[go: up one dir, main page]

CN113411294A - Vehicle-mounted secure communication method, system and device based on secure cloud public key protection - Google Patents

Vehicle-mounted secure communication method, system and device based on secure cloud public key protection Download PDF

Info

Publication number
CN113411294A
CN113411294A CN202110489106.2A CN202110489106A CN113411294A CN 113411294 A CN113411294 A CN 113411294A CN 202110489106 A CN202110489106 A CN 202110489106A CN 113411294 A CN113411294 A CN 113411294A
Authority
CN
China
Prior art keywords
vehicle
secure
public key
cloud
communication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110489106.2A
Other languages
Chinese (zh)
Inventor
秦跃
郝晶晶
张康达
牛宏宇
韩光省
潘俊家
唐风敏
戎辉
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
CATARC Tianjin Automotive Engineering Research Institute Co Ltd
Original Assignee
CATARC Tianjin Automotive Engineering Research Institute Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by CATARC Tianjin Automotive Engineering Research Institute Co Ltd filed Critical CATARC Tianjin Automotive Engineering Research Institute Co Ltd
Priority to CN202110489106.2A priority Critical patent/CN113411294A/en
Publication of CN113411294A publication Critical patent/CN113411294A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0869Network architectures or network communication protocols for network security for authentication of entities for achieving mutual authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Small-Scale Networks (AREA)

Abstract

The invention provides a vehicle-mounted secure communication method, a system and a device based on secure cloud public key protection.A vehicle-mounted network communication of an intelligent networked automobile comprises the communication of a secure cloud and a secure TCU (communication Control Unit), the communication of the secure TCU and a secure gateway, and the communication of the secure gateway and a secure ECU (electronic Control Unit), wherein the TCU is a Telematics Control Unit; the security cloud end and the security TCU are communicated through a security wireless network communication technology, and bidirectional identity authenticity authentication is carried out between the security cloud end and the TCU; and the safety TCU and the safety gateway adopt a vehicle-mounted Ethernet safety communication technology for communication. The invention has the beneficial effects that: a complete set of safe, efficient and implementable solution for networking automobile vehicle-mounted safety communication is provided by a vehicle-mounted safety communication method, a system and a device based on safety cloud public key protection, wherein the solution comprises the following steps: a public key data management and updating method based on cloud security protection; a challenge response identity authentication method based on public key cryptography, a message encryption method based on a one-time session key.

Description

Vehicle-mounted secure communication method, system and device based on secure cloud public key protection
Technical Field
The invention belongs to the field of intelligent networking automobile network security, and particularly relates to a vehicle-mounted secure communication method, system and device based on secure cloud public key protection.
Background
With the rapid development of intelligent networked automobiles, vehicle-mounted network communication faces more and more information security threats, the vehicle-mounted network communication lacks of safe and efficient information security solutions, some solutions exist at present, most of the solutions only solve the problem of vehicle-mounted communication message integrity, most of the solutions are security solutions established on the basis of an Ethernet network, and the research on the security solutions of a common vehicle-mounted communication network is lacked; in addition, the existing scheme for identity authentication only depends on a public key pair stored at the vehicle end as the basis of identity authentication, is easy to be tampered at the vehicle end, and also breaks away from the safety support of a network-connected vehicle cloud system; on the other hand, the existing scheme adopts a complex identity authentication process and encryption and decryption calculation, so that the requirement on the real-time performance of communication under a vehicle-mounted environment is difficult to meet, and the implementation efficiency is low.
Disclosure of Invention
In view of the above, the present invention is directed to a vehicle-mounted secure communication method, system and device based on secure cloud public key protection, for solving the security problem existing in the vehicle-mounted network communication of the current smart networked automobile. Specific problems include lack of identity authentication of a communication party, public key safety problem for identity authentication, message encryption safety problem, key leakage problem, cloud system safety management problem and function division problem of a safety module of a vehicle-end controller.
In order to achieve the purpose, the technical scheme of the invention is realized as follows:
the vehicle-mounted safe communication method based on the safe cloud public key protection divides the vehicle-mounted network communication of the intelligent network-connected vehicle into three layers of safe cloud and safe TCU communication, safe TCU and safe gateway communication and safe ECU communication, wherein the TCU is a Telematics Control Unit;
the secure cloud and the secure TCU are communicated by adopting a secure wireless network communication technology, and the secure cloud and the TCU perform bidirectional identity authenticity authentication;
for the communication between the safety TCU and the safety gateway, a vehicle-mounted Ethernet safety communication technology is adopted;
and the safety gateway and the safety ECU are communicated by adopting a vehicle-mounted safety communication method of identity authentication and message encryption.
Further, the identity authentication method is realized by adopting a one-way authentication mode for each safety ECU by a safety gateway and a challenge response mode based on a public key cryptography technology.
Further, the public key cryptography adopts an effective public key cryptography algorithm; all controllers such as a security gateway, a security ECU and the like respectively have a unique public and private key pair, the public and private key pair is generated before the controllers are produced and off-line, private keys exist in respective security modules, and public keys are managed by an cloud management system.
Further, the message encryption method uses a symmetric cryptographic technique to symmetrically encrypt the content of the message data field; the symmetric key used for the symmetric encryption and decryption is a one-time session key.
Further, the session key is a random number generated by a cryptography processing module of the security gateway, one power-on and power-off is taken as a session period, each session period is generated at the beginning, and the session key is distributed by using a public key cryptography technology.
Further, the safety cloud management system manages the public keys of all the vehicle controllers, maps the public keys with the identity identification information of the respective controller main bodies and the vehicle identity identification information, packages the public keys of all the controllers of each vehicle and the identity identification information and maintains version information of the public keys.
On-vehicle safe communication system based on protection of safety high in the clouds public key, including safety high in the clouds system module, safety high in the clouds system module includes: the public key management system module is responsible for mapping, packaging and applying for a digital signature on a public key and identification information of the vehicle controller, and updating and maintaining a version; the signature authentication system module is responsible for signing the public key packet data of the vehicle, authenticating the identity of the vehicle and managing a digital certificate; the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys; the networked automobile management platform is responsible for realizing communication between the security cloud and the automobile end; and the cloud network safety protection module is in charge of protecting the safety of a cloud network system, a server and a database.
On-vehicle safe communication device based on protection of safety high in clouds public key includes: a vehicle-mounted security gateway device, a vehicle-mounted security ECU device;
the in-vehicle security gateway device includes: the public key package management module is responsible for storing and managing the latest version of the vehicle control unit public key package downloaded from the security cloud end through the TCU, carrying out security verification and unpacking on the vehicle control unit public key package, and acquiring the public keys of all ECUs in the vehicle; the cryptography processing module is responsible for all encryption and decryption operations, session key generation and safe storage of private keys; the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; the message receiving and sending module is responsible for receiving and sending messages;
the on-vehicle safety ECU device includes: the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys; the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; and the message receiving and sending module is responsible for receiving and sending messages.
Compared with the prior art, the vehicle-mounted safe communication method, the system and the device based on the safe cloud public key protection have the following beneficial effects that:
(1) the invention discloses a safe, efficient and implementable solution for vehicle-mounted safe communication of a networked automobile based on safe cloud public key protection, a system and a device thereof, wherein the solution comprises the following steps: a public key data management and updating method based on cloud security protection; a challenge response identity authentication method based on public key cryptography, a message encryption method based on a one-time session key;
(2) the vehicle-mounted safe communication method, the system and the device based on the safe cloud public key protection also provide a systematized and modularized safe cloud management system which is used as a network-connected automobile cloud safe support, can monitor the communication safe state of a vehicle end and ensure the authenticity of public key data of a vehicle controller;
(3) according to the vehicle-mounted safe communication method, system and device based on the safe cloud public key protection, a safe vehicle-mounted controller is designed for a vehicle end, the safe vehicle-mounted controller comprises a safe gateway and a safe ECU, and the work responsibilities of all functional modules in the safe communication process are combined.
(4) According to the vehicle-mounted safe communication method, system and device based on the safe cloud public key protection, the identity authentication and message encryption are adopted for the communication between the safe gateway and the safe ECU, the existing scheme is mostly a safe scheme based on an Ethernet network, and the research on the safe scheme of a common vehicle-mounted communication network is lacked. For the direct communication of the gateway and each ECU, the problem of the integrity of the communication message is mostly solved, and an implementable scheme of message encryption and identity authentication is lacked.
(5) The identity authentication method, the system and the device based on the vehicle-mounted safe communication method and the system of the safe cloud public key protection are realized by adopting a one-way authentication mode for each safe ECU by a safe gateway and adopting a challenge response mode based on a public key cryptography technology, most identity authentication methods in the traditional communication field adopt a mode based on a digital certificate, and the mode needs complete digital certificate management and authentication system as support, and has overlarge cost; and the use of the digital certificate is not suitable for the current in-vehicle network with low computing power, low storage, low bandwidth and high real-time requirement.
(6) The vehicle-mounted safe communication method, the system and the device based on the safe cloud public key protection adopt an effective public key cryptographic algorithm in the public key cryptographic technology; all controllers such as a security gateway, a security ECU and the like respectively have a unique public and private key pair, the public and private key pair is generated before the controllers are produced and offline, private keys exist in respective security modules, public keys are managed by an security cloud management system, a scheme for managing the public keys is provided, the public keys are only stored by the controllers of vehicle ends, the pressure of vehicle end storage and calculation is increased, the vehicle ends are easily tampered, and the security support of an internet automobile cloud system is also separated. The invention gives the safety and authenticity of the public key to the cloud management system for maintenance, ensures the safe use of the public key by utilizing the strong calculation, storage and safety capabilities of the cloud, and is beneficial to upgrading after the piece is changed.
(7) According to the vehicle-mounted safe communication method, the vehicle-mounted safe communication system and the vehicle-mounted safe communication device based on the safe cloud public key protection, the content of a message data field is symmetrically encrypted by using a symmetric password technology; the symmetric key used for the symmetric encryption and decryption is a one-time session key, and most of the existing schemes store a fixed communication key in each communication node by using a secure storage technology. This has the disadvantage that the key update is inconvenient. Once a key of a certain node is leaked, the security is invalid, and only the key of the whole vehicle can be replaced. If each node maintains a different key, then on the one hand the pressure on key storage and management increases and communication between different nodes is also trapped. The invention solves the problems by using the disposable key, and the randomly generated key reduces the pressure of key storage; the effective and disposable secret key in one period reduces the safety pressure, and can be refreshed in the next period even if being cracked, so that the cracking difficulty is increased.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate an embodiment of the invention and, together with the description, serve to explain the invention and not to limit the invention. In the drawings:
FIG. 1 is a general flow chart of a vehicular secure communication method based on secure cloud public key protection;
FIG. 2 is a diagram of a security communication network of the intelligent networked automobile;
FIG. 3 is a flowchart of a method for identity authentication between a security gateway and a security ECU in a challenge-response manner;
FIG. 4 is a flowchart of a method for verifying authenticity and version update of a local public key packet by a security gateway and a secure cloud management system;
FIG. 5 is a functional model diagram of a secure cloud management system;
FIG. 6 is a functional model diagram of a security gateway device;
fig. 7 is a functional model diagram of the safety ECU device.
Detailed Description
It should be noted that the embodiments and features of the embodiments may be combined with each other without conflict.
The present invention will be described in detail below with reference to the embodiments with reference to the attached drawings.
As shown in fig. 1 to 4, in the vehicle-mounted secure communication method based on secure cloud public key protection, the vehicle-mounted network communication of the smart internet vehicle is divided into three layers, namely, secure cloud and secure TCU communication, secure TCU and secure gateway communication, and secure gateway and secure ECU communication, where the TCU is a Telematics Control Unit;
the secure cloud and the secure TCU are communicated by adopting a secure wireless network communication technology, and the secure cloud and the TCU perform bidirectional identity authenticity authentication;
for the communication between the safety TCU and the safety gateway, a vehicle-mounted Ethernet safety communication technology is adopted;
the existing schemes are mostly security schemes based on an Ethernet network, and the security scheme research on a common vehicle-mounted communication network is lacked. For the direct communication of the gateway and each ECU, the problem of the integrity of the communication message is mostly solved, and an implementable scheme of message encryption and identity authentication is lacked.
The identity authentication method is realized by adopting a one-way authentication mode for each safety ECU by a safety gateway and a challenge response mode based on a public key cryptography, and most identity authentication methods in the traditional communication field adopt a mode based on a digital certificate. Such a method requires a complete digital certificate management and authentication system as a support, and is too costly; and the use of the digital certificate is not suitable for the current in-vehicle network with low computing power, low storage, low bandwidth and high real-time requirement.
The public key cryptography adopts an effective public key cryptography algorithm; all controllers such as a security gateway, a security ECU and the like respectively have a unique public and private key pair, the public and private key pair is generated before the controllers are produced and offline, private keys exist in respective security modules, public keys are managed by an security cloud management system, a scheme for managing the public keys is provided, the public keys are only stored by the controllers of vehicle ends, the pressure of vehicle end storage and calculation is increased, the vehicle ends are easily tampered, and the security support of an internet automobile cloud system is also separated. The invention gives the safety and the authenticity of the public key to the cloud management system to be responsible for maintenance. The strong computing, storing and safety capabilities of the cloud are utilized to ensure the safe use of the public key, and the upgrade after the piece replacement is facilitated.
The message encryption method symmetrically encrypts the content of a message data field by using a symmetric cryptographic technique, (a network message which accords with a standard protocol is sent, the message consists of a header and a data field, and the header is protocol control information of the message, such as a message ID; the symmetric key used for the symmetric encryption and decryption is a one-time session key, and most of the existing schemes store a fixed communication key in each communication node by using a secure storage technology. This has the disadvantage that the key update is inconvenient. Once a key of a certain node is leaked, the security is invalid, and only the key of the whole vehicle can be replaced. If each node maintains a different key, then on the one hand the pressure on key storage and management increases and communication between different nodes is also trapped. The invention solves the problems by using the disposable key, and the randomly generated key reduces the pressure of key storage; the effective and disposable secret key in one period reduces the safety pressure, and can be refreshed in the next period even if being cracked, so that the cracking difficulty is increased.
The session key is a random number generated by a cryptography processing module of the security gateway, one-time power-on and power-off is taken as a session period, each session period is generated at the beginning, and the distribution of the session key uses a public key cryptography technology.
The safety cloud management system manages the public keys of all the vehicle controllers, maps the public keys with the identity identification information of the respective controller main bodies and the vehicle identity identification information, packages all the controller public keys and the identity identification information of each vehicle and maintains the version information of the controller public keys and the identity identification information.
On-vehicle safe communication system based on protection of safety high in the clouds public key, including safety high in the clouds system module, safety high in the clouds system module includes: the public key management system module is responsible for mapping, packaging and applying for a digital signature on a public key and identification information of the vehicle controller, and updating and maintaining a version; the signature authentication system module is responsible for signing the public key packet data of the vehicle, authenticating the identity of the vehicle and managing a digital certificate; the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys; the networked automobile management platform is responsible for realizing communication between the security cloud and the automobile end; and the cloud network safety protection module is in charge of protecting the safety of a cloud network system, a server and a database.
The vehicle-mounted safety communication device based on safety cloud public key protection comprises a vehicle-mounted safety gateway device and a vehicle-mounted safety ECU device;
the in-vehicle security gateway device includes: the public key package management module is responsible for storing and managing the latest version of the vehicle control unit public key package downloaded from the security cloud end through the TCU, carrying out security verification and unpacking on the vehicle control unit public key package, and acquiring the public keys of all ECUs in the vehicle; the cryptography processing module is responsible for all encryption and decryption operations, session key generation and safe storage of private keys; the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; the message receiving and sending module is responsible for receiving and sending messages;
the on-vehicle safety ECU device includes: the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys; the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; and the message receiving and sending module is responsible for receiving and sending messages.
As shown in fig. 1, the general flowchart of the vehicle-mounted secure communication method based on secure cloud public key protection is shown, a vehicle is started and networked, and first, the vehicle and the secure cloud determine whether a local public key data packet is real and is the current latest version, and if not, an update process of the public key data packet is started first; and if the version is the latest version, starting the vehicle-mounted safety communication flow.
As shown in fig. 2, a basic model of the intelligent networked automobile-mounted network is described, and communication nodes mainly related to the intelligent networked automobile-mounted network include: 101 a secure cloud, 102 a vehicle TCU, 103 a vehicle security gateway, and 104 a vehicle security ECU. The communication network is divided into three levels of communication between a secure cloud and a secure TCU, communication between the secure TCU and a secure gateway, and communication between the secure gateway and a secure ECU.
And adopting a secure wireless network communication technology for the communication between the secure cloud and the secure TCU. Adopts the above TLSv1.2 version safety communication protocol and uses the special APN (Access Point name). The safety cloud and the TCU perform bidirectional identity authenticity authentication.
And for the communication between the safety TCU and the safety gateway, adopting a vehicle-mounted Ethernet safety communication technology.
And a secure communication method of identity authentication and message encryption is adopted for the communication between the secure gateway and the secure ECU.
The identity authentication method is realized by adopting a one-way authentication mode that a security gateway respectively adopts challenge response to each security ECU, and is realized by adopting a challenge response mode based on a public key cryptography technology. As shown in fig. 3, in the first step, the security gateway performs three operations, that is, generating a random number as a session key K; secondly, finding out a public key PK of the ECU by finding out a public key data packet; performing public key encryption based on SM2 algorithm on the generated session key K by using a public key PK to obtain a ciphertext C1; thirdly, sending the C1 to the corresponding ECU; secondly, the ECU decrypts C1 by using a private key SK which is stored safely locally to obtain a session key K; the ECU uses the session key K as a symmetric key and the public key PK of the ECU as a plaintext, and encryption is carried out based on a DES algorithm to obtain a ciphertext C2; sending C2 to the security gateway; third, the security gateway verifies that C2 is computed correctly. If the calculation of C2 is correct, the ECU uses the correct private key to decrypt the session key K, so that the identity authentication of the security ECU is verified to be passed; otherwise, the identity authentication is not passed.
Wherein the public key cryptography adopts SM2 public key cryptography algorithm; all controllers respectively have a unique public and private key pair; the public and private key pair is generated before each controller is produced and is filled in a production line, and the private key must be stored in a respective security module of the controller; the public key is also backed up and managed by the cloud management system.
The message encryption method is used for symmetrically encrypting the content of a message data field by using a DES symmetric encryption algorithm, and the length of a secret key is 64 bits. If the message field data is greater than 64 bits, the packet is block encrypted, less than the complement 0 of 64 bits.
Wherein the session key K is a random number generated by a cryptographic module of the security gateway. The vehicle is powered on and powered off once as a session period, and a session key is generated at the beginning of each session period and has the length of 64 bits.
The cloud-mounted management system manages public keys of all vehicle controllers, maps the public keys with production serial numbers and vehicle identification codes of respective controller main bodies, and packages all controller public keys and identity identification information of each vehicle; meanwhile, if the public key of any controller is updated, the safety cloud end updates the public key data packet and upgrades the version information.
Wherein, the public key data packet comprises public keys of all controllers in the vehicle: PK, production sequence number: SN _ Num, version number of public key package Ver _ Num, signature information Sign _ Value, vehicle identification code: vin _ Num.
As shown in fig. 4, it is a flowchart of a method for a security gateway to confirm to a security cloud whether a current local public key data packet is authentic and is the latest version and whether the public key data packet is updated, first, the security gateway digitally signs the local public key data packet, then sends the signature and the version number of the public key certificate packet to a TCU, the TCU sends the above information to the security cloud, the security cloud verifies the signature and the version information, the security cloud queries a public key data management system, a signature vehicle end signs the current version of the public key data packet, and if the signature of the current vehicle security gateway is correct, then judges whether the version number of the local public key data packet of the vehicle is the current latest; if the public key data packet is the latest, returning a message without updating the public key data packet to the vehicle end, after the vehicle end receives the message, transmitting the message to the security gateway by the TCU, and then performing identity authentication by the security gateway by using the local public key data packet; if the public key data packet is not the latest, the security cloud end needs to send the public key data packet of the latest version and the signature information of the security cloud end to the current vehicle, after the vehicle end receives the data packet, the TCU transmits the message to the security gateway, the security gateway verifies whether the signature is correct, and if the signature is correct, the local public key data packet is updated and unpacked to obtain public key data; and if the security cloud finds that the signature of the vehicle-end security gateway is incorrect, returning error information to prompt a user that the current vehicle has a security risk, reporting the error information, and processing the error information by the user or a background.
An embodiment of the present invention provides an intelligent networking automobile-mounted secure communication system based on secure cloud public key protection, as shown in fig. 5, which is a secure cloud management system, including: public key management system module: the system is responsible for mapping, packaging and applying for digital signatures of the public key and the identification information of the vehicle controller, and updating and maintaining versions; signature authentication system module: the system comprises a CA submodule, a signature and signature verification submodule and a certificate storage and revocation management submodule, and is responsible for signature/signature verification of vehicle public key packet data, authentication of vehicle identity and management of a digital certificate; a cryptography processing module: the encryption equipment is responsible for all operations of encryption and decryption, generation of keys and management of safe storage; networking automobile management platform: the system comprises a vehicle database system and a vehicle monitoring operation and maintenance management system, and is responsible for realizing state monitoring and communication management of the intelligent networked automobile by a security cloud end; cloud network safety protection module: the system comprises network firewall equipment, safety audit equipment, access control system equipment and is responsible for protecting the safety of a cloud network system, a service terminal and a database.
The embodiment of the invention provides an intelligent networking automobile-mounted safety communication device based on safety cloud public key protection, which comprises: a vehicle-mounted safety gateway device and a vehicle-mounted safety ECU device.
As shown in fig. 6, is an in-vehicle security gateway apparatus, which includes: public key package management module: the system is in charge of storing and managing the latest version of the public key package of the whole vehicle controller downloaded from the security cloud through the TCU, carrying out security verification and unpacking on the public key package, and acquiring the public keys PK of all ECUs in the vehicle; a cryptography processing module: the module is realized by using a vehicle-rule-level hardware security chip SE and is responsible for all encryption and decryption operations, generation of a session key K and secure storage of a private key; a message processing module: the gateway is responsible for processing vehicle-mounted network messages and realizing the message forwarding function of the gateway; a message receiving and sending module: and is responsible for realizing the receiving and sending of the message.
As shown in fig. 7, the vehicle-mounted safety ECU device includes: a cryptography processing module: the module can be realized by a hardware security chip HSM (high speed memory) of a vehicle gauge level and is responsible for all encryption and decryption operations and the secure storage of private keys; the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; and the message receiving and sending module is responsible for receiving and sending messages.
Those of ordinary skill in the art will appreciate that the elements and method steps of the examples described in connection with the embodiments disclosed herein may be embodied in electronic hardware, computer software, or combinations of both, and that the components and steps of the examples have been described in a functional general in the foregoing description for the purpose of clearly illustrating the interchangeability of hardware and software. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the implementation. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present invention.
In the several embodiments provided in the present application, it should be understood that the disclosed method and system may be implemented in other ways. For example, the above described division of elements is merely a logical division, and other divisions may be realized, for example, multiple elements or components may be combined or integrated into another system, or some features may be omitted, or not executed. The units may or may not be physically separate, and components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment of the present invention.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; such modifications and substitutions do not depart from the spirit and scope of the present invention, and they should be construed as being included in the following claims and description.
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and is not to be construed as limiting the invention, and any modifications, equivalents, improvements and the like that fall within the spirit and principle of the present invention are intended to be included therein.

Claims (8)

1. The vehicle-mounted safe communication method based on the safe cloud public key protection is characterized in that: the intelligent networking automobile vehicle-mounted network communication comprises communication between a secure cloud and a secure TCU, communication between the secure TCU and a secure gateway, and communication between the secure gateway and a secure ECU, wherein the TCU is a Telematics Control Unit, and the ECU is an Electronic Control Unit;
the safety gateway and the safety ECU carry out vehicle-mounted safety communication through an identity authentication method and a message encryption method.
2. The vehicular secure communication method based on secure cloud public key protection according to claim 1, characterized in that: the identity authentication method comprises the following steps:
performing one-way authentication with each safety ECU through a safety gateway;
identity security verification is carried out between the security gateway and each security ECU in a challenge response mode of a public key cryptography technology.
3. The vehicular secure communication method based on secure cloud public key protection according to claim 2, characterized in that: the controller has a unique private key, the controller comprises a security ECU, a security gateway and a TCU, the private key is generated before the controller is produced and offline, the private key is stored in a security module of each controller, and a public key corresponding to the private key is managed by the security cloud management system.
4. The vehicular secure communication method based on secure cloud public key protection according to claim 1, characterized in that: the message encryption method comprises the following steps:
the secure gateway and the secure ECU symmetrically encrypt the message data field content by using a symmetric cryptographic technique;
the symmetric key used for symmetric encryption and decryption is a one-time session key.
5. The vehicular secure communication method based on secure cloud public key protection according to claim 4, wherein: the session key is a random number generated by a cryptography processing module of the security gateway, one-time power-on and power-off is taken as a session period, each session period is generated at the beginning, and the distribution of the session key uses a public key cryptography technology.
6. The vehicular secure communication method based on secure cloud public key protection according to claim 5, wherein: the safety cloud manages the public keys corresponding to the private keys of all the controllers, maps the public keys with the identity identification information of the respective controller main bodies and the identity identification information of the vehicles, packages the public keys corresponding to the private keys of all the controllers of each vehicle and the identity identification information, and maintains the version information of the public keys.
7. The communication system applying the vehicular secure communication method based on the secure cloud public key protection according to any one of claims 1 to 6, wherein: including safe cloud system module, safe cloud system module includes:
the public key management system module is responsible for mapping, packaging and applying for a digital signature on the public key and the identification information of the ECU, and updating and maintaining the version;
the signature authentication system module is responsible for signing the public key packet data of the vehicle, authenticating the identity of the vehicle and managing a digital certificate;
the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys; the networked automobile management platform is responsible for realizing communication between the security cloud and the automobile end;
and the cloud network safety protection module is in charge of protecting the safety of a cloud network system, a server and a database.
8. The communication device of the vehicular secure communication system based on the secure cloud public key protection according to claim 7, wherein: the vehicle-mounted safety gateway device and the vehicle-mounted safety ECU device are included;
the in-vehicle security gateway device includes:
the public key package management module is responsible for storing and managing the latest version of the vehicle control unit public key package downloaded from the security cloud end through the TCU, carrying out security verification and unpacking on the vehicle control unit public key package, and acquiring the public keys of all ECUs in the vehicle;
the cryptography processing module is responsible for all encryption and decryption operations, session key generation and safe storage of private keys;
the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway; the message receiving and sending module is responsible for receiving and sending messages;
the on-vehicle safety ECU device includes:
the cryptography processing module is responsible for all encryption and decryption operations and the safe storage of private keys;
the message processing module is responsible for processing the vehicle-mounted network message and realizing the message forwarding function of the gateway;
and the message receiving and sending module is responsible for receiving and sending messages.
CN202110489106.2A 2021-04-30 2021-04-30 Vehicle-mounted secure communication method, system and device based on secure cloud public key protection Pending CN113411294A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110489106.2A CN113411294A (en) 2021-04-30 2021-04-30 Vehicle-mounted secure communication method, system and device based on secure cloud public key protection

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110489106.2A CN113411294A (en) 2021-04-30 2021-04-30 Vehicle-mounted secure communication method, system and device based on secure cloud public key protection

Publications (1)

Publication Number Publication Date
CN113411294A true CN113411294A (en) 2021-09-17

Family

ID=77677995

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110489106.2A Pending CN113411294A (en) 2021-04-30 2021-04-30 Vehicle-mounted secure communication method, system and device based on secure cloud public key protection

Country Status (1)

Country Link
CN (1) CN113411294A (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114584384A (en) * 2022-03-09 2022-06-03 西安电子科技大学 In-vehicle heterogeneous network security communication control method, computer equipment and storage medium
CN114710358A (en) * 2022-04-12 2022-07-05 中国第一汽车股份有限公司 Security authentication information acquisition method, device, vehicle, system and storage medium
DE102022001115B3 (en) 2022-03-31 2023-07-13 Mercedes-Benz Group AG System for secure data transmission between a motor vehicle and a cloud service

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106101111A (en) * 2016-06-24 2016-11-09 郑州信大捷安信息技术股份有限公司 Vehicle electronics safe communication system and communication means
CN107105060A (en) * 2017-05-27 2017-08-29 天津恒天新能源汽车研究院有限公司 A kind of method for realizing electric automobile information security
CN109314645A (en) * 2016-08-10 2019-02-05 Kddi株式会社 Data providing system, data protection device, data providing method, and computer program
CN109767523A (en) * 2017-11-10 2019-05-17 福特全球技术公司 VIN ESN signed orders and vehicle-level local web of trust
CN110191434A (en) * 2018-02-22 2019-08-30 福特全球技术公司 Vehicle safety
CN111818483A (en) * 2020-06-29 2020-10-23 郑州信大捷安信息技术股份有限公司 V2V vehicle networking communication system and method based on 5G
CN112585549A (en) * 2020-02-29 2021-03-30 华为技术有限公司 Fault diagnosis method and device and vehicle
CN112636923A (en) * 2020-12-23 2021-04-09 江苏徐工工程机械研究院有限公司 Engineering machinery CAN equipment identity authentication method and system

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106101111A (en) * 2016-06-24 2016-11-09 郑州信大捷安信息技术股份有限公司 Vehicle electronics safe communication system and communication means
CN109314645A (en) * 2016-08-10 2019-02-05 Kddi株式会社 Data providing system, data protection device, data providing method, and computer program
CN107105060A (en) * 2017-05-27 2017-08-29 天津恒天新能源汽车研究院有限公司 A kind of method for realizing electric automobile information security
CN109767523A (en) * 2017-11-10 2019-05-17 福特全球技术公司 VIN ESN signed orders and vehicle-level local web of trust
CN110191434A (en) * 2018-02-22 2019-08-30 福特全球技术公司 Vehicle safety
CN112585549A (en) * 2020-02-29 2021-03-30 华为技术有限公司 Fault diagnosis method and device and vehicle
CN111818483A (en) * 2020-06-29 2020-10-23 郑州信大捷安信息技术股份有限公司 V2V vehicle networking communication system and method based on 5G
CN112636923A (en) * 2020-12-23 2021-04-09 江苏徐工工程机械研究院有限公司 Engineering machinery CAN equipment identity authentication method and system

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114584384A (en) * 2022-03-09 2022-06-03 西安电子科技大学 In-vehicle heterogeneous network security communication control method, computer equipment and storage medium
CN114584384B (en) * 2022-03-09 2022-12-09 西安电子科技大学 In-vehicle heterogeneous network security communication control method, computer device and storage medium
DE102022001115B3 (en) 2022-03-31 2023-07-13 Mercedes-Benz Group AG System for secure data transmission between a motor vehicle and a cloud service
CN114710358A (en) * 2022-04-12 2022-07-05 中国第一汽车股份有限公司 Security authentication information acquisition method, device, vehicle, system and storage medium
CN114710358B (en) * 2022-04-12 2024-01-16 中国第一汽车股份有限公司 Security authentication information acquisition method, device, vehicle, system and storage medium

Similar Documents

Publication Publication Date Title
US12217042B2 (en) Method and apparatus for processing upgrade package of vehicle
CN106533655B (en) Method for safe communication of ECU (electronic control Unit) in vehicle interior network
US20190268763A1 (en) In-vehicle networking
CN109495307A (en) Method for upgrading system, OTA upgrade package encryption method, terminal device and vehicle
CN113411294A (en) Vehicle-mounted secure communication method, system and device based on secure cloud public key protection
CN112534793A (en) Vehicle-mounted equipment upgrading method and related device
US20120155636A1 (en) On-Demand Secure Key Generation
CN113852632B (en) SM9 algorithm-based vehicle identity authentication method, system, device and storage medium
CN108494725A (en) A kind of encryption communication method of vehicle-mounted CAN bus message
CN111049803A (en) Data encryption and platform security access method based on vehicle CAN bus communication system
CN106899404A (en) Vehicle-mounted CAN FD bus communication systems and method based on wildcard
CN109560931B (en) Equipment remote upgrading method based on certificate-free system
EP4436102A1 (en) In-vehicle network ota security communication method and apparatus, vehicle-mounted system, and storage medium
CN113556710B (en) Vehicle Bluetooth key method and device and vehicle
CN115396121B (en) Security authentication method for security chip OTA data packet and security chip device
CN109314645A (en) Data providing system, data protection device, data providing method, and computer program
CN111699706B (en) Master-slave system for communication via bluetooth low energy connection
CN109314644A (en) Data providing system, data protection device, data providing method, and computer program
CN113055181A (en) OTA file security processing method, device and system
CN117097462B (en) Vehicle-mounted intelligent software upgrading encryption system based on quantum key system
CN115665138A (en) Automobile OTA (over the air) upgrading system and method
CN117354016A (en) Whole car OTA security upgrading method, device, equipment and medium
CN114265815A (en) Traffic media data storage method, server, storage medium and system
CN110149205B (en) Method for protecting Internet of things terminal by using block chain
CN113676448A (en) Off-line equipment bidirectional authentication method and system based on symmetric key

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20210917