Summary of the invention
The invention process provides method for message transmission in a kind of car networked system and equipment, thus gives a kind of by the information of reversed Message Authentication or need the information of the Message Authentication followed the tracks of to inform to the technical scheme of OBU in time.
Embodiments provide the message method in a kind of car networked system, the method comprises:
BCS, at the Message Authentication of cancelling arbitrary mobile unit OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generates corresponding control command;
Described control command is informed at least one OBU by described BCS, and wherein, described control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform at least one OBU described.
In the embodiment of the present invention, described control command at least comprises: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or needs are followed the tracks of and the 3rd parameter for effective time of representing control command.
Further, described first parameter at least comprises the one in following information:
Be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
Preferably, the second parameter that the described Message Authentication to cancelling is relevant is the CRL of the identification information of the Message Authentication of having cancelled described in comprising or the identification information of described Message Authentication of having cancelled.
Based on above-mentioned any embodiment, before BCS generates corresponding control command, described method also comprises:
Described BCS, when determining the Message Authentication needing to cancel arbitrary OBU, sends the first message to CA, with the first message described in application to set aside ask the Message Authentication of cancelling; And,
Described BCS obtains the CRL of described CA according to described first message generation, carries the identification information of the Message Authentication of described BCS application to set aside in described CRL.
Based on above-mentioned any embodiment, described control command is informed at least one OBU by BCS, comprising:
Described control command is sent to self selected roadside device RSU by described BCS, the OBU under sending to this RSU to cover described control command to make described RSU; And/or,
Described control command is directly sent to self selected OBU by described BCS.
The embodiment of the present invention additionally provides the message receival method in a kind of car networked system, and the method comprises:
OBU obtains the control command of BCS notice and stores described control command, and described control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to OBU;
Described OBU, after receiving the message that other OBU broadcast, according to the control command stored, processes the message that other OBU described broadcast.
In the embodiment of the present invention, described control command at least comprises: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or needs are followed the tracks of and the 3rd parameter for effective time of representing control command.
Further, described first parameter at least comprises the one in following information:
Be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
Preferably, the second parameter that the described Message Authentication to cancelling is relevant is the CRL of the identification information of the Message Authentication of having cancelled described in comprising or the identification information of described Message Authentication of having cancelled.
Based on above-mentioned any embodiment, described OBU obtains the control command that described BCS notifies, comprising:
Described OBU directly receives the described control command that described BCS sends; And/or,
Described OBU receives the described control command that roadside device RSU forwards, and wherein, described control command, when receiving the described control command that described BCS sends, is transmitted to all OBU self covered by described RSU.
Based on above-mentioned any embodiment, described OBU stores described control command, also comprises:
If the first information instruction control command of carrying in described control command is certificate revocation instruction, second parameter relevant to the Message Authentication of cancelling that described OBU will carry in described control command, is stored in the revocation list certificate self preserved;
If the first information instruction control command of carrying in described control command is certificate trace command, second parameter relevant to the Message Authentication needing to follow the tracks of that described OBU will carry in described control command, is stored in the tracking list of cert of self preserving.
Based on above-mentioned any embodiment, described OBU, according to the control command stored, processes the message that other OBU described broadcast, comprising:
Described OBU, from the message that other OBU described broadcast, extracts the Message Authentication carried in the message of described other OBU broadcasting;
When extracted Message Authentication is the Message Authentication of Message Authentication or the needs tracking cancelled, described OBU determines the control command that extracted Message Authentication is corresponding from the control command stored;
Described OBU, according to the 3rd parameter of the effective time for representing control command of carrying in the control command determined, judging the control command determined whether within effective time, and carrying out different process according to judged result.
Further, as the first preferred implementation, the Message Authentication extracted is the Message Authentication of having cancelled, and described judged result is for determined control command is within effective time, and described OBU is handled as follows:
When the second information that described OBU carries in determined control command indicates described control command to need to forward, directly broadcast determined control command, or, when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command.
As the preferred implementation of the second, the Message Authentication extracted is the Message Authentication of having cancelled, and described judged result is not for determined control command is within effective time, and described OBU is handled as follows:
Described OBU, from the control command stored, deletes the control command determined; And,
Described OBU deletes in determined control command the Message Authentication of having cancelled indicated from the revocation list certificate self preserved.
As the third preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and described judged result is for determined control command is within effective time, and described OBU is handled as follows:
When the second information instruction control command that described OBU carries in determined control command needs to forward, directly broadcast determined control command, or when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command;
And/or,
When the 4th information instruction that described OBU carries in determined control command needs to report the related data determined according to control command, the information reporting directly play by other OBU described in receiving is to described BCS, or, according to the reporting schemes of the 5th information instruction of carrying in determined control command, the information reporting play by other OBU described in receiving is to described BCS.
As the 4th kind of preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and described judged result is not for determined control command is within effective time, and described OBU is handled as follows:
Described OBU, from the control command stored, deletes the control command determined; And,
Described OBU, from the tracking list of cert of self preserving, deletes the Message Authentication of the needs tracking indicated in the control command determined.
Based on above-mentioned any embodiment, described method also comprises:
Described OBU, when the cycle of each setting arrives, checks the 3rd parameter of the effective time for representing described control command of carrying in the control command self stored, to judge the control command that self stores whether within effective time;
When determining that arbitrary control command of self storing is not within effective time, described OBU, from the control command stored, deletes the control command not within effective time; And the Message Authentication of having cancelled indicated in control command not within effective time described in deleting from the revocation list certificate self preserved, or, the Message Authentication that the needs indicated in the control command described in deleting from the tracking list of cert that self preserves not within effective time are followed the tracks of.
The invention provides a kind of background control system BCS, this BCS comprises:
Directive generation module, at the Message Authentication of cancelling arbitrary mobile unit OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generates corresponding control command;
Instruction notification module, for described control command is informed at least one OBU, described control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform at least one OBU described.
In force, described BCS also comprises:
Certificate revocation module, for when determining the Message Authentication needing to cancel arbitrary OBU, sends the first message to certification authority CA, with the first message described in application to set aside ask the Message Authentication of cancelling; And, obtain the CRL of described CA according to described first message generation, in described CRL, carry the identification information of the Message Authentication of described BCS application to set aside.
In force, described instruction notification module specifically for:
Described control command is sent to self selected roadside device RSU, the OBU under sending to this RSU to cover described control command to make described RSU; And/or, described control command is directly sent to self selected OBU.
The embodiment of the present invention additionally provides a kind of mobile unit OBU, and this OBU comprises:
First processing module, for obtaining the control command of BCS notice and storing described control command, described control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to OBU;
Second processing module, for after receiving the message that other OBU broadcast, according to the control command stored, processes the message that other OBU described broadcast.
In force, described first processing module specifically for:
The described control command that the described BCS of direct reception sends; And/or receive the described control command that roadside device RSU forwards, wherein, described control command, when receiving the described control command that described BCS sends, is transmitted to all OBU self covered by described RSU.
Further, described first processing module also for:
If the first information instruction control command of carrying in described control command is certificate revocation instruction, by second parameter relevant to the Message Authentication of cancelling of carrying in described control command, be stored in the revocation list certificate self preserved;
If the first information instruction control command of carrying in described control command is certificate trace command, by second parameter relevant to the Message Authentication needing to follow the tracks of of carrying in described control command, be stored in the tracking list of cert of self preserving.
Based on above-mentioned any embodiment, described second processing module specifically for:
From the message that other OBU described broadcast, extract the Message Authentication carried in the message of described other OBU broadcasting; When extracted Message Authentication is the Message Authentication of Message Authentication or the needs tracking cancelled, from the control command stored, determine the control command that extracted Message Authentication is corresponding; And, according to the 3rd parameter of the effective time for representing control command of carrying in the control command determined, judging the control command determined whether within effective time, and carrying out different process according to judged result.
In force, as the first preferred implementation, the Message Authentication extracted is the Message Authentication of having cancelled, and described judged result is for determined control command is within effective time, described second processing module specifically for:
When second information of carrying in determined control command indicates described control command to need to forward, directly broadcast determined control command, or, when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command.
As the preferred implementation of the second, the Message Authentication extracted is the Message Authentication of having cancelled, and judged result is not for determined control command is within effective time, the second processing module specifically for:
From the control command stored, delete the control command determined; And, from the revocation list certificate that self preserves, delete in determined control command the Message Authentication of having cancelled indicated.
As the third preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and judged result is for determined control command is within effective time, the second processing module specifically for:
When the second information instruction control command of carrying in determined control command needs to forward, directly broadcast determined control command, or when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command;
And/or,
When the 4th information instruction of carrying in determined control command needs to report the related data determined according to control command, the information reporting directly play by other OBU described in receiving is to described BCS, or, according to the reporting schemes of the 5th information instruction of carrying in determined control command, the information reporting play by other OBU described in receiving is to described BCS.
As the 4th kind of preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and described judged result is not for determined control command is within effective time, described second processing module specifically for:
From the control command stored, delete the control command determined; And, from the tracking list of cert that self preserves, delete the Message Authentication of the needs tracking indicated in the control command determined.
Based on above-mentioned any embodiment, described first processing module also for:
When the cycle of each setting arrives, check the 3rd parameter of the effective time for representing described control command of carrying in the control command self stored, to judge the control command that self stores whether within effective time; When determining that arbitrary control command of self storing is not within effective time, from the control command stored, delete the control command not within effective time; And the Message Authentication of having cancelled indicated in control command not within effective time described in deleting from the revocation list certificate self preserved, or, the Message Authentication that the needs indicated in the control command described in deleting from the tracking list of cert that self preserves not within effective time are followed the tracks of.
In method for message transmission in the car networked system that the embodiment of the present invention provides and equipment, BCS is at the Message Authentication of cancelling arbitrary OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command, and the control command of generation is informed at least one OBU; OBU obtains the control command of BCS notice and stores this control command, and after receiving the message that other OBU broadcast, according to the control command stored, the message that these other OBU broadcast is processed, thus the Message Authentication that the Message Authentication this OBU being known in time cancelled or need is followed the tracks of, ensure that the fail safe of car networked system.
Embodiment
In the embodiment of the present invention, BCS is at the Message Authentication of cancelling arbitrary OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command, and the control command of generation is informed at least one OBU, in time, effectively learn the Message Authentication that the Message Authentication of having cancelled or needs are followed the tracks of to enable this at least one OBU, thus ensure that the fail safe of car networked system.
First, each equipment related to is described in the embodiment of the present invention, specific as follows:
CA: be responsible for issuing to car networked devices (such as OBU, RSU etc.) the various certificates comprising Message Authentication; Meanwhile, this CA is also responsible for signing and issuing CRL, and the CRL signed and issued is published to the retrievable place of CRL user (as server).
BCS: be responsible for applying for certificate revocation list to CA, generate the control command of the relevant information of the Message Authentication followed the tracks of containing reversed Message Authentication or needs, and this control command is published to RSU(by RSU, this control command is broadcast to OBU again), or, directly this instruction is issued in OBU.
RSU: the OBU be responsible on the vehicle in its coverage broadcasts the control command sent by BCS.
OBU: receive the control command broadcast by RSU, or directly receive control command from BCS, then according to this control command, perform and operate accordingly.
Below in conjunction with Figure of description, the embodiment of the present invention is described in further detail.Should be appreciated that embodiment described herein is only for instruction and explanation of the present invention, is not intended to limit the present invention.
Embodiments provide the message method of BCS side in a kind of car networked system, as shown in Figure 2, the method comprises:
Step 21, BCS, at the Message Authentication of cancelling arbitrary OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command.
In this step, the control command that BCS generates includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if BCS has cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If BCS needs the Message Authentication following the tracks of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can be the certificate revocation list (CRL) of the identification information (sequence number of Message Authentication as reversed in this) comprising the Message Authentication that this has been cancelled, also can be the identification information (sequence number of Message Authentication as reversed in this) of the Message Authentication that this has been cancelled.
In force, preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter can be the identification information (sequence number as the Message Authentication that these needs are followed the tracks of) of the Message Authentication that these needs are followed the tracks of.
Illustrate, the control command that BCS generates can adopt following form to realize: the main contents of control command are [M, C, T], wherein, M is the first parameter, which specify the type of this control command, this control command the need of to forward and forwarding condition, related data is the need of reporting and the reporting schemes of related data; C is the second parameter, its identification information saving certificate revocation list or need the Message Authentication followed the tracks of; T is the 3rd parameter, which specify the term of validity of this control command.It should be noted that, after exceeding the term of validity of this control command, this control command can not be forwarded or perform.
Generated control command is informed at least one OBU by step 22, BCS, and wherein, this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to this at least one OBU.
In the embodiment of the present invention, BCS is at the Message Authentication of cancelling arbitrary OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command, and the control command of generation is informed at least one OBU, in time, effectively learn the Message Authentication that the Message Authentication of having cancelled or needs are followed the tracks of to enable this at least one OBU, thus ensure that the fail safe of car networked system.
In force, in step 21, before BCS generates corresponding control command, the method also comprises:
BCS, when determining the Message Authentication needing to cancel arbitrary OBU, sends the first message to CA, with this first message of application to set aside ask the Message Authentication of cancelling; And,
BCS obtains CA according to the CRL of this first message generation, carries the identification information of the Message Authentication of BCS application to set aside in this CRL.
Concrete, BCS is when determining the Message Authentication needing to cancel arbitrary OBU, and the first message sent to CA can be certificate revocation application, with certain Message Authentication of application to set aside.This CRL, after generating CRL according to this first message (or certificate revocation application), directly can be sent to BCS by CA, also this CRL can be published to the place that CRL user can access.
In force, CA only can comprise the identification information of the Message Authentication of BCS institute application to set aside at the CRL generated according to this first message (or certificate revocation application), also can comprise the identification information of all identification informations of Message Authentication (i.e. all Message Authentication of this BCS institute application to set aside) of having cancelled and the Message Authentication of this BCS institute application to set aside.
Based on above-mentioned any embodiment, in order to ensure the fail safe communicated, in step 22, BCS also comprises before generated control command is informed at least one OBU:
BCS uses the Message Authentication of self to carry out digital signature to generated control command, and the control command after digital signature is informed at least one OBU.
Based on above-mentioned any embodiment, in step 22, generated control command is informed at least one OBU by BCS, comprises following two kinds of implementations:
Generated control command is sent to self selected RSU by mode one, BCS, the OBU under sending to this RSU to cover this control command to make RSU.
Concrete, BCS selects at least one RSU from the RSU that self serves, and generated control command is sent to self selected RSU, the OBU under sending to this RSU to cover this control command to make RSU.Preferably, each RSU that generated control command sends to self to serve by BCS, the OBU under sending to this RSU to cover this control command to make RSU.
Generated control command is directly sent to self selected OBU by mode two, BCS.
Under which, BCS can pass through 3G/4G or other communication modes, generated control command is sent to this BCS the OBU that selectes, the OBU on such as, each taxi in certain taxi system.
It should be noted that, BCS can adopt above either type that generated control command is informed at least one OBU, and generated control command is informed at least one OBU by the mode that mode one also can be adopted to combine with mode two.
Based on same inventive concept, embodiments provide the message receival method of OBU side in a kind of car networked system, as shown in Figure 3, the method comprises:
Step 31, OBU obtain the control command of BCS notice and store this control command, and this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to OBU.
In this step, the control command that OBU gets includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if BCS has cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If BCS needs the Message Authentication following the tracks of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can, for comprising the certificate revocation list (CRL) of the identification information of the Message Authentication that this has been cancelled, also can be the identification information of the Message Authentication that this has been cancelled.
Preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter is the identification information of the Message Authentication that these needs are followed the tracks of.
Step 32, OBU, after receiving the message that other OBU broadcast, according to the control command stored, process the message that these other OBU broadcast.
In the embodiment of the present invention, OBU obtains the control command of BCS notice and stores this control command, this control command is for notifying the Message Authentication that OBU has cancelled or the Message Authentication that needs are followed the tracks of, thus the Message Authentication that the Message Authentication this OBU being known in time cancelled or need is followed the tracks of, ensure that the fail safe of car networked system; And OBU is after receiving the message that other OBU broadcast, and according to the control command stored, processes the message that these other OBU broadcast.
In force, in step 31, OBU obtains the control command of BCS notice, comprises following two kinds of implementations:
Mode 1, OBU receive the control command that RSU forwards, and wherein, this control command, when receiving the control command that BCS sends, is transmitted to all OBU self covered, specifically see aforesaid way one, repeats no more herein by this RSU.
Mode 2, OBU directly receive the control command that BCS sends, and specifically see aforesaid way two, repeat no more herein.
Based on above-mentioned any embodiment, in force, in step 31, the control command that OBU storage gets, also comprises:
If the first information instruction control command of carrying in this control command is certificate revocation instruction, then OBU second parameter relevant to the Message Authentication of cancelling of will carry in this control command, is stored in the revocation list certificate of self preservation;
If the first information carried in this control command indicates this control command to be certificate trace command, then second parameter relevant to needing the Message Authentication followed the tracks of that will carry in this control command of OBU, is stored in the tracking list of cert of self preservation.
Illustrate, as shown in table 1 for the preferred implementation of the one of the instruction list of control store instruction in OBU, command identification in table 1 be OBU for identifying the internal number of different control commands, the Message Authentication (with the Message Authentication needing to follow the tracks of) of having cancelled in revocation list certificate (with following the tracks of list of cert) can be connected with control command by command identification.
Command identification |
Control command |
c
1 |
[M1,C1,T1] |
c
2 |
[M2,C2,T2] |
...... |
...... |
Table 1: command list
As shown in table 2 for the preferred implementation of the one of the revocation list certificate storing the Message Authentication of having cancelled in OBU:
Command identification |
The Message Authentication of having cancelled |
c
1 |
Revoked Certificate1 |
...... |
....... |
Table 2: revocation list certificate
The preferred implementation of one for storing the tracking list of cert needing the Message Authentication followed the tracks of in OBU is as shown in table 3:
Command identification |
Need the Message Authentication followed the tracks of |
....... |
....... |
c
2 |
Tracked Certificate2 |
...... |
....... |
Table 3: follow the tracks of list of cert
Based on above-mentioned any embodiment, in step 32, OBU, according to the control command stored, processes the message that other OBU received broadcast, comprising:
OBU, from the message that these other OBU broadcast, extracts the Message Authentication carried in the message of this other OBU broadcasting;
When extracted Message Authentication is the Message Authentication of Message Authentication or the needs tracking cancelled, OBU determines the control command that extracted Message Authentication is corresponding from the control command stored; And,
OBU, according to the 3rd parameter of the effective time for representing control command of carrying in the control command determined, judging the control command determined whether within effective time, and carrying out different process according to judged result.
Concrete, OBU is after receiving the message that other OBU broadcast, first from this message, extract Message Authentication, then the revocation list certificate stored according to self and follow the tracks of list of cert, judge that whether this Message Authentication extracted is the Message Authentication that the Message Authentication of having cancelled or need is followed the tracks of; When the Message Authentication determining that this extracts is the Message Authentication of Message Authentication or the needs tracking cancelled, the instruction list stored according to self, determine signed and issued by BCS and the control command corresponding with the Message Authentication that the Message Authentication that this has been cancelled or need is followed the tracks of.
Further, as the first preferred process mode, the Message Authentication extracted is the Message Authentication of having cancelled, and above-mentioned judged result is for determined control command is within effective time, then this OBU is handled as follows: when the second information instruction control command that OBU carries in determined control command needs to forward, directly broadcast determined control command, or, when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command, other OBU around this OBU are informed to the Message Authentication of this having been cancelled.
As the second preferred process mode, the Message Authentication extracted is the Message Authentication of having cancelled, and above-mentioned judged result is not for determined control command is within effective time, this OBU is handled as follows: OBU, from the control command stored, deletes the control command determined; And OBU deletes in determined control command the Message Authentication of having cancelled indicated from the revocation list certificate self preserved.
As the third preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is for determined control command is within effective time, then this OBU is handled as follows:
When the second information instruction control command that OBU carries in determined control command needs to forward, directly broadcast determined control command, or when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command;
And/or,
When the 4th information instruction that OBU carries in determined control command needs to report the related data determined according to control command, the information reporting directly play by other OBU received is to BCS, or, according to the reporting schemes of the 5th information instruction of carrying in determined control command, the information reporting play by other OBU received is to BCS.
As the 4th kind of preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is not for determined control command is within effective time, then OBU is handled as follows: OBU, from the control command stored, deletes the control command determined; And OBU, from the tracking list of cert of self preserving, deletes the Message Authentication of the needs tracking indicated in the control command determined.
It should be noted that, OBU is determining that the Message Authentication that this extracts is not the Message Authentication of having cancelled, and after neither needing the Message Authentication followed the tracks of, the processing mode of OBU to the message that other OBU received broadcast is same as the prior art.
Based on above-mentioned any embodiment, the method also comprises:
OBU, when the cycle of each setting arrives, checks the 3rd parameter of the effective time for representing control command of carrying in the control command self stored, to judge the control command that self stores whether within effective time; And,
When determining that arbitrary control command of self storing is not within effective time, OBU, from the control command stored, deletes the control command not within effective time determined; And the Message Authentication of having cancelled indicated in the control command of deleting not within effective time from the revocation list certificate self preserved, or, from the tracking list of cert that self preserves, delete the Message Authentication of the needs tracking indicated in the determined control command not within effective time, thus ensure that the validity of control command, revocation list certificate and the tracking list of cert self stored.
The reciprocal process of BCS, CA, RSU and OBU from car networked system, is described the method for message transmission that the embodiment of the present invention provides below.
Shown in Figure 4, reciprocal process comprises the following steps:
Step 1: because certain reason BCS needs the Message Authentication of cancelling certain OBU, then BCS sends certificate revocation application to CA.
Step 2:CA signs and issues a certificate revocation list, the identification information wherein containing reversed Message Authentication, and this CRL is published to the place can accessed by CRL user, gets this CRL to enable BCS.
Step 3:BCS generates corresponding control command and issues this control command, and the main contents of this instruction are [M, C, T].
Wherein, BCS can adopt following two kinds of modes to issue generated control command:
BCS the control command of generation is sent to its RSU that selectes; And/or,
BCS is logical 3G/4G network or other communication modes directly, this control command are issued in selected OBU.
This control command, after the control command receiving BCS transmission, is broadcast the OBU that can cover to its antenna by step 4:RSU.
The control command received is kept in command list by step 5:OBU, then the certificate information of carrying in this control command is kept at revocation list certificate by its generic or follows the tracks of list of cert; OBU is broadcasting the location message of this vehicle and/or is travelling while message, the message that the OBU also receiving other vehicles around broadcasts, and carries out analyzing and processing according to the control command stored to the message received, specific as follows:
OBU extracts Message Authentication from the message received, and itself and revocation list certificate is compared with the Message Authentication followed the tracks of in list of cert, is cancelled or tracked certificate to check whether this Message Authentication belongs to;
If the Message Authentication extracted is consistent with revocation list certificate or certain Message Authentication followed the tracks of in list of cert, then illustrate that this Message Authentication extracted has been cancelled or needed to follow the tracks of, such as, " Revoked Certificate1 " in revocation list certificate;
OBU is from revocation list certificate or follow the tracks of list of cert, obtains corresponding command identification, such as, " c1 " in revocation list certificate;
OBU, according to command identification, finds the original control command signed and issued by BCS in instruction list, such as, instruction " [M1, C1, T1] " in instruction list;
Whether OBU checks the T1 parameter of this control command, be in the term of validity to determine that this control command is current; If so, then OBU resolves the parameter M1 in this control command, and performs corresponding operation, and (i.e. step 6), containing the positional information of vehicle and the driving information of broadcasting this message in the message reported such as to report to BCS the message received; And for example, broadcast this control command towards periphery, object is by reversed certificate or needs the certificate followed the tracks of to inform to neighbouring vehicle; This message also may need to carry out multi-hop propagation in this area, to arrive the spread scope of directives prescribe;
If not, then this control command removes by OBU from instruction list, is removed by the Message Authentication of correspondence simultaneously, and terminate this operation from revocation list certificate or tracking list of cert.
Be described issuing certificate revocation message and issuing two scenes needing to follow the tracks of certificate message respectively below by two specific embodiments.
Embodiment one, embody rule scene are: certain civilian vehicle is because being had special current priority by condemnation, and this right-of-way is write in the Message Authentication of its OBU, the requisition of this vehicle stops before its Certificate Revocation phase arrives, for avoiding this vehicle to abuse this special current priority, need in time the Message Authentication being assigned to this vehicle to be cancelled.Specific implementation process is as follows:
1, BCS sends certificate revocation application to CA, and gets the CRL that CA signs and issues according to this certificate revocation application.
Accordingly, CA signs and issues a CRL according to this certificate revocation application, the identification information wherein containing reversed Message Authentication; This CRL is published to the place can accessed by CRL user by CA, and BCS obtains this CRL.
2, BCS generates corresponding control command, and to notify the Message Authentication that OBU has cancelled, the main contents of this control command are [M1, C1, T1].Wherein, the content of M1 is: this control command is certificate revocation instruction, can relay this control command and relay condition be receive utilize cancellation of doucment to sign and issue message after broadcast this control command immediately; The content of C1 is: the CRL comprising the Message Authentication of having cancelled; The content of T1 is: the term of validity of this control command is from " 2013.10.01 " to " 2013.10.31 ".
3, the BCS RSU that sends to its city, place all the control command of generation, was then broadcast this control command with every 10 minutes intervals once by RSU in 24 hours; BCS passes through the OBU direct communication of taxi communication system and taxi simultaneously, and this instruction is issued in these OBU.
4, after OBU receives this control command, this control command is kept in the instruction list of instruction storage, OBU gives the internal number of this control command for " 123456 ", then the certificate information of carrying in this control command is extracted, and being kept in revocation list certificate, event memory is as shown in table 4a and table 4b.
Command identification |
Control command |
...... |
....... |
123456 |
[M1,C1,T1] |
Table 4a: command list
Table 4b: revocation list certificate
5, OBU is broadcasting this truck position and is travelling while message, receives and analyzes the message that other vehicles of surrounding broadcast.OBU receives the message signed and issued by the Message Authentication of having cancelled, and concrete processing procedure is as follows:
(1) OBU extracts Message Authentication from the message received, and then obtains certificate serial number, then by its with revocation list certificate with follow the tracks of the certificate serial number recorded in list of cert and compare;
(2) at revocation list certificate, OBU finds that this Message Authentication is cancelled, and command identification is " 123456 ";
(3) OBU is according to command identification " 123456 ", finds the original control command of being sent by BCS to be [M1, C1, T1] in command list;
(4) OBU is by current date (in the present embodiment for " 2013.10.25 ") compared with the term of validity described in the parameter T1 of this control command (" 2013.10.01 " is to " 2013.10.31 "), and determines that this control command is still in the term of validity;
(5) OBU resolves the parameter M1 of this control command, and performs corresponding operation, namely forwards this control command towards periphery.
Embodiment two, embody rule scene are: certain vehicle is stolen to be robbed, and need follow the trail of its whereabouts as early as possible and report, and the certificate that this vehicle (OBU) uses is classified as the certificate needing to follow the tracks of by BCS at once.Specific implementation process is as follows:
1, BCS generates corresponding control command, and to notify that OBU needs the Message Authentication followed the tracks of, the main contents of this control command are [M2, C2, T2].
Wherein, the content of M2 is: this control command is certificate trace command, can relay this control command, relay condition be receive utilize the message of tracked certificate issuance after broadcast immediately this control command and by 3G/4G network report receive by the message of tracked certificate issuance; The content of C2 is: the sequence number needing the Message Authentication followed the tracks of; The content of T2 is: the term of validity of this control command is from " 2013.10.01 " to " 2013.10.07 ".
2, the control command of generation is sent to selected RSU by BCS, then this control command is immediately broadcast away by RSU; BCS simultaneously by taxi communication system with OBU direct communication on the taxi selected, and this control command to be issued in these OBU.
3, after OBU receives above-mentioned control command, first this control command is kept in instruction list, then extracts the parameter C2 relevant to the Message Authentication needing to follow the tracks of carried in this control command, and be kept in tracking list of cert.
4, the OBU of certain chassis receives this control command at A, receive at B the message using the Message Authentication of needs tracking to sign and issue by other vehicles after a few days, then this OBU is according to the content in M2, be connected with BCS at once, and by the information reporting that receives to BCS, description in concrete processing procedure and embodiment one is similar, repeats no more herein.
Said method handling process can realize with software program, and this software program can be stored in storage medium, when the software program stored is called, performs said method step.
Based on same inventive concept, the embodiment of the present invention additionally provides a kind of background control system BCS, shown in Figure 5, and this BCS comprises:
Directive generation module 51, at the Message Authentication of cancelling arbitrary mobile unit OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generates corresponding control command;
Instruction notification module 52, the control command for being generated by directive generation module 51 informs at least one OBU, and this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to this at least one OBU.
The BCS that the embodiment of the present invention provides, at the Message Authentication of cancelling arbitrary OBU or when determining the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command, and the control command of generation is informed at least one OBU, in time, effectively learn the Message Authentication that the Message Authentication of having cancelled or needs are followed the tracks of to enable this at least one OBU, thus ensure that the fail safe of car networked system.
In the embodiment of the present invention, the control command that directive generation module 51 generates includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If desired follow the tracks of the Message Authentication of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can be the certificate revocation list (CRL) of the identification information (sequence number of Message Authentication as reversed in this) comprising the Message Authentication that this has been cancelled, also can be the identification information (sequence number of Message Authentication as reversed in this) of the Message Authentication that this has been cancelled.
In force, preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter can be the identification information (sequence number as the Message Authentication that these needs are followed the tracks of) of the Message Authentication that these needs are followed the tracks of.
In force, this BCS also comprises certificate revocation module 53, wherein:
This certificate revocation module 53, for when determining the Message Authentication needing to cancel arbitrary OBU, sends the first message to CA, with this first message of application to set aside ask the Message Authentication of cancelling; And, obtain CA according to the CRL of this first message generation, in this CRL, carry the identification information of the Message Authentication of this BCS application to set aside.
In force, instruction notification module 52 specifically for:
The control command that directive generation module 51 generates is sent to self selected roadside device RSU, the OBU under sending to this RSU to cover this control command to make RSU, specifically see the description of aforesaid way one, repeats no more herein; And/or,
The control command generated by directive generation module 51 directly sends to self selected OBU, specifically see the description of aforesaid way two, repeats no more herein.
Based on same inventive concept, the embodiment of the present invention additionally provides a kind of mobile unit OBU, shown in Figure 6, and this OBU comprises:
First processing module 61, for obtaining the control command of BCS notice and storing this control command, wherein, this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to OBU;
Second processing module 62, for after receiving the message that other OBU broadcast, according to the control command stored, processes the message that other OBU broadcast.
The OBU that the embodiment of the present invention provides, obtain the control command of BCS notice and store this control command, this control command is for notifying the Message Authentication that OBU has cancelled or the Message Authentication that needs are followed the tracks of, thus the Message Authentication that the Message Authentication this OBU being known in time cancelled or need is followed the tracks of, ensure that the fail safe of car networked system; And OBU is after receiving the message that other OBU broadcast, and according to the control command stored, processes the message that these other OBU broadcast.
In the embodiment of the present invention, the control command that the first processing module 61 gets includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if BCS has cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If BCS needs the Message Authentication following the tracks of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can, for comprising the certificate revocation list (CRL) of the identification information of the Message Authentication that this has been cancelled, also can be the identification information of the Message Authentication that this has been cancelled.
Preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter is the identification information of the Message Authentication that these needs are followed the tracks of.
In force, the first processing module 61 specifically for:
Directly receive the control command that BCS sends, specifically see aforesaid way 1, repeat no more herein;
And/or,
Receive the control command that RSU forwards, wherein, this control command, when receiving the control command that BCS sends, is transmitted to all OBU self covered, specifically see aforesaid way 2, repeats no more herein by this RSU.
In force, the first processing module 61 also for:
If the first information instruction control command of carrying in control command is certificate revocation instruction, by second parameter relevant to the Message Authentication of cancelling of carrying in this control command, be stored in the revocation list certificate self preserved;
If the first information instruction control command of carrying in control command is certificate trace command, by second parameter relevant to the Message Authentication needing to follow the tracks of of carrying in this control command, be stored in the tracking list of cert of self preserving.
Based on above-mentioned any embodiment, the second processing module 62 specifically for:
From the message that other OBU broadcast, extract the Message Authentication carried in the message of this other OBU broadcasting; When extracted Message Authentication is the Message Authentication of Message Authentication or the needs tracking cancelled, from the control command stored, determine the control command that extracted Message Authentication is corresponding; And, according to the 3rd parameter of the effective time for representing control command of carrying in the control command determined, judging the control command determined whether within effective time, and carrying out different process according to judged result.
Further, as the first preferred process mode, the Message Authentication extracted is the Message Authentication of having cancelled, and above-mentioned judged result is for determined control command is within effective time, the second processing module 62 specifically for:
When second information of carrying in determined control command indicates this control command to need to forward, directly broadcast determined control command, or, when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command.
As the second preferred process mode, the Message Authentication extracted is the Message Authentication of having cancelled, and above-mentioned judged result is not for determined control command is within effective time, the second processing module 62 specifically for:
From the control command stored, delete the control command determined; And, from the revocation list certificate that self preserves, delete in determined control command the Message Authentication of having cancelled indicated.
As the third preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is for determined control command is within effective time, the second processing module 62 specifically for:
When the second information instruction control command of carrying in determined control command needs to forward, directly broadcast determined control command, or when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command;
And/or,
When the 4th information instruction of carrying in determined control command needs to report the related data determined according to control command, the information reporting directly play by this other OBU received is to BCS, or, according to the reporting schemes of the 5th information instruction of carrying in determined control command, the information reporting play by this other OBU received is to BCS.
As the 4th kind of preferred implementation, the Message Authentication extracted is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is not for determined control command is within effective time, the second processing module 62 specifically for:
From the control command stored, delete the control command determined; And, from the tracking list of cert that self preserves, delete the Message Authentication of the needs tracking indicated in the control command determined.
Based on above-mentioned any embodiment, the first processing module 61 also for:
When the cycle of each setting arrives, check the 3rd parameter of the effective time for representing this control command of carrying in the control command self stored, to judge the control command that self stores whether within effective time; When determining that arbitrary control command of self storing is not within effective time, from the control command stored, delete the control command not within effective time determined; And the Message Authentication of having cancelled indicated in the determined control command not within effective time is deleted from the revocation list certificate self preserved, or, from the tracking list of cert that self preserves, delete the Message Authentication of the needs tracking indicated in the determined control command not within effective time.
Below in conjunction with preferred hardware configuration, the structure of the background control system BCS that the embodiment of the present invention provides, processing mode are described.
Shown in Figure 7, at least one processor 72 that this BCS comprises transceiver 71 and is connected with this transceiver 71, wherein:
When processor 72 is arranged at the Message Authentication of cancelling arbitrary mobile unit OBU or determines the Message Authentication needing to follow the tracks of arbitrary OBU, generate corresponding control command;
Transceiver 71 is arranged to and the control command that processor 72 generates is informed at least one OBU, and wherein, this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to this at least one OBU.
In the embodiment of the present invention, the control command that processor 72 generates includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If desired follow the tracks of the Message Authentication of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can be the certificate revocation list (CRL) of the identification information (sequence number of Message Authentication as reversed in this) comprising the Message Authentication that this has been cancelled, also can be the identification information (sequence number of Message Authentication as reversed in this) of the Message Authentication that this has been cancelled.
In force, preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter can be the identification information (sequence number as the Message Authentication that these needs are followed the tracks of) of the Message Authentication that these needs are followed the tracks of.
In force, transceiver 71 is also arranged to:
When the Message Authentication needing to cancel arbitrary OBU determined by processor 72, send the first message to CA, with this first message of application to set aside ask the Message Authentication of cancelling; And, obtain CA according to the CRL of this first message generation, in this CRL, carry the identification information of the Message Authentication of this BCS application to set aside.
In force, transceiver 71 be configured specifically for:
The control command that processor 72 generates is sent to self selected roadside device RSU, the OBU under sending to this RSU to cover this control command to make RSU, specifically see the description of aforesaid way one, repeats no more herein; And/or,
The control command generated by processor 72 directly sends to self selected OBU, specifically see the description of aforesaid way two, repeats no more herein.
Below in conjunction with preferred hardware configuration, the structure of the mobile unit OBU that the embodiment of the present invention provides, processing mode are described.
Shown in Figure 8, at least one processor 82 that this OBU comprises transceiver 81, is connected with this transceiver 81, and the memory 83 be connected with transceiver 81 and processor 82 respectively, wherein:
Transceiver 81 is arranged to: the control command obtaining BCS notice, wherein, this control command is used for the Message Authentication of having cancelled or needs the Message Authentication followed the tracks of to inform to OBU; And receive the message that other OBU broadcast;
Processor 82 is arranged to: the control command that transceiver 81 gets is stored in memory 83, and after transceiver 81 receives the message that other OBU broadcast, according to the control command that memory 83 stores, the message that other OBU broadcast is processed.
In the embodiment of the present invention, the control command that transceiver 81 gets includes but not limited to following parameters: for describing the first parameter of control command, second parameter relevant to the Message Authentication that the Message Authentication of cancelling or need is followed the tracks of and the 3rd parameter for effective time of representing control command.
Concrete, if BCS has cancelled the Message Authentication of arbitrary OBU, then the second parameter has been the parameter relevant to the Message Authentication of cancelling; If BCS needs the Message Authentication following the tracks of arbitrary OBU, then the second parameter is the parameter relevant to the Message Authentication needing to follow the tracks of.
Further, this first parameter at least comprises the one in following information: be used to indicate the first information that control command is certificate revocation instruction or certificate trace command, be used to indicate control command the need of the second information forwarded, be used to indicate required satisfied forwarding condition when control command needs to forward the 3rd information, be used to indicate the need of reporting the 4th information of the related data determined according to control command and being used to indicate the 5th information of the reporting schemes adopted when needs reported data.
In force, preferably, second parameter relevant to the Message Authentication of cancelling can, for comprising the certificate revocation list (CRL) of the identification information of the Message Authentication that this has been cancelled, also can be the identification information of the Message Authentication that this has been cancelled.
Preferably, the second relevant to the Message Authentication needing to follow the tracks of parameter is the identification information of the Message Authentication that these needs are followed the tracks of.
In force, transceiver 81 be configured specifically for:
Directly receive the control command that BCS sends, specifically see aforesaid way 1, repeat no more herein;
And/or,
Receive the control command that RSU forwards, wherein, this control command, when receiving the control command that BCS sends, is transmitted to all OBU self covered, specifically see aforesaid way 2, repeats no more herein by this RSU.
In force, processor 82 is also arranged to:
If the first information instruction control command of carrying in control command is certificate revocation instruction, by second parameter relevant to the Message Authentication of cancelling of carrying in this control command, be stored in the revocation list certificate of memory 83 preservation;
If the first information instruction control command of carrying in control command is certificate trace command, by second parameter relevant to the Message Authentication needing to follow the tracks of of carrying in this control command, be stored in the tracking list of cert of memory 83 preservation.
Based on above-mentioned any embodiment, processor 82 be configured specifically for:
From the message that other OBU broadcast, extract the Message Authentication carried in the message of this other OBU broadcasting; When extracted Message Authentication is the Message Authentication of Message Authentication or the needs tracking cancelled, from the control command that memory 83 stores, determine the control command that extracted Message Authentication is corresponding; And, according to the 3rd parameter of the effective time for representing control command of carrying in the control command determined, judging the control command determined whether within effective time, and carrying out different process according to judged result.
Further, as the first preferred process mode, the Message Authentication that processor 82 extracts is the Message Authentication of having cancelled, and above-mentioned judged result is for determined control command is within effective time, processor 82 be configured specifically for:
When second information of carrying in determined control command indicates this control command to need to forward, directly broadcast determined control command, or, when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, broadcast determined control command.
As the second preferred process mode, the Message Authentication that processor 82 extracts is the Message Authentication of having cancelled, and above-mentioned judged result is not for determined control command is within effective time, and processor 82 is arranged to:
From the control command that memory 83 stores, delete the control command determined; And, from the revocation list certificate that memory 83 is preserved, delete in determined control command the Message Authentication of having cancelled indicated.
As the third preferred implementation, the Message Authentication that processor 82 extracts is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is for determined control command is within effective time, and processor 82 is arranged to:
When the second information instruction control command of carrying in determined control command needs to forward, trigger transceiver 81 and directly broadcast determined control command, or when the forwarding condition of the 3rd information instruction determining to carry in the current satisfied control command determined, trigger transceiver 81 and broadcast determined control command;
And/or,
When the 4th information instruction of carrying in determined control command needs to report the related data determined according to control command, trigger the direct information reporting play by this other OBU received of transceiver 81 to BCS, or, according to the reporting schemes of the 5th information instruction of carrying in determined control command, the information reporting that this other OBU received plays by triggering transceiver 81 is to BCS.
As the 4th kind of preferred implementation, the Message Authentication that processor 82 extracts is the Message Authentication needing to follow the tracks of, and above-mentioned judged result is not for determined control command is within effective time, and processor 82 is arranged to:
From the control command that memory 83 stores, delete the control command determined; And, from the tracking list of cert that memory 83 is preserved, delete the Message Authentication of the needs tracking indicated in the control command determined.
Based on above-mentioned any embodiment, processor 82 is also arranged to:
When the cycle of each setting arrives, check the 3rd parameter of the effective time for representing this control command of carrying in the control command that stores of memory 83, to judge control command that memory 83 stores whether within effective time; When determining that arbitrary control command that memory 83 stores is not within effective time, from the control command that memory 83 stores, delete the control command not within effective time determined; And the Message Authentication of having cancelled indicated in the determined control command not within effective time is deleted from the revocation list certificate that memory 83 is preserved, or, from the tracking list of cert that memory 83 is preserved, delete the Message Authentication of the needs tracking indicated in the determined control command not within effective time.
Those skilled in the art should understand, embodiments of the invention can be provided as method, system or computer program.Therefore, the present invention can adopt the form of complete hardware embodiment, completely software implementation or the embodiment in conjunction with software and hardware aspect.And the present invention can adopt in one or more form wherein including the upper computer program implemented of computer-usable storage medium (including but not limited to magnetic disc store, CD-ROM, optical memory etc.) of computer usable program code.
The present invention describes with reference to according to the flow chart of the method for the embodiment of the present invention, equipment (system) and computer program and/or block diagram.Should understand can by the combination of the flow process in each flow process in computer program instructions realization flow figure and/or block diagram and/or square frame and flow chart and/or block diagram and/or square frame.These computer program instructions can being provided to the processor of all-purpose computer, special-purpose computer, Embedded Processor or other programmable data processing device to produce a machine, making the instruction performed by the processor of computer or other programmable data processing device produce device for realizing the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
These computer program instructions also can be stored in can in the computer-readable memory that works in a specific way of vectoring computer or other programmable data processing device, the instruction making to be stored in this computer-readable memory produces the manufacture comprising command device, and this command device realizes the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
These computer program instructions also can be loaded in computer or other programmable data processing device, make on computer or other programmable devices, to perform sequence of operations step to produce computer implemented process, thus the instruction performed on computer or other programmable devices is provided for the step realizing the function of specifying in flow chart flow process or multiple flow process and/or block diagram square frame or multiple square frame.
Although describe the preferred embodiments of the present invention, those skilled in the art once obtain the basic creative concept of cicada, then can make other change and amendment to these embodiments.So claims are intended to be interpreted as comprising preferred embodiment and falling into all changes and the amendment of the scope of the invention.
Obviously, those skilled in the art can carry out various change and modification to the present invention and not depart from the spirit and scope of the present invention.Like this, if these amendments of the present invention and modification belong within the scope of the claims in the present invention and equivalent technologies thereof, then the present invention is also intended to comprise these change and modification.