Patents by Inventor Thomas M. Forest
Thomas M. Forest has filed for patents to protect the following inventions. This listing includes patent applications that are pending as well as patents that have already been granted by the United States Patent and Trademark Office (USPTO).
-
Publication number: 20260116341Abstract: A method of operating a vehicle includes connecting the vehicle's remote keyless entry (RKE) system with a user's wireless-enabled portable electronic device (PED) to receive therefrom a timeseries of wireless signals containing range data to the PED. A vehicle controller uses the range data to calculate range values for each wireless signal, and then sequentially adds a subset of the range values to a value batch. Upon determining that the value batch is full when a total number of range values added to the value batch is equal to a predefined full batch value, the vehicle controller responsively processes the value batch to select a prescribed range value from the added range values. Upon determining that the prescribed range value is less than a preset maximum allowable range, the vehicle controller responsively enables the user to unlock one or more door assemblies of the vehicle and/or start the vehicle's powertrain.Type: ApplicationFiled: October 28, 2024Publication date: April 30, 2026Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Mohamed A. Layouni, Thomas M. Forest, Jason Grembi, Aaron Adler, Ron Y. Asmar
-
Patent number: 12438728Abstract: A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication system. The security proxy device includes a processing unit in electronic communication with a network device. The network device includes a security module integrated into the security proxy device, a private domain including one or more unique ports and storing one or more transmit keys for authenticating messages generated by one of the private nodes of the private communication system, and a public domain including one or more public ports.Type: GrantFiled: May 24, 2023Date of Patent: October 7, 2025Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Markus Jochim, Thomas M. Forest, Mohamed A. Layouni
-
Patent number: 12363216Abstract: A system for establishing a wireless connection between a mobile device and a vehicle includes a human-machine interface (HMI), a vehicle communication system, where the vehicle communication system includes a wireless connection transceiver, a speaker, a microphone, a controller in electrical communication with the HMI, the vehicle communication system, the speaker, and the microphone. The controller is programmed to activate a wireless connection mode of the controller based at least in part on a signal from the microphone and transmit a vehicle wireless connection identifier using the speaker. The controller is further programmed to confirm a vehicle wireless connection passcode using at least one of the speaker and the microphone and establish a wireless connection between the mobile device and the controller using the wireless connection transceiver in response to confirming the vehicle wireless connection passcode.Type: GrantFiled: October 11, 2022Date of Patent: July 15, 2025Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Mohamed A. Layouni, Markus Jochim, Thomas M. Forest
-
Patent number: 12348493Abstract: A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication system. The security proxy device includes a processing unit, a security module, and a lightweight security module that is electronic communication with the one or more private nodes of the private communication system. The lightweight security module generates message authentication codes for messages transmitted by the private communication system that are sent to the public communication system.Type: GrantFiled: May 24, 2023Date of Patent: July 1, 2025Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Markus Jochim, Thomas M. Forest, Mohamed A. Layouni
-
Patent number: 12335732Abstract: A system comprises a computer including a processor and a memory. The memory includes instructions such that the processor is programmed to: receive, at a device driver, an Ethernet frame from an Automotive Open System Architecture (AUTOSAR) communication stack, determine, at the device driver, whether the Ethernet frame is a spoofed Ethernet frame, and transmit a cancelation command to at least one layer of the AUTOSAR communication stack when the device driver determines the Ethernet frame is spoofed.Type: GrantFiled: June 29, 2022Date of Patent: June 17, 2025Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Mohamed A. Layouni, Vinaya Rayapeta, Manohar Reddy Nanjundappa, Thomas M. Forest, Karl Bernard Leboeuf
-
Patent number: 12321499Abstract: A system includes a vehicle external to a back office portal. The back office portal is operational to generate a signed update mode record. The vehicle has multiple devices and a component. The component is in communication with the devices, and operational to receive the signed update mode record, verify that the signed update mode record is from the back office portal and was created for the component, erase credentials within the component that establish the component as valid to the plurality of devices in response to the verification of the signed update mode record, perform an irreversible action within the component, enter a software update mode, exit the software update mode, and reject each request from the plurality of devices to the component that relies on the credentials that were erased from the component.Type: GrantFiled: May 30, 2023Date of Patent: June 3, 2025Assignee: GM Global Technology Operations LLCInventors: Karl B. Leboeuf, Brian Farrell, Thomas M. Forest
-
Publication number: 20240403491Abstract: A system includes a vehicle external to a back office portal. The back office portal is operational to generate a signed update mode record. The vehicle has multiple devices and a component. The component is in communication with the devices, and operational to receive the signed update mode record, verify that the signed update mode record is from the back office portal and was created for the component, erase credentials within the component that establish the component as valid to the plurality of devices in response to the verification of the signed update mode record, perform an irreversible action within the component, enter a software update mode, exit the software update mode, and reject each request from the plurality of devices to the component that relies on the credentials that were erased from the component.Type: ApplicationFiled: May 30, 2023Publication date: December 5, 2024Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Karl B. Leboeuf, Brian Farrell, Thomas M. Forest
-
Publication number: 20240396737Abstract: A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication system. The security proxy device includes a processing unit, a security module, and a lightweight security module that is electronic communication with the one or more private nodes of the private communication system. The lightweight security module generates message authentication codes for messages transmitted by the private communication system that are sent to the public communication system.Type: ApplicationFiled: May 24, 2023Publication date: November 28, 2024Inventors: Markus Jochim, Thomas M. Forest, Mohamed A. Layouni
-
Publication number: 20240396736Abstract: A message authentication system for a network includes a private communication system including one or more private nodes in electronic communication with one another, a public communication system including one or more public nodes in electronic communication with one another, and a security proxy device that electronically connects the private communication system to the public communication system. The security proxy device includes a processing unit in electronic communication with a network device. The network device includes a security module integrated into the security proxy device, a private domain including one or more unique ports and storing one or more transmit keys for authenticating messages generated by one of the private nodes of the private communication system, and a public domain including one or more public ports.Type: ApplicationFiled: May 24, 2023Publication date: November 28, 2024Inventors: Markus Jochim, Thomas M. Forest, Mohamed A. Layouni
-
Publication number: 20240243901Abstract: A machine learning/artificial intelligence (ML/AI) system includes one or more controllers storing one or more neural networks in memory. The one or more neural networks include a plurality of layers including an input layer, one or more hidden layers, and an output layer, and one or more nodes provided for each of the plurality of layers of the one or more neural networks. Each of the plurality of layers are connected to a subsequent layer of the one or more neural networks by a connection. The connection connects a first node of an earlier layer with a second node of a later layer. The one or more neural networks also include plurality of weights, where each weight is associated with a connection and only a portion of the plurality of weights of the one or more neural networks are encrypted or protected.Type: ApplicationFiled: January 13, 2023Publication date: July 18, 2024Inventors: Thomas M. Forest, Di Jin, Jacob Alan Bond
-
Patent number: 12015422Abstract: An apparatus has a communication bus, a first circuit, and a second circuit. The first circuit is operational to generate a package, calculate a check value of payload data in the package with a particular cyclic redundance check variant and an obfuscation type, store an encrypted check value in a footer of the package, store an encrypted obfuscation code in a header of the package, and transmit the package on the communication bus. The second circuit is operational to receive the package from the communication bus, decrypt the encrypted check value to determine the check value calculated by the first circuit, determine an obfuscation type from the encrypted obfuscation code, perform a payload verification of the payload data with the particular cyclic redundancy check variant with the obfuscation type applied and the check value, and signal that the payload data is valid in response to passage of the payload verification.Type: GrantFiled: February 24, 2023Date of Patent: June 18, 2024Assignee: GM Global Technology Operations LLCInventors: Brian Farrell, Thomas M. Forest, Karl B. Leboeuf, Kenneth William Junk
-
Publication number: 20240121334Abstract: A system for establishing a wireless connection between a mobile device and a vehicle includes a human-machine interface (HMI), a vehicle communication system, where the vehicle communication system includes a wireless connection transceiver, a speaker, a microphone, a controller in electrical communication with the HMI, the vehicle communication system, the speaker, and the microphone. The controller is programmed to activate a wireless connection mode of the controller based at least in part on a signal from the microphone and transmit a vehicle wireless connection identifier using the speaker. The controller is further programmed to confirm a vehicle wireless connection passcode using at least one of the speaker and the microphone and establish a wireless connection between the mobile device and the controller using the wireless connection transceiver in response to confirming the vehicle wireless connection passcode.Type: ApplicationFiled: October 11, 2022Publication date: April 11, 2024Inventors: Mohamed A. Layouni, Markus Jochim, Thomas M. Forest
-
Publication number: 20240007859Abstract: A system comprises a computer including a processor and a memory. The memory includes instructions such that the processor is programmed to: receive, at a device driver, an Ethernet frame from an Automotive Open System Architecture (AUTOSAR) communication stack, determine, at the device driver, whether the Ethernet frame is a spoofed Ethernet frame, and transmit a cancelation command to at least one layer of the AUTOSAR communication stack when the device driver determines the Ethernet frame is spoofed.Type: ApplicationFiled: June 29, 2022Publication date: January 4, 2024Inventors: Mohamed A. Layouni, Vinaya Rayapeta, Manohar Reddy Nanjundappa, Thomas M. Forest, Karl Bernard Leboeuf
-
Patent number: 11804981Abstract: The present application relates to a method and apparatus for intelligent wireless protocol optimization including storing, in a memory, a first customer key and a second customer key, receiving, by a processor, a secret key, decrypting, by the processor, the secret key using a first customer key to extract a master key, provisioning, by the processor, an electronic control unit in response to the master key, and deleting, by the processor, the second customer key in response to the provisioning of electronic control unit in response to the master key.Type: GrantFiled: January 14, 2021Date of Patent: October 31, 2023Assignee: GM GLOBAL TECHNOLOGY OPERATIONS, LLCInventors: Brian Farrell, David M. Nairn, Thomas M. Forest
-
Patent number: 11728985Abstract: The present application relates to a method and apparatus for providing fault tolerant provisioning verification for cryptographic keys including receiving, via an interface, a first security key, a second security key, and a first verification data generated in response to the first security key and the second security key, coupling, by a processor, the first security key and the second security key to an electronic controller, receiving, by the processor, a second verification data generated by the electronic controller in response to the first security key and the second security key, and marking, by the processor, the controller as provisioned in response to the first verification data matching the second verification data.Type: GrantFiled: January 14, 2021Date of Patent: August 15, 2023Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Brian Farrell, Thomas M. Forest, David W. Racklyeft
-
Publication number: 20230073884Abstract: A method to perform secure boot procedure using a multi-stage security verification is provided. The procedure includes, within a microcontroller, referring to a table to identify a first defined memory region including code useful to start-up application programming of the microcontroller, wherein the application programming is operable to provide a function of the microcontroller to the vehicle, and a second defined memory region, including programming and data useful to operation of the application programming of the microcontroller. The procedure further includes, within a first stage, verifying authenticity of contents of the first region and starting-up the application programming of the microcontroller based upon verifying the authenticity of the contents of the first region.Type: ApplicationFiled: September 9, 2021Publication date: March 9, 2023Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Brian Farrell, Thomas M. Forest
-
Publication number: 20220224561Abstract: The present application relates to a method and apparatus for intelligent wireless protocol optimization including storing, in a memory, a first customer key and a second customer key, receiving, by a processor, a secret key, decrypting, by the processor, the secret key using a first customer key to extract a master key, provisioning, by the processor, an electronic control unit in response to the master key, and deleting, by the processor, the second customer key in response to the provisioning of electronic control unit in response to the master key.Type: ApplicationFiled: January 14, 2021Publication date: July 14, 2022Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Brian Farrell, David M. Nairn, Thomas M. Forest
-
Publication number: 20220224531Abstract: The present application relates to a method and apparatus for providing fault tolerant provisioning verification for cryptographic keys including receiving, via an interface, a first security key, a second security key, and a first verification data generated in response to the first security key and the second security key, coupling, by a processor, the first security key and the second security key to an electronic controller, receiving, by the processor, a second verification data generated by the electronic controller in response to the first security key and the second security key, and marking, by the processor, the controller as provisioned in response to the first verification data matching the second verification data.Type: ApplicationFiled: January 14, 2021Publication date: July 14, 2022Applicant: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Brian Farrell, Thomas M. Forest, David W. Racklyeft
-
Patent number: 10951607Abstract: Authentication methods, systems and computer readable storage medium are provided. In an embodiment, an authentication method includes obtaining from an authentication template a first template portion, including an encoding of features, and a second template portion, including an identification of a location in the first template portion that is not usable. The method further includes revising the first template portion by setting a value at the location to a selected value to form a revised first template portion. Also, the method includes creating an authentication codeword from the revised first template portion and from public recovery data. The method further includes performing an error correction process to generate a corrected authentication codeword from the authentication codeword and from the second template portion and decoding the corrected authentication codeword.Type: GrantFiled: December 7, 2018Date of Patent: March 16, 2021Assignee: GM GLOBAL TECHNOLOGY OPERATIONS LLCInventors: Mohamed A. Layouni, Thomas M. Forest
-
Publication number: 20210049385Abstract: A system and method for personalization of security features of a vehicle. The system includes a memory having computer readable instructions and one or more processors for executing the computer readable instructions, the computer readable instructions controlling the one or more processors to perform operations. The operations include detecting a person in a cabin of a vehicle. At least one adjustable vehicle setting is detected in relation to the person in the cabin of the vehicle. The adjustable vehicle setting is compared to a stored adjustable vehicle setting in a first user profile. Operation of the vehicle by the person in the cabin of the vehicle is enabled based on the comparison and a permitted level of access from the first user profile.Type: ApplicationFiled: August 16, 2019Publication date: February 18, 2021Inventors: Nicholas W. Pinto, Kausalya Singuru, Shiming Duan, Yasen Hu, Yao Hu, Bradley R. Frieberg, Gary L. Jones, Thomas M. Forest