Abstract
The invention relates to a system and method for the reprogramming of ECU devices in automotive vehicles, via digital radio, which allows new software files to be transmitted when synchronizing a radio station, automatically and safely downloading the new updates without having to take the vehicle directly to a dealership, characterized by comprising means for encrypting audio files with software files, data files with vehicle information files; means for mixing the files to be transmitted simultaneously from a radio broadcast station in digital format; means for receiving the files by digital radio receiver that are sent to receiving ECUs in the vehicles; memory means for storing said files; means for demodulating the files; means for decrypting the files that are retransmitted within the bus of the ECU device through the internal network of the vehicle, so that all ECUs receive the message simultaneously and, after authenticating the information, auto-reprogram with the software file received in an application memory.
Claims
1. A system for the reprogramming of Electronic Control Units devices in vehicles via digital radio, comprising means to encrypt audio files with reprogramming software of vehicle Electronic Control Units devices, generating a first encrypted packet and means to encrypt in parallel data files and vehicle information files by adding a header generating a second encrypted packet; means for mixing said first and second encrypted packets via digital radio technology to be transmitted simultaneously from a radio broadcast station in digital format; means for receiving said first and second encrypted packets via digital radio receiver that are sent to receiving Electronic Control Units devices in the vehicles; memory means for storing said first and second encrypted packets; means for demodulating the received digital radio signal and separating the first encrypted packet from the second encrypted packet; means for decrypting said first and second encrypted packets to separate the audio files from the software and the data files from the vehicle information files, which are retransmitted within the bus of the Electronic Control Units device through the internal network of the vehicle, so that all Electronic Control Units devices receive the message simultaneously and, after authenticating the information, they auto-reprogram with the software file received in an application memory.
2. The system for the reprogramming of Electronic Control Units devices in vehicles via digital radio according to claim 1, comprising said Electronic Control Units devices further comprising a main microcontroller and a supervisory microcontroller that receive data coming from the bus in a redundant manner which allows for receiving, storing and comparing data coming from the bus, corroborating later that the information received was the same in the two microcontrollers, thus ensuring the correct interpretation of the information received.
3. The system for the reprogramming of Electronic Control Units devices in vehicles via digital radio according to claim 1, further comprising that data files with vehicle information files encrypted with an additional header with the data regarding the vehicle model and the specific Electronic Control Units device that will be the final recipient of the information, and contain an identification key, data of the original equipment manufacturer, the model of the vehicle, the year of the vehicle, the vehicle platform, the identification data of the Electronic Control Units device, the size of the data packet, the key of the software file and the end of file data which make up the data packets that are mixed with the audio files.
4. The system for the reprogramming of Electronic Control Units devices in vehicles via digital radio, according to claim 1, comprising the memory means for storing said first and second encrypted packets consists of a non-volatile memory.
5. A method for the reprogramming of Electronic Control Units devices in vehicles via digital radio, comprising the steps of: a) selecting a software file to be transmitted to one or more predefined vehicles, which are tuned to the specific frequency of digital radio transmission at that moment; b) encrypting the software file with audio files generating a first encrypted packet; c) encrypting data files with vehicle information files by adding an identification header, generating a second encrypted packet; d) mixing said first encrypted packet and said second encrypted packet via digital radio technology to be transmitted simultaneously from a radio broadcasting station in digital format; e) receiving said first and second encrypted packets by means of a receiver of digital radio frequency radio signals of the vehicles, which are sent to the Electronic Control Units device and stored in a non-volatile memory; f) demodulating the digital radio signal and separating the first encrypted packet from the second encrypted packet; g) decrypting said first encrypted packet to separate the audio files and software files and decrypting said second encrypted packet to separate the data files and the vehicle information files; h) retransmitting the software and data file within the bus of the receiving Electronic Control Units device through the internal network of the vehicle, so that all Electronic Control Units devices receive the message simultaneously, but the Electronic Control Units device to be reprogrammed is the only one that responds to the transmitted message; i) auto-reprogramming the Electronic Control Units device with the software file after authenticating the information.
Description
BRIEF DESCRIPTION OF THE FIGURES
[0059] FIG. 1 shows a block diagram that illustrates, in a general manner, the different blocks that make up the system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention.
[0060] FIG. 2 illustrates the configuration of the elements of the electronic system of the vehicle with the receiving ECU, the storage memory and the transfer system (bus) of data and software to the different ECUs that will be reprogrammed or updated.
[0061] FIG. 3 illustrates the hardware necessary for the proper download of the information from the digital radio station, according to the system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention.
[0062] FIG. 4 shows a diagram of the decomposition of the file to be transmitted/received by the system and method for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention.
[0063] FIG. 5 illustrates the algorithm for checking the reception of the data packets to be received in accordance with the method and system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention.
[0064] FIG. 6 illustrates a reprogramming control algorithm of the ECUs in accordance with the method and system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention.
[0065] FIG. 7 illustrates the definition of the header of the data files encrypted with vehicle information files adding on the basis of the proposed memory map for every code file to be transmitted.
[0066] For a better understanding of the invention, a detailed description will be made of some of the embodiments thereof, shown in the drawings that are attached to the present description for non-limiting illustrative purposes.
DETAILED DESCRIPTION OF THE INVENTION
[0067] The characteristic details of the system and method for the reprogramming of ECU devices (Electronic Control Units) in automotive vehicles, via digital radio, are clearly shown in the following description and in the accompanying illustrative drawings, using the same reference signs to designate the same parts.
[0068] FIG. 1 shows a block diagram that comprises the system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, consisting of: first encryption means 1 for encrypting audio files 2 with a new software file 3 for updating or reprogramming vehicle ECUs 10, generating a first encrypted packet PE1 and second encryption means 4 for encrypting in parallel data files 5 and vehicle information files 6 by adding a header with the data referring to the vehicle model [original equipment manufacturer (OEM) data, vehicle model, vehicle year, vehicle platform, ECU identification (ID) data, data packet size; key of the software file, end of file data] and the specific ECU that will be the final recipient of the information, generating a second encrypted packet PE2; mixing means 7 for mixing said first encrypted packet PE1 and said second encrypted packet PE2 via digital radio technology to be transmitted simultaneously from a radio broadcasting station in digital format 8; receiving means of digital radio signal 9 for receiving said first and second encrypted packets PE1 and PE2 which are sent to the receiving ECU of the vehicles 10; memory means 11 for storing said first and second encrypted packets PE1 and PE2; demodulator means 12 for demodulating the received digital radio signal and separating the first encrypted packet PE1 from the second encrypted packet PE2; decryptor means 13 for decrypting said first encrypted packet PE1 to separate the audio files 2 and the software files 3 and decrypt said second encrypted packet PE2 to separate the data files 5 and the vehicle information files 6, to finally obtain the software files 3 and the vehicle information files 6, specially identified and configured for each type of vehicle 10 and each specific ECU; which are sent to the predetermined ECUs where the boot sequence starts and where a boot loader stores the new software in a flash memory where it is executed.
[0069] FIG. 2 illustrates the configuration of the elements of the electronic system of the vehicle with the receiving ECU, the storage memory and the transfer system (BUS) of data and software to the different ECUs that will be reprogrammed or updated. In said figure, the digital radio signal receiving means 9 of the vehicle receives the radiofrequency waves (which carry the encrypted audio and software files defining the first encrypted packet PE1, the encrypted data and vehicle information files, defining the second encrypted packet PE2, which are sent to the receiving ECU of said vehicle 10 and stored in the non-volatile memory means 11 until the reception and download is complete and satisfactory. Said receiving ECU converts said radiofrequency waves into a received file format, that is to say, executes the demodulation process to separate the first encrypted packet PE1 from the second encrypted packet PE2 and the decryption process in order to separate the different files and obtain them separately so that the software file is completely rebuilt; same that is transmitted within the bus 14 of the receiving ECU device through the internal network of the vehicle, so that all the ECUs (ECU1, ECU2, ECU3, . . . ECUn) of the electronic system of the vehicle receive the message simultaneously, but the ECU to be reprogrammed is the only one that responds to the transmitted message.
[0070] FIG. 3 illustrates the hardware required for the adequate download of the information coming from the digital radio station, according to the system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention. In said figure, the receiving ECU of the vehicle receives the data coming from the bus 14 in a redundant manner towards a dual configuration of microcontrollers defined by a main microcontroller 15 and a supervisory microcontroller 16 that allows receiving, storing and comparing the data coming from the bus 14, corroborating later among them that the information received was the same in the two microcontrollers 15, 16, thus ensuring the correct interpretation of the information.
[0071] FIG. 4 shows a scheme of the decomposition of the file to be transmitted/received by the system and method for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention. Said figure illustrates an audio band BA of the end 17 of an audio file 2, an audio only section 18 followed by data packets Pk1, Pk2 . . . Pkn that have been encrypted in the audio only sections 18 of the audio files 2. A data band BD is also illustrated which shows a data file 19 containing data that has identifiers such as start of frame 20 and an identification key 21, data types which can be incorporated such as data from the original equipment manufacturer (OEM) 22, vehicle model 23, year of vehicle 24, vehicle platform 25, identification data (ID) of the ECU 26, packet size of data 27 are also shown; key of the software file 28 and end of file data 29 that are packaged and encrypted in the audio sections 18 of the audio files 2.
[0072] FIG. 5 illustrates the algorithm for checking the reception of data packets to be received in accordance with the method and system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention. In said figure, the beginning of the process is observed, followed by a first verification step 30 where the ID of the packet corresponding to the vehicle that should receive it is verified; if it is the case, it goes on to the second verification step 31 where it is verified whether the download sequence of the program is being executed; if it is the case, the process goes on to the third verification step 32 where it is verified whether the packet number corresponds to the next to be received; if it is the case, a first storage operation 33 of the packet is executed, going on to the fourth verification step 34 where it is verified whether all the packets were received; if it is the case, the process stops, and if it is not the case, the process starts again.
[0073] If the program download sequence is not executed in the second verification step 31, then the process goes on to a fifth verification step 35 where it is verified whether the information packet is the first to be stored in the ECU device; if it is the case, a second operation 36 is executed where the number of packets to be received is determined and the packet counter begins from zero, consequently passing to the first storage operation 33 of the packet; and if it is not the case, the process returns to the first verification step 30.
[0074] If in the third verification step 32, the packet number does not correspond to the next one to be received, the process returns to the first verification step 30.
[0075] FIG. 6 illustrates a reprogramming control algorithm of the ECU according to the method and system for the reprogramming of ECU devices (Electronic Control Units) in vehicles via digital radio, in accordance with the present invention. This figure shows the beginning of the process, followed by a first verification step 37 where it is verified whether the vehicle key is in the off position; if not, the process is completed and, if it does, it goes on to a first operation 38 wherein a message is sent to stop all transmissions of the bus 14, then, in a second operation 39, a message is sent to the receiving ECU module defining the start of reprogramming and, consecutively, in a third operation 40, a message is sent to the receiving ECU module with the number of bytes to be transmitted; in a fourth operation 41 the packet is transited; then, in a second verification step 42, it is verified if the total number of packets has been transmitted, if not, it is returned to the fourth operation 41 and, if it was, the reception of the sum of verification is then carried out in a fifth operation 43, and then, in a third verification step 44, the value of the verification sum is verified; if it is incorrect, the process returns to the first operation 38 before repeating the cycle; if it is correct, then it finally goes on to the sixth operation 45 where a reset message is sent to the receiving ECU and the process ends.
[0076] FIG. 7 illustrates the definition of the header of the data files encrypted with vehicle information files by adding on the basis of the memory map proposed for every code file to be transmitted. Said figure illustrates a memory map showing the calibration segment 46, the application segment 47 and the boot loader segment 48; wherein the application segment derives a segment of the program code in standard format 49 with an ASCII section header 50 where the vehicle ID, the receiving ECU ID, is involved; where the data of the vehicle ID and receiving ECU ID and other data are entered after the last memory section written in a valid format.
[0077] The invention was described in sufficient details so as to allow a person with average skill in the art to reproduce and obtain the results mentioned in the present invention. However, any person skilled in the art of the present invention may be able to make modifications not described in the present application. Nevertheless, if the subject matter claimed in the following claims is required for the application of these modifications in a given structure or manufacturing process thereof, said structure or process should be understood to be within the scope of the invention.
