Search

US-12621122-B2 - Method and apparatus for transmitting data associated with a data source

US12621122B2US 12621122 B2US12621122 B2US 12621122B2US-12621122-B2

Abstract

A method of transmitting data associated with a data source, for example a sensor device, for example for a motor vehicle, includes determining first information that enables a verification of authenticity and/or integrity of at least one data value available from the data source, and transmitting a plurality of data values to at least one further unit. At least some data values of the plurality of data values are transmitted together with one, e.g., respective, portion of the first information.

Inventors

  • Andreas Riedinger

Assignees

  • ROBERT BOSCH GMBH

Dates

Publication Date
20260505
Application Date
20230518
Priority Date
20220519

Claims (12)

  1. 1 . A computer-implemented method for transmitting data associated with a data source comprising: determining first information based on (i) at least one data value of a plurality of data values available via the data source and (ii) second items of information, the first information configured to enable a verification of authenticity and/or integrity of the at least one data value of the plurality of data values; and transmitting the plurality of data values to at least one further unit, wherein at least some data values of the plurality of data values are transmitted together with a respective portion of the first information, wherein the second items of information comprise (i) a random value or a pseudo-random value, and (ii) a counter value of a counter, and wherein the counter is repeatedly initialized based on the random value or the pseudo-random value upon activation of an apparatus performing the method.
  2. 2 . The method according to claim 1 , wherein the determining the first information comprises: forming at least one message authentication code based on the at least one data value, wherein the at least one message authentication code is a cipher-based message authentication code (“CMAC”) type having a length of at least 128 bits.
  3. 3 . The method according to claim 1 , wherein the transmitting the plurality of data values to the at least one further unit comprises: concatenating a first data value of the plurality of data values with a first portion of the first information into a first data packet; transmitting the first data packet to the at least one further unit; and repeating the concatenating and transmitting for at least one further data value of the plurality of data values.
  4. 4 . The method according to claim 1 , wherein an amount of data used to represent the respective portion of the first information is less than or equal to twenty percent of an amount of data used to represent the at least one data value.
  5. 5 . The method according to claim 1 , further comprising: determining the first information for each nth data value of the data source, wherein n>8, and wherein n is a power of two; distributing the first information to m data values, wherein m>2, and wherein m=n; and transmitting the m data values, respectively, together with a corresponding portion of the distributed first information.
  6. 6 . The method according to claim 1 , comprising: providing (i) a first key for determining the first information, and (ii) at least one second information for determining the first information; determining a first data value of the plurality of data values; determining the first information based on the first key, the second information, and the first data value; portioning the first information into n portions; and transmitting n data values, respectively together with a respective portion of the first information to the at least one further unit.
  7. 7 . The method according to claim 1 , further comprising: securing cryptographically an integrity and/or authenticity of the data associated with the data source based on the determined first information.
  8. 8 . The method according to claim 1 , further comprising: detecting attacks on a data link between the data source and the at least one further unit based on the determined first information.
  9. 9 . The method according to claim 1 , further comprising: distributing the first information among a plurality of data packets.
  10. 10 . The method according to claim 1 , further comprising: preventing an unauthorized introduction of data into a data link between the data source and the at least one further unit based on the determined first information.
  11. 11 . A non-transitory computer-readable storage medium comprising instructions that, when executed by a computer, cause the computer to perform the method according to claim 1 .
  12. 12 . A computer-implemented method for receiving data associated with a data source comprising: receiving a plurality of data values, at least some data values of the plurality of data values are each associated with a portion of first information, the first information allows a verification of authenticity and/or integrity of at least a first data value of the plurality of data values; and aggregating the portions of the first information into the first information, wherein verification of the authenticity and/or integrity of the at least one first data value is based on the first information, wherein the first information is determined based on (i) the first data value, and (ii) second items of information; and wherein the first data value is transmitted from the data source together with a respective portion of the first information, wherein the second items of information comprise (i) a random value or a pseudo-random value, and (ii) a counter value of a counter, and wherein the counter is repeatedly initialized based on the random value or the pseudo-random value upon activation of an apparatus performing the method.

Description

This application claims priority under 35 U.S.C. § 119 to patent application no. DE 10 2022 205 002.9, filed on May 19, 2022 in Germany, the disclosure of which is incorporated herein by reference in its entirety. BACKGROUND The disclosure relates to a method, for example a computer-implemented method, for transmitting data associated with a data source. The disclosure furthermore relates to an apparatus for transmitting data associated with a data source. The disclosure furthermore relates to a method, for example a computer-implemented method, for receiving data associated with a data source. The disclosure furthermore relates to an apparatus for receiving data associated with a data source. SUMMARY Exemplary embodiments relate to a method, for example a computer-implemented method, for transmitting data associated with a data source, for example a sensor device, for example for a motor vehicle, comprising: determining first information that enables a verification of authenticity and/or integrity of at least one data value available from the data source, transmitting a plurality of data values to at least one further unit, wherein at least some data values of the plurality of data values are transmitted together with a, e.g., respective, portion of the first information. In this way, in further exemplary embodiments, the first information can quasi be distributed over a plurality of data values and transmitted together with the plurality of data values to the at least one further unit, wherein, for example, a bandwidth used for transmitting the first information is comparatively small and results in a correspondingly low or no interference in transmitting the data values. In further exemplary embodiments, the at least one further unit can receive the transmitted data values with the portions of the first information; for example, it can aggregate the first information from the received portions of the first information, and use the thereby aggregated first information, for example, to verify the authenticity and/or integrity of at least one data value that can be provided by and/or is transmitted to the further unit by the data source. In further exemplary embodiments, the method according to the embodiments can be carried out, for example, by means of a sensor device comprising the data source, and the at least one further unit is, for example, a controller formed to receive and/or process the data values. For example, the sensor device is a sensor device for a steering system of a vehicle. In further exemplary embodiments, for example, successive data values to be transmitted can be provided with a corresponding portion of the first information or transmitted with this corresponding portion of the first information. In further exemplary embodiments, for example, data values that are not directly successive and are to be transmitted can be provided with a corresponding portion of the first information or transmitted with this corresponding portion of the first information. In other words, for example, some of the data values to be transmitted can be transmitted together with corresponding portions of the first information, while some of the other data values to be transmitted, for example, cannot be transmitted together with corresponding portions of the first information. In further exemplary embodiments, it is provided that the determination of the first information comprises forming at least one message authentication code, for example, a message authentication code, MAC, based on at least one data value; wherein, for example, the message authentication code is of the CMAC type, and has, for example, has a length of 128 bits or more. In further exemplary embodiments, it is provided that the method comprises: forming the first information based on the at least one data value and on second information, wherein, for example, the second information comprises at least one of the following elements: a) a random value, b) a pseudo-random value, c) a counter value of a counter, wherein, for example, the counter can be repeatedly initialized, for example, based on a random value or pseudo-random value, for example, upon the activation of an apparatus performing the method. In further exemplary embodiments, it is provided that transmitting the plurality of data values to the at least one further unit comprises: combining, for example concatenating, a first data value of the plurality of data values with a first portion of the first information into a first data packet, transmitting the first data packet to the at least one further unit, and optionally repeating the combining and transmitting for at least one further data value. In further exemplary embodiments, it is provided that an amount of data used to represent the portion of the first information is less than or equal to 20 percent of an amount of data used to represent the at least one data value, e.g., less than or equal to 5 percent, e.g., less than or