| CPC H04L 9/3273 (2013.01) [G07C 5/008 (2013.01); H04L 9/0894 (2013.01); H04L 63/0435 (2013.01); H04L 63/166 (2013.01)] | 20 Claims |
|
1. A method, comprising:
after a reboot of a vehicle, performing mutual authentication between a first device and a key server located on the vehicle;
after the reboot of a vehicle, performing mutual authentication between a second device and the key server;
storing, by the key server, a cryptographic key in a first volatile memory;
receiving, by the first device and the second device, from the key server, the cryptographic key;
storing, by the first device, the cryptographic key in a second volatile memory of the first device;
storing, by the second device, the cryptographic key in a third volatile memory of the second device;
in response to determining that the cryptographic key has been provisioned to the first device and the second device, discarding, by the key server, the cryptographic key from the first volatile memory;
using, by the first device and the second device, the cryptographic key for symmetric cryptography, comprising one or more of: signing messages transmitted between the first device and the second device and verifying messages transmitted between the first device and the second device; and
clearing data stored in the first volatile memory, the second volatile memory, and the third volatile memory at a further reboot of the vehicle.
|