
  • Cryptography module is designed to send a result of the check to the computing device, the sending in particular the writing of result information characterizing the result in a
  • predeterminable memory area of a memory device that can be accessed by both the computing device and the cryptography module.
  • Further preferred embodiments relate to the use of the computing device according to the embodiments and / or the method according to the embodiments and / or the cryptography module according to the embodiments for processing messages, in particular messages transmitted via a bus system of a vehicle, in particular a motor vehicle.
  • FIG. 1 schematically shows a simplified block diagram of a computing device according to preferred embodiments
  • FIG. 2 schematically shows a simplified flow diagram of a method according to further preferred embodiments
  • FIG. 3 schematically shows a simplified flow diagram of a method according to further preferred embodiments
  • FIG. 4 schematically shows a simplified flow diagram of a method according to further preferred embodiments
  • FIG. 6 schematically shows a simplified block diagram of a computing device according to further preferred embodiments
  • FIG. 7 schematically shows a simplified block diagram of a computing device according to further preferred embodiments.
  • FIG. 8 schematically shows a simplified block diagram of a semiconductor substrate according to further preferred embodiments.
  • FIG. 9 schematically shows a simplified block diagram of a control device according to further preferred embodiments.
  • Figure 1 shows schematically a simplified block diagram of a
  • Computing device 100 according to preferred embodiments.
  • Computing device 100 is designed to receive messages N (or generally any data) from at least one external unit 200, for example a control unit, the received messages N at least temporarily stored, and to transmit a plurality N 'of the received messages N to a cryptography module 400 which is designed to carry out a check of the transmitted messages N'.
  • the multiple transmitted messages N ' can be checked efficiently, and the plurality N' of the messages can be transmitted to the cryptography module 400 by the computing device 100 in a particularly resource-saving manner, for example as a coherent block of data, for example in contrast to one repeated transmission of individual messages.
  • FIG. 2 schematically shows a simplified flow diagram of a method according to further preferred embodiments.
  • device 100 receives messages N (or generally any data) from external unit 200 (or from several different units, not shown).
  • the computing device 100 stores the received messages N at least temporarily.
  • step 304 the
  • Computing device 100 the plurality N 'of the received messages to the cryptography module 400 for checking.
  • Computing device 100 is designed to produce a result E (FIG. 1) of the
  • the computing device 100 can carry out further tasks after the transmission from step 304 and in particular before receiving the result E according to step 306, as a result of which the period of time which the cryptography module 400 may need to check the previously determined messages to be checked is otherwise can be used by the computing device 100.
  • the computing device 100 can use the
  • FIG. 3 schematically shows a simplified flow diagram of a method according to further preferred embodiments, which describes the processing of messages by the cryptography module 400.
  • the cryptography module 400 receives the plurality N 'of messages which have been transmitted by the computing device 100 to the cryptography module 400 in step 304.
  • the cryptography module 400 carries out a check of the messages received by the computing device 100. In further preferred embodiments, the check is carried out after step 502 of FIG. 3 using a key-based
  • CMAC Message authentication codes
  • a CMAC reference value which the cryptography module 400 can access, can be provided for a relevant message to be checked.
  • the cryptography module 400 can advantageously use a CMAC method to determine a current CMAC value depending on the
  • the cryptography module 400 can conclude that the checked message is genuine and provide a corresponding result E of the check. If the compared values do not match, it can be concluded that the currently received and checked message is not correct, for example has been manipulated (and / or unintentionally falsified).
  • the cryptography module 400 are provided by the computing device 100.
  • the computing device 100 can transmit the reference values or CMAC reference values to the cryptography module 400 together with the plurality N ′ of the messages to be checked.
  • the following data format can be used, for example.
  • An index value is assigned to a message to be checked ("plain text"), which enables the message to be clearly identified within the plurality N 'of the messages to be checked.
  • the message to be checked is a (CMAC-) Assigned reference value.
  • key information (“Key ID”) is assigned to the message to be checked, which characterizes a specific cryptographic key that is associated with the one to be checked
  • the data format described can accordingly contain at least one of the following elements: a) index value, b) content of the message (“plain text”), c) (CMAC) reference value, d)
  • step 304 (FIG. 2) of the transmission, in addition to the message to be checked in accordance with further preferred embodiments, one or more of the above-mentioned elements a), c), d) of the data format described as an example can also be sent to the cryptography module 400 are transmitted, again advantageously the said plurality M 'of messages or a corresponding plurality of the aforementioned data records, which corresponds to the said plurality M' of messages, are transmitted to the cryptography module 400.
  • step 504 the cryptography module 400 sends the result E (FIG. 1) of the check 502 (FIG. 3) to the computing device 100, with the computing device 100 also depending on the result E as described above with reference to FIG continue with optional steps 306 and / or 308.
  • Computing device 100 to the cryptography module 400 has further advantages in that the cryptography module 400 can also check several transmitted messages at once, in particular without continuing with the
  • compare step 502 according to FIG. 3, and the result E is only communicated to the computing device 100 after a complete check of the said plurality N '.
  • compare the simplified flow diagram from FIG. 4 it is provided that the computing device 100 is designed to wait for a predeterminable minimum number of received messages, compare step 310 before the plurality N ′ (FIG. 1) of the received messages Messages is transmitted to the cryptography module 400, compare step 312. This advantageously allows multiple received messages
  • Transmission process to the cryptography module 400 are transmitted.
  • the computing device 100 is designed to wait for a predefinable period of time, compare step 320 before the plurality N ′, particularly during the predefinable one
  • the length of time that received messages are transmitted to the cryptography module 400, compare step 322.
  • This also advantageously allows a plurality of messages N arriving at the computing device 100 from the at least one further unit 200 to be bundled before they are sent to the cryptography module 400 in the form of the plurality N 'for the purpose transferred to the review.
  • the at least temporarily storing received messages by the computing device 100 includes at least temporarily storing 3020 the received messages in a storage device to which both the computing device 100 and the cryptography module are based 400, the transmission 3022 comprising the following steps: transfer of first control information S1 (FIG. 1) which characterize a memory area of the memory device in which the received messages are stored.
  • the first control information S1 can have at least one pointer to one
  • one or more of the elements associated with the respective message can also be Index value, c) (CMAC) reference value, d) key information (“key ID”) are transmitted efficiently to the cryptography module 400.
  • FIG. 6 schematically shows a simplified block diagram according to further preferred embodiments.
  • the computing device 100 from FIG. 1 can have the configuration 100a according to FIG. 6.
  • the configuration 100a has at least one computing unit 102, and at least one memory device 104 assigned to the computing unit 102 for at least temporarily storing a computer program PRG, the
  • Computer program PRG in particular for controlling an operation of the computing device 100 or configuration 100a, in particular for executing the method according to the embodiments.
  • the computing unit 102 has at least one of the following elements: a microprocessor, a microcontroller, a digital signal processor (DSP), a programmable logic module (e.g. FPGA, field programmable gate array), an ASIC
  • the memory device 104 has at least one of the following elements: a volatile memory 104a, in particular working memory (RAM), a non-volatile memory 104b, in particular flash EEPROM.
  • the computer program PRG is preferably stored in the non-volatile memory 104b.
  • the storage device 104 ′ already described above is also provided, to which both the
  • Computing device 100, 100a and cryptography module 400 can access. As already described, in further preferred embodiments, those received by the computing device 100, 100a
  • Messages N are stored at least temporarily in the storage device 104 '.
  • at least one receive buffer for messages to be received can be defined for this.
  • the storage device 104 ' can also form part of the storage device 104 or be integrated therein. In this way, messages N from the
  • Computing device 100 can be transmitted to the cryptography module 400.
  • Transferring the first control information S1 from the computing device 100 to the cryptography module 400 may be sufficient so that the cryptography module 400 can read or load messages to be checked from the storage device 104 ′.
  • the first control information S1 has at least one pointer (for example to a memory area comprising the messages N to be checked)
  • Storage device 104 and / or a number of messages received.
  • Computing device 100, 100a is designed to transfer second control information S2 (FIG. 1) to the cryptography module 400, the second control information S2 being a memory area or an address in the
  • Memory device 104 characterize in which memory area or to which address the cryptography module 400 should write or the result E (FIG. 1) of the check 502 (FIG. 3) should write.
  • Computing device 100, 100a is designed not to process a received message N if the received message has not already been checked by the cryptography module 400. This ensures that only messages checked by the cryptography module 400 are processed.
  • Cryptography module 400, 400 ' is designed to produce a result E of
  • Memory area of the memory device 104 ′′ (FIG. 6), to which both the computing device 100, 100a and the cryptography module 400, 400 ′′ can access.
  • different result values of the result E which are assigned to the different messages of the plurality M ′, can be supplemented, for example, by the index value already described above, in order to enable the respective result value to be uniquely assigned to a corresponding checked message.
  • the computing device 100 is part of a control unit 700, in particular for a motor vehicle, wherein the cryptography module 400 can optionally also form part of the control unit 700.
  • the computing device 100 generally receives or ascertains data or messages from other sources (for example also formed by the computing device 100) and this optionally using a processed cryptographic process, for example provided with a cryptographic signature.
  • the computing device 100 in further preferred embodiments can be compared to the one mentioned above
  • the process described with reference to FIG. 2 transmits the said (e.g. self-generated) messages to the cryptography module 400, preferably again a plurality of the said messages, the
  • Cryptography module 400 these messages instead of the above
  • the cryptographic signature preferably first provides all of the above-mentioned majority of the messages with the signature, and then transmits the messages provided with the signature to the computing device 100, which in further preferred embodiments can then transmit the signed messages to further computing devices or control devices, for example. In further preferred embodiments can also for this
  • Devices 100, 400 can access.
  • Storage device 104 Exchanges, these storage areas
  • the messages to be provided with the signature for example include the messages to be provided with the signature and / or the messages to be provided with the signature.
  • the principle according to the embodiments enables a particularly efficient processing of messages N by the computing device 100, 100a. This applies both to the processing of messages which are received in the computing device 100, 100a by the external unit 200, and also
  • Messages through the cryptographic module 400 result in a saving of in particular computing resources of the computing device 100, 100a and avoids one that arises in conventional systems
  • Embodiments minimize transmission processes from the computing device 100, 100a to the cryptography module 400, in particular with regard to security-critical information, as a result of which security is further increased.
  • a value of the plurality N 'of messages can be configured or parameterized, as can the predeterminable minimum number of received messages that are to be waited for (compare step 310 from FIG. 4) and / or the predefinable period of time according to step 320 Figure 5A.
  • the principle according to the embodiments can be efficiently adapted to different target systems, such as control units, in particular taking into account the communication load of the respective control units (number of messages to be processed per time) and / or the computing resources and / or storage resources.
  • the principle according to the embodiments offers increased flexibility with regard to the configurability of processing of messages N by the computing device 100, 100a.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • Computing Systems (AREA)
  • Storage Device Security (AREA)
  • Small-Scale Networks (AREA)
PCT/EP2019/082704 2018-12-17 2019-11-27 Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung Ceased WO2020126365A1 (de)

Priority Applications (4)

Application Number Priority Date Filing Date Title
CN201980083258.3A CN113169925A (zh) 2018-12-17 2019-11-27 计算装置和用于运行计算装置的方法
JP2021534678A JP7372975B2 (ja) 2018-12-17 2019-11-27 演算装置および演算装置の作動方法
EP19809829.5A EP3900275B1 (de) 2018-12-17 2019-11-27 Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung
US17/312,600 US11960611B2 (en) 2018-12-17 2019-11-27 Efficient distribution of processes between a vehicle control computing device and a cryptographic module, and method for operation thereof

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE102018221954.0A DE102018221954A1 (de) 2018-12-17 2018-12-17 Recheneinrichtung und Verfahren zum Betreiben einer Recheneinrichtung
DE102018221954.0 2018-12-17

Publications (1)

Publication Number Publication Date
WO2020126365A1 true WO2020126365A1 (de) 2020-06-25

Family

ID=68699463

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2019/082704 Ceased WO2020126365A1 (de) 2018-12-17 2019-11-27 Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung

Country Status (6)

Country Link
US (1) US11960611B2 (https=)
EP (1) EP3900275B1 (https=)
JP (1) JP7372975B2 (https=)
CN (1) CN113169925A (https=)
DE (1) DE102018221954A1 (https=)
WO (1) WO2020126365A1 (https=)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102018221954A1 (de) * 2018-12-17 2020-06-18 Robert Bosch Gmbh Recheneinrichtung und Verfahren zum Betreiben einer Recheneinrichtung
WO2021056069A1 (en) * 2019-09-25 2021-04-01 Commonwealth Scientific And Industrial Research Organisation Cryptographic services for browser applications

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102013206202A1 (de) * 2013-04-09 2014-10-30 Robert Bosch Gmbh Sensormodul und Verfahren zum Betreiben eines Sensorsmoduls
DE102015104167A1 (de) * 2014-03-24 2015-09-24 Infineon Technologies Ag Vorrichtung zum erzeugen verschlüsselter datensegmente
DE102017125826A1 (de) * 2016-11-07 2018-05-09 Ford Global Technologies, Llc Nachrichtenauthentifizierung über controller area network

Family Cites Families (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE10043499A1 (de) * 2000-09-01 2002-03-14 Bosch Gmbh Robert Verfahren zur Datenübertragung
DE102004038210A1 (de) * 2004-08-05 2006-03-16 Robert Bosch Gmbh Verfahren zur Speicherung von Botschaften in einem Botschaftsspeicher und Botschaftsspeicher
DE102004038213A1 (de) * 2004-08-05 2006-03-16 Robert Bosch Gmbh Verfahren und Vorrichtung zum Zugriff auf Daten eines Botschaftsspeichers eines Kommunikationsbausteins
JP2006146837A (ja) 2004-11-25 2006-06-08 Nippon Telegr & Teleph Corp <Ntt> 攻撃防御方法およびファイアウォールシステム
US8949600B2 (en) * 2006-10-27 2015-02-03 Qualcomm Incorporated Composed message authentication code
JP5079403B2 (ja) 2007-06-26 2012-11-21 株式会社ロゴスコーポレーション 折り畳み椅子
JP4985246B2 (ja) 2007-09-04 2012-07-25 富士通株式会社 データ中継装置、データ中継方法、および、当該データ中継装置としてのコンピュータに実行される管理プログラム
DE102009000869A1 (de) * 2009-02-16 2010-08-19 Robert Bosch Gmbh Verfahren und Vorrichtung zur manipulationssicheren Übertragung von Daten
DE102013206185A1 (de) * 2013-04-09 2014-10-09 Robert Bosch Gmbh Verfahren zur Erkennung einer Manipulation eines Sensors und/oder von Sensordaten des Sensors
JP5975964B2 (ja) * 2013-10-18 2016-08-23 富士通株式会社 情報処理プログラム、情報処理方法、情報処理装置、及び情報処理システム
DK3126330T3 (en) * 2014-04-04 2019-04-23 Pfizer BICYCLE-FUSED HETEROARYL OR ARYL COMPOUNDS AND USE THEREOF AS IRAC4 INHIBITORS
JP6628372B2 (ja) 2015-03-27 2020-01-08 アマゾン・テクノロジーズ、インコーポレイテッド 無人機間の認証メッセージ
DE102015209116A1 (de) * 2015-05-19 2016-11-24 Robert Bosch Gmbh Verfahren und Aktualisierungsgateway zum Aktualisieren eines eingebetteten Steuergerätes
US9935774B2 (en) * 2015-05-22 2018-04-03 Nxp B.V. Configurable cryptographic controller area network (CAN) device
US9756024B2 (en) * 2015-09-18 2017-09-05 Trillium Incorporated Computer-implemented cryptographic method for improving a computer network, and terminal, system and computer-readable medium for the same
DE102015220224B4 (de) 2015-10-16 2025-10-23 Volkswagen Aktiengesellschaft Verfahren zur geschützten Kommunikation eines Fahrzeugs
JP6684690B2 (ja) * 2016-01-08 2020-04-22 パナソニック インテレクチュアル プロパティ コーポレーション オブ アメリカPanasonic Intellectual Property Corporation of America 不正検知方法、監視電子制御ユニット及び車載ネットワークシステム
JP6260066B2 (ja) * 2016-01-18 2018-01-17 Kddi株式会社 車載コンピュータシステム及び車両
US10382208B2 (en) * 2016-04-29 2019-08-13 Olympus Sky Technologies, S.A. Secure communications using organically derived synchronized processes
JP6782446B2 (ja) 2017-02-16 2020-11-11 パナソニックIpマネジメント株式会社 監視装置、通信システム、車両、監視方法、およびコンピュータプログラム
DE102018221954A1 (de) * 2018-12-17 2020-06-18 Robert Bosch Gmbh Recheneinrichtung und Verfahren zum Betreiben einer Recheneinrichtung
JP7675799B2 (ja) * 2020-07-30 2025-05-13 華為技術有限公司 アソシエーション制御方法及び関連装置
US11677829B2 (en) * 2021-02-11 2023-06-13 Renesas Electronics Corporation Data processing device and data processing system
EP4216084A1 (en) * 2022-01-25 2023-07-26 EM Microelectronic-Marin SA A bluetooth communication method and system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE102013206202A1 (de) * 2013-04-09 2014-10-30 Robert Bosch Gmbh Sensormodul und Verfahren zum Betreiben eines Sensorsmoduls
DE102015104167A1 (de) * 2014-03-24 2015-09-24 Infineon Technologies Ag Vorrichtung zum erzeugen verschlüsselter datensegmente
DE102017125826A1 (de) * 2016-11-07 2018-05-09 Ford Global Technologies, Llc Nachrichtenauthentifizierung über controller area network

Also Published As

Publication number Publication date
EP3900275A1 (de) 2021-10-27
US20220043918A1 (en) 2022-02-10
CN113169925A (zh) 2021-07-23
JP7372975B2 (ja) 2023-11-01
US11960611B2 (en) 2024-04-16
DE102018221954A1 (de) 2020-06-18
JP2022513496A (ja) 2022-02-08
EP3900275B1 (de) 2026-01-07

Similar Documents

Publication Publication Date Title
EP3707854B1 (de) Verfahren zum verknuepfen eines ersten datenblocks mit einem zweiten datenblock, verfahren zum ueberpruefen der integritaet einer blockchain-struktur, vorrichtung und computerprogrammprodukt
EP3811261B1 (de) Kryptografiemodul und betriebsverfahren hierfür
EP1563629B1 (de) Verfahren zur signaturbildung und übertragung von daten
WO2020126365A1 (de) Recheneinrichtung und verfahren zum betreiben einer recheneinrichtung
DE102010002472A1 (de) Verfahren zum Verifizieren eines Speicherblocks eines nicht-flüchtigen Speichers
DE102014105207A1 (de) Verfahren zum Betreiben eines Kommunikationsnetzwerks und Kommunikationsnetzwerk
EP3387636B1 (de) Kryptoalgorithmus mit schlüsselabhängigem maskiertem rechenschritt (sbox-aufruf)
EP3499324B1 (de) Verfahren zur modularen verifikation einer konfiguration eines geräts
DE102016225436A1 (de) Sensor zum Erfassen von Messwerten, Verfahren, Vorrichtung und computerlesbares Speichermedium mit Instruktionen zur Verarbeitung von Messwerten eines Sensors
DE112019002630T5 (de) Verringerung der laufzeitlast für eine fahrzeugsystem-datenverschlüsselungunter verwendung einer krypto-engine mit speicherdirektzugriff (dma)
DE102022203720A1 (de) Verfahren und System zur Fernbestätigung der Integrität eines Computerprogramms in einer zu prüfenden Recheneinheit
DE102022202998A1 (de) Verfahren zum abgesicherten Starten einer Recheneinheit
DE102018221349A1 (de) Verfahren zur Verwaltung eines Speichers
DE10131577A1 (de) Verfahren zum Schutz eines Mikrorechner-Systems gegen Manipulation seines Programms
DE102014207417A1 (de) Schnittstelleneinheit
DE102023205541B3 (de) Verfahren zur Implementierung abgesicherter Datenkommunikation
DE102009044936A1 (de) Verfahren zum Austauschen von Daten
DE102020206262A1 (de) Datenumschreibverfahren und Datenumschreibsystem
DE102022130306A1 (de) Verfahren zum Verarbeiten von Nachrichten, Verfahren zum Betreiben zumindest einer Einrichtung eines Kraftfahrzeugs, Vorrichtung zum Verarbeiten von Nachrichten sowie Kraftfahrzeug
DE102025105373A1 (de) Kommunikationsvorrichtung
DE102023127119A1 (de) Aufzeichnen und Bereitstellen von Daten in einem Fahrzeug
WO2017148743A1 (de) Speicherdirektzugriffssteuereinrichtung für eine einen arbeitsspeicher aufweisende recheneinheit
DE102024105144A1 (de) Verfahren zum Übertragen einer Nachricht von einem ersten Kommunikationspartner zu einem zweiten Kommunikationspartner, Computerprogrammprodukt, computerlesbares Speichermedium sowie Kommunikationssystem
DE102020216071A1 (de) Verfahren zum Betreiben einer Vorrichtung, ein Steuergerät eines Kraftfahrzeugs, und Vorrichtung
DE102012205390A1 (de) Verfahren und Anordnung zum Programmieren von mindestens zwei Datenverarbeitungseinheiten, Batterie in Kombination mit einer solchen Anordnung und Kraftfahrzeug mit einer solchen Batterie

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19809829

Country of ref document: EP

Kind code of ref document: A1

ENP Entry into the national phase

Ref document number: 2021534678

Country of ref document: JP

Kind code of ref document: A

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 2019809829

Country of ref document: EP

Effective date: 20210719

WWG Wipo information: grant in national office

Ref document number: 2019809829

Country of ref document: EP