US-12621663-B2 - Microcontroller having wireless communication module for use with a system

Abstract

Systems, apparatuses, and methods that provide for a wireless communication microcontroller for use with a system microcontroller. A first microcontroller is configured to control aspects of a system in which the device can be embedded. A second microcontroller is operatively connected to the first microcontroller, with the second microcontroller including a wireless communication module for wireless communication. A secure element is operatively connected to the second microcontroller, with a cryptographic key being stored in the secure element. The second microcontroller is configured to receive instructions for programming the first microcontroller through the wireless communication module and request a session key from the secure element. The secure element is configured to generate the session key using the cryptographic key. The second microcontroller is further configured validate the instructions using the session key and send the validated instructions to the first microcontroller.

Inventors

• Bastian Neumann
• Christian Pfluger
• Helge Brauer

Assignees

• DENTSPLY SIRONA INC.

Dates

Publication Date

20260505

Application Date

20240502

Claims (9)

1. 1 . A device comprising: a first microcontroller configured to control aspects of a system in which the device can be embedded; a second microcontroller operatively connected to the first microcontroller, the second microcontroller including a wireless communication module providing for wireless communication; and a secure element operatively connected to the second microcontroller, with at least one cryptographic key being stored in the secure element, wherein the second microcontroller is configured to receive instructions for programming the first microcontroller through the wireless communication module and request a session key from the secure element, the secure element is configured to generate the session key using the at least one cryptographic key and send the session key to the second microcontroller, and the second microcontroller is configured to validate the instructions using the session key and send the validated instructions to the first microcontroller.
2. 2 . The device according to claim 1 , wherein the second microcontroller is configured to receive data from the system in which the device is embedded; secure the data using a session key received from the secure element; secure the data received from the system; and transmit the secured data using the wireless communication module.
3. 3 . The device according to claim 1 , wherein the wireless communication module provides for at least one of communication by WI-FI®, BLUETOOTH®, ZIGBEE®, Z-WAVE®, LORAWAN®, radio-frequency identification (RFID), near field communication (NFC), and cellular communication protocol.
4. 4 . The device according to claim 1 , wherein the first microcontroller and the second microcontroller are connected by universal asynchronous receiver/transmitter (UART), serial wire debug (SWD), serial peripheral interface (SPI), or Joint Test Action Group (JTAG) interface.
5. 5 . The device according to claim 1 , wherein the device is a circuit board to which the first microcontroller, the second microcontroller, and the secure element are affixed.
6. 6 . A device comprising: a first microcontroller configured to control aspects of a system in which the device can be embedded; a second microcontroller operatively connected to the first microcontroller, the second microcontroller including a wireless communication module providing for wireless communication; and a secure element operatively connected to the second microcontroller, with at least one cryptographic key being stored in the secure element, wherein the second microcontroller is configured to receive data through the wireless communication module and request a session key from the secure element, the secure element is configured to generate a first session key using the at least one cryptographic key and send the first session key to the second microcontroller, and the second microcontroller is configured to validate the data received through the wireless communication module and send the validated data to the first microcontroller, and wherein the second microcontroller is configured to receive data from the system in which the device can be embedded and request a second session key from the secure element, the secure element is configured to generate the second session key using the at least one cryptographic key and send the second session key to the second microcontroller, and the second microcontroller is configured to secure the data using the second session key and transmit the secured data using the wireless communication module.
7. 7 . The device according to claim 6 , wherein the wireless communication module provides for at least one of communication by WI-FI®, BLUETOOTH®, ZIGBEE®, Z-WAVE®, LORAWAN®, radio-frequency identification (RFID), near field communication (NFC), and cellular communication protocol.
8. 8 . The device according to claim 6 , wherein the first microcontroller and the second microcontroller are connected by universal asynchronous receiver/transmitter (UART), serial wire debug (SWD), serial peripheral interface (SPI), or Joint Test Action Group (JTAG) interface.
9. 9 . The device according to claim 6 , wherein the device is a circuit board to which the first microcontroller, the second microcontroller, and the secure element are affixed.

Description

BACKGROUND Field of the Invention Embodiments of the invention relate to systems, apparatuses, and methods that provide a wireless communication microcontroller for use with a system microcontroller. Related Art Microcontrollers play a pivotal role in the functionality of numerous electronic devices, providing a compact and efficient means of control and computation. When embedded in a system, a microcontroller serves as the central processing unit, executing predefined instructions to manage various operations of the system. The versatility of microcontrollers is evident across a spectrum of systems, ranging from everyday appliances to complex industrial systems. In household items like washing machines, microwave ovens, and smart thermostats, microcontrollers regulate processes, monitor sensors, and facilitate user interfaces. In automotive applications, microcontrollers control engine functions, manage safety systems, and enable features like anti-lock braking. Industrial machinery, medical devices, and consumer electronics all benefit from the integration of microcontrollers, enhancing precision, automation, and adaptability. Their ability to handle specific tasks efficiently, coupled with their cost-effectiveness, makes microcontrollers indispensable in shaping the functionality of modern electronic devices. Microcontrollers are programmable, allowing developers to write code for instructions for the microcontrollers to perform specific functions within the systems that the microcontrollers are embedded. As such, the programming of microcontrollers sometimes needs to be updated. For example, there is sometimes a need to update a microcontroller's code to fix bugs, improve performance, or provide further compatibilities. If a microcontroller is operatively connected to a network, then the microcontroller may be able to receive programming updates through the network connection. But many systems in which microcontrollers are embedded do not have a network connection. Moreover, even if a system with a microcontroller has a network connection, it is important that the connection be secure so that updates to the microcontroller's programming are validated. Handling a secure connection and validating data are complex and computationally intensive processes. And many microcontrollers in small devices are not capable of such functionalities. Thus, update programming must be done with direct connection to the devices/systems, for example, by using an external memory interface such as a thumb drive or using a data cable. SUMMARY OF THE INVENTION According to one embodiment, a device includes a first microcontroller configured to control aspects of a system in which the device can be embedded; a second microcontroller operatively connected to the first microcontroller, the second microcontroller including a wireless communication module for wireless communication; and a secure element operatively connected to the second microcontroller, with at least one cryptographic key being stored in the secure element. The second microcontroller is configured to receive instructions for programming the first microcontroller through the wireless communication module and request a session key from the secure element, the secure element is configured to generate the session key using the cryptographic key and send the session key to the second microcontroller, and the second microcontroller is configured to validate the instructions using the session key and send the validated instructions to the first microcontroller. According to another embodiment, a device includes a first microcontroller configured to control aspects of a system in which the device can be embedded; a second microcontroller operatively connected to the first microcontroller, the second microcontroller including a wireless communication module for wireless communication; and a secure element operatively connected to the second microcontroller, with at least one cryptographic key being stored in the secure element. The second microcontroller is configured to receive data through the wireless connection module and request a first session key from the secure element, the secure element is configured generate the session key using the at least one cryptographic key, and the second microcontroller is configured to validate the data received through the wireless connection module and send the validated data to the first microcontroller. The second microcontroller is also configured to receive data from the system in which the device can be embedded and request a second session key from the secure element, the secure element is configured to generate the second session key using the at least one cryptographic key, and the second microcontroller is configured to secure the data using the second session key and transmit the secured data using the wireless communication module. According to another embodiment, a method is provided for receiving and applying instructio