[go: up one dir, main page]

CN114866294B - Cloud-supervised online ride-hailing communication method - Google Patents

Cloud-supervised online ride-hailing communication method Download PDF

Info

Publication number
CN114866294B
CN114866294B CN202210416095.XA CN202210416095A CN114866294B CN 114866294 B CN114866294 B CN 114866294B CN 202210416095 A CN202210416095 A CN 202210416095A CN 114866294 B CN114866294 B CN 114866294B
Authority
CN
China
Prior art keywords
passenger
driver
service provider
aid
cloud
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202210416095.XA
Other languages
Chinese (zh)
Other versions
CN114866294A (en
Inventor
刘忆宁
蒋晟
梁杨帆
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Guilin University of Electronic Technology
Original Assignee
Guilin University of Electronic Technology
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Guilin University of Electronic Technology filed Critical Guilin University of Electronic Technology
Priority to CN202210416095.XA priority Critical patent/CN114866294B/en
Publication of CN114866294A publication Critical patent/CN114866294A/en
Application granted granted Critical
Publication of CN114866294B publication Critical patent/CN114866294B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0407Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the identity of one or more communicating identities is hidden
    • H04L63/0421Anonymous communication, i.e. the party's identifiers are hidden from the other party or parties, e.g. using an anonymizer
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07BTICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
    • G07B13/00Taximeters
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0435Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply symmetric encryption, i.e. same key used for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/26Special purpose or proprietary protocols or architectures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3247Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/84Vehicles
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computing Systems (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Traffic Control Systems (AREA)

Abstract

本发明公开了一种具有云监管的网约车协议,该协议包括:初始化阶段,监管云构建并发布相关安全参数;注册阶段,用于司机、乘客以及服务提供商完成进入系统前的身份验证;路网嵌入阶段,服务商在该阶段对路网进行初始化设置;匹配阶段,在该阶段实现司机与乘客的隐私保护性匹配;收费阶段,乘客为自己所使用的服务付费。本发明利用Paillier同态加密以及路网嵌入算法实现了具有云监管的网约车匹配,协议中的服务提供商能在不获取司机和乘客信息的前提下完成匹配计算,从而有效保护了司机和乘客的隐私安全。

The invention discloses an online car-hailing protocol with cloud supervision. The protocol includes: an initialization stage, where the supervision cloud builds and releases relevant security parameters; and a registration stage, where drivers, passengers and service providers complete identity verification before entering the system. ; The road network embedding stage, where the service provider initializes the road network; the matching stage, where the privacy-protective matching of drivers and passengers is achieved; the charging stage, where passengers pay for the services they use. The present invention uses Paillier homomorphic encryption and road network embedding algorithm to realize online car-hailing matching with cloud supervision. The service provider in the agreement can complete the matching calculation without obtaining the information of the driver and passengers, thereby effectively protecting the driver and passengers. Passenger privacy and security.

Description

云监管的网约车通信方法Cloud-supervised online ride-hailing communication method

技术领域Technical field

本发明涉及智能交通领域,具体涉及一种具有云监管的网约车协议。The invention relates to the field of intelligent transportation, and in particular to an online car-hailing protocol with cloud supervision.

背景技术Background technique

网约车作为一种新兴的出行方式,它的应用为人们的工作和生活提供了便利。然而,在目前众多的网约车应用中,服务提供商掌握了用户的大量信息,其中包括司机和乘客的身份信息以及乘客的出行路线信息等,这对用户的隐私安全造成了巨大的威胁。因此,需要设计一个具有监管方云监管的网约车协议,让信息存储与匹配计算分离,由可信任的监管方保存用户的身份信息,服务提供商只负责匹配计算。此外,还需要增强司机和乘客匹配过程中的隐私性,保护乘客的出行数据。As an emerging mode of travel, online car-hailing applications provide convenience for people's work and life. However, in the current numerous online ride-hailing applications, service providers have mastered a large amount of user information, including the identity information of drivers and passengers as well as passengers’ travel route information, etc., which poses a huge threat to users’ privacy and security. Therefore, it is necessary to design an online ride-hailing protocol with cloud supervision by the supervisor, so that information storage and matching calculation are separated. The trusted supervisor saves the user's identity information, and the service provider is only responsible for the matching calculation. In addition, it is also necessary to enhance the privacy during the matching process of drivers and passengers and protect passengers’ travel data.

发明内容Contents of the invention

本发明的目的在于提供一种具有云监管的网约车协议,在满足人们出行需求的同时,保护司机和乘客的身份信息以及乘客的出行数据,实现对司机和乘客的隐私保护。The purpose of the present invention is to provide an online ride-hailing protocol with cloud supervision, which while meeting people's travel needs, protects the identity information of drivers and passengers as well as the passengers' travel data, and achieves privacy protection for drivers and passengers.

在本发明设计的系统中,系统的安全性以及用户的信息存储由监管云负责,司机与乘客的匹配计算由服务提供商来承担。In the system designed by the present invention, the supervision cloud is responsible for the security of the system and the storage of user information, and the matching calculation of drivers and passengers is undertaken by the service provider.

在监管云完成系统初始化设置后,服务提供商、司机和乘客需要在监管云处使用真实身份注册,从而获取到公私钥对,此外监管云还将与乘客协商一个对称密钥,用于加密通信内容,之后,由服务提供商进行路网嵌入设置。在匹配的前期,司机需要周期性地查询自己的位置坐标,并计算自己的高维距离向量,然后将计算的向量加密并连同自己所在的区域信息发送给服务提供商,服务提供商保存这些信息。After the supervision cloud completes the system initialization settings, service providers, drivers and passengers need to register with their real identities at the supervision cloud to obtain a public and private key pair. In addition, the supervision cloud will also negotiate a symmetric key with passengers for encrypted communication. content, after which the road network embedding settings are performed by the service provider. In the early stage of matching, the driver needs to periodically query his position coordinates and calculate his own high-dimensional distance vector, then encrypt the calculated vector and send it to the service provider together with his area information, and the service provider saves this information. .

当乘客需要乘车时,首先需要根据自己的上下车地点计算并加密高维距离向量,并将所处的区域信息一起发送给服务提供商。服务提供商收到乘客的请求后,根据区域匹配出车辆,再将每个司机的高维距离向量与乘客上车地点的高维距离向量进行同态计算,计算完成后将结果发送给监管云解密。监管云从解密结果中获取到合适的车辆,并将信息通过服务提供商返回给乘客进行确认,乘客确认后,返回选择的车辆,以及使用与司机协商的密钥加密的上下车地点。服务提供商根据确认信息将加密的上下车地点发送给对应司机,司机解密出乘客的上下车地点并以此计算高维距离向量,等乘客上车后,司机将计算的高维距离向量与乘客告知的验证码发送给服务提供商,服务提供商进行同态计算后再将结果发送给监管云,由监管云验证并对乘客进行收费,至此网约车的服务流程完成。When passengers need to take a ride, they first need to calculate and encrypt a high-dimensional distance vector based on their pick-up and drop-off locations, and send the area information together to the service provider. After receiving the passenger's request, the service provider matches the vehicle according to the area, and then conducts homomorphic calculations between each driver's high-dimensional distance vector and the high-dimensional distance vector of the passenger's boarding location. After the calculation is completed, the result is sent to the supervision cloud. Decrypt. The regulatory cloud obtains the appropriate vehicle from the decryption result and returns the information to the passenger through the service provider for confirmation. After the passenger confirms, the selected vehicle is returned, along with the pick-up and drop-off location encrypted using a key negotiated with the driver. The service provider sends the encrypted pick-up and drop-off location to the corresponding driver based on the confirmation information. The driver decrypts the passenger's pick-up and drop-off location and calculates a high-dimensional distance vector based on it. After the passenger gets on the bus, the driver will compare the calculated high-dimensional distance vector with the passenger. The notified verification code is sent to the service provider. The service provider performs homomorphic calculation and then sends the result to the supervision cloud. The supervision cloud verifies and charges the passenger. At this point, the online ride-hailing service process is completed.

本发明目的的实现在于协议中提供了一个创造性的收费阶段,所述收费阶段包括以下步骤:The purpose of the present invention is achieved by providing a creative charging phase in the agreement, which charging phase includes the following steps:

(1)监管云运行解密并解包出结果,然后根据/>选择合适的司机;(1) Supervise cloud operation Decrypt and unpack the result, and then according to /> Choose the right driver;

(2)监管云根据假名获取选择的司机的相应信息,然后为乘客选择一个验证码code,并使用与乘客协商的密钥加密这些信息,[infod,code]sym=Esym((infod,code),kr),然后将{AIDd,AIDr,[infod,code]sym}发送给服务提供商,再由服务提供商将{AIDd,Ad,[infod,code]sym}发送给乘客客户端进行确认;(2) The supervision cloud obtains the corresponding information of the selected driver based on the pseudonym, then selects a verification code for the passenger, and encrypts the information using the key negotiated with the passenger, [info d , code] sym = E sym ((info d ,code),k r ), then {AID d ,AID r ,[info d ,code] sym } is sent to the service provider, and then the service provider sends {AID d ,A d ,[info d ,code] sym } is sent to the passenger client for confirmation;

(3)乘客客户端通过运行Dsym([infod,code]sym,kr)为乘客解密出信息后,如果乘客确认乘坐,乘客客户端则根据乘客的行程进行估价,并对其上下车信息和估算价格分别进行加密,[lr]sym=Esym((lr),H4(brAd))(其中由乘客客户端随机生成,之后再计算Br=brP),Epa(costr,pkpa),最后乘客客户端对m'r={AIDr,AIDd,[lr]sym,[costr],Br}进行签名,发送{m'rr',t'r}给服务提供商;(3) After the passenger client decrypts the information for the passenger by running D sym ([info d ,code] sym ,k r ), if the passenger confirms the ride, the passenger client will evaluate the passenger's itinerary and get on and off the passenger. The information and estimated price are encrypted separately, [l r ] sym =E sym ((l r ),H 4 (b r A d )) (where Randomly generated by the passenger client, and then calculated B r = b r P), E pa (cost r ,pk pa ), and finally the passenger client pair m' r = {AID r ,AID d ,[l r ] sym , [cost r ],B r } to sign and send {m' rr ',t' r } to the service provider;

(4)服务提供商保存[costr],将{[lr]sym,Br}发送给AIDd对应的司机客户端,司机客户端运行(lr)=Dsym([lr]sym,adBr)为司机解密出乘客的上下车信息,然后分别计算出乘客上下车位置的加密高维距离向量之后司机客户端根据乘客的行程进行估价,并对估算价格进行加密[cost'r]=Epa(cost'r,pkpa),司机客户端发送/>给服务提供商与/>进行同态计算并交由监管云验证双方上下车地点是否对应以及估价是否超出误差,如果地点错误或估价超出误差,则通知双方取消订单;司机等待乘客上车告知验证码code后,通过司机客户端加密code,[code']=Epa(code',pkpa),并对m'd={AIDd,[code']}进行签名,然后发送消息{m'd,φ'd,t'd}给服务提供商,服务提供商转发送给监管云;(4) The service provider saves [cost r ] and sends {[l r ] sym ,B r } to the driver client corresponding to AID d . The driver client runs (l r )=D sym ([l r ] sym , a d B r ) decrypts the passenger’s boarding and alighting information for the driver, and then calculates the encrypted high-dimensional distance vector of the passenger’s boarding and alighting location respectively. Then the driver client estimates the price based on the passenger's itinerary and encrypts the estimated price [cost' r ]=E pa (cost' r ,pk pa ), and the driver client sends/> To service providers and/> Homomorphic calculations are performed and submitted to the supervision cloud to verify whether the pick-up and drop-off locations of both parties correspond and whether the valuation exceeds the error. If the location is wrong or the valuation exceeds the error, both parties are notified to cancel the order; the driver waits for the passenger to get on the bus and informs the verification code, and then passes the driver customer End-encrypted code, [code']=E pa (code',pk pa ), sign m' d ={AID d ,[code']}, and then send the message {m' d ,φ' d ,t ' d } to the service provider, which forwards it to the supervision cloud;

(5)监管云解密[code'],判断与存储的[code]是否相等。当乘客到达目的地后,司机再次根据当前乘客下车地点的坐标计算加密高维距离向量并发送给服务提供商,与乘客匹配时发送的下车地点坐标加密高维距离向量/>进行同态计算,之后服务提供商将计算结果交由监管云解密并验证,若通过则对乘客进行收费。(5) Supervise cloud decryption [code'] and determine whether it is equal to the stored [code]. When the passenger arrives at the destination, the driver again calculates the encrypted high-dimensional distance vector based on the coordinates of the current passenger's drop-off location. And sent to the service provider, the encrypted high-dimensional distance vector of the drop-off location coordinates sent when matching the passenger/> Homomorphic calculations are performed, and then the service provider submits the calculation results to the regulatory cloud for decryption and verification. If passed, the passenger will be charged.

本发明还提供了一个优选的注册阶段,其步骤如下:The present invention also provides a preferred registration stage, the steps of which are as follows:

(1)服务提供商注册:(1) Service provider registration:

服务提供商将真实身份信息RIDsp发送给监管云,监管云存储信息并运行PartialKeyGen(params,s,RIDi)→(AIDi,Ti,Di)为服务提供商生成假名AIDsp,假名有效期Tsp以及部分公私钥Dsp=(dsp,Rsp);然后监管云通过安全信道将(AIDsp,Tsp,Dsp)发送给服务提供商,服务提供商再运行UserKeyGen(params,Di,AIDi)→(ski,pki)生成完整的公私钥对(pksp,sksp)。The service provider sends the real identity information RID sp to the supervision cloud, the supervision cloud stores the information and runs PartialKeyGen(params,s,RID i )→(AID i ,T i ,D i ) to generate the pseudonym AID sp for the service provider, the pseudonym The validity period T sp and part of the public and private keys D sp = (d sp , R sp ); then the supervision cloud sends (AID sp , T sp , D sp ) to the service provider through a secure channel, and the service provider then runs UserKeyGen(params, D i ,AID i )→(sk i ,pk i ) generates a complete public-private key pair (pk sp ,sk sp ).

(2)司机注册:(2) Driver registration:

司机将真实身份信息以及车辆信息infod发送给监管云,从而获取到监管云为司机生成的假名以及部分公私钥,司机接收到(AIDd,Td,Dd)后生成完整的公私钥对(pkd,skd)。The driver sends the real identity information and vehicle information info d to the supervision cloud, thereby obtaining the pseudonym and part of the public and private keys generated by the supervision cloud for the driver. The driver generates a complete public and private key pair after receiving (AID d , T d , D d ) (pk d ,sk d ).

(3)乘客注册:(3) Passenger registration:

乘客将真实身份信息以及车辆信息infor发送给监管云,从而获取到监管云为乘客生成的假名、部分公私钥以及对称加密密钥kr,监管云将(AIDr,Tr,Dr,kr)发送给乘客,由乘客自己生成完整的公私钥对(pkr,skr)。The passenger sends the real identity information and vehicle information info r to the supervision cloud, thereby obtaining the pseudonym, partial public and private key and symmetric encryption key k r generated by the supervision cloud for the passenger. The supervision cloud will (AID r ,T r ,D r , k r ) is sent to the passenger, and the passenger generates a complete public-private key pair (pk r ,sk r ).

附图说明Description of the drawings

图1是本发明的系统模型示意图;Figure 1 is a schematic diagram of the system model of the present invention;

图2是本发明的系统初始化流程图;Figure 2 is a system initialization flow chart of the present invention;

图3是本发明中的司机与乘客匹配流程图;Figure 3 is a flow chart of driver and passenger matching in the present invention;

图4是本发明中的乘客付费流程图。Figure 4 is a flow chart of passenger payment in the present invention.

具体实施方式Detailed ways

下面对本发明的实施过程作出进一步的详细说明。The implementation process of the present invention will be described in further detail below.

一.功能函数描述:1. Function description:

本节将对系统中用到的功能函数进行描述,这些函数主要分为4个方面:Paillier加密、签名验证(ECC)、路网嵌入以及匹配计算。This section will describe the functional functions used in the system. These functions are mainly divided into four aspects: Paillier encryption, signature verification (ECC), road network embedding and matching calculation.

1.Paillier加密:1.Paillier encryption:

(1)KeyGenpa(1λ)→(pk,sk):(1)KeyGen pa (1 λ )→(pk,sk):

函数描述:输入安全参数,运行函数生成公私钥对。Function description: Enter security parameters and run the function to generate a public-private key pair.

形参描述:Formal parameter description:

1λ 1 λ 安全参数。security parameters.

返回值描述:Return value description:

pkpk 公钥。public key. sksk 私钥。private key.

算法描述:Algorithm Description:

(a)选择两个素数p、q,并计算N=p×q,λ=lcm(p-1,q-1)。(a) Select two prime numbers p and q, and calculate N=p×q, λ=lcm(p-1,q-1).

(b)随机选择满足gcd(L(gλmodN2),N)=1,其中L(x)=(x-1)/N。(b) Random selection It satisfies gcd(L(g λ modN 2 ),N)=1, where L(x)=(x-1)/N.

(c)生成公钥pk=(N,g),私钥sk=λ。(c) Generate public key pk = (N, g) and private key sk = λ.

(2)Epa(m,pk)→c:(2)E pa (m,pk)→c:

函数描述:输入明文和公钥,运行函数返回密文。Function description: Input plaintext and public key, run the function and return ciphertext.

形参描述:Formal parameter description:

mm 消息明文。Message clear text. pkpk slightly

返回值描述:Return value description:

cc 加密后的密文。Encrypted ciphertext.

算法描述:Algorithm Description:

a)假设m∈ZN,随机选择 a) Assume m∈Z N , choose randomly

b)计算出密文 b) Calculate the ciphertext

(3)Dpa(c,sk)→m:(3)D pa (c,sk)→m:

函数描述:Function description:

输入密文和私钥,运行函数返回解密得到的明文。Enter the ciphertext and private key, and run the function to return the decrypted plaintext.

形参描述:Formal parameter description:

cc slightly sksk slightly

返回值描述:Return value description:

mm slightly

算法描述:Algorithm Description:

计算 calculate

2.签名验证(ECC):2. Signature verification (ECC):

(1)MasterKeyGen(1λ)→(params,s):(1)MasterKeyGen(1 λ )→(params,s):

函数描述:Function description:

输入安全参数,运行函数对系统进行安全初始化设置,函数返回公共参数和系统主私钥。Enter the security parameters, run the function to perform secure initialization settings on the system, and the function returns the public parameters and the system master private key.

形参描述:Formal parameter description:

1λ 1 λ 安全参数。security parameters.

返回值描述:Return value description:

(2)PartialKeyGen(params,s,RIDi)→(AIDi,Ti,Di):(2)PartialKeyGen(params,s,RID i )→(AID i ,T i ,D i ):

函数描述:Function description:

输入公共参数、系统主钥以及司机或乘客的真实身份,运行函数返回假名、假名的有效期和部分私钥。Enter the public parameters, the system master key, and the real identity of the driver or passenger, and run the function to return the pseudonym, the validity period of the pseudonym, and a partial private key.

形参描述:Formal parameter description:

paramsparams slightly sthe s slightly RIDi RID i 司机或乘客的真实身份信息。The real identity information of the driver or passenger.

返回值描述:Return value description:

(3)UserKeyGen(params,Di,AIDi)→(ski,pki):(3)UserKeyGen(params,D i ,AID i )→(sk i ,pk i ):

函数描述:Function description:

输入公共参数、部分私钥和假名,运行函数返回完整的公私钥对。Enter the public parameters, partial private key, and pseudonym, and run the function to return the complete public-private key pair.

形参描述:Formal parameter description:

paramsparams slightly Di i slightly AIDi AIDi slightly

返回值描述:Return value description:

(4)Sign(params,ski,mi||ti)→(φi):(4)Sign(params,sk i ,m i ||t i )→(φ i ):

函数描述:Function description:

输入公共参数、私钥、要发送的消息和时间戳,然后运行函数返回对消息的签名。Enter the public parameters, private key, message to send, and timestamp, then run the function to return a signature for the message.

形参描述:Formal parameter description:

paramsparams slightly ski i slightly mi||ti m i ||t i 需要发送的消息以及时间戳。The message that needs to be sent and the timestamp.

返回值描述:Return value description:

φi φ i 对消息的签名。φi=(Yi,wi)。Signature of the message. φ i =(Y i ,wi ) .

算法描述:Algorithm Description:

(a)随机选择并计算Yi=yiP。(a) Random selection And calculate Y i =y i P.

(b)计算ui=H2(mi,AIDi,pki,ti,Yi)和h3i=H3(mi,AIDi,pki,ti)。(b) Calculate u i =H 2 (m i ,AID i ,pk i ,t i ,Y i ) and h 3i =H 3 (mi ,AID i ,pk i , t i ).

(c)然后计算wi=[uiyi+h3i(xi+di)]modq。(c) Then calculate w i =[u i y i +h 3i ( xi +d i )]modq.

(d)最后输出φi=(Yi,wi)作为对消息和时间戳的签名。(d) Finally output φ i =(Y i ,wi ) as the signature of the message and timestamp.

(5)Verify(φi,mi||ti,pki,AIDi)→(true or false):(5)Verify(φ i ,m i ||t i ,pk i ,AID i )→(true or false):

函数描述:Function description:

输入接收的消息,运行函数验证签名的合法性。Enter the received message and run the function to verify the validity of the signature.

形参描述:Formal parameter description:

φi φi slightly mi||ti m i ||t i slightly pki i slightly AIDi AIDi slightly

返回值描述:Return value description:

算法描述:Algorithm Description:

(a)计算h1i=H1(AIDi,Ri,Ppub)、ui=H2(mi,AIDi,pki,ti,Yi)以及h3i=H3(mi,AIDi,pki,ti)。(a) Calculate h 1i =H 1 (AID i ,R i ,P pub ), u i =H 2 ( mi ,AID i ,pk i ,t i ,Y i ) and h 3i =H 3 (m i ,AID i ,pk i ,t i ).

(b)判断wiP-uiYi=h3i(Xi+Ri+h1iPpub)是否成立。(b) Determine whether w i Pu i Y i =h 3i (X i +R i +h 1i P pub ) is established.

3.路网嵌入:3. Road network embedding:

(1)GenDimensionalSet(n,V,E)→(R):(1)GenDimensionalSet(n,V,E)→(R):

函数描述:Function description:

输入路口和路端集合V,V的大小n以及路段集合E,运行函数返回高维嵌入网络空间。Input the intersection and road end set V, the size of V n and the road segment set E, and run the function to return the high-dimensional embedding network space.

形参描述:Formal parameter description:

nno 集合V的大小。The size of the set V. VV 路口以及路段的集合。A collection of intersections and road segments. EE 连接V中两个路口(端)的路段集合。A collection of road segments connecting two intersections (ends) in V.

返回值描述:Return value description:

(2)GenEembedRoadNet(V,R)→(S):(2)GenEembedRoadNet(V,R)→(S):

函数描述:Function description:

输入路口(端)集合以及高维嵌入网络空间,运行函数返回集合V中每个路口(端)的高维距离向量。Input the intersection (end) set and the high-dimensional embedding network space, and run the function to return the high-dimensional distance vector of each intersection (end) in the set V.

形参描述:Formal parameter description:

VV slightly RR slightly

返回值描述:Return value description:

SS 集合V中每个路口(端)的高维距离向量。The high-dimensional distance vector of each intersection (end) in the set V.

算法描述:Algorithm Description:

(a)对于v∈V,Vi,j∈R,v到Vi,j的最短距离定义为 (a) For v∈V, V i,j ∈R, the shortest distance from v to V i,j is defined as

(b)sv∈S,sv=<distR(v,V1,1),...,distR(v,Vi,j),...,distR(v,Vα,β)>,S={sv|v∈V}。(b)s v ∈S, s v =<dist R (v,V 1,1 ),...,dist R (v,V i,j ),...,dist R (v,V α, β )>, S={s v |v∈V}.

4.匹配计算:4. Match calculation:

(1)GenEncryptedsl(l,S,pk)→([sl]):(1)GenEncryptedsl(l,S,pk)→([s l ]):

形参描述:Formal parameter description:

ll 位置坐标。Position coordinates. SS slightly pkpk 用于加密的公钥。The public key used for encryption.

返回值描述:Return value description:

[sl][s l ] 加密的slEncrypted s l .

算法描述:Algorithm Description:

(a)输入一个位置坐标l,如果l∈V,则sl=sv(l=v);如果l属于路段(vs,vd)∈E上的一个点,则计算sl(a) Enter a position coordinate l. If l∈V, then s l =s v (l=v); if If l belongs to a point on the road segment (v s , v d )∈E, then calculate s l .

sl=<...,distR(l,Vi,j)=min{distR(l,vs)+distR(vs,Vi,j),distR(l,vd)s l =<...,dist R (l,V i,j )=min{dist R (l,v s )+dist R (v s ,V i,j ),dist R (l,v d )

+distR(vd,Vi,j)},...>。+dist R (v d ,V i,j )},...>.

(b)加密sl为[sl],[sl]=Epa(distR(l,Vi,j),pk)。(b) Encrypt s l as [s l ], [s l ] = E pa (dist R (l, V i, j ), pk).

(2) (2)

函数描述:Function description:

输入多个司机和一个乘客的加密sl,以及距离值占用的比特位数,函数将根据Paillier加密系统的同态性计算并返回每位司机和乘客之间的距离向量集。Inputting the encryption s l of multiple drivers and a passenger, and the number of bits occupied by the distance value, the function will calculate and return a set of distance vectors between each driver and passenger based on the homomorphism of the Paillier encryption system.

形参描述:Formal parameter description:

返回值描述:Return value description:

算法描述:Algorithm Description:

其中2μ使得距离计算值为正数。 where 2 μ makes the distance calculation value positive.

(3) (3)

函数描述:Function description:

输入距离向量集,系统参数N的比特长度以及距离值占用的比特位数,运行函数返回打包的密文。Input the distance vector set, the bit length of the system parameter N and the number of bits occupied by the distance value, and run the function to return the packed ciphertext.

形参描述:Formal parameter description:

返回值描述:Return value description:

算法描述:Algorithm Description:

(a)计算一个插槽能打包的密文数ρ=NBitLen/μ。(a) Calculate the number of ciphertexts that can be packed in a slot ρ = NBitLen/μ.

(b)从中选择τ(0≤τ≤ρ)个密文并用如下方法打包:(b)from Select τ (0≤τ≤ρ) ciphertexts and package them as follows:

(c)函数最终输出打包结果 (c) The function finally outputs the packaged result

(4) (4)

函数描述:Function description:

输入打包的密文集和一个插槽中打包的密文数,运行函数返回解包后距离值的明文。Inputting a packed ciphertext set and the number of packed ciphertexts in a slot, running the function returns the plaintext of the unpacked distance value.

形参描述:Formal parameter description:

返回值描述:Return value description:

算法描述:Algorithm Description:

(a)解密获取打包的距离值。(a) Decryption Get the packed distance value.

(b)根据对距离值进行解包,获取/> (b)Based on Unpack the distance value and obtain/>

二.详细流程描述:2. Detailed process description:

本节将对云监管的网约车协议做介绍,依据协议的执行顺序,介绍分为五个阶段进行:(1)初始化阶段(Setup Phase);(3)注册阶段(Registration Phase);(3)路网嵌入阶段(Road Network Embedding Phase);(4)匹配阶段(Ride Matching Phase);(5)收费阶段(Charge Phase)。This section will introduce the cloud-supervised ride-hailing protocol. According to the execution sequence of the protocol, the introduction is divided into five phases: (1) Initialization Phase (Setup Phase); (3) Registration Phase (Registration Phase); (3) ) Road Network Embedding Phase; (4) Ride Matching Phase; (5) Charge Phase.

(1)初始化阶段:(1)Initialization phase:

监管云运行MasterKeyGen(1λ)→(params,s)生成公共参数params以及系统公私钥对(pkpa,skpa);然后监管云选择一个对称加密算法,并用Esym(m,k)→(c),Dsym(c,k)→(m)分别表示对称加解密过程。The supervision cloud runs MasterKeyGen(1 λ )→(params,s) to generate public parameter params and system public and private key pairs (pk pa ,sk pa ); then the supervision cloud selects a symmetric encryption algorithm and uses E sym (m,k)→( c), D sym (c,k)→(m) respectively represent the symmetric encryption and decryption process.

(2)注册阶段:(2) Registration stage:

(a)服务提供商注册:(a) Service provider registration:

服务提供商将真实身份信息RIDsp发送给监管云,监管云存储信息并运行PartialKeyGen(params,s,RIDi)→(AIDi,Ti,Di)为服务提供商生成假名AIDsp,假名有效期Tsp以及部分公私钥Dsp=(dsp,Rsp)。然后监管云通过安全信道将(AIDsp,Tsp,Dsp)发送给服务提供商,服务提供商再运行UserKeyGen(params,Di,AIDi)→(ski,pki)生成完整的公私钥对(pksp,sksp)。The service provider sends the real identity information RID sp to the supervision cloud, the supervision cloud stores the information and runs PartialKeyGen(params,s,RID i )→(AID i ,T i ,D i ) to generate the pseudonym AID sp for the service provider, the pseudonym Validity period T sp and partial public and private keys D sp = (d sp , R sp ). Then the supervision cloud sends (AID sp , T sp , D sp ) to the service provider through a secure channel, and the service provider then runs UserKeyGen (params, D i , AID i ) → (sk i , pk i ) to generate a complete public and private Key pair (pk sp ,sk sp ).

(b)司机注册:(b) Driver registration:

司机将真实身份信息以及车辆信息infod发送给监管云,从而获取到监管云为司机生成的假名以及部分公私钥,司机接收到(AIDd,Td,Dd)后生成完整的公私钥对(pkd,skd)。The driver sends the real identity information and vehicle information info d to the supervision cloud, thereby obtaining the pseudonym and part of the public and private keys generated by the supervision cloud for the driver. The driver generates a complete public and private key pair after receiving (AID d , T d , D d ) (pk d ,sk d ).

(c)乘客注册:(c) Passenger registration:

乘客将真实身份信息以及车辆信息infor发送给监管云,从而获取到监管云为乘客生成的假名、部分公私钥以及对称加密密钥kr,监管云将(AIDr,Tr,Dr,kr)发送给乘客,由乘客自己生成完整的公私钥对(pkr,skr)。The passenger sends the real identity information and vehicle information info r to the supervision cloud, thereby obtaining the pseudonym, partial public and private key and symmetric encryption key k r generated by the supervision cloud for the passenger. The supervision cloud will (AID r ,T r ,D r , k r ) is sent to the passenger, and the passenger generates a complete public-private key pair (pk r ,sk r ).

(3)路网嵌入阶段:(3) Road network embedding stage:

服务提供商通过运行GenDimensionalSet(n,V,E)→(R)和GenEembedRoadNet(V,R)→(S)将道路网络(V,E)转换为关于V的距离向量集S={sv|v∈V};之后服务提供商再将道路网络(V,E)划分成不同的区域集G={zi}1≤i≤n,并公布(S,G)。The service provider converts the road network (V, E) into a distance vector set S = {s v | v∈V}; then the service provider divides the road network (V, E) into different area sets G={z i } 1≤i≤n , and publishes (S, G).

(4)匹配阶段:(4) Matching stage:

(a)等待匹配的司机首先获取自己的位置坐标ldriver,运行GenEncryptedsl(l,S,pk)→([sl])获取自己坐标的加密高维距离向量(使用pkpa进行加密),然后再选择自己目前所在的区域zd∈G,最后司机随机选择/>计算Ad=adP。司机周期性地进行上述操作,并构建消息/>生成时间戳td,运行Sign(params,ski,mi||ti)→(φi)对其进行签名,最后发送{mdd,td}给服务提供商。(a) The driver waiting for matching first obtains his own position coordinate l driver , and runs GenEncryptedsl(l,S,pk)→([s l ]) to obtain the encrypted high-dimensional distance vector of his own coordinates (Use pk pa for encryption), and then select the area z d ∈ G where you are currently located, and finally the driver randomly selects/> Calculate A d = ad P. The driver does the above periodically and builds the message/> Generate timestamp t d , run Sign(params,sk i ,m i ||t i )→(φ i ) to sign it, and finally send {m dd ,t d } to the service provider.

(b)服务提供商通过运行Verify(φi,mi||ti,pki,AIDi)→(true or false)对司机发送的信息进行验证,如果消息正确,则存储更新md(b) The service provider verifies the information sent by the driver by running Verify(φ i ,m i ||t i ,pk i ,AID i )→(true or false), and if the message is correct, the updated m d is stored.

(c)乘客需要乘车时,首先选择自己的上下车位置lr=(lr_up,lr_down),运行GenEncryptedsl(l,S,pk)→([sl])分别计算上下车位置的加密高维距离向量然后乘客选择目前所处的区域zr∈G,并构建消息/>生成时间戳tr,运行Sign(params,ski,mi||ti)→(φi)生成签名,最后向服务提供商发送乘车匹配请求{mrr,tr}。(c) When passengers need to take a bus, they first select their boarding and alighting locations l r = (l r_up ,l r_down ), and run GenEncryptedsl(l,S,pk)→([s l ]) to calculate the encryption of the boarding and alighting locations respectively. High dimensional distance vector Then the passenger selects the current area z r ∈G and constructs the message/> Generate a timestamp t r , run Sign(params,sk i ,m i ||t i )→(φ i ) to generate a signature, and finally send a ride matching request {m rr ,t r } to the service provider.

(d)服务提供商检查乘客发送请求签名的合法性,如果通过,则根据zr(zr=zd)从数据库中提取出相应司机发送的并获取距离值所占的比特位数μ,运行输入乘客上车位置和司机们的加密距离向量同态计算该区域每位司机与乘客的距离向量/>最后服务提供商存储mr,并运行/>和Verify(φi,mi||ti,pki,AIDi)→(true or false)对/>进行打包签名,然后将/>发送给监管云。(d) The service provider checks the legality of the request signature sent by the passenger. If it passes, it extracts the signature sent by the corresponding driver from the database according to z r (z r = z d ). And get the number of bits μ occupied by the distance value, run Enter the encrypted distance vectors of passengers’ boarding locations and drivers Homomorphically calculate the distance vector between each driver and passenger in the area/> Finally, the service provider stores m r and runs/> and Verify(φ i ,m i ||t i ,pk i ,AID i )→(true or false) pair/> Sign the package and then //> Send to regulatory cloud.

(5)收费阶段:(5)Charging stage:

(a)监管云运行解密并解包出结果,然后根据/>选择合适的司机。(a) Supervise cloud operations Decrypt and unpack the result, and then according to /> Choose the right driver.

(b)监管云根据假名获取选择的司机的相应信息,然后为乘客选择一个验证码code,并使用与乘客协商的密钥加密这些信息,[infod,code]sym=Esym((infod,code),kr),然后将{AIDd,[infod,code]sym}发送给服务提供商,再由服务提供商将{AIDd,Ad,[infod,code]sym}发送给乘客进行确认。(b) The supervision cloud obtains the corresponding information of the selected driver based on the pseudonym, then selects a verification code for the passenger, and encrypts the information using the key negotiated with the passenger, [info d , code] sym = E sym ((info d ,code),k r ), then {AID d ,[info d ,code] sym } is sent to the service provider, and then the service provider sends {AID d ,A d ,[info d ,code] sym } Check with passengers.

(c)乘客通过Dsym([infod,code]sym,kr)解密出信息后,如果确认乘坐,则对自己的行程进行估价,并对自己的上下车信息和估算价格进行加密,[lr]sym=Esym((lr),H4(brAd))(其中由乘客随机选取,乘客再计算Br=brP),Epa(costr,pkpa),并对m'r={AIDr,AIDd,[lr]sym,[costr]}进行签名,然后发送{m'rr',t'r}给服务提供商。(c) After the passenger decrypts the information through D sym ([info d ,code] sym ,k r ), if the ride is confirmed, the passenger will estimate his/her trip and encrypt his/her boarding and alighting information and estimated price, [ l r ] sym =E sym ((l r ),H 4 (b r A d ))(where Randomly selected by passengers, passengers then calculate B r = b r P), E pa (cost r ,pk pa ), and calculate m' r = {AID r ,AID d ,[l r ] sym ,[cost r ]} Sign and then send {m' rr ',t' r } to the service provider.

(d)服务提供商将{[lr]sym,Br}发送给司机,司机解密出信息(lr)=Dsym([lr]sym,adBr),估算价格并加密Epa(costd,pkpa),然后分别计算出乘客上下车位置的加密高维距离向量发送/>给服务提供商与/>进行同态计算并交由监管云验证双方上下车地点是否对应以及估价是否超出误差,如果地点错误或估价超出误差,则通知双方取消订单。等待乘客上车告知验证码后,司机对m'd={AIDd,[code]}([code]=Epa(code,pkpa))进行签名,并发送消息{m'd,φ'd,t'd}给服务提供商,再由服务提供商发送给监管云。监管云解密[code],判断与存储的code是否相等,当乘客到达目的地后,司机再次根据坐标计算距离向量,发送给服务提供商进行同态计算若匹配并交由监管云验证,若通过则对乘客进行收费。(d) The service provider sends {[l r ] sym , B r } to the driver, and the driver decrypts the information (l r ) = D sym ([l r ] sym , a d B r ), estimates the price and encrypts E pa (cost d ,pk pa ), and then calculate the encrypted high-dimensional distance vector of the passenger's boarding and alighting location respectively. Send/> To service providers and/> Homomorphic calculations are performed and submitted to the supervision cloud to verify whether the pick-up and drop-off locations of both parties correspond and whether the valuation exceeds the error. If the location is wrong or the valuation exceeds the error, both parties will be notified to cancel the order. After waiting for the passenger to get on the bus and inform the verification code, the driver signs m' d = {AID d ,[code]} ([code] = E pa (code, pk pa )) and sends the message {m' d ,φ' d ,t' d } to the service provider, and then the service provider sends it to the supervision cloud. The supervision cloud decrypts [code] and determines whether it is equal to the stored code. When the passenger arrives at the destination, the driver calculates the distance vector again based on the coordinates and sends it to the service provider for homomorphic calculation. If it matches, it is submitted to the supervision cloud for verification. If it passes Passengers will be charged.

本发明的技术特点和有益效果:Technical features and beneficial effects of the present invention:

本发明利用了Paillier加密算法的加法同态性,使服务提供商在进行匹配计算时不能获知计算的内容,从而有效保护了司机和乘客的隐私安全。此外,协议还利用了路网嵌入技术将道路网络转换为高维空间,处于该网络中的两点的最短距离计算可以转换为现有加密原语支持的简单计算。The invention utilizes the additive homomorphism of the Paillier encryption algorithm so that the service provider cannot know the content of the calculation when performing matching calculations, thereby effectively protecting the privacy and security of drivers and passengers. In addition, the protocol also uses road network embedding technology to convert the road network into a high-dimensional space. The calculation of the shortest distance between two points in the network can be converted into simple calculations supported by existing encryption primitives.

Claims (1)

1.一种云监管的网约车通信方法,包括监管云、服务提供商、客户端和网约车协议,其特征在于,所述网约车协议中的收费阶段包括以下步骤:1. A cloud-supervised online car-hailing communication method, including a supervision cloud, a service provider, a client and an online car-hailing agreement, characterized in that the charging phase in the online car-hailing agreement includes the following steps: (1)监管云运行DeAndUnpacking({[sldistance]packing},sk,τ)→({sldistance})解密并解包出结果,然后根据选择合适的司机;(1) The supervision cloud runs DeAndUnpacking({[s ldistance ] packing },sk,τ)→({s ldistance }) to decrypt and unpack the result, and then according to Choose the right driver; (2)监管云根据假名获取选择的司机的相应信息,然后为乘客选择一个验证码code,并使用与乘客协商的密钥加密这些信息,[infod,code]sym=Esym((infod,code),kr),然后将{AIDd,AIDr,[infod,code]sym}发送给服务提供商,再由服务提供商将{AIDd,Ad,[infod,code]sym}发送给乘客客户端进行确认;(2) The supervision cloud obtains the corresponding information of the selected driver based on the pseudonym, then selects a verification code for the passenger, and encrypts the information using the key negotiated with the passenger, [info d , code] sym = E sym ((info d ,code),k r ), then {AID d ,AID r ,[info d ,code] sym } is sent to the service provider, and then the service provider sends {AID d ,A d ,[info d ,code] sym } is sent to the passenger client for confirmation; (3)乘客客户端通过运行Dsym([infod,code]sym,kr)为乘客解密出信息后,如果乘客确认乘坐,乘客客户端则根据乘客的行程进行估价,并对其上下车信息和估算价格分别进行加密,[lr]sym=Esym((lr),H4(brAd))(其中由乘客客户端随机生成,之后再计算Br=brP),Epa(costr,pkpa),最后乘客客户端对m'r={AIDr,AIDd,[lr]sym,[costr],Br}进行签名,发送{m'r,φ'r,t'r}给服务提供商;(3) After the passenger client decrypts the information for the passenger by running D sym ([info d ,code] sym ,k r ), if the passenger confirms the ride, the passenger client will evaluate the passenger's itinerary and get on and off the passenger. The information and estimated price are encrypted separately, [l r ] sym =E sym ((l r ),H 4 (b r A d )) (where Randomly generated by the passenger client, and then calculated B r = b r P), E pa (cost r ,pk pa ), and finally the passenger client pair m' r = {AID r ,AID d ,[l r ] sym , [cost r ],B r } to sign and send {m' r ,φ' r ,t' r } to the service provider; (4)服务提供商保存[costr],将{[lr]sym,Br}发送给AIDd对应的司机客户端,司机客户端运行(lr)=Dsym([lr]sym,adBr)为司机解密出乘客的上下车信息,然后分别计算出乘客上下车位置的加密高维距离向量之后司机客户端根据乘客的行程进行估价,并对估算价格进行加密[cost'r]=Epa(cost'r,pkpa),司机客户端发送/>给服务提供商与/>进行同态计算并交由监管云验证双方上下车地点是否对应以及估价是否超出误差,如果地点错误或估价超出误差,则通知双方取消订单;司机等待乘客上车告知验证码code后,通过司机客户端加密code,[code']=Epa(code',pkpa),并对m'd={AIDd,[code']}进行签名,然后发送消息{m'd,φ'd,t'd}给服务提供商,服务提供商转发送给监管云;(4) The service provider saves [cost r ] and sends {[l r ] sym ,B r } to the driver client corresponding to AID d . The driver client runs (l r )=D sym ([l r ] sym , a d B r ) decrypts the passenger’s boarding and alighting information for the driver, and then calculates the encrypted high-dimensional distance vector of the passenger’s boarding and alighting location respectively. Then the driver client estimates the price based on the passenger's itinerary and encrypts the estimated price [cost' r ]=E pa (cost' r ,pk pa ), and the driver client sends/> To service providers and/> Homomorphic calculations are performed and submitted to the supervision cloud to verify whether the pick-up and drop-off locations of both parties correspond and whether the valuation exceeds the error. If the location is wrong or the valuation exceeds the error, both parties are notified to cancel the order; the driver waits for the passenger to get on the bus and informs the verification code, and then passes the driver customer End-encrypted code, [code']=E pa (code',pk pa ), sign m' d ={AID d ,[code']}, and then send the message {m' d ,φ' d ,t ' d } to the service provider, which forwards it to the supervision cloud; (5)监管云解密[code'],判断与存储的[code]是否相等;当乘客到达目的地后,司机再次根据当前乘客下车地点的坐标计算加密高维距离向量并发送给服务提供商,与乘客匹配时发送的下车地点坐标加密高维距离向量/>进行同态计算,之后服务提供商将计算结果交由监管云解密并验证,若通过则对乘客进行收费;(5) The supervision cloud decrypts [code'] and determines whether it is equal to the stored [code]; when the passenger arrives at the destination, the driver again calculates the encrypted high-dimensional distance vector based on the coordinates of the current passenger's drop-off location. And sent to the service provider, the encrypted high-dimensional distance vector of the drop-off location coordinates sent when matching the passenger/> Perform homomorphic calculations, and then the service provider will submit the calculation results to the regulatory cloud for decryption and verification. If passed, the passenger will be charged; 所述网约车协议中的注册阶段包括以下步骤:The registration phase in the online ride-hailing agreement includes the following steps: (1)服务提供商注册:(1) Service provider registration: 服务提供商将真实身份信息RIDsp发送给监管云,监管云存储信息并运行PartialKeyGen(params,s,RIDi)→(AIDi,Ti,Di)为服务提供商生成假名AIDsp,假名有效期Tsp以及部分公私钥Dsp=(dsp,Rsp);然后监管云通过安全信道将(AIDsp,Tsp,Dsp)发送给服务提供商,服务提供商再运行UserKeyGen(params,Di,AIDi)→(ski,pki)生成完整的公私钥对(pksp,sksp);The service provider sends the real identity information RID sp to the supervision cloud, the supervision cloud stores the information and runs PartialKeyGen(params,s,RID i )→(AID i ,T i ,D i ) to generate the pseudonym AID sp for the service provider, the pseudonym The validity period T sp and part of the public and private keys D sp = (d sp , R sp ); then the supervision cloud sends (AID sp , T sp , D sp ) to the service provider through a secure channel, and the service provider then runs UserKeyGen(params, D i ,AID i )→(sk i ,pk i ) generate a complete public-private key pair (pk sp ,sk sp ); (2)司机注册:(2) Driver registration: 司机将真实身份信息以及车辆信息infod发送给监管云,从而获取到监管云为司机生成的假名以及部分公私钥,司机接收到(AIDd,Td,Dd)后生成完整的公私钥对(pkd,skd);The driver sends the real identity information and vehicle information info d to the supervision cloud, thereby obtaining the pseudonym and part of the public and private keys generated by the supervision cloud for the driver. The driver generates a complete public and private key pair after receiving (AID d , T d , D d ) (pk d ,sk d ); (3)乘客注册:(3) Passenger registration: 乘客将真实身份信息以及车辆信息infor发送给监管云,从而获取到监管云为乘客生成的假名、部分公私钥以及对称加密密钥kr,监管云将(AIDr,Tr,Dr,kr)发送给乘客,由乘客自己生成完整的公私钥对(pkr,skr)。The passenger sends the real identity information and vehicle information info r to the supervision cloud, thereby obtaining the pseudonym, partial public and private key and symmetric encryption key k r generated by the supervision cloud for the passenger. The supervision cloud will (AID r ,T r ,D r , k r ) is sent to the passenger, and the passenger generates a complete public-private key pair (pk r ,sk r ).
CN202210416095.XA 2022-04-20 2022-04-20 Cloud-supervised online ride-hailing communication method Active CN114866294B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210416095.XA CN114866294B (en) 2022-04-20 2022-04-20 Cloud-supervised online ride-hailing communication method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210416095.XA CN114866294B (en) 2022-04-20 2022-04-20 Cloud-supervised online ride-hailing communication method

Publications (2)

Publication Number Publication Date
CN114866294A CN114866294A (en) 2022-08-05
CN114866294B true CN114866294B (en) 2023-09-08

Family

ID=82632132

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210416095.XA Active CN114866294B (en) 2022-04-20 2022-04-20 Cloud-supervised online ride-hailing communication method

Country Status (1)

Country Link
CN (1) CN114866294B (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN115550910B (en) * 2022-10-04 2024-03-15 北京师范大学 An online taxi-hailing method that protects users’ geographical location privacy
CN118803743B (en) * 2024-09-12 2024-12-13 暨南大学 Privacy protection network vehicle-booking service method based on secure multiparty calculation

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9697503B1 (en) * 2011-04-22 2017-07-04 Angel A. Penilla Methods and systems for providing recommendations to vehicle users to handle alerts associated with the vehicle and a bidding market place for handling alerts/service of the vehicle
CN109345438A (en) * 2018-10-11 2019-02-15 北京理工大学 A privacy-protected alliance taxi-hailing method and system
CN113273146A (en) * 2018-07-10 2021-08-17 力士塔有限公司 Decentralized network security privacy network for cloud communication, computing and global e-commerce

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9818088B2 (en) * 2011-04-22 2017-11-14 Emerging Automotive, Llc Vehicles and cloud systems for providing recommendations to vehicle users to handle alerts associated with the vehicle

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9697503B1 (en) * 2011-04-22 2017-07-04 Angel A. Penilla Methods and systems for providing recommendations to vehicle users to handle alerts associated with the vehicle and a bidding market place for handling alerts/service of the vehicle
CN113273146A (en) * 2018-07-10 2021-08-17 力士塔有限公司 Decentralized network security privacy network for cloud communication, computing and global e-commerce
CN109345438A (en) * 2018-10-11 2019-02-15 北京理工大学 A privacy-protected alliance taxi-hailing method and system

Also Published As

Publication number Publication date
CN114866294A (en) 2022-08-05

Similar Documents

Publication Publication Date Title
CN109347878B (en) Decentralized data verification and data security transaction system and method
Basudan et al. A privacy-preserving vehicular crowdsensing-based road surface condition monitoring system using fog computing
CN106452762B (en) An efficient identity-based data transmission method in vehicular ad hoc networks
CN114866294B (en) Cloud-supervised online ride-hailing communication method
CN104219245B (en) System and method for location based service-orientated user privacy protection
CN110505058A (en) Identity authentication method of heterogeneous blockchain in cross-chain scenario
CN103037306B (en) Privacy protection method based on location service in scene of Internet of Things (IOT)
CN110166228B (en) Privacy protection method based on certificate-free ring signcryption in vehicle-mounted self-organizing network
CN108012232A (en) VANETs location privacy protection querying methods under mist computing architecture
CN109495465A (en) Privacy set intersection method based on intelligent contract
EP2792098B1 (en) Group encryption methods and devices
CN104393996B (en) A kind of label decryption method and system based on no certificate
CN106302406A (en) Close car networking condition method for secret protection and system is signed based on without certificate polymerization
CN113905047A (en) A privacy protection method and system for spatial crowdsourcing task assignment
Badr et al. Blockchain-based ride-sharing system with accurate matching and privacy-preservation
CN111159766A (en) An online car-hailing service method, system and storage medium with privacy protection
CN112989376A (en) Online driver and passenger matching method and system for protecting positioning data privacy and storage medium
CN116994423B (en) Lightweight, privacy-protected lead vehicle selection system and method in vehicle formation
CN116709303B (en) Satellite edge calculation method and device for remote monitoring
CN112215626B (en) Online taxi booking system and method supporting annular order verifiable
CN114339632A (en) SM4 packet encryption algorithm-based Beidou short message encryption and decryption method
CN115549901A (en) Batch aggregation method for federal learning in Internet of vehicles
CN108933665B (en) Approach of Lightweight V2I Group Communication Authentication Protocol in VANETs
CN117714111A (en) An online car-hailing communication method and system based on cloud supervision
Xu et al. An efficient and privacy-preserving route matching scheme for carpooling services

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant