US 9,813,405 B2
System and method for protecting train event data
Brian E. Kurz, Germantown, MD (US)
Assigned to Wabtec Holding Corp., Wilmerding, PA (US)
Appl. No. 14/767,418
Filed by Wabtec Holding Corp., Wilmerding, PA (US)
PCT Filed Feb. 24, 2014, PCT No. PCT/US2014/017960
§ 371(c)(1), (2) Date Aug. 12, 2015,
PCT Pub. No. WO2014/137643, PCT Pub. Date Sep. 12, 2014.
Claims priority of provisional application 61/772,246, filed on Mar. 4, 2013.
Prior Publication US 2016/0014111 A1, Jan. 14, 2016
Int. Cl. H04L 9/32 (2006.01); H04L 29/06 (2006.01); B61L 3/00 (2006.01); B61L 15/00 (2006.01); B61L 27/00 (2006.01); G06F 21/44 (2013.01); G06F 21/55 (2013.01)
CPC H04L 63/0807 (2013.01) [B61L 3/002 (2013.01); B61L 15/0072 (2013.01); B61L 27/0005 (2013.01); B61L 27/0077 (2013.01); G06F 21/44 (2013.01); G06F 21/552 (2013.01); H04L 9/3234 (2013.01); H04L 63/061 (2013.01); H04L 63/123 (2013.01); H04L 2209/84 (2013.01)] 11 Claims
OG exemplary drawing
 
1. A system for protecting recorded train event data, comprising:
a non-transitory memory including program instructions which, when executed by at least one processor of a computer, cause the computer to:
receive user input;
generate authentication data based at least in part on the user input; and
encrypt at least a portion of the authentication data with at least one first key accessible by the computer;
at least one external memory device comprising the encrypted authentication data; and
a train event recording system on a train and in communication with a train management computer, the train event recording system configured to:
record train event data for the train from the train management computer;
determine if the at least one external memory device comprises the encrypted authentication data when the at least one external memory device is in communication with the train event recording system;
decrypt the encrypted authentication data based at least partially on at least one second key wherein the at least one first key and the at least one second key are different, wherein the at least one first key comprises at least one private key and the at least one second key comprises at least one public key, and wherein the authentication data is encrypted with an asymmetrical encryption algorithm, wherein the public key is stored on the train event recording system or the train management computer; and
determine if the authentication data is valid or invalid; and
if the authentication data is valid, facilitate a transfer or cause the transfer of at least a portion of the event data to the at least one external memory device; and
if the authentication data is invalid, prevent at least a portion of the event data from being transferred to the at least one external memory device.