[go: up one dir, main page]

CN112887945B - Penetration testing method for Internet of vehicles network - Google Patents

Penetration testing method for Internet of vehicles network Download PDF

Info

Publication number
CN112887945B
CN112887945B CN202110031794.8A CN202110031794A CN112887945B CN 112887945 B CN112887945 B CN 112887945B CN 202110031794 A CN202110031794 A CN 202110031794A CN 112887945 B CN112887945 B CN 112887945B
Authority
CN
China
Prior art keywords
vehicle
test
internet
app
code
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202110031794.8A
Other languages
Chinese (zh)
Other versions
CN112887945A (en
Inventor
郭运尧
杨培相
王玉丹
苗维超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Third Research Institute of the Ministry of Public Security
Original Assignee
Third Research Institute of the Ministry of Public Security
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Third Research Institute of the Ministry of Public Security filed Critical Third Research Institute of the Ministry of Public Security
Priority to CN202110031794.8A priority Critical patent/CN112887945B/en
Publication of CN112887945A publication Critical patent/CN112887945A/en
Application granted granted Critical
Publication of CN112887945B publication Critical patent/CN112887945B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/009Security arrangements; Authentication; Protecting privacy or anonymity specially adapted for networks, e.g. wireless sensor networks, ad-hoc networks, RFID networks or cloud networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/12Detection or prevention of fraud

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

本发明公开了一种车联网网络的渗透测试方法,包括安全SDK、APP端和车端,所述车联网网络的渗透测试方法包含有如下步骤:步骤一、身份认证:用户通过首次绑定使用登录后,操作移动端设备与车端唯一识别码配合车辆进行配对,安全SDK完成唯一识别码生成,车辆操作完成人车关系确认;移动端设备与车端安全环境进行唯一用户识别码交换。本发明通过对安全SDK、APP端和车端进行详尽全面的测试,检测车联网来可能出现的故障,并且针对测试结果进行修改,以保障车联网网络的稳定性和可靠性,该车联网网络的渗透测试方法具备测试全面的优点,在实际使用过程中能够针对车联网网络中可能出现的故障进行详尽的检测。The invention discloses a penetration testing method of the Internet of Vehicles network, including a security SDK, an APP terminal and a vehicle terminal. The penetration testing method of the Internet of Vehicles network includes the following steps: Step 1. Identity authentication: the user binds and uses it for the first time After logging in, operate the mobile terminal device and the unique identification code of the vehicle to match the vehicle, the security SDK completes the generation of the unique identification code, and the vehicle operation is completed to confirm the relationship between the person and the vehicle; the mobile terminal device and the vehicle security environment exchange the unique user identification code. The present invention conducts detailed and comprehensive tests on the security SDK, APP and vehicle terminals, detects possible faults in the Internet of Vehicles, and modifies the test results to ensure the stability and reliability of the Internet of Vehicles network. The advanced penetration testing method has the advantages of comprehensive testing, and can perform detailed detection of possible faults in the Internet of Vehicles network during actual use.

Description

一种车联网网络的渗透测试方法A penetration testing method for Internet of Vehicles network

技术领域technical field

本发明涉及车联网技术领域,具体为一种车联网网络的渗透测试方法。The invention relates to the technical field of the Internet of Vehicles, in particular to a penetration testing method of the Internet of Vehicles network.

背景技术Background technique

车联网的内涵主要指:车辆上的车载设备通过无线通信技术,对信息网络平台中的所有车辆动态信息进行有效利用,在车辆运行中提供不同的功能服务,可以发现,车联网表现出以下几点特征:车联网能够为车与车之间的间距提供保障,降低车辆发生碰撞事故的几率;车联网可以帮助车主实时导航,并通过与其它车辆和网络系统的通信,提高交通运行的效率。The connotation of the Internet of Vehicles mainly refers to: the on-board equipment on the vehicle effectively utilizes all vehicle dynamic information in the information network platform through wireless communication technology, and provides different functional services during the operation of the vehicle. It can be found that the Internet of Vehicles exhibits the following aspects: Point features: Internet of vehicles can provide guarantee for the distance between vehicles and reduce the probability of vehicle collision accidents; Internet of vehicles can help car owners navigate in real time, and improve the efficiency of traffic operation through communication with other vehicles and network systems.

车联网网络是否安全可靠关系到车主的驾驶安全和舒适度,一旦车联网网络出现故障,极易造成车主的导航出现故障无法正常运行,并且各个传感器及通信中枢之间无法协同运作,导致车辆和路况信息无法及时传输,例如车与车之间的间距便无法传输,车辆碰撞的几率便会大大的提升,车主的驾驶安全受到巨大的影响,降低了交通运行的效率,为解决上述问题,一种车联网网络的渗透测试方法,亟待开发。Whether the Internet of Vehicles network is safe and reliable is related to the driving safety and comfort of the car owner. Once the Internet of Vehicles network fails, it is very easy to cause the owner's navigation to fail and cannot operate normally, and the various sensors and communication centers cannot cooperate with each other, resulting in the failure of the vehicle and the vehicle. Road condition information cannot be transmitted in time, for example, the distance between vehicles cannot be transmitted, the probability of vehicle collision will be greatly increased, the driving safety of vehicle owners will be greatly affected, and the efficiency of traffic operation will be reduced. To solve the above problems, a A penetration testing method for the Internet of Vehicles network needs to be developed urgently.

发明内容Contents of the invention

本发明的目的在于提供一种车联网网络的渗透测试方法,具备测试全面的优点,解决了车联网网络是否安全可靠关系到车主的驾驶安全和舒适度,一旦车联网网络出现故障,极易造成车主的导航出现故障无法正常运行,并且各个传感器及通信中枢之间无法协同运作,导致车辆和路况信息无法及时传输,例如车与车之间的间距便无法传输,车辆碰撞的几率便会大大的提升,车主的驾驶安全受到巨大的影响,降低了交通运行的效率的问题。The purpose of the present invention is to provide a penetration testing method for the Internet of Vehicles network, which has the advantages of comprehensive testing, and solves the problem that whether the Internet of Vehicles network is safe and reliable is related to the driving safety and comfort of the car owner. Once the Internet of Vehicles fails, it is very easy to cause The car owner's navigation fails to operate normally, and the various sensors and communication centers cannot cooperate with each other, resulting in the inability to transmit vehicle and road condition information in a timely manner. For example, the distance between vehicles cannot be transmitted, and the probability of vehicle collision will be greatly increased. As a result, the driving safety of car owners has been greatly affected and the efficiency of traffic operation has been reduced.

为实现上述目的,本发明提供如下技术方案:一种车联网网络的渗透测试方法,包括安全SDK、APP端和车端,所述车联网网络的渗透测试方法包含有如下步骤:In order to achieve the above object, the present invention provides the following technical solutions: a penetration testing method of the Internet of Vehicles network, including a security SDK, an APP end and a vehicle end, and the penetration testing method of the Internet of Vehicles network includes the following steps:

步骤一、身份认证:用户通过首次绑定使用登录后,操作移动端设备与车端唯一识别码配合车辆进行配对,安全SDK完成唯一用户识别码生成,车辆操作完成人车关系确认;移动端设备与车端安全环境进行唯一用户识别码交换;Step 1. Identity authentication: After the user logs in through binding for the first time, operate the mobile terminal device and the unique identification code of the vehicle to match with the vehicle. The security SDK completes the generation of the unique user identification code, and the vehicle operation is completed to confirm the relationship between the person and the vehicle; the mobile terminal device Exchanging unique user identification codes with the vehicle security environment;

步骤二、车端通信安全测试:车端和移动端进行蓝牙连接时对其进行检测,检测方式包含有如下步骤:Step 2. Car terminal communication security test: When the car terminal and mobile terminal are connected by Bluetooth, it is detected. The detection method includes the following steps:

一、BLE蓝牙服务遍历,遍历所有SSID信息;1. BLE Bluetooth service traversal, traversal of all SSID information;

二、BLE蓝牙强制连接攻击,暴力尝试与车端建立非法强制连接,测试拒绝非法连接能力;2. BLE Bluetooth forced connection attack, violent attempt to establish an illegal forced connection with the car end, and test the ability to reject illegal connections;

三、BLECVE检测,对BLE已知CVE漏洞探测;3. BLECVE detection, detection of BLE known CVE vulnerabilities;

四、BLE消息模糊测试,尝试构造合法消息fuzz测试;4. BLE message fuzz test, try to construct legal message fuzz test;

五、BLE重放检测,抓取BLE车控数据包,通过重放测试检查消息安全性;5. BLE replay detection, capture the BLE car control data packet, and check the message security through the replay test;

步骤三、APP代码分析测试:对用户移动端的APP进行代码分析,具备包含有如下步骤:Step 3, APP code analysis and testing: Code analysis of the APP on the user's mobile terminal includes the following steps:

一、代码混淆,使用混淆工具混淆JAVA代码和NATIVE代码;1. Code obfuscation, using obfuscation tools to confuse JAVA code and NATIVE code;

二、APP代码保护突破,尝试对加固保护的APP进行脱壳处理,获取源码;2. APP code protection breakthrough, try to unpack the reinforced protected APP and obtain the source code;

三、APP蓝牙加密算法分析,对APP端数据通讯加密算法进行分析;3. Analysis of the APP Bluetooth encryption algorithm, and analyze the data communication encryption algorithm on the APP side;

四、APP代码逻辑缺陷寻找,寻找与蓝牙认证,测试通讯过程相关的逻辑缺陷;4. Search for logic defects in APP code, search for logic defects related to Bluetooth certification and test communication process;

五、APP蓝牙连接算法复现,分析蓝牙加密流程,尝试重写连接算法,实现或者部分实现车控;5. Reappearance of the APP Bluetooth connection algorithm, analyze the Bluetooth encryption process, try to rewrite the connection algorithm, and realize or partially realize car control;

步骤四、SO逻辑测试,BLE服务车端SO文件认证过程分析,逆向SO代码,寻找认证过程。Step 4: SO logic test, BLE service car side SO file authentication process analysis, reverse SO code, find the authentication process.

优选的,所述车联网网络的渗透测试方法还包含对车端系统的测试方法:Preferably, the penetration testing method of the Internet of Vehicles network also includes a testing method for the vehicle end system:

一、系统ROOT测试:使用USB测试接口ROOT攻击ROOT或者使用APP ROOT的方式进行ROOT;1. System ROOT test: Use USB test interface ROOT to attack ROOT or use APP ROOT to perform ROOT;

二、系统固件安全性测试:所述的系统固件安全性测试的测试方法如下:Two, system firmware safety test: the test method of described system firmware safety test is as follows:

1、固件刷机测试;1. Firmware flashing test;

2、固件逆向分析;2. Firmware reverse analysis;

3、固件回退刷机测试;3. Firmware rollback flashing test;

三、升级包破解测试:尝试破解本地USB升级包;3. Upgrade package cracking test: try to crack the local USB upgrade package;

四、系统漏洞测试:尝试不安全的服务测试,尝试多余的服务测试,尝试系统版本已知的安全漏洞测试;4. System vulnerability testing: try unsafe service testing, redundant service testing, and security vulnerability testing with known system versions;

五、系统升级安全测试:验证系统升级包的合法性和完整性,并且进行容错性测试;5. System upgrade security test: verify the legality and integrity of the system upgrade package, and conduct fault tolerance tests;

六、测试应用软件安全:检测应用软件是否采用混淆,加密手段防止被反编译,并且检测应用软件是否存在多余权限。6. Test application software security: Detect whether the application software uses obfuscation, encryption means to prevent decompilation, and detect whether the application software has redundant permissions.

优选的,所述步骤二车端通信安全测试中,所有端到端通讯均采用HTTPS的通讯方式。Preferably, in the second step of the vehicle-end communication security test, all end-to-end communication adopts HTTPS communication mode.

优选的,所述步骤二车端通信安全测试中,采用Certificate Pinning或者双向认证的机制放置MRRY攻击。Preferably, in the second step, in the vehicle-side communication security test, Certificate Pinning or a two-way authentication mechanism is used to prevent MRRY attacks.

优选的,所述车端在进行信息存储时包含有白盒加密和硬件加密两种加密方式。Preferably, the vehicle terminal includes two encryption methods, white box encryption and hardware encryption, when storing information.

与现有技术相比,本发明的有益效果如下:Compared with the prior art, the beneficial effects of the present invention are as follows:

本发明通过对安全SDK、APP端和车端进行详尽全面的测试,检测车联网来可能出现的故障,并且针对测试结果进行修改,以保障车联网网络的稳定性和可靠性,该车联网网络的渗透测试方法具备测试全面的优点,在实际使用过程中能够针对车联网网络中可能出现的故障进行详尽的检测,解决了车联网网络是否安全可靠关系到车主的驾驶安全和舒适度,一旦车联网网络出现故障,极易造成车主的导航出现故障无法正常运行,并且各个传感器及通信中枢之间无法协同运作,导致车辆和路况信息无法及时传输,例如车与车之间的间距便无法传输,车辆碰撞的几率便会大大的提升,车主的驾驶安全受到巨大的影响,降低了交通运行的效率的问题。The present invention conducts detailed and comprehensive tests on the security SDK, APP and vehicle terminals, detects possible faults in the Internet of Vehicles, and modifies the test results to ensure the stability and reliability of the Internet of Vehicles network. The penetration testing method has the advantages of comprehensive testing. In the actual use process, it can carry out detailed detection of possible faults in the Internet of Vehicles network. Failure of the network network can easily cause the owner's navigation to fail to operate normally, and the various sensors and communication centers cannot cooperate with each other, resulting in the inability to transmit vehicle and road condition information in time, such as the distance between vehicles. The probability of vehicle collision will be greatly improved, the driving safety of car owners will be greatly affected, and the efficiency of traffic operation will be reduced.

具体实施方式detailed description

下面将对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The technical solutions in the embodiments of the present invention will be clearly and completely described below. Obviously, the described embodiments are only some of the embodiments of the present invention, but not all of them. Based on the embodiments of the present invention, all other embodiments obtained by persons of ordinary skill in the art without making creative efforts belong to the protection scope of the present invention.

本发明提供一种技术方案:一种车联网网络的渗透测试方法,包括安全SDK、APP端和车端,其特征在于:所述车联网网络的渗透测试方法包含有如下步骤:The present invention provides a technical solution: a penetration testing method for the Internet of Vehicles network, including a security SDK, an APP terminal, and a vehicle terminal, characterized in that: the penetration testing method for the Internet of Vehicles network includes the following steps:

步骤一、身份认证:用户通过首次绑定使用登录后,操作移动端设备与车端唯一识别码配合车辆进行配对,安全SDK完成唯一用户识别码生成,车辆操作完成人车关系确认;移动端设备与车端安全环境进行唯一用户识别码交换;Step 1. Identity authentication: After the user logs in through binding for the first time, operate the mobile terminal device and the unique identification code of the vehicle to match with the vehicle. The security SDK completes the generation of the unique user identification code, and the vehicle operation is completed to confirm the relationship between the person and the vehicle; the mobile terminal device Exchanging unique user identification codes with the vehicle security environment;

步骤二、车端通信安全测试:车端和移动端进行蓝牙连接时对其进行检测,检测方式包含有如下步骤:Step 2. Car terminal communication security test: When the car terminal and mobile terminal are connected by Bluetooth, it is detected. The detection method includes the following steps:

一、BLE蓝牙服务遍历,遍历所有SSID信息;1. BLE Bluetooth service traversal, traversal of all SSID information;

二、BLE蓝牙强制连接攻击,暴力尝试与车端建立非法强制连接,测试拒绝非法连接能力;2. BLE Bluetooth forced connection attack, violent attempt to establish an illegal forced connection with the car end, and test the ability to reject illegal connections;

三、BLECVE检测,对BLE已知CVE漏洞探测;3. BLECVE detection, detection of BLE known CVE vulnerabilities;

四、BLE消息模糊测试,尝试构造合法消息fuzz测试;4. BLE message fuzz test, try to construct legal message fuzz test;

五、BLE重放检测,抓取BLE车控数据包,通过重放测试检查消息安全性;5. BLE replay detection, capture the BLE car control data packet, and check the message security through the replay test;

步骤三、APP代码分析测试:对用户移动端的APP进行代码分析,具备包含有如下步骤:Step 3, APP code analysis and testing: Code analysis of the APP on the user's mobile terminal includes the following steps:

一、代码混淆,使用混淆工具混淆JAVA代码和NATIVE代码;1. Code obfuscation, using obfuscation tools to confuse JAVA code and NATIVE code;

二、APP代码保护突破,尝试对加固保护的APP进行脱壳处理,获取源码;2. APP code protection breakthrough, try to unpack the reinforced protected APP and obtain the source code;

三、APP蓝牙加密算法分析,对APP端数据通讯加密算法进行分析;3. Analysis of the APP Bluetooth encryption algorithm, and analyze the data communication encryption algorithm on the APP side;

四、APP代码逻辑缺陷寻找,寻找与蓝牙认证,测试通讯过程相关的逻辑缺陷;4. Search for logic defects in APP code, search for logic defects related to Bluetooth certification and test communication process;

五、APP蓝牙连接算法复现,分析蓝牙加密流程,尝试重写连接算法,实现或者部分实现车控;5. Reappearance of the APP Bluetooth connection algorithm, analyze the Bluetooth encryption process, try to rewrite the connection algorithm, and realize or partially realize car control;

步骤四、SO逻辑测试,BLE服务车端SO文件认证过程分析,逆向SO代码,寻找认证过程。Step 4: SO logic test, BLE service car side SO file authentication process analysis, reverse SO code, find the authentication process.

本发明中:车联网网络的渗透测试方法还包含对车端系统的测试方法:In the present invention: the penetration test method of the Internet of Vehicles network also includes a test method for the vehicle end system:

一、系统ROOT测试:使用USB测试接口ROOT攻击ROOT或者使用APP ROOT的方式进行ROOT;1. System ROOT test: Use USB test interface ROOT to attack ROOT or use APP ROOT to perform ROOT;

二、系统固件安全性测试:所述的系统固件安全性测试的测试方法如下:Two, system firmware safety test: the test method of described system firmware safety test is as follows:

1、固件刷机测试;1. Firmware flashing test;

2、固件逆向分析;2. Firmware reverse analysis;

3、固件回退刷机测试;3. Firmware rollback flashing test;

三、升级包破解测试:尝试破解本地USB升级包;3. Upgrade package cracking test: try to crack the local USB upgrade package;

四、系统漏洞测试:尝试不安全的服务测试,尝试多余的服务测试,尝试系统版本已知的安全漏洞测试;4. System vulnerability testing: try unsafe service testing, redundant service testing, and security vulnerability testing with known system versions;

五、系统升级安全测试:验证系统升级包的合法性和完整性,并且进行容错性测试;5. System upgrade security test: verify the legality and integrity of the system upgrade package, and conduct fault tolerance tests;

六、测试应用软件安全:检测应用软件是否采用混淆,加密手段防止被反编译,并且检测应用软件是否存在多余权限。6. Test application software security: Detect whether the application software uses obfuscation, encryption means to prevent decompilation, and detect whether the application software has redundant permissions.

本发明中:步骤二车端通信安全测试中,所有端到端通讯均采用HTTPS的通讯方式,保证所有与后台通讯、与车端的通信内容均加密传输。In the present invention: in step 2, in the vehicle-end communication security test, all end-to-end communications adopt the HTTPS communication method to ensure that all communications with the background and with the vehicle-end are encrypted and transmitted.

本发明中:步骤二车端通信安全测试中,采用Certificate Pinning或者双向认证的机制放置MRRY攻击,保证加密的同时能够防止中间人攻击。In the present invention: in step 2, in the vehicle terminal communication security test, the mechanism of Certificate Pinning or two-way authentication is used to place MRRY attacks, so as to ensure encryption and prevent man-in-the-middle attacks.

本发明中:车端在进行信息存储时包含有白盒加密和硬件加密两种加密方式,硬件加密是指软件加硬件级别的加密方式。In the present invention: when the vehicle end stores information, it includes two encryption methods: white box encryption and hardware encryption, and hardware encryption refers to an encryption method at the software plus hardware level.

需要说明的是,在本文中,诸如第一和第二等之类的关系术语仅仅用来将一个实体或者操作与另一个实体或操作区分开来,而不一定要求或者暗示这些实体或操作之间存在任何这种实际的关系或者顺序。而且,术语“包括”、“包含”或者其任何其他变体意在涵盖非排他性的包含,从而使得包括一系列要素的过程、方法、物品或者设备不仅包括那些要素,而且还包括没有明确列出的其他要素,或者是还包括为这种过程、方法、物品或者设备所固有的要素。It should be noted that in this article, relational terms such as first and second are only used to distinguish one entity or operation from another entity or operation, and do not necessarily require or imply that there is a relationship between these entities or operations. any such actual relationship or order exists between them. Furthermore, the term "comprises", "comprises" or any other variation thereof is intended to cover a non-exclusive inclusion such that a process, method, article, or apparatus comprising a set of elements includes not only those elements, but also includes elements not expressly listed. other elements of or also include elements inherent in such a process, method, article, or device.

尽管已经示出和描述了本发明的实施例,对于本领域的普通技术人员而言,可以理解在不脱离本发明的原理和精神的情况下可以对这些实施例进行多种变化、修改、替换和变型,本发明的范围由所附权利要求及其等同物限定。Although the embodiments of the present invention have been shown and described, those skilled in the art can understand that various changes, modifications and substitutions can be made to these embodiments without departing from the principle and spirit of the present invention. and modifications, the scope of the invention is defined by the appended claims and their equivalents.

Claims (5)

1. The utility model provides a penetration test method of car networking, includes safe SDK, APP end and car end, its characterized in that: the penetration testing method of the Internet of vehicles network comprises the following steps:
step one, identity authentication: after the user logs in through the first binding use, operating the mobile terminal equipment to match with the unique vehicle-side identification code for vehicle pairing, generating the unique user identification code by the safety SDK, and confirming the man-vehicle relationship after the vehicle operation is completed; the mobile terminal equipment exchanges the unique user identification code with the vehicle-terminal safety environment;
step two, vehicle end communication safety test: detect it when car end and removal end carry out the bluetooth and connect, the detection mode includes following step:
1. the BLE Bluetooth service is traversed, and all SSID information is traversed;
2. the BLE Bluetooth compulsory connection attack is carried out, illegal compulsory connection is violently tried to be established with a vehicle end, and the illegal connection rejection capability is tested;
3. detecting BLECVE, and detecting the BLE known CVE loophole;
4. performing BLE message fuzz test, and trying to construct a legal message fuzz test;
5. the BLE replay detection is performed, a BLE vehicle control data packet is captured, and the message safety is checked through the replay test;
step three, APP code analysis and test: the method for analyzing the code of the APP of the user mobile terminal comprises the following steps:
1. code obfuscating, obfuscating the JAVA code and the NATIVE code using an obfuscation tool;
2. the APP code protection breakthrough attempts to perform shelling processing on the reinforced and protected APP to obtain a source code;
3. analyzing an APP Bluetooth encryption algorithm, and analyzing an APP end data communication encryption algorithm;
4. finding out APP code logic defects, finding out logic defects related to Bluetooth authentication and a test communication process;
5. the APP Bluetooth connection algorithm is reproduced, a Bluetooth encryption flow is analyzed, the connection algorithm is tried to be rewritten, and vehicle control is achieved or partially achieved;
and step four, SO logic test, analysis of the SO file authentication process of the BLE service vehicle end, reversing the SO code and searching the authentication process.
2. The penetration testing method of the internet of vehicles network according to claim 1, characterized in that: the method also comprises a test method of the vehicle end system:
1. and (3) testing the ROOT of the system: using a USB test interface ROOT to attack ROOT or using an APP ROOT mode to carry out ROOT;
2. and (3) system firmware security testing: the test method for the system firmware security test comprises the following steps:
1. firmware is tested by flashing;
2. reverse analysis of firmware;
3. firmware rollback flash test;
3. and (3) upgrading package cracking test: trying to crack a local USB upgrade package;
4. and (3) testing system vulnerabilities: the method comprises the following steps of trying unsafe service tests, trying redundant service tests, and trying security vulnerability tests with known system versions;
5. and (3) system upgrading safety test: verifying the validity and integrity of the system upgrade package, and performing fault tolerance test;
6. and (3) testing the safety of the application software: whether the application software adopts confusion or not is detected, the encryption means prevents the application software from being decompiled, and whether the application software has redundant authority or not is detected.
3. The penetration testing method of the internet of vehicles network according to claim 1, characterized in that: in the second vehicle-end communication safety test, all end-to-end communication adopts an HTTPS communication mode.
4. The penetration testing method of the internet of vehicles network according to claim 1, characterized in that: in the second vehicle end communication safety test, a Certificate screening or bidirectional authentication mechanism is adopted to place MRRY attacks.
5. The penetration testing method of the internet of vehicles network according to claim 1, characterized in that: the vehicle end comprises two encryption modes of white box encryption and hardware encryption when information storage is carried out.
CN202110031794.8A 2021-01-11 2021-01-11 Penetration testing method for Internet of vehicles network Active CN112887945B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110031794.8A CN112887945B (en) 2021-01-11 2021-01-11 Penetration testing method for Internet of vehicles network

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110031794.8A CN112887945B (en) 2021-01-11 2021-01-11 Penetration testing method for Internet of vehicles network

Publications (2)

Publication Number Publication Date
CN112887945A CN112887945A (en) 2021-06-01
CN112887945B true CN112887945B (en) 2022-12-09

Family

ID=76044065

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110031794.8A Active CN112887945B (en) 2021-01-11 2021-01-11 Penetration testing method for Internet of vehicles network

Country Status (1)

Country Link
CN (1) CN112887945B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114238987B (en) * 2021-12-20 2025-12-23 国汽(北京)智能网联汽车研究院有限公司 A penetration testing method, system, and storage medium for intelligent connected vehicle apps.
CN115421470A (en) * 2022-08-30 2022-12-02 重庆长安汽车股份有限公司 Vehicle-mounted unit penetration testing method and device
CN116502238B (en) * 2023-06-26 2023-10-10 中汽智联技术有限公司 Protection method based on car networking product security vulnerability professional library CAVD

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104410569A (en) * 2014-11-26 2015-03-11 公安部第三研究所 Perception communication interconnecting gateway and method for processing data
CN104484607A (en) * 2014-12-16 2015-04-01 上海交通大学 Universal method and universal system for performing safety testing on Android application programs
KR101781135B1 (en) * 2017-03-28 2017-09-22 자동차부품연구원 Apparatus for estimating and monitoring communication security of vehicle-network
CN107392033A (en) * 2017-08-30 2017-11-24 杭州安恒信息技术有限公司 A kind of Android device Permeation Test System and its automation penetration testing method
CN108430069A (en) * 2018-02-11 2018-08-21 重庆邮电大学 A V2X network performance test and comprehensive evaluation analysis method
CN109145579A (en) * 2018-08-18 2019-01-04 北京航空航天大学 Intelligent network joins automobile information secure authentication testing method and system
CN110162977A (en) * 2019-04-24 2019-08-23 北京邮电大学 A kind of Android vehicle-mounted terminal system leakage location and method
CN111901349A (en) * 2020-07-29 2020-11-06 北京天融信网络安全技术有限公司 Penetration testing method, device and system based on in-vehicle CAN bus

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102541729A (en) * 2010-12-31 2012-07-04 航空工业信息中心 Detection device and method for security vulnerability of software
US20140089202A1 (en) * 2012-09-27 2014-03-27 Michael K. Bond CRM Security Core
US10037689B2 (en) * 2015-03-24 2018-07-31 Donald Warren Taylor Apparatus and system to manage monitored vehicular flow rate
CN106708012A (en) * 2016-12-05 2017-05-24 深圳市元征科技股份有限公司 Secondary development method and device for diagnostic device
US10616259B2 (en) * 2017-01-17 2020-04-07 Nio Usa, Inc. Real-time network vulnerability analysis and patching
CN107241716A (en) * 2017-06-01 2017-10-10 国家计算机网络与信息安全管理中心 The network service detection means and detection method of car networking

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104410569A (en) * 2014-11-26 2015-03-11 公安部第三研究所 Perception communication interconnecting gateway and method for processing data
CN104484607A (en) * 2014-12-16 2015-04-01 上海交通大学 Universal method and universal system for performing safety testing on Android application programs
KR101781135B1 (en) * 2017-03-28 2017-09-22 자동차부품연구원 Apparatus for estimating and monitoring communication security of vehicle-network
CN107392033A (en) * 2017-08-30 2017-11-24 杭州安恒信息技术有限公司 A kind of Android device Permeation Test System and its automation penetration testing method
CN108430069A (en) * 2018-02-11 2018-08-21 重庆邮电大学 A V2X network performance test and comprehensive evaluation analysis method
CN109145579A (en) * 2018-08-18 2019-01-04 北京航空航天大学 Intelligent network joins automobile information secure authentication testing method and system
CN110162977A (en) * 2019-04-24 2019-08-23 北京邮电大学 A kind of Android vehicle-mounted terminal system leakage location and method
CN111901349A (en) * 2020-07-29 2020-11-06 北京天融信网络安全技术有限公司 Penetration testing method, device and system based on in-vehicle CAN bus

Non-Patent Citations (4)

* Cited by examiner, † Cited by third party
Title
Research on Detection and Evaluation Technology of Cybersecurity in Intelligent and Connected Vehicle;Xuebin Shao;《2019 International Conference on Artificial Intelligence and Advanced Manufacturing (AIAM)》;20200109;全文 *
基于渗透测试的车联网通信安全与防范措施;李霞等;《现代制造技术与装备》;20190630;全文 *
复杂网络环境下智能网联汽车安全威胁分析与远程入侵研究;李岩松;《工程科技Ⅱ辑》;20200215;全文 *
车联网信息安全测试技术分析及应用;周媛媛;《北京汽车》;20200425(第02期);全文 *

Also Published As

Publication number Publication date
CN112887945A (en) 2021-06-01

Similar Documents

Publication Publication Date Title
CN112887945B (en) Penetration testing method for Internet of vehicles network
CN102355467B (en) Power transmission and transformation equipment state monitoring system security protection method based on trust chain transmission
CN107026874A (en) One kind instruction signature and verification method and system
CN101778099A (en) Architecture accessing trusted network for tolerating untrusted components and access method thereof
CN102638468A (en) Method, sending end, receiving end and system for protecting information transmission safety
CN103581203A (en) Trusted network connection method based on trusted computing
CN112272089A (en) Cloud host login method, device, equipment and computer readable storage medium
CN102264050B (en) Network access method, system and authentication server
CN111314921A (en) Test system, method, device and storage medium based on wireless communication
CN111601280B (en) Access verification method and device
CN104219626B (en) A kind of identity authentication method and device
CN102833745A (en) Method for safely upgrading software, communication device and communication system
CN113343196A (en) Internet of things security authentication method
CN102045310B (en) Industrial Internet intrusion detection as well as defense method and device
CN117812567A (en) Communication connection method, apparatus, device, medium, and computer program product
CN118069180A (en) Device OTA management system and method
US12309596B2 (en) System for the inspection, evaluation and diagnosis of the level of cybersecurity of a vehicle
CN102833067B (en) Trilateral authentication method and system and authentication state management method of terminal equipment
CN104935556B (en) A kind of network security processing method, apparatus and system
Ma et al. Research on cyber security risk of telematics box in intelligent connected vehicle
CN112463405A (en) Big data processing method based on edge computing and central cloud server
CN111835765B (en) Verification method and device
CN117411907A (en) A vehicle communication data processing method, device and medium
CN115913727A (en) Method and system for realizing unique identification of LKJ data wireless facelift based on digital certificate
CN115829572A (en) Cross-chain data interaction method, device, equipment, medium and product

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant