WO2023200828A1 - Systems and methods for centrally managing and routing multiple credentials - Google Patents

Systems and methods for centrally managing and routing multiple credentials Download PDF

Info

Publication number
WO2023200828A1
WO2023200828A1 PCT/US2023/018254 US2023018254W WO2023200828A1 WO 2023200828 A1 WO2023200828 A1 WO 2023200828A1 US 2023018254 W US2023018254 W US 2023018254W WO 2023200828 A1 WO2023200828 A1 WO 2023200828A1
Authority
WO
WIPO (PCT)
Prior art keywords
certificate
request
appropriate
routing
generators
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/US2023/018254
Other languages
French (fr)
Inventor
David R. SEQUINO
Amit Kapoor
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Integrity Security Services LLC
Original Assignee
Integrity Security Services LLC
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Integrity Security Services LLC filed Critical Integrity Security Services LLC
Priority to EP23788878.9A priority Critical patent/EP4508554A4/en
Priority to JP2024560270A priority patent/JP2025512369A/en
Priority to KR1020247034985A priority patent/KR20250005150A/en
Priority to AU2023251877A priority patent/AU2023251877A1/en
Priority to CN202380039536.1A priority patent/CN119301909A/en
Publication of WO2023200828A1 publication Critical patent/WO2023200828A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/30Services specially adapted for particular environments, situations or purposes
    • H04W4/40Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P]
    • H04W4/44Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P] for communication between vehicles and infrastructures, e.g. vehicle-to-cloud [V2C] or vehicle-to-home [V2H]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/30Services specially adapted for particular environments, situations or purposes
    • H04W4/40Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P]
    • H04W4/46Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P] for vehicle-to-vehicle communication [V2V]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/80Wireless
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/84Vehicles

Definitions

  • This invention relates to the systems, devices, computer applications, and methods for securely and centrally managing and generating digital assets, and in particular, security infrastructure credentials such as digital certificates (e.g., public key infrastructure certificates).
  • security infrastructure credentials such as digital certificates (e.g., public key infrastructure certificates).
  • the computers in computerized devices operate according to their software and/or firmware and data.
  • the computerized devices In order to ensure safe and proper operation, the computerized devices must be properly initialized and periodically updated with the proper software, firmware, executable instructions, digital certificates (e.g., public key infrastructure certificates), cryptographic keys and the like (hereinafter collectively referred to as “digital assets” or “software”) as intended by the manufacturer and the ecosystem of devices in which they operate.
  • digital assets e.g., public key infrastructure certificates
  • software e.g., public key infrastructure certificates
  • V2V Vehicle-to-Vehicle
  • V2G Electronic Vehicle to Grid V2G
  • C2C Car-to-Car
  • V2I Vehicle-to-lnfrastructure ecosystems
  • V2I Vehicle-to-lnfrastructure ecosystems
  • V2V and V2I together are often referred to a V2X (e.g., vehicle to anything communications) ecosystem.
  • the certificates needed by the various subsystems of a vehicle may be of different types; e.g., they may be different types of public key infrastructure (PKI) certificates.
  • PKI public key infrastructure
  • the certificates needed by the various subsystems of a vehicle may be from different ecosystems and/or different security infrastructures e.g., V2X certificates, (e.g., pseudonym certificates), for the V2X ecosystem and V2G certificates for the electrical grid ecosystem.
  • V2X certificates e.g., pseudonym certificates
  • security credentials such as digital certificates
  • devices or systems e.g., vehicles
  • multiple digital certificates which may be provided by multiple certificate providers/generators, and which may be in multiple different formats.
  • the embodiments and implementations described herein include systems, methods, and computer-readable media for managing digital certificates and other security credentials.
  • Various embodiments include a routing and management server that is communicatively connected to a certificate user device and to a plurality of certificate generators.
  • Various of the embodiments described herein perform functions, steps, or operations that include: optionally registering the certificate user device; receiving a request for one or more digital certificates from the certificate user device; analyzing the request to determine an appropriate certificate generator, from among the plurality of certificate generators, for producing the one or more digital certificates; optionally translating the request into a format required by the appropriate certificate generator; transmitting the request to the appropriate certificate generator; receiving the one or more digital certificates from the appropriate certificate generator; and providing the one or more digital certificates to the certificate user device.
  • analyzing the request to determine an appropriate certificate generator comprises analyzing the request and determining a plurality of appropriate certificate generators; translating the request into a format required by the appropriate certificate generator comprises translating the request into a plurality of formats required by the plurality of appropriate certificate generators; transmitting the translated request to the appropriate certificate generator comprises transmitting the plurality of translated requests to the plurality of appropriate certificate generators; and receiving the one or more digital certificates from the appropriate certificate generator comprises receiving one or more digital certificates from the plurality of appropriate certificate generators.
  • the certificate user device is a land vehicle. In some other embodiments, the certificate user device is an aircraft.
  • analyzing the request to determine an appropriate certificate generator comprises reading, from the received request, information that indicates the appropriate certificate generator.
  • the information specifies a type of certificate.
  • transmitting the translated request to the appropriate certificate generator comprises employing a communications protocol specific to the appropriate certificate generator to send the translated request.
  • transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing an enrollment certificate for the certificate user device.
  • the operations further include enrolling, by the routing and management server, with at least one of the plurality of certificate generators; and receiving, from the at least one of the plurality of certificate generators, an enrollment certificate for the routing and management server.
  • transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing the enrollment certificate for the routing and management server.
  • FIG. 1 is a block diagram showing an example of a system with centralized multiple digital asset (e.g., certificate) management capabilities, consistent with embodiments of the invention
  • FIG. 2 is a flow chart illustrating an example of a method for managing and routing security credentials,, consistent with implementations of the invention.
  • FIG. 3 is a block diagram of an example of a computing system that may be used for hosting and implementing systems and methods consistent with implementations of the invention.
  • Various embodiments and implementations consistent with the invention provide systems, components, methods, and computer program products for centrally processing requests for multiple different types of digital asset(s) (e.g., certificates or other security credentials), translating the requests or generating equivalent requests in the appropriate format (if needed), routing the requests to the appropriate digital asset generator, and providing the newly generated, responsive digital asset(s) back to the requester.
  • digital asset(s) e.g., certificates or other security credentials
  • V2G vehicle-to- grid
  • V2X and V2G employ different types of certificate formats, interfaces, communication protocols, and generators; e.g., V2G employs an X509 certificate format and interface, while V2X employs an IEEE Std 1609.2 certificate format and interface.
  • V2G employs an X509 certificate format and interface
  • V2X employs an IEEE Std 1609.2 certificate format and interface.
  • ETSI-based certificate format and interface which would be necessary to use if the new electric vehicle were exported to Europe.
  • FIG. 1 is a block diagram showing an example of a system 100 with multiple digital asset (e.g., digital certificate or other security credential) generation and management capabilities, consistent with embodiments of the invention.
  • the system 100 includes a credential (e.g., one type of digital asset) routing and management system 110, which may be implemented by a server (e.g., having at least one processor and associated memory) or other computing system.
  • the credential routing and management system 1 10 is accessible via a network 130, which may be or include a digital network(s), (e.g., the Internet), cellular networks, wireless networks, and other networks.
  • a certificate user 101 -103 may be, for instance, a device or system that uses certificates (e.g., an on-board unit device), or a computing system of a device manufacturer (e.g., an on-board unit manufacturer), or a person using a computer, among other things.
  • a certificate user 101 -103 may be the vehicle manufacturer that produces a new U.S. EV that needs V2X certificates and also needs a V2G certificate at manufacturing time.
  • a certificate user 101 -103 may be the new EV itself, which needs to replenish its V2X pseudonym certificates and needs to replace an expired or corrupted V2G certificate.
  • a certificate user 101 -103 is typically a computer or a computerized device, although in some instances it may be a person.
  • the credential routing and management system 110 may include a user portal 135, and a certificate user 101 may interact with the credential routing and management system 110 via the user portal 135.
  • the credential routing and management system 1 10 may include a human accessible interface, such as a human-specific user portal, for use by human users 101 - 103.
  • the credential routing and management system 110 may include an application programming interface (API) 140, and a certificate user 102 may interact with the credential routing and management system 110 via the API 140.
  • API application programming interface
  • a user e.g. user 101
  • the user portal 135 and the API 140 enable only a certificate users 101 -103 who are known to and trusted by the credential routing and management system 1 10, (e.g., that have been registered, enrolled, or set up an account and been verified as legitimate security infrastructure users), to interact with the credential routing and management system 1 10.
  • a certificate user may provide a copy or the like of its enrollment credential(s) (e.g., V2X enrollment certificate, or its equivalent in other technical ecosystems) to the credential routing and management system 110, which may store the V2X enrollment credential for use when communicating with a V2X certificate generator (e.g., 121 ) on behalf of the certificate user 102 and according to the communication protocol employed by the V2X certificate generator 121.
  • Enrollment credentials may include C2C enrollment certificates, V2G enrollment credentials, and the like.
  • the certificate user 1 101 may send a request 101 A for one or more certificates to the credential routing and management system 110, in this example, via the user portal 135.
  • the certificate user 101 may request more than one type of certificate and/or may request more than one type of certificate in a single request 101 A.
  • the certificate user 101 using multiple, separate requests to accomplish the same thing.
  • the certificate user 101 may first send a request for a set of V2X pseudonym certificates and then send a second request for a V2G certificate.
  • the requests may be for multiple devices (e.g., multiple new EVs) that need certificates or for a single device (e.g., on EV) that needs certificates.
  • the other certificate users 102, 103 may each transmit or send various requests 102A, 103A for different numbers and types of certificates to the credential routing and management system 110 via, in this example, the AP1 140.
  • the system also includes several digital asset (e.g., certificate) generators 121 -127, which are communicatively connected to the credential routing and management system 1 10 via the network 130.
  • the certificate generators include a North American (NA) V2X certificate generator 121 , a European (EU) C2C certificate generator 122, a Chinese (CN) V2X certificate generator 123, a Vehicle to Grid (V2G) certificate generator 124, a phone-as-a-key certificate generator 125, an advanced driver assistance (ADA) certificate generator 126, and other types of certificate generators 127 that are known in the art.
  • the different types of certificates may be based on different types of public key infrastructures.
  • one or more of the certificate generators 121 -127 may be a conventional security credential management system (SCMS) or the like.
  • SCMS is a message security solution for V2X communication.
  • An SCMS may employ a PKI to enable trusted communication between the participants or elements of a V2X ecosystem.
  • Authorized V2X ecosystem participants use digital certificates generated by an SCMS to authenticate and validate the safety and mobility messages for various connected-vehicle technologies and functions. To protect the privacy of vehicle owners and operators, the certificates typically contain no personal or equipment-identifying information but nonetheless serve as ecosystem credentials so that other users (e.g., devices) in the ecosystem can trust the source of each message.
  • an SCMS may also include devices and functionality for identifying and removing misbehaving devices from the ecosystem, while still maintaining privacy.
  • the credential routing and management system 1 10 upon receiving a request for one or more certificates (or other type of security credential) from a certificate user, e.g., from the certificate user 101 , the credential routing and management system 1 10 examines, interprets, parses, or otherwise analyzes the request 101 A to determine the appropriate certificate generator 121 -12.1 to which to route the request 101 A.
  • the credential routing and management system 110 may analyze the data or information in the request 101 A to determine the type of certificate(s) (e.g., North American V2X type, European C2C type, Phone-as-a-Key type, etc.) that the user 101 is requesting. This analyzing may be done, for example, by reading the data from a specific field(s) in the request message, and then using a lookup table, hard coding, or the like to determine the type of certificate that corresponds to the data from that field.
  • the type of certificate(s) e.g., North American V2X type, European C2C type, Phone-as
  • the request 101 A may contain information (e.g., a field) identifying one of the certificate generators 121 -127 to which the request 101 A should be routed by the credential routing and management system 110, and the credential routing and management system 110 may use this generator-identity information to correctly route the request 101 A.
  • the generator-identity information in the request 101 A may include information provided to the certificate user 101 by a specific certificate generator 121 -127 at enrollment time.
  • the credential routing and management system 110 may then send, transmit, or otherwise provide a request to the digital asset provider 121 -127 that generates or otherwise provides the type of certificate(s) that the user 101 requested.
  • the credential routing and management system 110 may translate, reformat, or otherwise modify the request 101 into the format needed for operating with the specific certificate generator to which it is being routed.
  • the credential routing and management system 1 10 may generate or create, based on the request 101 A, a new request in the operable format needed by the specific certificate generator, wherein the new request is functionally equivalent to the request 101 A.
  • the transformation of the received certificate requests 101 A, 102A, and 103A into a new format or the creation of a new request in the operable format needed by the specific certificate generator is represented in FIG. 1 by the certificate requests 121 A, 122A, 123A, 124A, 125A, 126A, and 127A to the generators 121 -127 having different reference numbers than 101 A, 102A, and 103A, but it should be noted that in some cases and embodiments, a certificate request, e.g., 101 A, may be in the exact format needed by the appropriate certificate generator 121 -127, and in such cases the credential routing and management system 1 10 may route the original request (e.g., certificate request 101 A) to the appropriate certificate generator without modification.
  • the credential routing and management system 1 10 may first analyze the data in the request 101 A to determine that it is a request for a V2X type certificate, and then may create and send a certificate request 121 A to the NA V2X Certificate Generator 121 , wherein the request 121 A is based on the information in the request 101 A.
  • NA V2X certificates e.g., a group of V2X pseudonym certificates or the like.
  • the credential routing and management system 1 10 may first analyze the data in the request 101 A to determine that it is a request for a V2X type certificate, and then may create and send a certificate request 121 A to the NA V2X Certificate Generator 121 , wherein the request 121 A is based on the information in the request 101 A.
  • the NA V2X Certificate Generator 121 creates or otherwise obtains and then provides the requested V2X certificates 121 B to the credential routing and management system 110.
  • the credential routing and management system 1 10 may then transmit or otherwise provide the generated V2X certificates 121 B (represented by the reference 101 B) to the certificate user 101 that requested them.
  • the credential routing and management system 110 may analyze the data in the new request 101 A to determine that it is a request for a V2G type certificate, and then may send a request 124A to the V2G Certificate Generator 124.
  • the credential routing and management system 1 10 may transmit or otherwise provide the requested V2G certificate (represented by the reference 101 B) to the certificate user 101 that requested it.
  • FIG. 1 One of ordinary skill will recognize that the components, connections, processes, data, operations, and implementation details shown in FIG. 1 are examples presented for conciseness and clarity of explanation. Other components, processes, implementation details, and variations may be used without departing from the principles of the invention, as this example is not intended to be limiting and many variations are possible. For instance, although only six specific types of certificate generators are shown in FIG. 1 , other implementations may have many other types of certificate generators, as represented by component 127. For another instance, although FIG. 1 is described in the context of digital certificates, other implementations may include other types of digital assets, including software patches, software versions, and the like.
  • FIG. 2 is a flow chart illustrating an example of a method or process 200 for managing and routing security credentials, consistent with embodiments of the invention. Note that optional operations or functions for the embodiment shown are denoted by rectangles made of dashed lines. In various implementations, some or all of the process 200 or the operations shown may be performed by code (e.g., instructions) executing on a general purpose computing system (which may include one or more processors or one or more computing subsystems), by a hardware-only system, or by a system that is a hybrid of the two.
  • code e.g., instructions
  • a general purpose computing system which may include one or more processors or one or more computing subsystems
  • a hardware-only system or by a system that is a hybrid of the two.
  • some or all of the process 200 may be performed or executed by a credential routing and management system 1 10, which may be in communication with the certificate users 101 -103 and the digital asset generators 121 -127, as described with respect to FIG. 1 and throughout this disclosure.
  • the process 200 may begin at optional block 201 (e.g., optional operation) by enrolling or being enrolled with one or more certificate generators, such as one or more of the certificate generators 121 -127.
  • the credential routing and management system 1 10 may be enrolled with the V2X ecosystem by contracting with the provider (e.g., the SCMS) of the NA V2X certificate generator 121 .
  • the provider may ensure that the security criteria that enrollees must meet to operate within their ecosystem are satisfied.
  • the credential routing and management system 110 will be considered a trusted actors in the V2X ecosystem.
  • a certificate user(s) e.g., 101 -103 may be enrolled with one or more certificate generators, such that the user’s certificate requests, including those managed by the credential routing and management system, will be honored by the generators with which the user is enrolled.
  • the process 200 may continue at 203 with registering a certificate user (e.g., 101 -103).
  • a certificate user may be enrolled with the credential routing and management system 1 10 by contracting with the provider of the credential routing and management system 1 10.
  • the provider may ensure that the security criteria that enrollees must meet to operate within one or more of the ecosystem associated with the generators 121 -127 are satisfied.
  • a user 101 -103 will be considered a trusted actor in the technical ecosystem(s) for which it enrolled.
  • a certificate user may provide a copy of its V2X enrollment certificate (or its equivalent in other technical ecosystems) to the credential routing and management system 110, which may store the enrollment certificate for use when communicating with a V2X certificate generator (e.g., 121 ) on behalf of the certificate user 102 and according to the communication protocol employed by the V2X certificate generator 121 .
  • a V2X certificate generator e.g., 121
  • the process 200 continues at 205 with receiving a request (e.g. 101A-103A) for one or more certificate(s), where the request comes from a certificate user (e.g., 101 - 103), which may in some instances be a device, such as a vehicle or an on-board unit.
  • a certificate user e.g., 101 - 103
  • the block 205 may involve a user 101 -103 logging onto the credential routing and management system 110, for example, via a user portal (e.g., 135), and then entering the request 101 A-103A.
  • the block 205 may involve a user device 101 -103 interacting with the API 140 of the credential routing and management system 1 10, to convey the request 101 A-103A.
  • a certificate user 101 -103 may be any number of things, including a computing system of a manufacturer of devices that utilize certificates or a device (e.g. a V2X vehicle or a vehicle’s subsystem (e.g., OBU) or a computerized device) that utilizes certificates.
  • a device e.g. a V2X vehicle or a vehicle’s subsystem (e.g., OBU) or a computerized device
  • a request 101 A-103A may be for any number or types of digital certificates that come from any one or more of the certificate generators 121 -127.
  • a request 101 A-103A may be: for one digital certificate from a single generator (e.g., for a single CN V2X enrollment certificate), or for multiple digital certificates from a single generator (e.g., for a group of CN V2X pseudonym certificates), or for two or more single digital certificates that are produced by two or more different generators (e.g., for a for a single NA V2X enrollment certificate and a single V2G certificate), or for any other combinations of quantities and types of certificates.
  • a request 101 A-103A may include an enrollment certificate(s) for the requesting user 101 -103, which may be used in communications with a certificate generator(s), for example as described below.
  • the process 200 analyzes the request (e.g. 101 A-103A) to determine the appropriate certificate generator(s) for fulfilling the request by generating or otherwise producing the requested digital certificates.
  • the request may include information that directly or indirectly identifies the appropriate certificate generator(s).
  • the request may include information or a field(s) (e.g., in accordance with the parameters and definitions of the API 140) that specifies the appropriate certificate generator(s).
  • the request may include information that specifies the general type of certificate(s) that is being requested, and analyzing the request may include reading, parsing, or otherwise recognizing data or information in the request (e.g., data from a specific field in a data structure) that identifies the type of certificate that is desired.
  • the process 200 may determine or select an appropriate certificate generator based on the type of certificate specified in the request.
  • selecting the certificate generator may include looking up, retrieving, or otherwise identifying a specific generator from among the set of available generators 121 -127 using the type of certificate as a search term, look-up key, index or the like.
  • the process 200 may translate the request for the certificate from block 205 (e.g., 101A-103A) into a format that is usable by the certificate generator that was determined or selected in operation 210.
  • a request 101A-103A may be in a format that is easily understood and usable by the credential routing and management system 110; for example, a format that speeds and simplifies the determination of the type of certificate that is being requested (e.g., operation 210) and the routing of the request, and this request format may not be compatible with the selected certificate generator.
  • the operation 220 may convert, reformat, or otherwise translate the received request 101 A-103A into a request (e.g., 121A-127A) that is compatible with the selected appropriate certificate generator, as needed.
  • the process 200 may create from scratch a new request (e.g., 121 A . . . 127A) for the selected appropriate certificate generator using information from the request (e.g., 101A-103A) received at block 205.
  • the process 200 transmits, routes, or otherwise provides the (possibly translated) request (e.g., 121 A-127A) to the appropriate certificate generator that was determined in block 210.
  • the request to the certificate generator may optionally be reformatted before being sent.
  • some or all of the certificate generators 121 -127 may employ communication protocols that are different from each other; e.g. the protocol for requesting (e.g. 121 A) and receiving (e.g., 121 B) certificates from the NA V2X certificate generator 121 is different from the protocol for requesting (e.g., 124A) and receiving (e.g., 124B) certificates from the V2G certificate generator 124.
  • the process 200 (e.g., as implemented by the credential routing and management system 1 10) employs the corresponding protocol associated with each of the certificate generators 121 -127 when communicating with each.
  • the process 200 may employ the enrollment certificate when communicating with the corresponding certificate generator (e.g., 121 for a V2X enrollment certificate) per the communication protocol, such that the credential routing and management system 1 10 acts as a proxy for the requesting certificate user 101 -103, and the certificate generator 121 responds as if it is interacting with the enrollment certificate holder device (e.g., 101 -103).
  • the corresponding certificate generator e.g., 121 for a V2X enrollment certificate
  • the certificate generator 121 -127 Upon receiving the request (e.g., 121 A-127A) that was sent from the credential routing and management system 110, the certificate generator 121 -127 processes the request and generates, calculates, retrieves, or otherwise produces a certificate(s) (e.g., 121 B-127B, which is one type of digital asset or security credential) according to the request, and sends the certificate(s) (e.g., 121 B-127B) to the credential routing and management system 1 10. [0052] At 230, the process 200 receives one or more certificate(s) (e.g., 121 B-127B) from the certificate generator that was selected in operation 215 and to which the request was transmitted in operation 225.
  • a certificate(s) e.g., 121 B-127B
  • the process 200 transmits or otherwise provides the certificate(s) (e.g., 101 B-103B) to the requesting entity (e.g., to the certificate user 101 -103 that sent the request 101A-103A).
  • the certificate(s) e.g., 101 B-103B
  • the requesting entity e.g., to the certificate user 101 -103 that sent the request 101A-103A.
  • FIG. 2 The example depicted in FIG. 2 is only for the purpose of illustration and is not intended to be limiting. Further, the depicted process 200 is an example that has been somewhat simplified for clarity of explanation of certain novel and innovative features consistent with certain disclosed implementations, but this example is not intended to be limiting and many variations are possible.
  • the process 200 is described in the context of a certificate-user request (e.g., 102A) that is routed to a single generator (e.g., 121 ) because the certificate-user request is for a single type of certificate (e.g., a NA V2X certificate), but a certificate-user request (e.g., 102A) that included subrequest for several types of certificates (e.g., NA V2X certificate, V2G certificates, and after-market ADA certificates) would have the sub-requests routed to the three appropriate generators (e.g., 121 , 124, and 126).
  • a certificate-user request e.g., 102A
  • a single generator e.g., 121
  • subrequest for several types of certificates e.g., NA V2X certificate, V2G certificates, and after-market ADA certificates
  • FIG. 2 is described in the context of a digital certificate, the systems and processes consistent with this disclosure can function similarly to handle other types of digital assets (e.g., software patches, application versions, etc.).
  • FIG. 3 is a block diagram of an example of a computing environment which includes a computing system 300 that may be used for implementing systems and methods consistent with implementations of the invention. Other components and/or arrangements may also be used.
  • computing system 300 may be used to implement, at least partially, various components, devices, blocks, functions, and operations of FIGs. 1 -2, such as the credential management and routing system 110, among other things.
  • a series of computing systems similar to computing system 300 may be each customized with specialized hardware and/or programmed as a specialized server to implement one of the components or blocks of FIGs. 1 -2, which may communicate with each other via a network 335.
  • the computing system 300 includes a number of components, such as a CPU 305, a memory 310, an input/output (I/O) device(s) 325, a hardware security module (HSM) 340, and a storage device 320.
  • System 300 can be implemented in various ways.
  • an implementation as an integrated platform (such as a server, workstation, personal computer, laptop, etc.) may comprise a CPU 305, a memory 310, a nonvolatile storage 320, and I/O devices 325.
  • the components 305, 310, 320, and 325 may connect and communicate through a local data bus and may access a data repository 330 (implemented, for example, as a separate database system) via an external I/O connection.
  • the I/O component(s) 325 may connect to external devices through a direct communication link (e.g., a hardwired or local wifi connection), through a network, such as a local area network (LAN) or a wide area network (WAN, such as a cellular telephone network or the Internet), and/or through other suitable connections.
  • System 300 may be stand-alone or it may be a subsystem of a larger system.
  • the CPU 305 may be one or more known processor or processing devices, such as a microprocessor from the CoreTM family manufactured by the IntelTM Corporation of Santa Clara, CA or a microprocessor from the AthlonTM family manufactured by the AMDTM Corporation of Sunnyvale, CA.
  • the memory 310 may be one or more fast storage devices configured to store instructions and information executed or used by the CPU 305 to perform certain functions, methods, and processes related to implementations of the present invention.
  • the storage 320 may be a volatile or non-volatile, magnetic, semiconductor, tape, optical, or other type of storage device or computer-readable medium, including devices such as CDs and DVDs and solid state devices, meant for longterm storage.
  • the memory 310 contains one or more instructions, programs or applications 315 loaded from the storage 320 or from a remote system (not shown) that, when executed by the CPU 305, perform various operations, procedures, processes, or methods consistent with the present invention.
  • the CPU 305 may execute one or more programs located remotely from the system 300.
  • the system 300 may access one or more remote programs via the network 335 that, when executed, perform functions and processes related to implementations of the present invention.
  • the memory 310 may include a program(s) 315 for performing the specialized functions and operations described herein for the credential management and routing system 1 10.
  • the memory 310 may also include other programs or applications that implement other methods and processes that provide ancillary functionality to the invention.
  • the memory 310 may also be configured with other programs (not shown) unrelated to the invention and/or an operating system (not shown) that performs several functions well known in the art when executed by the CPU 305.
  • the operating system may be Microsoft WindowsTM, UnixTM, LinuxTM, an Apple ComputersTM operating system, or other operating system. The choice of operating system, and even to the use of an operating system, is not critical to the invention.
  • the HSM 340 may be a device with its own processor that securely manages digital security assets and/or securely performs a variety of cryptographic and sensitive computations. In some embodiments, the HSM 340 protects digital security assets, such as cryptographic keys and digital certificates, and other sensitive data from possible access by an attacker. In some implementations, the HSM may be a plug-in card or board that attaches directly to the computing system 300.
  • the I/O device(s) 325 may comprise one or more input/output devices that allow data to be received and/or transmitted by the system 300.
  • the I/O device 325 may include one or more input devices, such as a keyboard, touch screen, mouse, and the like, that enable data to be input from a user.
  • the I/O device 325 may include one or more output devices, such as a display screen, a CRT monitor, an LCD monitor, a plasma display, a printer, speaker devices, and the like, that enable data to be output or presented to a user.
  • the I/O device 325 may also include one or more digital and/or analog communication input/output devices that allow the computing system 300 to communicate, for example, digitally, with other machines and devices. Other configurations and/or numbers of input and/or output devices may be incorporated in the I/O device 325.
  • the system 300 is connected to a network 335 (such as the Internet, a private network, a virtual private network, a cellular network or other network or combination of these), which may in turn be connected to various systems and computing machines, such as servers, personal computers, laptop computers, client devices, etc.
  • a network 335 such as the Internet, a private network, a virtual private network, a cellular network or other network or combination of these
  • the system 300 may input data from external machines and devices and output data to external machines and devices via the network 335.
  • the network 335 may be, or be part of, the network 130.
  • the data repository 330 is a standalone database external to system 300, such as the database 125. In other implementations, the data repository 330 may be hosted by the system 300. In various implementations, the data repository 330 may manage and store data used to implement systems and methods consistent with the invention. For example, the data repository 330 may manage and store data structures that are used by the credential management and routing system 1 10.
  • the data repository 330 may comprise one or more databases that store information and are accessed and/or managed through the system 300.
  • the database 330 may be an OracleTM database, a SybaseTM database, or other relational database. Systems and methods consistent with the invention, however, are not limited to separate data structures or databases, or even to the use of a database or data structure.
  • FIGs. 1 -3 are described in the context of road vehicles and V2X/C2X ecosystems for clarity of explanation, other embodiments consistent with the invention can be used in the context of aircraft and aircraft ecosystems (including drones and drone ecosystems), as well as in other ecosystems with devices that utilize trusted communications based on security credentials, such as digital certificates.
  • Other examples include ecosystems for medical devices (e.g., dialysis machines, infusion pumps, etc.); robots; autonomous vehicles; and secure voice and digital communications, among others.
  • processors may be temporarily configured (e.g., by software) or permanently configured to perform the relevant operations. Whether temporarily or permanently configured, such processors may constitute processor- implemented modules that operate to perform one or more application operations, functions, and roles described herein.
  • processor-implemented module refers to a hardware module implemented using one or more processors.
  • the methods described herein may be at least partially processor- implemented, with a particular processor or processors being an example of hardware.
  • a particular processor or processors being an example of hardware.
  • the operations of a method may be performed by one or more processors or processor-implemented modules.
  • the one or more processors may also operate to support performance of the relevant operations in a ‘cloud computing’ environment or as a ‘software as a service’ (SaaS).
  • SaaS software as a service
  • at least some of the operations may be performed by a group of computers (as examples of machines including processors), with these operations being accessible via a network (e.g., the Internet) and via one or more appropriate interfaces (e.g., an API).
  • the performance of certain of the operations may be distributed among the processors, not only residing within a single machine, but deployed across a number of machines.
  • the processors or processor-implemented modules may be located in a single geographic location (e.g., within an office environment, a manufacturing environment, or a server farm). In other example embodiments, the processors or processor-implemented modules may be distributed across a number of geographic locations.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

Systems, methods, and computer-readable media for managing digital certificates and other security credentials. A routing and management server is communicatively connected to a certificate user device and to a plurality of certificate generators. The server performs operations that may include: optionally registering the certificate user device; receiving a request for one or more digital certificates from the certificate user device; analyzing the request to determine an appropriate certificate generator, from among the plurality of certificate generators, for producing the one or more digital certificates; optionally translating the request into a format required by the appropriate certificate generator; transmitting the request to the appropriate certificate generator; receiving the one or more digital certificates from the appropriate certificate generator; and providing the one or more digital certificates to the certificate user device.

Description

Systems and Methods for Centrally Managing and Routing Multiple Credentials
CROSS-REFERENCE TO RELATED APPLICATIONS
[0001] This application claims the benefit of, and priority to, U.S. Provisional Application No. 63/330,026 filed on April 12, 2022, which is hereby incorporated by reference in its entirety.
BACKGROUND
[0002] This invention relates to the systems, devices, computer applications, and methods for securely and centrally managing and generating digital assets, and in particular, security infrastructure credentials such as digital certificates (e.g., public key infrastructure certificates).
[0003] The computers in computerized devices operate according to their software and/or firmware and data. In order to ensure safe and proper operation, the computerized devices must be properly initialized and periodically updated with the proper software, firmware, executable instructions, digital certificates (e.g., public key infrastructure certificates), cryptographic keys and the like (hereinafter collectively referred to as “digital assets” or “software”) as intended by the manufacturer and the ecosystem of devices in which they operate.
[0004] Most, if not all, modern vehicles and transportation machinery, (e.g., automobiles, trucks, electric vehicles, aircraft (e.g., drones), trains, watercraft, motorcycles, scooters, and the like), contain several embedded processors or embedded computers in their subsystems, and are computer-controlled in several aspects. Similarly, a growing number of modern transportation ecosystem devices (e.g., traffic lights, traffic cameras, traffic sensors, electronic traffic signs, traffic safety systems, bridge monitors, bridge control systems, and the like) contain at least one, and often many, embedded processors or embedded computer systems, and are computer-controlled in at least some aspects. These computer-controlled elements of the modern transportation ecosystem communicate with each other, passing various types of information back and forth, and they may react, respond, change their operation, or otherwise depend upon the information received/sent from/to other elements for safe, correct, efficient, and reliable operation. Recent examples of transportation ecosystems include Vehicle-to-Vehicle (V2V; Electronic Vehicle to Grid V2G; and similarly C2C, Car-to-Car, in Europe) ecosystems and Vehicle-to-lnfrastructure ecosystems (V2I, and similarly C2I, Car-to- Infrastructure). V2V and V2I together are often referred to a V2X (e.g., vehicle to anything communications) ecosystem.
[0005] In the arena of connected vehicle technologies (V2V, V2G, C2C, C2I, V2X, and the like), all of the vehicles and devices in the ecosystem must use the proper security infrastructure and have current, genuine, and valid security credentials, (e.g., digital certificates) to operate in a safe, secure, and privacy-protective manner. As connected vehicle applications exchange information among vehicles, roadway infrastructure, traffic management centers, and wireless mobile devices, the ecosystem and security infrastructure ensure that users and ecosystem devices can trust in the validity of information received from other ecosystem users and devices, which are indistinct users and devices that they have never met and about which they have no information.
[0006] Problems arise, however, when a computerized device in the ecosystem has one or more invalid digital assets, such as one or more invalid security credentials (e.g., digital certificates), which may, for example, indicate that a device is unreliable and untrustworthy. These problems include that the information sent by such a device may be incorrect, untrustworthy, or unreliable. The digital certificate(s) associated with a computerized device may be invalid for any of various reasons, including expiring or timing out, or because unauthorized or malicious actors (e.g., hackers) corrupt, replace, or change the certificate(s) or the device’s software.
[0007] These problems are complicated and additional problems and technical inefficiencies arise when a vehicle that contains several computerized devices and subsystems, which are typically each produced by different subsystem manufacturers, needs to update, replace, or replenish one or more of the digital certificates for one or more of its constituent computerized devices and subsystems because the digital certificate required for each subsystem device may come from a different supplier or generator of digital certificates. These additional problems and technical inefficiencies include, among other things, establishing and maintaining relationships, login credentials, accounts, etc. with each of the different suppliers or generators; establishing the correct interaction protocols with each of the different suppliers or generators; maintaining the correct interaction protocols with each of the different suppliers or generators, especially as they change over time; and lack of storage capacity for the code, etc. to implement the foregoing for a large number of different suppliers or generators.
[0008] Similar complicated problems arise when a vehicle manufacturer supplies vehicles to different countries that each employ different inter-vehicle, inter-transportation- infrastructure ecosystems, such as the V2X infrastructure in the U.S. and the C2X infrastructure in a European country, because the same model of vehicle must be able to identify and interact with a different supplier(s) (e.g., certificate generators, such as security credential management systems) and different type(s) of digital certificates depending on where the vehicle is sold or used.
[0009] Further similar problems arise in that the certificates needed by the various subsystems of a vehicle may be of different types; e.g., they may be different types of public key infrastructure (PKI) certificates. Still further similar problems arise in that the certificates needed by the various subsystems of a vehicle may be from different ecosystems and/or different security infrastructures e.g., V2X certificates, (e.g., pseudonym certificates), for the V2X ecosystem and V2G certificates for the electrical grid ecosystem.
[0010] Accordingly, it is desirable to provide improved systems, methods and techniques for securely, easily, and centrally obtaining security credentials, such as digital certificates, for devices or systems, (e.g., vehicles) that utilize multiple digital certificates, which may be provided by multiple certificate providers/generators, and which may be in multiple different formats.
[0011] Various embodiments described herein address these and other problems associated with managing multiple security credentials.
BRIEF SUMMARY
[0012] The embodiments and implementations described herein include systems, methods, and computer-readable media for managing digital certificates and other security credentials. Various embodiments include a routing and management server that is communicatively connected to a certificate user device and to a plurality of certificate generators. Various of the embodiments described herein perform functions, steps, or operations that include: optionally registering the certificate user device; receiving a request for one or more digital certificates from the certificate user device; analyzing the request to determine an appropriate certificate generator, from among the plurality of certificate generators, for producing the one or more digital certificates; optionally translating the request into a format required by the appropriate certificate generator; transmitting the request to the appropriate certificate generator; receiving the one or more digital certificates from the appropriate certificate generator; and providing the one or more digital certificates to the certificate user device.
[0013] In some embodiments, analyzing the request to determine an appropriate certificate generator comprises analyzing the request and determining a plurality of appropriate certificate generators; translating the request into a format required by the appropriate certificate generator comprises translating the request into a plurality of formats required by the plurality of appropriate certificate generators; transmitting the translated request to the appropriate certificate generator comprises transmitting the plurality of translated requests to the plurality of appropriate certificate generators; and receiving the one or more digital certificates from the appropriate certificate generator comprises receiving one or more digital certificates from the plurality of appropriate certificate generators.
[0014] In some embodiments, wherein the certificate user device is a land vehicle. In some other embodiments, the certificate user device is an aircraft.
[0015] In some embodiments, analyzing the request to determine an appropriate certificate generator comprises reading, from the received request, information that indicates the appropriate certificate generator. In some such embodiments, the information specifies a type of certificate.
[0016] In some embodiments, transmitting the translated request to the appropriate certificate generator comprises employing a communications protocol specific to the appropriate certificate generator to send the translated request.
[0017] In some embodiments, transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing an enrollment certificate for the certificate user device.
[0018] In some embodiments, the operations further include enrolling, by the routing and management server, with at least one of the plurality of certificate generators; and receiving, from the at least one of the plurality of certificate generators, an enrollment certificate for the routing and management server. In some such embodiments, transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing the enrollment certificate for the routing and management server.
BRIEF DESCRIPTION OF THE DRAWINGS
[0019] The accompanying drawings, which are incorporated into and constitute a part of this specification, illustrate embodiments of the invention and together with the description, serve to explain the principles of the invention.
[0020] FIG. 1 is a block diagram showing an example of a system with centralized multiple digital asset (e.g., certificate) management capabilities, consistent with embodiments of the invention;
[0021] FIG. 2 is a flow chart illustrating an example of a method for managing and routing security credentials,, consistent with implementations of the invention; and
[0022] FIG. 3 is a block diagram of an example of a computing system that may be used for hosting and implementing systems and methods consistent with implementations of the invention.
DETAILED DESCRIPTION
[0023] Reference will now be made in detail to embodiments of the invention, examples of which are illustrated in the accompanying figures.
[0024] Various embodiments and implementations consistent with the invention provide systems, components, methods, and computer program products for centrally processing requests for multiple different types of digital asset(s) (e.g., certificates or other security credentials), translating the requests or generating equivalent requests in the appropriate format (if needed), routing the requests to the appropriate digital asset generator, and providing the newly generated, responsive digital asset(s) back to the requester.
[0025] Consider, for instance, a vehicle manufacturer that produces a new U.S. electric vehicle that must be provisioned with V2X certificates and also with a vehicle-to- grid (V2G) certificate so that the electric car can interface with the electrical power grid and the car’s batteries can provide unused power to the grid. Consider further that the different technical ecosystems (e.g., V2X and V2G) employ different types of certificate formats, interfaces, communication protocols, and generators; e.g., V2G employs an X509 certificate format and interface, while V2X employs an IEEE Std 1609.2 certificate format and interface. Note similarly that the European C2C ecosystem employs an ETSI-based certificate format and interface, which would be necessary to use if the new electric vehicle were exported to Europe.
[0026] Technical problems, inefficiencies, costly software and hardware duplications, and maintenance problems arise in that the vehicle manufacturer must build, maintain, and keep up-to-date vehicle subsystems and software for two, three or more different types of security infrastructures (e.g., PKIs) during the life of the vehicle. And, vehicles will have to be updated and more certificates and security infrastructure support will be needed in the future if the vehicle adds additional capabilities or subsystems that require secure communication and provisioning.
[0027] There are currently no systems or devices that allow a certificate user (e.g., a vehicle manufacturer, the vehicle itself, etc.) to obtain, from a single centralized management system, multiple, different types of certificates (or other digital assets), which may originate from multiple, different certificate generators or producers. Various embodiments consistent with this disclosure provide the novel devices and capabilities, among others, to provide or obtain multiple different types of certificates (e.g., V2X IEEE Std 1609.2 certificates, V2G X509 certificates, C2C ETSI-standard certificates, etc.), which may come from multiple, different certificate generators or producers, via a centralized routing and management system.
[0028] FIG. 1 is a block diagram showing an example of a system 100 with multiple digital asset (e.g., digital certificate or other security credential) generation and management capabilities, consistent with embodiments of the invention. As shown in this embodiment, the system 100 includes a credential (e.g., one type of digital asset) routing and management system 110, which may be implemented by a server (e.g., having at least one processor and associated memory) or other computing system. As illustrated, the credential routing and management system 1 10 is accessible via a network 130, which may be or include a digital network(s), (e.g., the Internet), cellular networks, wireless networks, and other networks.
[0029] Any number of certificate users, such as the pictured certificate user 1 101 , certificate user 2 102, and so on through certificate user n 103 may interact with the credential routing and management system 110 via the network 130. In various embodiments, a certificate user 101 -103 may be, for instance, a device or system that uses certificates (e.g., an on-board unit device), or a computing system of a device manufacturer (e.g., an on-board unit manufacturer), or a person using a computer, among other things. Thus, further to the example mentioned above, a certificate user 101 -103 may be the vehicle manufacturer that produces a new U.S. EV that needs V2X certificates and also needs a V2G certificate at manufacturing time. For another example, a certificate user 101 -103 may be the new EV itself, which needs to replenish its V2X pseudonym certificates and needs to replace an expired or corrupted V2G certificate. Thus, a certificate user 101 -103 is typically a computer or a computerized device, although in some instances it may be a person.
[0030] As shown in the example of FIG. 1 , the credential routing and management system 110 may include a user portal 135, and a certificate user 101 may interact with the credential routing and management system 110 via the user portal 135. In some embodiments, the credential routing and management system 1 10 may include a human accessible interface, such as a human-specific user portal, for use by human users 101 - 103. Additionally or alternatively, the credential routing and management system 110 may include an application programming interface (API) 140, and a certificate user 102 may interact with the credential routing and management system 110 via the API 140. In some implementations (not shown), a user (e.g. user 101 ) may be able to interact with the credential routing and management system 110 via either of the portal 135 or the API 140. In general, the user portal 135 and the API 140 enable only a certificate users 101 -103 who are known to and trusted by the credential routing and management system 1 10, (e.g., that have been registered, enrolled, or set up an account and been verified as legitimate security infrastructure users), to interact with the credential routing and management system 1 10. In some embodiments, a certificate user, e.g., 102, may provide a copy or the like of its enrollment credential(s) (e.g., V2X enrollment certificate, or its equivalent in other technical ecosystems) to the credential routing and management system 110, which may store the V2X enrollment credential for use when communicating with a V2X certificate generator (e.g., 121 ) on behalf of the certificate user 102 and according to the communication protocol employed by the V2X certificate generator 121. Enrollment credentials may include C2C enrollment certificates, V2G enrollment credentials, and the like.
[0031] Among the functions available to the certificate users 101 -103 are the abilities to request 101 A, 102A, 103A certificate(s) and to receive 101 B, 102b, 103A certificate(s). For example, in operation, the certificate user 1 101 may send a request 101 A for one or more certificates to the credential routing and management system 110, in this example, via the user portal 135. In some embodiments, the certificate user 101 may request more than one type of certificate and/or may request more than one type of certificate in a single request 101 A. In some embodiments, the certificate user 101 using multiple, separate requests to accomplish the same thing. For example, the certificate user 101 may first send a request for a set of V2X pseudonym certificates and then send a second request for a V2G certificate. The requests may be for multiple devices (e.g., multiple new EVs) that need certificates or for a single device (e.g., on EV) that needs certificates.
[0032] Similarly, the other certificate users 102, 103 may each transmit or send various requests 102A, 103A for different numbers and types of certificates to the credential routing and management system 110 via, in this example, the AP1 140.
[0033] As shown in FIG. 1 , the system also includes several digital asset (e.g., certificate) generators 121 -127, which are communicatively connected to the credential routing and management system 1 10 via the network 130. In this example, the certificate generators include a North American (NA) V2X certificate generator 121 , a European (EU) C2C certificate generator 122, a Chinese (CN) V2X certificate generator 123, a Vehicle to Grid (V2G) certificate generator 124, a phone-as-a-key certificate generator 125, an advanced driver assistance (ADA) certificate generator 126, and other types of certificate generators 127 that are known in the art. In some instances, the different types of certificates may be based on different types of public key infrastructures.
[0034] In some implementations, one or more of the certificate generators 121 -127 may be a conventional security credential management system (SCMS) or the like. An SCMS is a message security solution for V2X communication. An SCMS may employ a PKI to enable trusted communication between the participants or elements of a V2X ecosystem. Authorized V2X ecosystem participants use digital certificates generated by an SCMS to authenticate and validate the safety and mobility messages for various connected-vehicle technologies and functions. To protect the privacy of vehicle owners and operators, the certificates typically contain no personal or equipment-identifying information but nonetheless serve as ecosystem credentials so that other users (e.g., devices) in the ecosystem can trust the source of each message. In some implementations, an SCMS may also include devices and functionality for identifying and removing misbehaving devices from the ecosystem, while still maintaining privacy.
[0035] In various embodiments, upon receiving a request for one or more certificates (or other type of security credential) from a certificate user, e.g., from the certificate user 101 , the credential routing and management system 1 10 examines, interprets, parses, or otherwise analyzes the request 101 A to determine the appropriate certificate generator 121 -12.1 to which to route the request 101 A. For example, in some implementations, the credential routing and management system 110 may analyze the data or information in the request 101 A to determine the type of certificate(s) (e.g., North American V2X type, European C2C type, Phone-as-a-Key type, etc.) that the user 101 is requesting. This analyzing may be done, for example, by reading the data from a specific field(s) in the request message, and then using a lookup table, hard coding, or the like to determine the type of certificate that corresponds to the data from that field.
[0036] For another example, in some implementations, the request 101 A may contain information (e.g., a field) identifying one of the certificate generators 121 -127 to which the request 101 A should be routed by the credential routing and management system 110, and the credential routing and management system 110 may use this generator-identity information to correctly route the request 101 A. In some embodiments wherein the certificate user 101 has contracted or enrolled directly with one (or more) of the certificate generators 121 -127, the generator-identity information in the request 101 A may include information provided to the certificate user 101 by a specific certificate generator 121 -127 at enrollment time.
[0037] Based on the type of certificate requested and/or the generator-identity information, the credential routing and management system 110 may then send, transmit, or otherwise provide a request to the digital asset provider 121 -127 that generates or otherwise provides the type of certificate(s) that the user 101 requested. As noted below with regard to FIG. 2, in some embodiments, the credential routing and management system 110 may translate, reformat, or otherwise modify the request 101 into the format needed for operating with the specific certificate generator to which it is being routed. Additionally or alternatively, the credential routing and management system 1 10 may generate or create, based on the request 101 A, a new request in the operable format needed by the specific certificate generator, wherein the new request is functionally equivalent to the request 101 A. The transformation of the received certificate requests 101 A, 102A, and 103A into a new format or the creation of a new request in the operable format needed by the specific certificate generator is represented in FIG. 1 by the certificate requests 121 A, 122A, 123A, 124A, 125A, 126A, and 127A to the generators 121 -127 having different reference numbers than 101 A, 102A, and 103A, but it should be noted that in some cases and embodiments, a certificate request, e.g., 101 A, may be in the exact format needed by the appropriate certificate generator 121 -127, and in such cases the credential routing and management system 1 10 may route the original request (e.g., certificate request 101 A) to the appropriate certificate generator without modification.
[0038] As a first example of general operation, consider the use case wherein the certificate user 101 sends a request 101 A for a set of NA V2X certificates (e.g., a group of V2X pseudonym certificates or the like). In reaction, the the credential routing and management system 1 10 may first analyze the data in the request 101 A to determine that it is a request for a V2X type certificate, and then may create and send a certificate request 121 A to the NA V2X Certificate Generator 121 , wherein the request 121 A is based on the information in the request 101 A.
[0039] In response to the request 121 A, the NA V2X Certificate Generator 121 creates or otherwise obtains and then provides the requested V2X certificates 121 B to the credential routing and management system 110. Upon receiving the requested V2X certificates 121 B from the NA V2X Certificate Generator 121 , the credential routing and management system 1 10 may then transmit or otherwise provide the generated V2X certificates 121 B (represented by the reference 101 B) to the certificate user 101 that requested them.
[0040] Similarly, if the certificate user 101 later sends a request 101 A for a V2G certificate, then the credential routing and management system 110 may analyze the data in the new request 101 A to determine that it is a request for a V2G type certificate, and then may send a request 124A to the V2G Certificate Generator 124. Upon receiving the requested V2G certificate 124B from the V2G Certificate Generator 124, the credential routing and management system 1 10 may transmit or otherwise provide the requested V2G certificate (represented by the reference 101 B) to the certificate user 101 that requested it.
[0041] One of ordinary skill will recognize that the components, connections, processes, data, operations, and implementation details shown in FIG. 1 are examples presented for conciseness and clarity of explanation. Other components, processes, implementation details, and variations may be used without departing from the principles of the invention, as this example is not intended to be limiting and many variations are possible. For instance, although only six specific types of certificate generators are shown in FIG. 1 , other implementations may have many other types of certificate generators, as represented by component 127. For another instance, although FIG. 1 is described in the context of digital certificates, other implementations may include other types of digital assets, including software patches, software versions, and the like.
[0042] FIG. 2 is a flow chart illustrating an example of a method or process 200 for managing and routing security credentials, consistent with embodiments of the invention. Note that optional operations or functions for the embodiment shown are denoted by rectangles made of dashed lines. In various implementations, some or all of the process 200 or the operations shown may be performed by code (e.g., instructions) executing on a general purpose computing system (which may include one or more processors or one or more computing subsystems), by a hardware-only system, or by a system that is a hybrid of the two. In various implementations, some or all of the process 200 may be performed or executed by a credential routing and management system 1 10, which may be in communication with the certificate users 101 -103 and the digital asset generators 121 -127, as described with respect to FIG. 1 and throughout this disclosure.
[0043] As shown in the example of FIG. 2, the process 200 may begin at optional block 201 (e.g., optional operation) by enrolling or being enrolled with one or more certificate generators, such as one or more of the certificate generators 121 -127. For example, in embodiments where a certificate generator, e.g., the NA V2X certificate generator 121 , is implemented by a conventional SCMS, the credential routing and management system 1 10 may be enrolled with the V2X ecosystem by contracting with the provider (e.g., the SCMS) of the NA V2X certificate generator 121 . Among other things, the provider may ensure that the security criteria that enrollees must meet to operate within their ecosystem are satisfied. Once authorized or enrolled, the credential routing and management system 110 will be considered a trusted actors in the V2X ecosystem. Additionally or alternatively, a certificate user(s) (e.g., 101 -103) may be enrolled with one or more certificate generators, such that the user’s certificate requests, including those managed by the credential routing and management system, will be honored by the generators with which the user is enrolled.
[0044] The process 200 may continue at 203 with registering a certificate user (e.g., 101 -103). In various embodiments, a certificate user may be enrolled with the credential routing and management system 1 10 by contracting with the provider of the credential routing and management system 1 10. Among other things, the provider may ensure that the security criteria that enrollees must meet to operate within one or more of the ecosystem associated with the generators 121 -127 are satisfied. Once authorized or enrolled, a user 101 -103 will be considered a trusted actor in the technical ecosystem(s) for which it enrolled. As noted previously, in some implementations, a certificate user, e.g., 102, may provide a copy of its V2X enrollment certificate (or its equivalent in other technical ecosystems) to the credential routing and management system 110, which may store the enrollment certificate for use when communicating with a V2X certificate generator (e.g., 121 ) on behalf of the certificate user 102 and according to the communication protocol employed by the V2X certificate generator 121 .
[0045] The process 200 continues at 205 with receiving a request (e.g. 101A-103A) for one or more certificate(s), where the request comes from a certificate user (e.g., 101 - 103), which may in some instances be a device, such as a vehicle or an on-board unit. In some implementations, the block 205 may involve a user 101 -103 logging onto the credential routing and management system 110, for example, via a user portal (e.g., 135), and then entering the request 101 A-103A. In some implementations, the block 205 may involve a user device 101 -103 interacting with the API 140 of the credential routing and management system 1 10, to convey the request 101 A-103A. As noted previously, a certificate user 101 -103 may be any number of things, including a computing system of a manufacturer of devices that utilize certificates or a device (e.g. a V2X vehicle or a vehicle’s subsystem (e.g., OBU) or a computerized device) that utilizes certificates.
[0046] In various implementations, a request 101 A-103A may be for any number or types of digital certificates that come from any one or more of the certificate generators 121 -127. For example, a request 101 A-103A may be: for one digital certificate from a single generator (e.g., for a single CN V2X enrollment certificate), or for multiple digital certificates from a single generator (e.g., for a group of CN V2X pseudonym certificates), or for two or more single digital certificates that are produced by two or more different generators (e.g., for a for a single NA V2X enrollment certificate and a single V2G certificate), or for any other combinations of quantities and types of certificates. In some embodiments, a request 101 A-103A may include an enrollment certificate(s) for the requesting user 101 -103, which may be used in communications with a certificate generator(s), for example as described below.
[0047] At 210, the process 200 analyzes the request (e.g. 101 A-103A) to determine the appropriate certificate generator(s) for fulfilling the request by generating or otherwise producing the requested digital certificates. In various embodiments, the request may include information that directly or indirectly identifies the appropriate certificate generator(s). For example, the request may include information or a field(s) (e.g., in accordance with the parameters and definitions of the API 140) that specifies the appropriate certificate generator(s). For another example, the request may include information that specifies the general type of certificate(s) that is being requested, and analyzing the request may include reading, parsing, or otherwise recognizing data or information in the request (e.g., data from a specific field in a data structure) that identifies the type of certificate that is desired. In such implementations, the process 200 may determine or select an appropriate certificate generator based on the type of certificate specified in the request. In such implementations, selecting the certificate generator may include looking up, retrieving, or otherwise identifying a specific generator from among the set of available generators 121 -127 using the type of certificate as a search term, look-up key, index or the like.
[0048] At optional block 220, the process 200 may translate the request for the certificate from block 205 (e.g., 101A-103A) into a format that is usable by the certificate generator that was determined or selected in operation 210. In some such embodiments, a request 101A-103A may be in a format that is easily understood and usable by the credential routing and management system 110; for example, a format that speeds and simplifies the determination of the type of certificate that is being requested (e.g., operation 210) and the routing of the request, and this request format may not be compatible with the selected certificate generator. In such cases, the operation 220 may convert, reformat, or otherwise translate the received request 101 A-103A into a request (e.g., 121A-127A) that is compatible with the selected appropriate certificate generator, as needed. In some embodiments, the process 200 may create from scratch a new request (e.g., 121 A . . . 127A) for the selected appropriate certificate generator using information from the request (e.g., 101A-103A) received at block 205.
[0049] At 225, the process 200 transmits, routes, or otherwise provides the (possibly translated) request (e.g., 121 A-127A) to the appropriate certificate generator that was determined in block 210. As just noted, the request to the certificate generator may optionally be reformatted before being sent.
[0050] In various embodiments, some or all of the certificate generators 121 -127 may employ communication protocols that are different from each other; e.g. the protocol for requesting (e.g. 121 A) and receiving (e.g., 121 B) certificates from the NA V2X certificate generator 121 is different from the protocol for requesting (e.g., 124A) and receiving (e.g., 124B) certificates from the V2G certificate generator 124. In such embodiments, the process 200 (e.g., as implemented by the credential routing and management system 1 10) employs the corresponding protocol associated with each of the certificate generators 121 -127 when communicating with each. In implementations where the process 200 has access to an enrollment certificate (or the like) of the requesting certificate user 101 -103, (e.g., as previously stored by the credential routing and management system 1 10 or as received in a request 101 A-103A), the process may employ the enrollment certificate when communicating with the corresponding certificate generator (e.g., 121 for a V2X enrollment certificate) per the communication protocol, such that the credential routing and management system 1 10 acts as a proxy for the requesting certificate user 101 -103, and the certificate generator 121 responds as if it is interacting with the enrollment certificate holder device (e.g., 101 -103).
[0051] Upon receiving the request (e.g., 121 A-127A) that was sent from the credential routing and management system 110, the certificate generator 121 -127 processes the request and generates, calculates, retrieves, or otherwise produces a certificate(s) (e.g., 121 B-127B, which is one type of digital asset or security credential) according to the request, and sends the certificate(s) (e.g., 121 B-127B) to the credential routing and management system 1 10. [0052] At 230, the process 200 receives one or more certificate(s) (e.g., 121 B-127B) from the certificate generator that was selected in operation 215 and to which the request was transmitted in operation 225.
[0053] At 235, the process 200 transmits or otherwise provides the certificate(s) (e.g., 101 B-103B) to the requesting entity (e.g., to the certificate user 101 -103 that sent the request 101A-103A).
[0054] The example depicted in FIG. 2 is only for the purpose of illustration and is not intended to be limiting. Further, the depicted process 200 is an example that has been somewhat simplified for clarity of explanation of certain novel and innovative features consistent with certain disclosed implementations, but this example is not intended to be limiting and many variations are possible. For example, for clarity, the process 200 is described in the context of a certificate-user request (e.g., 102A) that is routed to a single generator (e.g., 121 ) because the certificate-user request is for a single type of certificate (e.g., a NA V2X certificate), but a certificate-user request (e.g., 102A) that included subrequest for several types of certificates (e.g., NA V2X certificate, V2G certificates, and after-market ADA certificates) would have the sub-requests routed to the three appropriate generators (e.g., 121 , 124, and 126).
[0055] While the functions and operations are shown as being performed in a particular order, the order described is merely an example, and various different sequences of blocks or operations can be performed, consistent with certain disclosed implementations. Moreover, the operations are described as discrete steps merely for the purpose of explanation, and, in some implementations, multiple operations may be performed simultaneously and/or as part of a single computation or larger operation. The operations described are not intended to be exhaustive, limiting, or absolute, and various operations can be modified, inserted, or removed.
[0056] Other variations are possible. As an example of a variation, although FIG. 2 is described in the context of a digital certificate, the systems and processes consistent with this disclosure can function similarly to handle other types of digital assets (e.g., software patches, application versions, etc.).
[0057] FIG. 3 is a block diagram of an example of a computing environment which includes a computing system 300 that may be used for implementing systems and methods consistent with implementations of the invention. Other components and/or arrangements may also be used. In some implementations, computing system 300 may be used to implement, at least partially, various components, devices, blocks, functions, and operations of FIGs. 1 -2, such as the credential management and routing system 110, among other things. In some implementations, a series of computing systems similar to computing system 300 may be each customized with specialized hardware and/or programmed as a specialized server to implement one of the components or blocks of FIGs. 1 -2, which may communicate with each other via a network 335.
[0058] In the example shown in FIG. 3, the computing system 300 includes a number of components, such as a CPU 305, a memory 310, an input/output (I/O) device(s) 325, a hardware security module (HSM) 340, and a storage device 320. System 300 can be implemented in various ways. For example, an implementation as an integrated platform (such as a server, workstation, personal computer, laptop, etc.) may comprise a CPU 305, a memory 310, a nonvolatile storage 320, and I/O devices 325. In such a configuration, the components 305, 310, 320, and 325 may connect and communicate through a local data bus and may access a data repository 330 (implemented, for example, as a separate database system) via an external I/O connection. The I/O component(s) 325 may connect to external devices through a direct communication link (e.g., a hardwired or local wifi connection), through a network, such as a local area network (LAN) or a wide area network (WAN, such as a cellular telephone network or the Internet), and/or through other suitable connections. System 300 may be stand-alone or it may be a subsystem of a larger system.
[0059] The CPU 305 may be one or more known processor or processing devices, such as a microprocessor from the Core™ family manufactured by the Intel™ Corporation of Santa Clara, CA or a microprocessor from the Athlon™ family manufactured by the AMD™ Corporation of Sunnyvale, CA. The memory 310 may be one or more fast storage devices configured to store instructions and information executed or used by the CPU 305 to perform certain functions, methods, and processes related to implementations of the present invention. The storage 320 may be a volatile or non-volatile, magnetic, semiconductor, tape, optical, or other type of storage device or computer-readable medium, including devices such as CDs and DVDs and solid state devices, meant for longterm storage. [0060] In the illustrated implementation, the memory 310 contains one or more instructions, programs or applications 315 loaded from the storage 320 or from a remote system (not shown) that, when executed by the CPU 305, perform various operations, procedures, processes, or methods consistent with the present invention. Alternatively, the CPU 305 may execute one or more programs located remotely from the system 300. For example, the system 300 may access one or more remote programs via the network 335 that, when executed, perform functions and processes related to implementations of the present invention.
[0061] In one implementation, the memory 310 may include a program(s) 315 for performing the specialized functions and operations described herein for the credential management and routing system 1 10. In some implementations, the memory 310 may also include other programs or applications that implement other methods and processes that provide ancillary functionality to the invention.
[0062] The memory 310 may also be configured with other programs (not shown) unrelated to the invention and/or an operating system (not shown) that performs several functions well known in the art when executed by the CPU 305. By way of example, the operating system may be Microsoft Windows™, Unix™, Linux™, an Apple Computers™ operating system, or other operating system. The choice of operating system, and even to the use of an operating system, is not critical to the invention.
[0063] The HSM 340 may be a device with its own processor that securely manages digital security assets and/or securely performs a variety of cryptographic and sensitive computations. In some embodiments, the HSM 340 protects digital security assets, such as cryptographic keys and digital certificates, and other sensitive data from possible access by an attacker. In some implementations, the HSM may be a plug-in card or board that attaches directly to the computing system 300.
[0064] The I/O device(s) 325 may comprise one or more input/output devices that allow data to be received and/or transmitted by the system 300. For example, the I/O device 325 may include one or more input devices, such as a keyboard, touch screen, mouse, and the like, that enable data to be input from a user. Further, the I/O device 325 may include one or more output devices, such as a display screen, a CRT monitor, an LCD monitor, a plasma display, a printer, speaker devices, and the like, that enable data to be output or presented to a user. The I/O device 325 may also include one or more digital and/or analog communication input/output devices that allow the computing system 300 to communicate, for example, digitally, with other machines and devices. Other configurations and/or numbers of input and/or output devices may be incorporated in the I/O device 325.
[0065] In the implementation shown, the system 300 is connected to a network 335 (such as the Internet, a private network, a virtual private network, a cellular network or other network or combination of these), which may in turn be connected to various systems and computing machines, such as servers, personal computers, laptop computers, client devices, etc. In general, the system 300 may input data from external machines and devices and output data to external machines and devices via the network 335. In some implementations, the network 335 may be, or be part of, the network 130.
[0066] In the exemplary implementation shown in FIG. 3, the data repository 330 is a standalone database external to system 300, such as the database 125. In other implementations, the data repository 330 may be hosted by the system 300. In various implementations, the data repository 330 may manage and store data used to implement systems and methods consistent with the invention. For example, the data repository 330 may manage and store data structures that are used by the credential management and routing system 1 10.
[0067] The data repository 330 may comprise one or more databases that store information and are accessed and/or managed through the system 300. By way of example, the database 330 may be an Oracle™ database, a Sybase™ database, or other relational database. Systems and methods consistent with the invention, however, are not limited to separate data structures or databases, or even to the use of a database or data structure.
[0068] One of ordinary skill will recognize that the components and implementation details of the system in FIG. 3 are examples presented for conciseness and clarity of explanation. Other components and implementation details may be used.
[0069] Although the examples of FIGs. 1 -3 are described in the context of road vehicles and V2X/C2X ecosystems for clarity of explanation, other embodiments consistent with the invention can be used in the context of aircraft and aircraft ecosystems (including drones and drone ecosystems), as well as in other ecosystems with devices that utilize trusted communications based on security credentials, such as digital certificates. Other examples include ecosystems for medical devices (e.g., dialysis machines, infusion pumps, etc.); robots; autonomous vehicles; and secure voice and digital communications, among others.
[0070] The various operations of the applications described herein may be performed, at least partially, by one or more virtual machines (VMs). In additional or alternative implementations, the operations of the applications described herein may be performed, at least partially by one or more processors that are temporarily configured (e.g., by software) or permanently configured to perform the relevant operations. Whether temporarily or permanently configured, such processors may constitute processor- implemented modules that operate to perform one or more application operations, functions, and roles described herein. As used herein, the term ‘processor-implemented module’ refers to a hardware module implemented using one or more processors.
[0071] Similarly, the methods described herein may be at least partially processor- implemented, with a particular processor or processors being an example of hardware. For example, at least some of the operations of a method may be performed by one or more processors or processor-implemented modules. Moreover, the one or more processors may also operate to support performance of the relevant operations in a ‘cloud computing’ environment or as a ‘software as a service’ (SaaS). For example, at least some of the operations may be performed by a group of computers (as examples of machines including processors), with these operations being accessible via a network (e.g., the Internet) and via one or more appropriate interfaces (e.g., an API).
[0072] The performance of certain of the operations may be distributed among the processors, not only residing within a single machine, but deployed across a number of machines. In some example embodiments, the processors or processor-implemented modules may be located in a single geographic location (e.g., within an office environment, a manufacturing environment, or a server farm). In other example embodiments, the processors or processor-implemented modules may be distributed across a number of geographic locations.

Claims

CLAIMS What is claimed is:
1 . A system for managing digital certificates, the system comprising: a routing and management server that is communicatively connected to a certificate user device and to a plurality of certificate generators, and that is operable to perform operations comprising: registering the certificate user device; receiving a request for one or more digital certificates from the certificate user device; analyzing the request to determine an appropriate certificate generator, from among the plurality of certificate generators, for producing the one or more digital certificates; translating the request into a format required by the appropriate certificate generator; transmitting the translated request to the appropriate certificate generator; receiving the one or more digital certificates from the appropriate certificate generator; and providing the one or more digital certificates to the certificate user device.
2. The system of claim 1 , wherein analyzing the request to determine an appropriate certificate generator comprises analyzing the request and determining a plurality of appropriate certificate generators; wherein translating the request into a format required by the appropriate certificate generator comprises translating the request into a plurality of formats required by the plurality of appropriate certificate generators; wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the plurality of translated requests to the plurality of appropriate certificate generators; and wherein receiving the one or more digital certificates from the appropriate certificate generator comprises receiving one or more digital certificates from the plurality of appropriate certificate generators.
3. The system of claim 1 , wherein the certificate user device is a land vehicle.
4. The system of claim 1 , wherein the certificate user device is an aircraft.
5. The system of claim 1 , wherein analyzing the request to determine an appropriate certificate generator comprises reading, from the received request, information that indicates the appropriate certificate generator.
6. The system of claim 5, wherein the information specifies a type of certificate.
7. The system of claim 1 , wherein transmitting the translated request to the appropriate certificate generator comprises employing a communications protocol specific to the appropriate certificate generator to send the translated request.
8. The system of claim 1 , wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing an enrollment certificate for the certificate user device.
9. The systems of claim 1 , further comprising: enrolling, by the routing and management server, with at least one of the plurality of certificate generators; and receiving, from the at least one of the plurality of certificate generators, an enrollment certificate for the routing and management server.
10. The systems of claim 9, wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing the enrollment certificate for the routing and management server.
1 1. A method for managing digital certificates using a routing and management server that is communicatively connected to a certificate user device and to a plurality of certificate generators, the method comprising: registering, by the routing and management server, the certificate user device; receiving, by the routing and management server, a request for one or more digital certificates from the certificate user device; analyzing, by the routing and management server, the request to determine an appropriate certificate generator, from among the plurality of certificate generators, for producing the one or more digital certificates; translating, by the routing and management server, the request into a format required by the appropriate certificate generator; transmitting, by the routing and management server, the translated request to the appropriate certificate generator; receiving, by the routing and management server, the one or more digital certificates from the appropriate certificate generator; and providing, by the routing and management server, the one or more digital certificates to the certificate user device.
12. The method of claim 11 , wherein analyzing the request to determine an appropriate certificate generator comprises analyzing the request and determining a plurality of appropriate certificate generators; wherein translating the request into a format required by the appropriate certificate generator comprises translating the request into a plurality of formats required by the plurality of appropriate certificate generators; wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the plurality of translated requests to the plurality of appropriate certificate generators; and wherein receiving the one or more digital certificates from the appropriate certificate generator comprises receiving one or more digital certificates from the plurality of appropriate certificate generators.
13. The method of claim 11 , wherein the certificate user device is a land vehicle.
14. The method of claim 11 , wherein the certificate user device is an aircraft.
15. The method of claim 11 , wherein analyzing the request to determine an appropriate certificate generator comprises reading, from the received request, information that indicates the appropriate certificate generator.
16. The method of claim 15, wherein the information specifies a type of certificate.
17. The method of claim 11 , wherein transmitting the translated request to the appropriate certificate generator comprises employing a communications protocol specific to the appropriate certificate generator to send the translated request.
18. The method of claim 11 , wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing an enrollment certificate for the certificate user device.
19. The method of claim 11 , further comprising: enrolling, by the routing and management server, with at least one of the plurality of certificate generators; and receiving, from the at least one of the plurality of certificate generators, an enrollment certificate for the routing and management server.
20. The method of claim 19, wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing the enrollment certificate for the routing and management server.
21 . A non-transitory computer-readable medium including instructions that, when executed by a processor, perform a method for managing digital certificates, the method comprising: registering, by a routing and management server, a certificate user device; receiving, by the routing and management server, a request for one or more digital certificates from the certificate user device; analyzing, by the routing and management server, the request to determine an appropriate certificate generator, from among a plurality of certificate generators, for producing the one or more digital certificates; translating, by the routing and management server, the request into a format required by the appropriate certificate generator; transmitting, by the routing and management server, the translated request to the appropriate certificate generator; receiving, by the routing and management server, the one or more digital certificates from the appropriate certificate generator; and providing, by the routing and management server, the one or more digital certificates to the certificate user device.
22. The non-transitory computer-readable medium of claim 21 , wherein analyzing the request to determine an appropriate certificate generator comprises analyzing the request and determining a plurality of appropriate certificate generators; wherein translating the request into a format required by the appropriate certificate generator comprises translating the request into a plurality of formats required by the plurality of appropriate certificate generators; wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the plurality of translated requests to the plurality of appropriate certificate generators; and wherein receiving the one or more digital certificates from the appropriate certificate generator comprises receiving one or more digital certificates from the plurality of appropriate certificate generators.
23. The non-transitory computer-readable medium of claim 21 , wherein the certificate user device is a land vehicle.
24. The non-transitory computer-readable medium of claim 21 , wherein the certificate user device is an aircraft.
25. The non-transitory computer-readable medium of claim 21 , wherein analyzing the request to determine an appropriate certificate generator comprises reading, from the received request, information that indicates the appropriate certificate generator.
26. The non-transitory computer-readable medium of claim 25, wherein the information specifies a type of certificate.
27. The non-transitory computer-readable medium of claim 21 , wherein transmitting the translated request to the appropriate certificate generator comprises employing a communications protocol specific to the appropriate certificate generator to send the translated request.
28. The non-transitory computer-readable medium of claim 21 , wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing an enrollment certificate for the certificate user device.
29. The non-transitory computer-readable medium of claim 21 , further comprising: enrolling, by the routing and management server, with at least one of the plurality of certificate generators; and receiving, from the at least one of the plurality of certificate generators, an enrollment certificate for the routing and management server.
30. The non-transitory computer-readable medium of claim 29, wherein transmitting the translated request to the appropriate certificate generator comprises transmitting the translated request utilizing the enrollment certificate for the routing and management server.
PCT/US2023/018254 2022-04-12 2023-04-12 Systems and methods for centrally managing and routing multiple credentials Ceased WO2023200828A1 (en)

Priority Applications (5)

Application Number Priority Date Filing Date Title
EP23788878.9A EP4508554A4 (en) 2022-04-12 2023-04-12 SYSTEMS AND METHODS FOR THE CENTRAL ADMINISTRATION AND MANAGEMENT OF MULTIPLE AUTHORIZATIONS
JP2024560270A JP2025512369A (en) 2022-04-12 2023-04-12 System and method for centrally managing and routing multiple credentials - Patents.com
KR1020247034985A KR20250005150A (en) 2022-04-12 2023-04-12 System and method for centrally managing and routing multiple credentials
AU2023251877A AU2023251877A1 (en) 2022-04-12 2023-04-12 Systems and methods for centrally managing and routing multiple credentials
CN202380039536.1A CN119301909A (en) 2022-04-12 2023-04-12 System and method for centrally managing and routing multiple credentials

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US202263330026P 2022-04-12 2022-04-12
US63/330,026 2022-04-12

Publications (1)

Publication Number Publication Date
WO2023200828A1 true WO2023200828A1 (en) 2023-10-19

Family

ID=88238910

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2023/018254 Ceased WO2023200828A1 (en) 2022-04-12 2023-04-12 Systems and methods for centrally managing and routing multiple credentials

Country Status (7)

Country Link
US (3) US11818280B2 (en)
EP (1) EP4508554A4 (en)
JP (1) JP2025512369A (en)
KR (1) KR20250005150A (en)
CN (1) CN119301909A (en)
AU (1) AU2023251877A1 (en)
WO (1) WO2023200828A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20250005150A (en) 2022-04-12 2025-01-09 인테그리티 시큐리티 서비시즈 엘엘씨 System and method for centrally managing and routing multiple credentials
EP4465230A1 (en) * 2023-05-17 2024-11-20 Integrity Security Services Llc Automatic tracking of resource usage by vehicles
US12609980B2 (en) * 2024-02-05 2026-04-21 Toyota Motor North America, Inc. Content delivery based on a vehicle providing energy

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060206707A1 (en) * 2005-03-11 2006-09-14 Microsoft Corporation Format-agnostic system and method for issuing certificates
US7290133B1 (en) * 2000-11-17 2007-10-30 Entrust Limited Method and apparatus improving efficiency of end-user certificate validation
US20170230355A1 (en) * 2016-02-09 2017-08-10 Citrix Systems, Inc. Certificate pinning using a directory service
US20210120404A1 (en) * 2019-10-18 2021-04-22 Huawei Technologies Co., Ltd. Issuing offline pki certificates in distributed v2x network
US11563590B1 (en) * 2018-04-03 2023-01-24 Amazon Technologies, Inc. Certificate generation method

Family Cites Families (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8595815B2 (en) * 2006-07-26 2013-11-26 Gregory Alan Bolcer System and method for selectively granting access to digital content
US8010786B1 (en) * 2006-10-30 2011-08-30 Citigroup Global Markets Inc. Systems and methods for managing digital certificate based communications
KR20160038091A (en) * 2014-09-24 2016-04-07 현대자동차주식회사 Method and System for Issuing CSR Certificate for Vehicle-to-Anything Communication
EP3314917B1 (en) * 2015-06-24 2019-08-07 INTEL Corporation Enhanced proximity services (prose) protocols for vehicle-to-anything (v2x) communication
EP3343995B1 (en) * 2015-08-24 2020-06-24 LG Electronics Inc. Method for transreceiving v2x signal of terminal in wireless communication system, and terminal using the method
DE102015218800A1 (en) * 2015-09-29 2017-03-30 Continental Automotive Gmbh Communication system for V2X communication
US10652027B2 (en) * 2015-10-20 2020-05-12 The Boeing Company Airplane identity management with redundant line replaceable units (LRUs) and composite airplane modifiable information (AMI)
US10320570B2 (en) * 2016-08-30 2019-06-11 Microsoft Technology Licensing, Llc Digital security certificate selection and distribution
JP6381608B2 (en) * 2016-11-07 2018-08-29 三菱電機株式会社 Wireless communication apparatus and wireless communication method
US10581620B2 (en) 2016-11-14 2020-03-03 Integrity Security Services Llc Scalable certificate management system architectures
EP3606124B1 (en) * 2017-03-29 2021-12-29 LG Electronics Inc. V2x communication device and data communication method thereof
US10803681B2 (en) * 2017-11-15 2020-10-13 Honda Motor Co., Ltd. Server side security preventing spoofing of vin provisioning service
US10880812B2 (en) * 2018-07-23 2020-12-29 Blackberry Limited Vehicle-to-everything (V2X) service access
KR102174469B1 (en) * 2018-11-23 2020-11-04 아우토크립트 주식회사 Method and apparatus for managing enrollment certificate by relaying between enrollment certificate authority and device configuration manager in security credential management system for v2x communication
US11251971B2 (en) * 2019-01-25 2022-02-15 Uber Technologies, Inc. Vehicle integration platform (VIP) security
US11019052B2 (en) * 2019-03-25 2021-05-25 Uber Technologies, Inc. Vehicle integration platform (VIP) security integration
KR20250005150A (en) 2022-04-12 2025-01-09 인테그리티 시큐리티 서비시즈 엘엘씨 System and method for centrally managing and routing multiple credentials

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7290133B1 (en) * 2000-11-17 2007-10-30 Entrust Limited Method and apparatus improving efficiency of end-user certificate validation
US20060206707A1 (en) * 2005-03-11 2006-09-14 Microsoft Corporation Format-agnostic system and method for issuing certificates
US20170230355A1 (en) * 2016-02-09 2017-08-10 Citrix Systems, Inc. Certificate pinning using a directory service
US11563590B1 (en) * 2018-04-03 2023-01-24 Amazon Technologies, Inc. Certificate generation method
US20210120404A1 (en) * 2019-10-18 2021-04-22 Huawei Technologies Co., Ltd. Issuing offline pki certificates in distributed v2x network

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP4508554A4 *

Also Published As

Publication number Publication date
US20250175352A1 (en) 2025-05-29
US12212694B2 (en) 2025-01-28
US20230327889A1 (en) 2023-10-12
CN119301909A (en) 2025-01-10
JP2025512369A (en) 2025-04-17
AU2023251877A1 (en) 2024-10-24
EP4508554A1 (en) 2025-02-19
US20240048396A1 (en) 2024-02-08
KR20250005150A (en) 2025-01-09
EP4508554A4 (en) 2026-03-18
US11818280B2 (en) 2023-11-14

Similar Documents

Publication Publication Date Title
US12316785B2 (en) Systems, methods, and devices for multi-stage provisioning and multi-tenant operation for a security credential management system
US11985238B2 (en) Vehicle-mounted device upgrade method and related device
EP3883212B1 (en) Device upgrade method and related device
US12212694B2 (en) Systems and methods for centrally managing and routing multiple credentials
CN114826577B (en) Secure provisioning and management of devices
US11070565B2 (en) Systems, methods, and devices for provisioning and processing geolocation information for computerized devices
EP3926500B1 (en) Device upgrade method and related device
WO2019083440A2 (en) Vehicle-mounted device upgrading method and related device
US11546173B2 (en) Methods, application server, IoT device and media for implementing IoT services
CN112153646B (en) Authentication method, equipment and system
JPWO2018070242A1 (en) In-vehicle gateway, key management device
CN112913209A (en) A service authorization management method and device
US20240171564A1 (en) Application programming interface for certificate management systems
JP2020201959A (en) Device update transmission using bloom filter
KR20190060032A (en) Driving assistance Apparatus for Vehicle and Control method thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23788878

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: AU2023251877

Country of ref document: AU

WWE Wipo information: entry into national phase

Ref document number: 2024560270

Country of ref document: JP

ENP Entry into the national phase

Ref document number: 2023251877

Country of ref document: AU

Date of ref document: 20230412

Kind code of ref document: A

WWE Wipo information: entry into national phase

Ref document number: 202380039536.1

Country of ref document: CN

WWE Wipo information: entry into national phase

Ref document number: 2023788878

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 2023788878

Country of ref document: EP

Effective date: 20241112

WWP Wipo information: published in national office

Ref document number: 202380039536.1

Country of ref document: CN