CN114726540B - Vehicle credible digital identity generation method - Google Patents
Vehicle credible digital identity generation method Download PDFInfo
- Publication number
- CN114726540B CN114726540B CN202210356535.7A CN202210356535A CN114726540B CN 114726540 B CN114726540 B CN 114726540B CN 202210356535 A CN202210356535 A CN 202210356535A CN 114726540 B CN114726540 B CN 114726540B
- Authority
- CN
- China
- Prior art keywords
- digital identity
- vehicle
- vsid
- trusted
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 11
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000029305 taxis Effects 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0853—Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/84—Vehicles
Abstract
The invention discloses a vehicle credible digital identity generation method, which is based on a client, a digital identity platform, a credible vehicle system, a credible identity authentication system and an in-vehicle security chip, and comprises the following steps: the digital identity platform performs vehicle authentication with a trusted vehicle system according to VIN information from the client to obtain a vehicle authentication result; the digital identity platform performs user authentication with the trusted identity authentication system according to the user information from the client to obtain a user authentication result; the digital identity platform generates a trusted digital identity (VSID) according to the VIN information and the user information, and sends the VSID to the in-vehicle security chip; the in-vehicle security chip stores the trusted digital identity (VSID) and generates a corresponding VSID key pair, and the VSID public key is sent to the digital identity platform; and the digital identity platform sends the trusted digital identity identification VSID and the VSID public key to the client for encryption and storage. The invention generates a unique trusted digital identity for integrating vehicles, users and passwords.
Description
Technical Field
The invention relates to the field of vehicle identification, in particular to a method for generating a vehicle trusted digital identity.
Background
Currently, vehicle identification generally only obtains vehicle information. For example, by identifying a vehicle identification number (Vehicle Identification Number, VIN), which is a unique set of seventeen letters or numbers used on the vehicle, the manufacturer, engine, chassis number, and other performance information of the vehicle may be identified. The VIN code cannot identify the owner of the vehicle or the driver driving the vehicle, and also lacks confidentiality. In addition, ETC (electronic toll collection) systems are used for completing wireless data communication between vehicles and toll stations by adopting vehicle automatic identification technology, and mainly comprise a vehicle automatic identification system, a central management system, other auxiliary facilities and the like, and can only be related to vehicle owners at most. Therefore, the digital identity mark integrating the vehicle, the user and the password is absent.
Disclosure of Invention
The invention aims to provide a vehicle trusted digital identity generation method for generating unique trusted digital identity marks integrating vehicles, users and passwords.
The technical scheme for achieving the purpose is as follows:
a vehicle credible digital identity generation method based on a client, a digital identity platform, a credible vehicle system, a credible identity authentication system and an in-vehicle security chip comprises the following steps:
the digital identity platform performs vehicle authentication with a trusted vehicle system according to VIN information from the client to obtain a vehicle authentication result;
the digital identity platform performs user authentication with the trusted identity authentication system according to the user information from the client to obtain a user authentication result;
the digital identity platform generates a trusted digital identity (VSID) according to the VIN information and the user information, and sends the VSID to the in-vehicle security chip;
the in-vehicle security chip stores the trusted digital identity (VSID) and generates a corresponding VSID key pair, and the VSID public key is sent to the digital identity platform;
and the digital identity platform sends the trusted digital identity identification VSID and the VSID public key to the client for encryption and storage.
Preferably, the client inputs the VIN information and the user information at the client.
Preferably, the digital identity platform and the in-car security chip are communicated through a security channel.
Preferably, the trusted digital identity VSID is represented by a hexadecimal string of fixed length, wherein the first character represents the identity, the fixed length character from the second character is VIN string + symmetric key string + personal identity number or unit code, and the HASH value of the fixed length is calculated by HASH function.
The beneficial effects of the invention are as follows: the trusted digital identity (VSID) generated by the invention can be used for identifying vehicles and users, and a password is introduced, so that confidentiality is realized, and user privacy is protected. Meanwhile, the vehicle is authenticated through the trusted vehicle system, and the user is authenticated by introducing the trusted identity system, so that the reliability of the VSID is ensured.
Drawings
FIG. 1 is a flow chart of a vehicle trusted digital identity generation method of the present invention;
fig. 2 is a schematic diagram of a trusted digital identification VSID in the present invention.
Detailed Description
The invention will be further described with reference to the accompanying drawings.
Referring to fig. 1, the method for generating the vehicle trusted digital identity according to the present invention is based on a client, a digital identity platform, a trusted vehicle system, a trusted identity authentication system and an in-vehicle security chip, and comprises the following steps:
step one, a client inputs VIN information at the client, namely, the VIN information is input in an APP application of the client. And the digital identity platform performs vehicle authentication to the trusted vehicle system according to the VIN information from the client, and the trusted vehicle system returns a vehicle authentication result. The trusted vehicle system is a vehicle factory TSP/electronic license platform.
Step two, the client inputs user information such as an identity card, a name and the like at the client, namely, the user information is input in an APP application of the client. And the digital identity platform performs user authentication to the trusted identity authentication system according to the user information from the client, and the trusted identity authentication system returns a user authentication result.
And thirdly, the digital identity platform generates a trusted digital identity (VSID) according to the VIN information and the user information, and sends the in-vehicle security chip through a security channel. As shown in fig. 2, the trusted digital identification VSID is represented by a hexadecimal string of a fixed length, wherein the first character represents the identity (e.g., 1 represents the owner of the individual vehicle, 2 represents the owner of the unit vehicle, and 3 represents the driver), the fixed length character from the second character is VIN string + symmetric key string + personal identification number or unit code, and the HASH value of the fixed length is calculated by a HASH function (e.g., SM3 or SHA256 algorithm).
And fourthly, the in-vehicle security chip stores the trusted digital identity (VSID) and generates a corresponding VSID key pair, and the VSID public key is sent to the digital identity platform for storage through a security channel.
And fifthly, the digital identity platform sends the trusted digital identity identification VSID and the VSID public key to the client for encryption and storage. I.e. saved by the APP application of the client.
The trusted digital identity (VSID) of the present invention can identify users with different identities, for example: and generating corresponding unique digital identification (VSID) aiming at different owners of the same vehicle in a second-hand vehicle passing scene. And generating corresponding unique digital identification marks for different drivers of the same vehicle in the scenes of using the vehicle, taxis and renting the vehicle in units.
The trusted digital identity (VSID) carries out anonymous processing on the VIN code and the user information, and protects the privacy of the user, so that various value added services can be developed on the basis of protecting the privacy of the user based on the VSID.
The above embodiments are provided for illustrating the present invention and not for limiting the present invention, and various changes and modifications may be made by one skilled in the relevant art without departing from the spirit and scope of the present invention, and thus all equivalent technical solutions should be defined by the claims.
Claims (3)
1. The method for generating the vehicle trusted digital identity is characterized by comprising the following steps of:
the digital identity platform performs vehicle authentication with a trusted vehicle system according to VIN information from the client to obtain a vehicle authentication result;
the digital identity platform performs user authentication with the trusted identity authentication system according to the user information from the client to obtain a user authentication result;
the digital identity platform generates a trusted digital identity (VSID) according to the VIN information and the user information, and sends the VSID to the in-vehicle security chip;
the in-vehicle security chip stores the trusted digital identity (VSID) and generates a corresponding VSID key pair, and the VSID public key is sent to the digital identity platform;
the digital identity platform sends the trusted digital identity (VSID) and the VSID public key to the client for encryption and storage;
the trusted digital identity (VSID) is represented by a hexadecimal character string with a fixed length, wherein the first character represents identity, namely 1 represents a personal vehicle owner, 2 represents a unit vehicle owner, 3 represents a driver, and the fixed length character from the second character is VIN character string, symmetric key character string and personal identity number or unit code, and HASH value with a fixed length is calculated by a HASH function;
the trusted digital identity VSID may identify users of different identities.
2. The method of claim 1, wherein the client inputs the VIN information and the user information at the client.
3. The method of claim 1, wherein the digital identity platform communicates with the in-vehicle security chip via a secure channel.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210356535.7A CN114726540B (en) | 2022-04-06 | 2022-04-06 | Vehicle credible digital identity generation method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210356535.7A CN114726540B (en) | 2022-04-06 | 2022-04-06 | Vehicle credible digital identity generation method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114726540A CN114726540A (en) | 2022-07-08 |
| CN114726540B true CN114726540B (en) | 2024-01-02 |
Family
ID=82242300
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210356535.7A Active CN114726540B (en) | 2022-04-06 | 2022-04-06 | Vehicle credible digital identity generation method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114726540B (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103942963A (en) * | 2014-05-12 | 2014-07-23 | 李三多 | System for verifying passenger vehicle identity through mobile phone |
| CN105336172A (en) * | 2015-10-16 | 2016-02-17 | 江苏南亿迪纳数字科技发展有限公司 | Electronic license plate and Internet of Vehicles addressing method based on network digital genes |
| CN105792207A (en) * | 2016-04-29 | 2016-07-20 | 北京航空航天大学 | Vehicle networking authentication method facing vehicle differentiation |
| CN108833489A (en) * | 2018-05-24 | 2018-11-16 | 腾讯科技(深圳)有限公司 | The data-pushing of vehicle cloud platform, treating method and apparatus |
| CN109862036A (en) * | 2019-03-20 | 2019-06-07 | 上海博泰悦臻网络技术服务有限公司 | A kind of collaboration authentication method and terminal |
| CN112019534A (en) * | 2020-08-21 | 2020-12-01 | 南京云链智运科技有限公司 | Digital truck construction method based on trusted Internet of vehicles intelligent equipment |
Family Cites Families (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US9646150B2 (en) * | 2013-10-01 | 2017-05-09 | Kalman Csaba Toth | Electronic identity and credentialing system |
| US9865110B2 (en) * | 2015-05-22 | 2018-01-09 | M2MD Technologies, Inc. | Method and system for securely and automatically obtaining services from a machine device services server |
| US11361660B2 (en) * | 2019-03-25 | 2022-06-14 | Micron Technology, Inc. | Verifying identity of an emergency vehicle during operation |
| WO2021046470A1 (en) * | 2019-09-05 | 2021-03-11 | Davis Donnell | Methods and systems providing cyber defense for electronic identification, vehicles, ancillary vehicle platforms and telematics platforms |
-
2022
- 2022-04-06 CN CN202210356535.7A patent/CN114726540B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103942963A (en) * | 2014-05-12 | 2014-07-23 | 李三多 | System for verifying passenger vehicle identity through mobile phone |
| CN105336172A (en) * | 2015-10-16 | 2016-02-17 | 江苏南亿迪纳数字科技发展有限公司 | Electronic license plate and Internet of Vehicles addressing method based on network digital genes |
| CN105792207A (en) * | 2016-04-29 | 2016-07-20 | 北京航空航天大学 | Vehicle networking authentication method facing vehicle differentiation |
| CN108833489A (en) * | 2018-05-24 | 2018-11-16 | 腾讯科技(深圳)有限公司 | The data-pushing of vehicle cloud platform, treating method and apparatus |
| CN109862036A (en) * | 2019-03-20 | 2019-06-07 | 上海博泰悦臻网络技术服务有限公司 | A kind of collaboration authentication method and terminal |
| CN112019534A (en) * | 2020-08-21 | 2020-12-01 | 南京云链智运科技有限公司 | Digital truck construction method based on trusted Internet of vehicles intelligent equipment |
Non-Patent Citations (1)
| Title |
|---|
| 车辆身份多源融合认证技术;方万胜;黄金;金涛;蒋虎;;中国科技信息(01);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114726540A (en) | 2022-07-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108171430B (en) | Data processing method, vehicle-mounted equipment and UBI analysis center server | |
| US7742603B2 (en) | Security for anonymous vehicular broadcast messages | |
| CN101416223B (en) | Method for the protection of a movable object, especially a vehicle, against unauthorized use | |
| US6741851B1 (en) | Method for protecting data stored in lost mobile terminal and recording medium therefor | |
| CN103241215B (en) | Automobile based on Quick Response Code uses mandate, burglary-resisting system and method | |
| US8269601B2 (en) | Multiuser vehicle utilization system and electronic key thereof | |
| Raya et al. | The security of VANETs | |
| US7054613B2 (en) | SIM card to mobile device interface protection method and system | |
| US5982894A (en) | System including separable protected components and associated methods | |
| CN109688133B (en) | Communication method based on account login free | |
| CN105704131A (en) | Vehicle lock control method and cloud management server | |
| CN102111274A (en) | A platform and method for establishing provable identities while maintaining privacy | |
| WO2019004097A1 (en) | Maintenance system and maintenance method | |
| CN103310141B (en) | Credential information monitoring administration method and system | |
| CN104170313A (en) | Privacy-enhanced car data distribution | |
| CN1684411A (en) | Method for verifying user's legitimate of mobile terminal | |
| CN114726540B (en) | Vehicle credible digital identity generation method | |
| JP4567602B2 (en) | Authentication device, authenticated device, and key update method | |
| CN1823494A (en) | Method for securing an electronic certificate | |
| CN112383401B (en) | User name generation method and system for providing identity authentication service | |
| KR101086900B1 (en) | Surrounding vehicles position identifying system using base station and identifying method between the base station and the vehicles | |
| CN112702312A (en) | Lightweight Internet of things digital certificate processing method and system based on state cryptographic algorithm | |
| CN114339675B (en) | Lightweight authentication and key sharing system and method for Internet of vehicles | |
| CN115776396A (en) | Data processing method and device, electronic equipment and storage medium | |
| CN113992388A (en) | Method for realizing vehicle identity condition privacy protection based on RSU |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |