CN103873473A - Method for authenticating anonymity groups of power-driven automobiles by charging station - Google Patents
Method for authenticating anonymity groups of power-driven automobiles by charging station Download PDFInfo
- Publication number
- CN103873473A CN103873473A CN201410102335.4A CN201410102335A CN103873473A CN 103873473 A CN103873473 A CN 103873473A CN 201410102335 A CN201410102335 A CN 201410102335A CN 103873473 A CN103873473 A CN 103873473A
- Authority
- CN
- China
- Prior art keywords
- electric vehicle
- charging station
- aggregator
- certificate
- local
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 38
- 230000003993 interaction Effects 0.000 claims abstract description 5
- 238000012795 verification Methods 0.000 claims description 7
- 238000004891 communication Methods 0.000 description 6
- 238000012423 maintenance Methods 0.000 description 3
- 230000002776 aggregation Effects 0.000 description 1
- 238000004220 aggregation Methods 0.000 description 1
- 230000007812 deficiency Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 238000004146 energy storage Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000006855 networking Effects 0.000 description 1
- 238000005192 partition Methods 0.000 description 1
- 231100000279 safety data Toxicity 0.000 description 1
Images
Classifications
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02T—CLIMATE CHANGE MITIGATION TECHNOLOGIES RELATED TO TRANSPORTATION
- Y02T90/00—Enabling technologies or technologies with a potential or indirect contribution to GHG emissions mitigation
- Y02T90/10—Technologies relating to charging of electric vehicles
- Y02T90/16—Information or communication technologies improving the operation of electric vehicles
- Y02T90/167—Systems integrating technologies related to power network operation and communication or information technologies for supporting the interoperability of electric or hybrid vehicles, i.e. smartgrids as interface for battery charging of electric vehicles [EV] or hybrid vehicles [HEV]
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y04—INFORMATION OR COMMUNICATION TECHNOLOGIES HAVING AN IMPACT ON OTHER TECHNOLOGY AREAS
- Y04S—SYSTEMS INTEGRATING TECHNOLOGIES RELATED TO POWER NETWORK OPERATION, COMMUNICATION OR INFORMATION TECHNOLOGIES FOR IMPROVING THE ELECTRICAL POWER GENERATION, TRANSMISSION, DISTRIBUTION, MANAGEMENT OR USAGE, i.e. SMART GRIDS
- Y04S30/00—Systems supporting specific end-user applications in the sector of transportation
- Y04S30/10—Systems supporting the interoperability of electric or hybrid vehicles
- Y04S30/14—Details associated with the interoperability, e.g. vehicle recognition, authentication, identification or billing
Landscapes
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
本发明公开了一种充电站对电动汽车匿名群组认证方法,它涉及信息安全技术领域,包括如下步骤:1.电动汽车请求接入电网;2.中央聚合器为电动汽车颁发入网许可证书;3.电动汽车请求加入某一区域的充电站;4.本地聚合器验证电动汽车入网许可证书的合法性;5.本地聚合器给电动汽车分配所属群并签发证书;6.电动汽车请求接入充电站;7.充电站验证是否允许电动汽车接入;8.充电站给通过验证的电动汽车分配一个实际可用的充电插口;9.电动汽车和充电站之间进行信息和能源的交互。本发明实现了充电站对车辆的匿名认证,能够对恶意用户进行追踪,并给予一定的处罚,同时提高了群组认证效率。
The invention discloses an anonymous group authentication method for an electric vehicle by a charging station, which relates to the technical field of information security and comprises the following steps: 1. The electric vehicle requests to connect to a power grid; 2. A central aggregator issues a network access license for the electric vehicle; 3. The electric vehicle requests to join a charging station in a certain area; 4. The local aggregator verifies the legitimacy of the electric vehicle network access certificate; 5. The local aggregator assigns the group to which the electric vehicle belongs and issues a certificate; 6. The electric vehicle requests access Charging station; 7. Charging station verifies whether electric vehicles are allowed to access; 8. Charging station assigns an actually available charging socket to verified electric vehicles; 9. Information and energy interaction between electric vehicles and charging stations. The invention realizes the anonymous authentication of the vehicle by the charging station, can track malicious users and give certain punishments, and at the same time improves the efficiency of group authentication.
Description
技术领域technical field
本发明属于通信技术领域,更进一步涉及信息安全技术领域中的一种充电站对电动汽车匿名群组认证方法。本发明可用于电动汽车需要充电或供电接入电网场景时,实现充电站对车辆用户的匿名认证,从而保护车辆用户的隐私。The invention belongs to the technical field of communication, and further relates to an anonymous group authentication method for an electric vehicle by a charging station in the technical field of information security. The present invention can be used in the scene where the electric vehicle needs to be charged or powered and connected to the power grid to realize the anonymous authentication of the vehicle user by the charging station, thereby protecting the privacy of the vehicle user.
背景技术Background technique
电动汽车接入电网(V2G)将电动汽车与智能电网相结合,既解决了电动汽车大规模发展带来的充电压力问题,又可将电动汽车作为移动的、分布式储能单元接入电网。然而电动汽车的流动性较强,频繁数据交换在满足实时管理的同时带来用户敏感信息泄露的风险。因此V2G的充电站(STi)需要设计匿名群组认证方案,同时支持成员的动态加入和小开销的身份吊销。Electric vehicles connected to the grid (V2G) combines electric vehicles with smart grids, which not only solves the problem of charging pressure caused by the large-scale development of electric vehicles, but also connects electric vehicles to the grid as mobile and distributed energy storage units. However, the mobility of electric vehicles is strong, and frequent data exchange satisfies real-time management and at the same time brings the risk of user sensitive information leakage. Therefore, the V2G charging station (ST i ) needs to design an anonymous group authentication scheme, which supports dynamic joining of members and identity revocation with low overhead.
Binod Vaidya等人在文章“Efficient Authentication Mechanism for PEVCharging Infrastructure”(In:Communications(ICC),2011IEEE InternationalConference on)中提出了一种对于电动汽车充电的综合的分散认证方法。该方法的具体实施步骤是:第一,初始化,充电站的服务器从注册机构获得一个证书;第二,用户注册,用户UDi将自己的身份及登陆密码发给注册机构,注册机构计算合适的参数,将这些参数写入到智能卡中,并将该智能卡发给用户UDi。第三,认证阶段,当用户UDi想要接入充电设备时,用户UDi必须将自己的身份和登陆密码输入智能卡,智能卡验证登陆密码是否成立,若不成立拒绝登陆请求,否则,智能卡生成一个证书,并将该证书发给充电站的服务器。服务器验证证书的合法性。第四,若用户UDi想要更新登陆密码,就需要进行密码重置。第五,当用户的有效登记过期的时候,需要更新所有参数。虽然该方法具有相互认证功能,并且保护了用户的身份隐私。但是,该方法仍然存在的不足之处是:当有恶意用户扰乱电网秩序时,无法查证恶意用户的身份,从而不能对恶意用户进行处罚。Binod Vaidya et al. proposed a comprehensive decentralized authentication method for electric vehicle charging in the article "Efficient Authentication Mechanism for PEVCharging Infrastructure" (In: Communications (ICC), 2011 IEEE International Conference on). The specific implementation steps of this method are: first , initialization, the server of the charging station obtains a certificate from the registration authority; parameters, write these parameters into the smart card, and send the smart card to user UD i . Third, in the authentication stage, when user UD i wants to access the charging device, user UD i must enter his identity and login password into the smart card, and the smart card verifies whether the login password is valid. If not, the login request is rejected; otherwise, the smart card generates a certificate, and send the certificate to the server of the charging station. The server verifies the validity of the certificate. Fourth, if the user UD i wants to update the login password, it needs to reset the password. Fifth, when a user's valid registration expires, all parameters need to be updated. Although this method has a mutual authentication function and protects the user's identity privacy. However, the disadvantage of this method is that when a malicious user disturbs the order of the power grid, the identity of the malicious user cannot be verified, so that the malicious user cannot be punished.
Huei-Ru Tseng等人在文章“A Secure and Privacy-Preserving CommunicationProtocol for V2G Networks”(In:Communitations,2012IEEE WirelessCommunications and Networking Conference)中提出了电动汽车加入电网(Vehical-to-Grid,V2G)中一种安全的、具有隐私保护的通信方法。该方法的具体实施步骤是:第一,密钥中心初始化系统参数,为电动汽车、本地聚合器和中央聚合器分配公私钥。第二,电动汽车在加入电动汽车与电网构成的网络之前必须向中央聚合器进行注册,电动汽车将自己的身份和生成的参数发给中央聚合器,中央聚合器验证身份合法后,生成一个证书,并将该证书发给电动汽车。第三,当电动汽车接入电动汽车加入电网(Vehical-to-Grid,V2G)的时候,电动汽车将假名和证书一起发给本地聚合器,本地聚合器验证证书的合法性。第四,确定证书的合法性后,电动汽车将自己的状态信息发给本地聚合器,本地聚合器再将收到的所有的信息聚合,并将聚合结果发给中央聚合器。该方法采用假名实现了对用户身份的隐私保护。假名是由中央聚合器生成并分发给不同用户的,中央聚合器需要存储这些假名。每次电动汽车加入V2G网络时都需要使用不同假名,并且用户量也比较大。这样就给中央聚合器带来了假名的管理和维护的问题。In the article "A Secure and Privacy-Preserving Communication Protocol for V2G Networks" (In: Communications, 2012 IEEE Wireless Communications and Networking Conference), Huei-Ru Tseng et al proposed one of the electric vehicles to join the grid (Vehical-to-Grid, V2G) Secure, privacy-preserving communication methods. The specific implementation steps of the method are: first, the key center initializes system parameters, and distributes public and private keys for the electric vehicle, the local aggregator and the central aggregator. Second, electric vehicles must register with the central aggregator before joining the network composed of electric vehicles and the grid. The electric vehicle sends its identity and generated parameters to the central aggregator. After the central aggregator verifies that the identity is legal, it generates a certificate. , and issue the certificate to the electric vehicle. Third, when an electric vehicle is connected to the grid (Vehical-to-Grid, V2G), the electric vehicle will send the pseudonym and the certificate to the local aggregator, and the local aggregator will verify the validity of the certificate. Fourth, after confirming the validity of the certificate, the electric vehicle sends its state information to the local aggregator, and the local aggregator aggregates all the received information and sends the aggregation result to the central aggregator. The method adopts pseudonyms to realize the privacy protection of user identities. The pseudonyms are generated and distributed to different users by the central aggregator, which needs to store these pseudonyms. Every time an electric vehicle joins a V2G network, it needs to use a different pseudonym, and the number of users is relatively large. This brings the problem of management and maintenance of pseudonyms to the central aggregator.
国家电网公司在其申请的专利“电动汽车与充换电站的安全数据交换方法及系统”(申请日:2010年10月15日,申请号:201010508362.3,公开号:CN102045340A)中提出了一种电动汽车与充换电站安全的数据交换方法。该方法的实施方法是:第一,电动汽车向充换电站发出经数字签名的自身的完整性信息,并获取对方的完整性信息来提交安全信息管理中心;第二,充换电站向安全信息管理中心提交电动汽车发送的完整性信息,并向电动汽车提交经数字签名的完整性信息;第三,安全信息管理中心对完整性信息进行认证,并反馈认证结果;第四,认证结果均符合时,电动汽车与充换电站间建立连接,进行数据交换。该专利申请虽然通过设备完整性信息验证,实现了对电动汽车和充换电站设备状态的安全性验证。但是,该方法仍然存在不足之处是:对于用户身份的合法性没有进行认证,当出现恶意用户时,无法对恶意用户进行追踪。State Grid Corporation of China proposed an electric vehicle in its patent application "Safety Data Exchange Method and System for Electric Vehicles and Charging Stations" (application date: October 15, 2010, application number: 201010508362.3, publication number: CN102045340A). A safe data exchange method between the car and the charging and swapping station. The implementation method of this method is: first, the electric vehicle sends its own integrity information through digital signature to the charging and swapping station, and obtains the integrity information of the other party to submit to the safety information management center; second, the charging and swapping station sends the safety information The management center submits the integrity information sent by the electric vehicle, and submits the digitally signed integrity information to the electric vehicle; third, the safety information management center authenticates the integrity information and feeds back the certification results; fourth, the certification results are in line with , the connection between the electric vehicle and the charging and swapping station is established for data exchange. Although the patent application has achieved the safety verification of the equipment status of electric vehicles and charging and swapping stations through the verification of equipment integrity information. However, this method still has shortcomings in that: the legality of the user identity is not authenticated, and when a malicious user appears, the malicious user cannot be tracked.
发明内容Contents of the invention
本发明的目的在于克服上述已有技术的不足,针对电动汽车加入电网提出了一种充电站对电动汽车匿名群组认证方法。本发明实现了充电站对电动汽车的匿名认证,同时能够对恶意用户进行追踪,并给予一定的处罚,很好地提高了电网系统的稳定性。The purpose of the present invention is to overcome the deficiencies of the above-mentioned prior art, and propose an anonymous group authentication method for electric vehicles by charging stations for electric vehicles joining the power grid. The invention realizes the anonymous authentication of the electric vehicle by the charging station, and at the same time can track malicious users and give certain punishments, which greatly improves the stability of the power grid system.
为实现上述目的,本发明具体步骤如下:To achieve the above object, the concrete steps of the present invention are as follows:
1.充电站对电动汽车匿名群组认证方法,包括以下步骤:1. A method for anonymous group authentication of electric vehicles by a charging station, comprising the following steps:
(1)请求接入电网:(1) Request access to the grid:
(1a)用户将用户的真实身份和拟入网电动汽车牌照的真实身份,分别发送给中央聚合器进行注册,中央聚合器为拟入网的电动汽车颁发身份证,并将身份证记录到中央聚合器的数据库中;(1a) The user sends the real identity of the user and the real identity of the electric vehicle license plate to be connected to the central aggregator for registration, and the central aggregator issues an ID card for the electric vehicle to be connected to the network, and records the ID card to the central aggregator in the database;
(1b)拟入网的电动汽车将入网请求信息发给中央聚合器,请求接入充电站;(1b) The electric vehicle to be connected to the network sends the network connection request information to the central aggregator, requesting to connect to the charging station;
(2)颁发许可证书:(2) Issuing a license certificate:
中央聚合器查找其数据库是否存储该拟入网的电动汽车身份证,若存储,但尚未颁发入网许可证书,则中央聚合器利用自己的私钥将电动汽车的身份和公钥进行签名生成入网许可证书,将该许可证书颁发给该拟入网的电动汽车;若没有存储,则执行步骤(1);The central aggregator checks whether its database stores the ID card of the electric vehicle to be connected to the network. If it is stored but the network access permit has not been issued, the central aggregator uses its own private key to sign the identity and public key of the electric vehicle to generate a network access permit. , issue the license certificate to the electric vehicle to be connected to the network; if not stored, perform step (1);
(3)请求加入区域:(3) Request to join the zone:
电动汽车将拟加入区域的请求信息,发送给本地聚合器;The electric vehicle sends the request information of the area to be joined to the local aggregator;
(4)验证证书是否合法:(4) Verify that the certificate is legal:
(4a)本地聚合器利用中央聚合器公钥,验证入网许可证书是否合法,若入网许可证书不合法,则执行步骤(1);否则,执行步骤(4b);(4a) The local aggregator uses the public key of the central aggregator to verify whether the network access certificate is legal, if the network access certificate is not legal, then perform step (1); otherwise, perform step (4b);
(4b)本地聚合器验证收到入网许可证书的时间是否在有效日期范围内,若超过了有效日期,则执行步骤(1),否则执行步骤(5);(4b) The local aggregator verifies whether the time of receiving the network access permit is within the valid date range, if it exceeds the valid date, then execute step (1), otherwise execute step (5);
(5)建立群参数并签发证书:(5) Establish group parameters and issue certificates:
(5a)本地聚合器将电动汽车允许加入充电站所在群的消息发送给电动汽车;(5a) The local aggregator sends the message that the electric vehicle is allowed to join the group where the charging station is located to the electric vehicle;
(5b)电动汽车按照编号生成方法,生成一个电动汽车编号,并将该电动汽车编号发给本地聚合器;(5b) The electric vehicle generates an electric vehicle number according to the number generation method, and sends the electric vehicle number to the local aggregator;
(5c)本地聚合器接收到从电动汽车发来的电动汽车编号后,检查当前数据库中的记录表中是否包含该电动汽车编号,若包含,则执行步骤(5b);否则,给电动汽车分配一个充电位置和对应的充电位置标识符;(5c) After the local aggregator receives the electric vehicle number sent from the electric vehicle, it checks whether the record table in the current database contains the electric vehicle number, and if so, executes step (5b); otherwise, allocates A charging location and corresponding charging location identifier;
(5d)本地聚合器将所属群的相关消息及接入充电站的签名证书发给电动汽车;(5d) The local aggregator sends the relevant information of the group it belongs to and the signature certificate for accessing the charging station to the electric vehicle;
(5e)电动汽车按照下式,生成群成员证书:(5e) Electric vehicles generate group member certificates according to the following formula:
C=(I,X,num,σ)C=(I,X,num,σ)
其中,C表示群成员证书,I表示电动汽车充电位置标识符,X表示电动汽车的编号,num表示电动汽车的路径编码,σ表示本地聚合器用结构保护型签名的系统私钥对电动汽车的编号和电动汽车的路径编码进行的结构保护型签名;Among them, C represents the group member certificate, I represents the electric vehicle charging location identifier, X represents the number of the electric vehicle, num represents the path code of the electric vehicle, and σ represents the number of the electric vehicle with the system private key signed by the local aggregator with structure protection Structure-protected signatures with path coding for EVs;
(6)请求接入充电站:(6) Request access to the charging station:
电动汽车将拟接入充电站的请求消息,发送给充电站;The electric vehicle sends a request message to be connected to the charging station to the charging station;
(7)验证是否允许电动汽车接入:(7) Verify whether electric vehicle access is allowed:
(7a)充电站用本地聚合器的公钥,验证电动汽车签名证书的合法性,若签名证书不合法,则执行步骤(5),否则执行步骤(7b);(7a) The charging station uses the public key of the local aggregator to verify the legitimacy of the signature certificate of the electric vehicle. If the signature certificate is not legal, then execute step (5), otherwise execute step (7b);
(7b)充电站验证收到签名证书的时间是否在签名证书的有效日期内,若超过有效日期,则执行步骤(5),否则执行步骤(8);(7b) The charging station verifies whether the time of receiving the signed certificate is within the valid date of the signed certificate, if it exceeds the valid date, then execute step (5), otherwise execute step (8);
(8)充电站给电动汽车分配一个实际可用的充电插口;(8) The charging station assigns an actually available charging socket to the electric vehicle;
(9)信息和能源交互:(9) Information and energy interaction:
(9a)电动汽车接入充电站后和充电站进行密钥协商,协商出一个会话密钥;(9a) After the electric vehicle is connected to the charging station, it conducts key negotiation with the charging station, and negotiates a session key;
(9b)电动汽车分别通过子集划分方法和向量承诺方法,证明自己是合法的群成员;(9b) The electric vehicle proves itself to be a legitimate group member through the subset division method and the vector commitment method;
(9c)电动汽车用群私钥,对自己的申请消息进行签名,并将签名结果发送给充电站;(9c) The electric vehicle uses the private key of the group to sign its own application message and send the signature result to the charging station;
(9d)充电站收到从电动汽车发来的消息后,用群公钥对签名进行验证,若验证通过,则充电站根据申请及电网需求,充电站和电动汽车进行能源及信息的交互;否则,执行步骤(9e);(9d) After the charging station receives the message from the electric vehicle, it uses the group public key to verify the signature. If the verification is passed, the charging station will exchange energy and information with the electric vehicle according to the application and the grid demand; Otherwise, execute step (9e);
(9e)充电站将电动汽车发来的群签名消息发给本地聚合器;(9e) The charging station sends the group signature message sent by the electric vehicle to the local aggregator;
(9f)本地聚合器接收到从充电站发来的签名消息后,按照群成员追踪方法,对发送错误消息的电动汽车进行追踪。(9f) After receiving the signed message sent from the charging station, the local aggregator tracks the electric vehicle that sent the wrong message according to the group member tracking method.
本发明与现有技术相比具有以下优点:Compared with the prior art, the present invention has the following advantages:
第一,由于本发明在电动汽车和充电站进行信息交互时,采用了可撤销群成员签名,克服了现有技术存在的对恶意用户不可追踪的缺点,使得本发明对恶意用户实现了可追踪,能够对恶意用户进行处罚,提高了电网系统的稳定性。First, since the present invention uses revocable group member signatures during information interaction between electric vehicles and charging stations, it overcomes the disadvantage of untraceable malicious users in the prior art, making the present invention traceable to malicious users , can punish malicious users and improve the stability of the power grid system.
第二,由于本发明在电动汽车向充电站匿名证明身份合法性时,采用子集划分方法和向量承诺方法,克服了现有技术中用假名实现匿名认证存在的管理和维护复杂度高的缺点,使得本发明实现了管理和维护的简单化。Second, because the invention adopts the subset division method and the vector commitment method when the electric vehicle anonymously proves the legality of the identity to the charging station, it overcomes the disadvantages of high management and maintenance complexity in the prior art that uses pseudonyms to realize anonymous authentication , so that the present invention realizes the simplification of management and maintenance.
第三,由于本发明在群成员证书形成时,采用了结构保护型签名,克服了现有技术中更新成员状态列表时需要不断地更新群成员证书的缺点,使得本发明实现了在更新成员状态列表时不需要更新群成员证书,降低了计算开销,提高了群组认证效率。Third, since the present invention adopts a structure-protected signature when the group member certificate is formed, it overcomes the shortcoming that the group member certificate needs to be continuously updated when updating the member state list in the prior art, so that the present invention realizes There is no need to update group member certificates when listing, which reduces computing overhead and improves group authentication efficiency.
附图说明Description of drawings
图1为本发明流程图;Fig. 1 is a flowchart of the present invention;
图2为本发明中央聚合器、本地聚合器、充电站的关系与功能示意图。Fig. 2 is a schematic diagram of the relationship and functions of the central aggregator, local aggregator, and charging station of the present invention.
具体实施方式Detailed ways
下面结合附图对本发明做进一步的描述。The present invention will be further described below in conjunction with the accompanying drawings.
参照附图2,本发明所涉及到的中央聚合器、本地聚合器、充电站的关系与功能如下:Referring to accompanying drawing 2, the relation and function of central aggregator, local aggregator and charging station involved in the present invention are as follows:
中央聚合器是电动汽车加入电网(Vehical-to-Grid,V2G)中最高层级的处理器,由于中央聚合器计算和存储能力很强,因此,它主要负责电动汽车的入网注册,为拟加入电网的电动汽车颁发入网许可证书,并保存所有注册过的用户的详细身份信息,包含多个本地聚合器。The central aggregator is the highest-level processor in the Vehical-to-Grid (V2G) of electric vehicles. Due to the strong computing and storage capabilities of the central aggregator, it is mainly responsible for the registration of electric vehicles. Issue network access license certificates for electric vehicles and save detailed identity information of all registered users, including multiple local aggregators.
本地聚合器是中央聚合器下一级的处理器,由于本地聚合器计算和存储能力比中央聚合器弱,所以,它主要负责为电动汽车分配所属群,签发证书。The local aggregator is the next-level processor of the central aggregator. Since the computing and storage capabilities of the local aggregator are weaker than that of the central aggregator, it is mainly responsible for assigning groups to electric vehicles and issuing certificates.
充电站是本地聚合器的下一级,作为电动汽车接入电网的接口。电动汽车和充电站之间进行信息和能源交互,并且充电站和本地聚合器共同维持可撤销列表。The charging station is the next level of the local aggregator and acts as the interface for electric vehicles to the grid. Information and energy are exchanged between EVs and charging stations, and charging stations and local aggregators jointly maintain a revocable list.
参照附图1,本发明的实现步骤如下。With reference to accompanying drawing 1, the realization step of the present invention is as follows.
步骤1,请求接入电网。Step 1, request to connect to the grid.
用户将用户的真实身份和拟入网电动汽车牌照的真实身份,分别发送给中央聚合器进行注册,中央聚合器为拟入网的电动汽车颁发身份证,并将身份证记录到中央聚合器的数据库中。The user sends the real identity of the user and the real identity of the electric vehicle license plate to be connected to the central aggregator for registration, and the central aggregator issues an ID card for the electric vehicle to be connected to the network, and records the ID card in the database of the central aggregator .
拟入网的电动汽车将入网请求信息发给中央聚合器,该请求信息是将电动汽车的身份证用中央聚合器的公钥加密的结果。The electric vehicle to be connected to the network sends the network access request information to the central aggregator. The request information is the result of encrypting the ID card of the electric vehicle with the public key of the central aggregator.
步骤2,颁发许可证书。Step 2, issuing license certificates.
中央聚合器收到请求信息后,用其私钥解密,得到电动汽车的身份证。然后,中央聚合器查找其数据库是否存储该拟入网的电动汽车身份证,若存储,但尚未颁发入网许可证书,则中央聚合器利用自己的私钥将电动汽车的身份和公钥进行签名得到入网许可证书,将该许可证书颁发给该拟入网的电动汽车;若没有存储,则执行步骤1。After receiving the request information, the central aggregator decrypts it with its private key to obtain the ID card of the electric vehicle. Then, the central aggregator checks whether the ID card of the electric vehicle to be connected to the network is stored in its database. If it is stored, but the network access license certificate has not been issued, the central aggregator uses its own private key to sign the identity and public key of the electric vehicle to obtain the network access License certificate, issue the license certificate to the electric vehicle to be connected to the network; if it is not stored, go to step 1.
步骤3,请求加入区域。Step 3, request to join the zone.
电动汽车将拟加入区域的请求信息,发送给本地聚合器,此请求信息是将电动汽车的身份、电动汽车的公钥、中央聚合器的身份、电动汽车想要加入的充电站、中央聚合器给电动汽车颁发的入网许可证书用本地聚合器的公钥进行加密的结果。The electric vehicle will send the request information to the local aggregator to the local aggregator. The request information is the identity of the electric vehicle, the public key of the electric vehicle, the identity of the central aggregator, the charging station the electric vehicle wants to join, the central aggregator The result of encrypting the network access certificate issued to the electric vehicle with the public key of the local aggregator.
步骤4,验证证书是否合法。Step 4, verify whether the certificate is legal.
第一步,本地聚合器利用中央聚合器公钥,按照如下步骤,验证入网许可证书是否合法,若入网许可证书不合法,则执行步骤1;否则,执行步骤4的第一步。In the first step, the local aggregator uses the public key of the central aggregator to verify whether the network access license is legal according to the following steps. If the network access license is not valid, perform step 1; otherwise, perform the first step of step 4.
本地聚合器接收到电动汽车发来的请求消息后,用本地聚合器的私钥解密该请求消息,得到电动汽车的身份、电动汽车的公钥、中央聚合器的身份、电动汽车想要加入的充电站、中央聚合器给电动汽车颁发的入网许可证书。After the local aggregator receives the request message sent by the electric vehicle, it decrypts the request message with the private key of the local aggregator, and obtains the identity of the electric vehicle, the public key of the electric vehicle, the identity of the central aggregator, and the user the electric vehicle wants to join. Network access certificates issued by charging stations and central aggregators to electric vehicles.
本地聚合器根据中央聚合器的身份,查找公钥列表,得到该中央聚合器的公钥。According to the identity of the central aggregator, the local aggregator searches the public key list and obtains the public key of the central aggregator.
本地聚合器利用中央聚合器的公钥,验证中央聚合器的签名是否成立,若成立,则说明入网许可证书合法;否则,说明入网许可证书不合法。The local aggregator uses the public key of the central aggregator to verify whether the signature of the central aggregator is valid. If it is valid, it means that the network access license is legal; otherwise, the network access license is invalid.
第二步,本地聚合器验证收到入网许可证书的时间是否在有效日期范围内,若超过了有效日期,则执行步骤1,否则执行步骤5。In the second step, the local aggregator verifies whether the time of receiving the network access permit is within the valid date range. If it exceeds the valid date, go to step 1, otherwise go to step 5.
步骤5,建立群参数并签发证书。Step 5, establish group parameters and issue certificates.
第一步,本地聚合器根据电动汽车想要加入的充电站,为其分配所属群,并将所属群的相关消息发送给电动汽车。In the first step, the local aggregator assigns the group to which the electric vehicle belongs according to the charging station it wants to join, and sends information about the group it belongs to to the electric vehicle.
第二步,电动汽车按照下式,计算出一个电动汽车编号,并将该电动汽车编号发给本地聚合器:In the second step, the electric vehicle calculates an electric vehicle number according to the following formula, and sends the electric vehicle number to the local aggregator:
X=gx X=g x
其中,X表示电动汽车的编号,x表示电动汽车的群私钥,g表示群G的生成元。Among them, X represents the serial number of the electric vehicle, x represents the group private key of the electric vehicle, and g represents the generator of the group G.
第三步,本地聚合器接收到从电动汽车发来的电动汽车编号后,检查当前数据库中的记录表中是否包含该电动汽车编号,若包含,则执行步骤5的第二步;若不包含,则给电动汽车分配一个充电位置和对应的充电位置标识符,并在其数据库中记录下该编号。In the third step, after the local aggregator receives the electric vehicle number sent from the electric vehicle, it checks whether the record table in the current database contains the electric vehicle number, and if so, executes the second step of step 5; if not , assign a charging location and a corresponding charging location identifier to the electric vehicle, and record the number in its database.
第四步,本地聚合器用自己的私钥对电动汽车的编号和公钥进行签名得到电动汽车接入充电站的签名证书,并将该签名证书发给电动汽车,此签名证书有效期较短,一般为一天。In the fourth step, the local aggregator uses its own private key to sign the serial number and public key of the electric vehicle to obtain a signature certificate for the electric vehicle to connect to the charging station, and sends the signature certificate to the electric vehicle. The validity period of this signature certificate is short, and generally for a day.
第五步,电动汽车按照下式,得到群成员证书:In the fifth step, the electric vehicle obtains the group member certificate according to the following formula:
C=(I,X,num,σ)C=(I,X,num,σ)
其中,C表示群成员证书,I表示电动汽车充电位置标识符,X表示电动汽车的编号,num表示电动汽车的路径编码,σ表示本地聚合器用结构保护型签名的系统私钥对电动汽车的编号和电动汽车的路径编码进行的结构保护型签名。Among them, C represents the group member certificate, I represents the electric vehicle charging location identifier, X represents the number of the electric vehicle, num represents the path code of the electric vehicle, and σ represents the number of the electric vehicle with the system private key signed by the local aggregator with structure protection Structure-protected signatures performed with path coding for EVs.
步骤6,请求接入充电站。Step 6, request access to the charging station.
电动汽车将拟接入充电站的请求消息,发送给充电站,此请求消息是将电动汽车的编号、电动汽车的公钥、本地聚合器的身份、本地聚合器给电动汽车颁发的签发证书用充电站的私钥进行加密的结果。The electric vehicle will send a request message to the charging station to connect to the charging station. This request message is the number of the electric vehicle, the public key of the electric vehicle, the identity of the local aggregator, and the certificate issued by the local aggregator to the electric vehicle. The result of encrypting the private key of the charging station.
步骤7,验证是否允许电动汽车接入。Step 7, verify whether electric vehicles are allowed to access.
第一步,充电站用本地聚合器的公钥,按照如下步骤,验证电动汽车签名证书的合法性,若签名证书不合法,则执行步骤5,否则执行步骤7的第二步。In the first step, the charging station uses the public key of the local aggregator to verify the legitimacy of the electric vehicle signature certificate according to the following steps. If the signature certificate is invalid, go to step 5, otherwise go to step 2 of step 7.
充电站接收到电动汽车发来的请求消息后,用充电站的私钥解密该请求消息,得到电动汽车的编号、电动汽车的公钥、本地聚合器的身份、本地聚合器给电动汽车颁发的签发证书。After receiving the request message from the electric vehicle, the charging station decrypts the request message with the private key of the charging station, and obtains the number of the electric vehicle, the public key of the electric vehicle, the identity of the local aggregator, and the certificate issued by the local aggregator to the electric vehicle. Issue a certificate.
充电站根据本地聚合器的身份,查找公钥列表,得到该本地聚合器的公钥。According to the identity of the local aggregator, the charging station searches the public key list and obtains the public key of the local aggregator.
充电站利用本地聚合器的公钥,验证本地聚合器的签名是否成立,若成立,则说明签发证书合法;否则,说明签发证书不合法。The charging station uses the public key of the local aggregator to verify whether the signature of the local aggregator is valid. If it is valid, it means that the issued certificate is legal; otherwise, it means that the issued certificate is illegal.
第二步,充电站验证收到签名证书的时间是否在签名证书的有效日期内,若超过有效日期,则执行步骤5,否则执行步骤8。In the second step, the charging station verifies whether the time of receiving the signed certificate is within the valid date of the signed certificate. If it exceeds the valid date, go to step 5, otherwise go to step 8.
步骤8,分配充电插口。Step 8, assign charging sockets.
充电站给电动汽车分配一个实际可用的充电插口。The charging station assigns the electric vehicle a physically available charging socket.
步骤9,信息和能源交互。Step 9, information and energy interaction.
第一步,电动汽车接入充电站后和充电站进行密钥协商,协商出一个会话密钥。In the first step, after the electric vehicle connects to the charging station, it conducts key negotiation with the charging station to negotiate a session key.
第二步,分别采用子集划分方法和向量承诺方法,电动汽车向充电站匿名地证明自己是合法的群成员。In the second step, using the subset partition method and the vector commitment method respectively, the electric vehicle anonymously proves to the charging station that it is a legitimate group member.
第三步,电动汽车用群私钥,对自己的充电申请消息进行签名,并将签名结果发送给充电站,这里使用的签名方法是可撤销的群签名。In the third step, the electric vehicle uses the group private key to sign its own charging application message, and sends the signature result to the charging station. The signature method used here is a revocable group signature.
第四步,充电站收到从电动汽车发来的消息后,用群公钥对签名进行验证,若验证通过,则充电站根据申请及电网需求,充电站和电动汽车进行能源及信息的交互;否则,执行步骤9的第五步。Step 4: After the charging station receives the message from the electric vehicle, it uses the group public key to verify the signature. If the verification is passed, the charging station will exchange energy and information with the electric vehicle according to the application and the grid demand. ; Otherwise, go to Step 5 of Step 9.
第五步,充电站将电动汽车发来的群签名消息发给本地聚合器。In the fifth step, the charging station sends the group signature message sent by the electric vehicle to the local aggregator.
第六步,本地聚合器接收到从充电站发来的签名消息后,采用群成员追踪方法,按照如下步骤,对发送错误消息的电动汽车进行追踪,并给予一定的处罚。Step 6: After receiving the signed message from the charging station, the local aggregator uses the group member tracking method to track the electric vehicle that sent the wrong message and impose certain penalties according to the following steps.
本地聚合器利用群签名打开私钥,得到一个电动汽车编号。The local aggregator uses the group signature to open the private key and obtain an EV number.
在本地聚合器的数据库中查阅存有该编号的电动汽车的相关信息记录,将该编号的电动汽车的相关信息发送给中央聚合器。Check the relevant information records of the numbered electric vehicle in the database of the local aggregator, and send the relevant information of the numbered electric vehicle to the central aggregator.
中央聚合器根据所接收的本地聚合器发送的电动汽车相关信息,在数据库中查出电动汽车的真实身份,并给予一定的处罚。The central aggregator finds out the real identity of the electric vehicle in the database according to the received electric vehicle-related information sent by the local aggregator, and imposes certain penalties.
Claims (7)
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410102335.4A CN103873473B (en) | 2014-03-19 | 2014-03-19 | Method for authenticating anonymity groups of power-driven automobiles by charging station |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201410102335.4A CN103873473B (en) | 2014-03-19 | 2014-03-19 | Method for authenticating anonymity groups of power-driven automobiles by charging station |
Publications (2)
Publication Number | Publication Date |
---|---|
CN103873473A true CN103873473A (en) | 2014-06-18 |
CN103873473B CN103873473B (en) | 2017-01-11 |
Family
ID=50911600
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201410102335.4A Expired - Fee Related CN103873473B (en) | 2014-03-19 | 2014-03-19 | Method for authenticating anonymity groups of power-driven automobiles by charging station |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN103873473B (en) |
Cited By (15)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN104574676A (en) * | 2015-01-23 | 2015-04-29 | 北京国网普瑞特高压输电技术有限公司 | Electric automobile charging management method based on mobile terminal |
CN105450623A (en) * | 2014-11-26 | 2016-03-30 | 国家电网公司 | Access authentication method of electric automobile |
CN109743172A (en) * | 2018-12-06 | 2019-05-10 | 国网山东省电力公司电力科学研究院 | Based on the alliance blockchain V2G network cross-domain authentication method, information data processing terminal |
CN110190958A (en) * | 2019-05-30 | 2019-08-30 | 北京百度网讯科技有限公司 | A kind of auth method of vehicle, device, electronic equipment and storage medium |
CN110381145A (en) * | 2019-07-22 | 2019-10-25 | 长沙理工大学 | Exchange method and system between electric car and power grid |
CN110769379A (en) * | 2019-10-31 | 2020-02-07 | 长安大学 | Message reporting method for forward security and privacy preservation in V2G environment |
CN111382460A (en) * | 2020-03-26 | 2020-07-07 | 国网电子商务有限公司 | Data processing method and system applied to communication of Internet of things |
WO2020197741A1 (en) * | 2019-03-25 | 2020-10-01 | Micron Technology, Inc. | Electric vehicle charging station system |
CN111865602A (en) * | 2020-06-04 | 2020-10-30 | 北京科东电力控制系统有限责任公司 | A multi-party authentication method and system for heterogeneous terminals in a smart energy service system |
CN112019549A (en) * | 2020-08-28 | 2020-12-01 | 长沙理工大学 | Electric power transaction system based on block chain, transaction method and bill query method |
CN112689981A (en) * | 2019-08-19 | 2021-04-20 | 华为技术有限公司 | Communication authentication system and method between vehicle, charging station, and charging station management server |
CN113114630A (en) * | 2021-03-22 | 2021-07-13 | 重庆邮电大学 | Authentication method and system for dynamic wireless charging privacy protection of electric vehicle |
CN113492705A (en) * | 2021-07-14 | 2021-10-12 | 福建星云电子股份有限公司 | Noninductive charging method for charging pile |
CN113924749A (en) * | 2019-04-29 | 2022-01-11 | 现代自动车株式会社 | Cross-certification method and apparatus for electric vehicle charging |
CN117118635A (en) * | 2023-10-16 | 2023-11-24 | 南方电网科学研究院有限责任公司 | Anonymous authentication method and device for electric automobile, storage medium and computer equipment |
Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20120139489A1 (en) * | 2009-06-15 | 2012-06-07 | Rwe Ag | Method and device for communication between an electric vehicle and a charging station |
CN103391208A (en) * | 2012-05-10 | 2013-11-13 | 北京基业达电气有限公司 | Electric vehicle charging station metropolitan area network management system |
-
2014
- 2014-03-19 CN CN201410102335.4A patent/CN103873473B/en not_active Expired - Fee Related
Patent Citations (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20120139489A1 (en) * | 2009-06-15 | 2012-06-07 | Rwe Ag | Method and device for communication between an electric vehicle and a charging station |
CN103391208A (en) * | 2012-05-10 | 2013-11-13 | 北京基业达电气有限公司 | Electric vehicle charging station metropolitan area network management system |
Cited By (26)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105450623A (en) * | 2014-11-26 | 2016-03-30 | 国家电网公司 | Access authentication method of electric automobile |
CN105450623B (en) * | 2014-11-26 | 2018-12-18 | 国家电网公司 | A kind of access authentication method of electric car |
CN104574676A (en) * | 2015-01-23 | 2015-04-29 | 北京国网普瑞特高压输电技术有限公司 | Electric automobile charging management method based on mobile terminal |
CN109743172A (en) * | 2018-12-06 | 2019-05-10 | 国网山东省电力公司电力科学研究院 | Based on the alliance blockchain V2G network cross-domain authentication method, information data processing terminal |
CN109743172B (en) * | 2018-12-06 | 2021-10-15 | 国网山东省电力公司电力科学研究院 | Based on the alliance blockchain V2G network cross-domain authentication method, information data processing terminal |
US11046201B2 (en) | 2019-03-25 | 2021-06-29 | Micron Technology, Inc. | Electric vehicle charging station system |
WO2020197741A1 (en) * | 2019-03-25 | 2020-10-01 | Micron Technology, Inc. | Electric vehicle charging station system |
CN113924749B (en) * | 2019-04-29 | 2024-03-08 | 现代自动车株式会社 | Cross-certification method, power transmission method and cross-certification equipment |
CN113924749A (en) * | 2019-04-29 | 2022-01-11 | 现代自动车株式会社 | Cross-certification method and apparatus for electric vehicle charging |
CN110190958A (en) * | 2019-05-30 | 2019-08-30 | 北京百度网讯科技有限公司 | A kind of auth method of vehicle, device, electronic equipment and storage medium |
CN110381145B (en) * | 2019-07-22 | 2022-01-28 | 长沙理工大学 | Interaction method and system between electric automobile and power grid |
CN110381145A (en) * | 2019-07-22 | 2019-10-25 | 长沙理工大学 | Exchange method and system between electric car and power grid |
CN112689981A (en) * | 2019-08-19 | 2021-04-20 | 华为技术有限公司 | Communication authentication system and method between vehicle, charging station, and charging station management server |
CN110769379A (en) * | 2019-10-31 | 2020-02-07 | 长安大学 | Message reporting method for forward security and privacy preservation in V2G environment |
CN110769379B (en) * | 2019-10-31 | 2021-07-30 | 长安大学 | A message reporting method for forward security and privacy preservation in V2G environment |
CN111382460A (en) * | 2020-03-26 | 2020-07-07 | 国网电子商务有限公司 | Data processing method and system applied to communication of Internet of things |
CN111865602A (en) * | 2020-06-04 | 2020-10-30 | 北京科东电力控制系统有限责任公司 | A multi-party authentication method and system for heterogeneous terminals in a smart energy service system |
CN111865602B (en) * | 2020-06-04 | 2023-04-25 | 北京科东电力控制系统有限责任公司 | Intelligent energy service system heterogeneous terminal multiparty authentication method and system |
CN112019549B (en) * | 2020-08-28 | 2022-07-19 | 长沙理工大学 | Electric power transaction system based on block chain, transaction method and bill query method |
CN112019549A (en) * | 2020-08-28 | 2020-12-01 | 长沙理工大学 | Electric power transaction system based on block chain, transaction method and bill query method |
CN113114630A (en) * | 2021-03-22 | 2021-07-13 | 重庆邮电大学 | Authentication method and system for dynamic wireless charging privacy protection of electric vehicle |
CN113114630B (en) * | 2021-03-22 | 2022-04-15 | 重庆邮电大学 | An authentication method and system for privacy protection of electric vehicle dynamic wireless charging |
CN113492705A (en) * | 2021-07-14 | 2021-10-12 | 福建星云电子股份有限公司 | Noninductive charging method for charging pile |
CN113492705B (en) * | 2021-07-14 | 2023-01-10 | 福建星云电子股份有限公司 | Noninductive charging method for charging pile |
CN117118635A (en) * | 2023-10-16 | 2023-11-24 | 南方电网科学研究院有限责任公司 | Anonymous authentication method and device for electric automobile, storage medium and computer equipment |
CN117118635B (en) * | 2023-10-16 | 2024-02-02 | 南方电网科学研究院有限责任公司 | Anonymous authentication method and device for electric automobile, storage medium and computer equipment |
Also Published As
Publication number | Publication date |
---|---|
CN103873473B (en) | 2017-01-11 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN103873473B (en) | Method for authenticating anonymity groups of power-driven automobiles by charging station | |
CN111372248B (en) | An efficient anonymous identity authentication method in the Internet of Vehicles environment | |
CN110086821A (en) | The authentication method of electric power things-internet gateway and the access of electric power internet-of-things terminal based on block chain | |
CN104219056B (en) | Real-time electric quantity collection method with privacy protection function in smart power grid | |
US9642006B2 (en) | Secure wireless charging | |
CN109743172A (en) | Based on the alliance blockchain V2G network cross-domain authentication method, information data processing terminal | |
CN109936509B (en) | Equipment group authentication method and system based on multi-identity | |
CN108260102B (en) | Proxy signature-based non-access stratum authentication method for LTE-R vehicle-ground communication | |
CN109088857B (en) | Distributed authorization management method in scene of Internet of things | |
CN108667616A (en) | Identity-based cross-cloud security authentication system and method | |
WO2011127810A1 (en) | Method and apparatus for authenticating communication devices | |
CN110381145B (en) | Interaction method and system between electric automobile and power grid | |
CN110958607B (en) | A certificate management method for the Internet of Vehicles to prevent privacy leakage | |
CN105553666B (en) | An intelligent power terminal security authentication system and method | |
CN113114630A (en) | Authentication method and system for dynamic wireless charging privacy protection of electric vehicle | |
CN114037457B (en) | A cross-domain access authentication method for industrial complex product terminals based on identity identification | |
Nicanfar et al. | Security and privacy of electric vehicles in the smart grid context: problem and solution | |
CN117254910B (en) | Efficient group key distribution method based on quantum random number under vehicle-mounted ad hoc network | |
CN109362062A (en) | Anonymous authentication system and method for VANETs based on ID-based group signature | |
CN117241267B (en) | Quantum group key distribution method applicable to V2I scene based on blockchain | |
CN108055263B (en) | Entity authentication authority management system and method in satellite communication network | |
CN103297963B (en) | Based on the method and system without the M2M secret protection of certificate and key management | |
CN117220877A (en) | Certificate-free aggregation signature method for protecting private key applicable to Internet of vehicles | |
Kilari et al. | Revocable anonymity based authentication for vehicle to grid (V2G) communications | |
CN101702807B (en) | Wireless security access authentication method |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20170111 |
|
CF01 | Termination of patent right due to non-payment of annual fee |