Verification of aircraft information in response to compromised digital certificate
IPC분류정보
국가/구분
United States(US) Patent
등록
국제특허분류(IPC7판)
H04L-029/06
H04L-009/32
G06F-021/57
G06F-021/64
출원번호
US-0888747
(2013-05-07)
등록번호
US-9160543
(2015-10-13)
발명자
/ 주소
Kimberly, Greg A.
출원인 / 주소
THE BOEING COMPANY
대리인 / 주소
Yee & Associates, P.C.
인용정보
피인용 횟수 :
0인용 특허 :
50
초록▼
A method and apparatus for verifying data for use on an aircraft. A plurality of digital certificates associated with the data are received by a processor unit. The processor unit determines whether one of the plurality of digital certificates is compromised. The processor unit selects a selected nu
A method and apparatus for verifying data for use on an aircraft. A plurality of digital certificates associated with the data are received by a processor unit. The processor unit determines whether one of the plurality of digital certificates is compromised. The processor unit selects a selected number of the plurality of digital certificates in response to a determination that the one of the plurality of digital certificates is compromised. The processor unit verifies the data for use on the aircraft using the selected number of the plurality of digital certificates.
대표청구항▼
1. A method for verifying data for use on an aircraft, comprising: receiving, by a processor unit, a plurality of digital certificates associated with the data;verifying, for each digital certificate in the plurality of digital certificates, an issuer of the digital certificate as being in a list of
1. A method for verifying data for use on an aircraft, comprising: receiving, by a processor unit, a plurality of digital certificates associated with the data;verifying, for each digital certificate in the plurality of digital certificates, an issuer of the digital certificate as being in a list of acceptable certificate authorities, in a processing system on the aircraft;determining, by the processor unit, whether one of the plurality of digital certificates is compromised;selecting, by the processor unit, a selected number of the plurality of digital certificates in response to the determination that the one of the plurality of digital certificates is compromised, the selected number being determined based upon a quorum rule selected from quorum rules that are based upon a number of aircraft systems on which the data will be used and a location of the aircraft when the data is loaded;verifying, by the processor unit, the data for use on the aircraft using the selected number of the plurality of digital certificates;wherein verifying the data for use on the aircraft using the selected number of the plurality of digital certificates comprises determining whether at least a specified number of the selected number of the plurality of digital certificates is valid; andwherein the specified number is defined by the quorum rule, the quorum rule being composed of one, or more, of:a quorum rule for an operator of an aircraft;a quorum rule for an aircraft maintenance entity;a quorum rule for an aircraft type;a quorum rule for an aircraft system on which data will be used;a quorum rule for the number of aircraft systems on which data will be used; anda quorum rule for use when a certificate authority is known to be, or suspected of being compromised. 2. The method of claim 1, wherein the plurality of digital certificates is from a plurality of certificate authorities. 3. The method of claim 1, further comprising: selecting the quorum rule from a plurality of quorum rules in response to the determination that the one of the plurality of digital certificates is compromised. 4. The method of claim 1, wherein the data comprises software for use on the aircraft. 5. The method of claim 1, wherein the processor unit is a processor unit in an aircraft network data processing system on the aircraft. 6. An apparatus, comprising: a data verification module configured to receive a plurality of digital certificates associated with data for use on an aircraft,verifying, for each digital certificate in the plurality of digital certificates, an issuer of the digital certificate as being in a list of acceptable certificate authorities, in a processing system on the aircraft;determine whether one of the plurality of digital certificates is compromised,select a selected number of the plurality of digital certificates in response to the determination that the one of the plurality of digital certificates is compromised, the selected number being determined based upon a quorum rule selected, from quorum rules based upon a number of aircraft systems on which the data will be used and a location of the aircraft when the data is loaded; andthe selected number being determined on a quorum rule selected from quorum rules based on at least two of: an aircraft system on with the data will be loaded;a number of aircraft systems on which the data will be used;a location of the aircraft when the data is loaded; andwhen a determination is made that a certificate authority is known to be, or is suspected of being compromised;verify the data for use on the aircraft using the selected number of the plurality of digital certificates;wherein verifying the data for use on the aircraft using the selected number of the plurality of digital certificates comprises determining whether at least a specified number of the selected number of the plurality of digital certificates is valid; andwherein the specified number is defined by the quorum rule, the quorum rule being composed of one, or more, of:a quorum rule for an operator of an aircraft;a quorum rule for an aircraft maintenance entity;a quorum rule for an aircraft type;a quorum rule for an aircraft system on which data will be used;a quorum rule for the number of aircraft systems on which data will be used; anda quorum rule for use when a certificate authority is known to be, or suspected of being compromised. 7. The apparatus of claim 6, wherein the plurality of digital certificates is from a plurality of certificate authorities. 8. The apparatus of claim 6, wherein the data verification module is configured to select the quorum rule from a plurality of quorum rules in response to the determination that the one of the plurality of digital certificates is compromised. 9. The apparatus of claim 6, wherein the data comprises software for use on the aircraft. 10. The apparatus of claim 6, wherein the data verification module is implemented in a processor unit in an aircraft network data processing system on the aircraft. 11. A method for verifying data for use on an aircraft, the method comprising: receiving, by a processor unit, a plurality of digital certificates associated with the data:verifying, for each digital certificate in the plurality of digital certificates, an issuer of the digital certificate as being in a list of acceptable certificate authorities, in a processing system on the aircraft;determining, by the processor unit, whether one of the plurality of digital certificates is compromised;selecting, by the processor unit, a quorum rule, based upon a number of aircraft systems on which the data will be used and a location of the aircraft when the data is loaded, from quorum rules wherein the quorum rule is at least one of:a quorum rule for an operator of an aircraft;a quorum rule for an aircraft maintenance entity;a quorum rule for an aircraft type;a quorum rule for an aircraft system on which data will be used;a quorum rule for the number of aircraft systems on which data will be used;a quorum rule for use when a certificate authority is known to be, or suspected of being compromised;a quorum rule for use when it is determined that none of the plurality of digital certificates is compromised; andverifying, by the processor unit, the data for use on the aircraft using a selected number of the plurality of digital certificates as defined by the quorum rule. 12. The method of claim 11, wherein the plurality of digital certificates is from a plurality of certificate authorities. 13. The method of claim 11, wherein verifying the data for use on the aircraft using the selected number of the plurality of digital certificates comprises determining whether at least a specified number of the selected number of the plurality of digital certificates is valid as defined by the quorum rule. 14. The method of claim 13, wherein: the first quorum rule indicates that the specified number of the selected number of the plurality of digital certificates is less than the selected number; andthe second quorum rule indicates that the specified number of the selected number of the plurality of digital certificates equals the selected number. 15. The method of claim 11, wherein the data comprises software for use on the aircraft. 16. The method of claim 11, wherein the processor unit is a processor unit in an aircraft network data processing system on the aircraft.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (50)
Ledingham,Robert; Penny,Keith; Zak,Roman; Zanin,Jaff; Aikins,Howard, Air traffic information display system.
Gurne Krzysztof ; Williams Raymond J. ; Boldt John R. ; Barker Robert L. ; Broniak Gregory J. ; Marus Daniel J., Automotive diagnostic service tool with hand held tool and master controller.
Holst, William; Lee, David Richard, Method and apparatus to support remote and automatically initiated data loading and data acquisition of airborne computers using a wireless spread spectrum aircraft data services link.
Kettering, Christopher B.; Moore, Daniel B.; Hunter, Freelon F.; Toolson, Jeffery L.; Royalty, Charles D.; Jacobs, Michael N., Methods and apparatus providing an airborne e-enabled architecture as a system of systems.
Evans Francis E. (Hamburg NY) Lind Charles J. (Gowanda NY) Robinson Martin A. (East Amherst NY), Preparation of high purity tetrahydrocarbylammonium tetrahydridoborates.
Yee David Moon ; Bickley Robert Henry ; Zucarelli Philip John ; Keller Theodore Woolley ; Osman Jeff Scott ; Derr Randall Keith, Satellite based commercial and military intercity and intercontinental air traffic control.
Chatsinchai,Kit; George,Bino; Thomas,Kishan; Gong,Kui; Buesker,Brian M., System and method for generating a set of robot commands based on user entry events in a user interface.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.