CN107609878A - A kind of safety certifying method and system of shared automobile - Google Patents

A kind of safety certifying method and system of shared automobile Download PDF

Info

Publication number
CN107609878A
CN107609878A CN201711012015.XA CN201711012015A CN107609878A CN 107609878 A CN107609878 A CN 107609878A CN 201711012015 A CN201711012015 A CN 201711012015A CN 107609878 A CN107609878 A CN 107609878A
Authority
CN
China
Prior art keywords
net silver
certificate
user
shared automobile
communication link
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201711012015.XA
Other languages
Chinese (zh)
Other versions
CN107609878B (en
Inventor
刘鹤
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenyang Branch Of Software Co Ltd
Original Assignee
Shenyang Branch Of Software Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenyang Branch Of Software Co Ltd filed Critical Shenyang Branch Of Software Co Ltd
Priority to CN201711012015.XA priority Critical patent/CN107609878B/en
Publication of CN107609878A publication Critical patent/CN107609878A/en
Application granted granted Critical
Publication of CN107609878B publication Critical patent/CN107609878B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

The embodiment of the invention discloses a kind of safety certifying method and system of shared automobile.Wherein, this method includes:The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, user's digital certificate is verified, and payout figure certificate is forwarded to shared automobile payment services system and verified;According to user's digital certificate and the result of payout figure certificate, the unique information of shared automobile is obtained out of Net silver shield and is confirmed;Result generation order request is confirmed according to unique information and receives sequence information;The confirmation result of sequence information is obtained, unblock message is sent to the terminal device of shared automobile, completes vehicle unblock.Present invention reduces the time audited using identity during shared automobile, the security of userspersonal information is ensured, has improved the security of payment environment.

Description

A kind of safety certifying method and system of shared automobile
Technical field
The present embodiments relate to identity identifying technology, more particularly to a kind of safety certifying method of shared automobile and it is System.
Background technology
With the rise of " shared economy ", shared automobile is gradually shown up prominently in the market, and pole is provided for masses' trip Big convenience.There is automobile particularly with indivedual areas and limit purchase and the situation of restricting the number, select shared automobile to be asked as solving trip One effective ways of topic.
Before using shared automobile, automobile services business needs to carry out safety certification to the identity information of user, for example, Identity card and driver's license of user etc..Prior art is more using mobile phone two-dimension code scanning and near-field communication mode (Near Field Communication, NFC) communicated with automobile foundation, by mobile phone terminal small amount payment, complete authentication and payment Expense.Secure payment platform is mostly according to trusted domain in the Third-party payment platform and mobile phone hardware platform of small amount guarantee (TrustZone) mechanism, its safe class are relatively low.
The identity identifying method of use in existing market has the following disadvantages:1) authentication is uploaded certainly by user Oneself identity card and the photo of driver's license information and itself hand-held identity card to facilitator system, the examination & verification knot of waiting system Fruit, this audit time is typically long, is unfavorable for user and uses car at once immediately;2) identity card, driver's license belong to user Individual privacy data, existence information leakage or stolen risk during shooting is uploaded to facilitator system;3) mesh It is preceding in branch deposit and vehicle cost, in view of safe class requires limitation, more using small amount payment, this gives shared automobile to occur Payment environment during compared with high cost brings limitation, such as the long-distance or long-time of shared automobile to use and high-grade Demand and service Deng;4) most of current form of payment does not support third party's examination function, can not pass through third party when order dispute occurs Mechanism carries out responsibility discrimination.
The content of the invention
The embodiment of the present invention provides a kind of safety certifying method and system of shared automobile, when using shared automobile to shorten The time of identity examination & verification, the safety of userspersonal information is ensured, improve the safety of payment environment.
In a first aspect, the embodiments of the invention provide a kind of safety certifying method of shared automobile, this method includes:
The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, it is right User's digital certificate is verified, and the payout figure certificate is forwarded into shared automobile payment services system and carried out Checking;
According to user's digital certificate and the result of payout figure certificate, obtained out of described Net silver shield shared The unique information of automobile is simultaneously confirmed;
Result generation order request is confirmed according to the unique information and receives sequence information, wherein the sequence information Generated after receiving the order request by the shared automobile payment services system;
The confirmation result of the sequence information is obtained, unblock message is sent to the terminal device of the shared automobile, completes Vehicle unlocks, wherein the confirmation of the sequence information is complete by the Net silver shield and the shared automobile payment services system successively Into.
Further, it is described according to user's digital certificate and the result of payout figure certificate, from the net The unique information of shared automobile is obtained in silver-colored shield and is confirmed, including:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication Link key, the communication link key is encrypted and transmitted to the Net silver shield;
The unique information of the shared automobile in the Net silver shield and corresponding signature value are received, wherein the signature value It is to be generated by the unique information after the private key signature inside the Net silver shield, the unique information and correspondingly Signature value is that the communication link key encryption for decrypting to obtain by the Net silver shield is transmitted to the shared automobile services system afterwards System;
The unique information of the reception and corresponding signature value are decrypted using the communication link key, and tested Card, wherein the signature value of the unique information is verified using the public key in user's digital certificate.
Further, the confirmation result for obtaining the sequence information, unblock message is sent to the shared automobile Terminal device, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by the Net silver shield and the shared automobile branch Service system is paid to complete, including:
The sequence information of the reception is encrypted using the communication link key and transmitted to the Net silver shield;
The sequence information is received to decrypt and pass through after the private key signature inside the Net silver shield by the Net silver shield The signature value of generation, wherein the signature value is to be transmitted after communication link key encryption to the shared automobile services System;
The signature value of the sequence information of the reception is decrypted using the communication link key, and is forwarded to described Shared automobile payment services system is verified, wherein the signature value of the sequence information is using in the payout figure certificate Public key verified;
The result of the sequence information signature value is received, unblock message to the terminal of the shared automobile is sent and sets It is standby, complete vehicle unblock.
Further, the result for receiving user's digital certificate and payout figure certificate, produces one group Random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key, including:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication Link key;
The communication link key is encrypted using the public key in user's digital certificate, transmitted to the net Silver-colored shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key The unique information.
Further, the user's digital certificate and branch in the Net silver shield of the terminal device forwarding for receiving shared automobile Digital certificate is paid, including:
The communication connection established using terminal device and the Net silver shield of the shared automobile, subscriber authentication into After work(, user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding, wherein institute are received It is to input personal recognition code on the terminal device by the user to carry out checking completion to state subscriber authentication.
Second aspect, the embodiment of the present invention additionally provide a kind of security certification system of shared automobile, and the system includes:
Receiving module, the user's digital certificate and branch in Net silver shield that the terminal device for receiving shared automobile forwards Digital certificate is paid, user's digital certificate is verified, and the payout figure certificate is forwarded to shared automobile branch Service system is paid to be verified;
Acquisition module, for the result according to user's digital certificate and payout figure certificate, from the net The unique information of shared automobile is obtained in silver-colored shield and is confirmed;
Sequence information module, for confirming result generation order request according to the unique information and receiving order letter Breath, wherein the sequence information generates after receiving the order request by the shared automobile payment services system;
Unlocked state, for obtaining the confirmation result of the sequence information, unblock message is sent to the shared automobile Terminal device, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by the Net silver shield and the shared automobile branch Service system is paid to complete.
Further, the acquisition module includes:
First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce One group of random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key;
Second receiving unit, for the unique information for receiving the shared automobile in the Net silver shield and corresponding signature Value, wherein the signature value is to be generated by the unique information after the private key signature inside the Net silver shield, it is described Unique information and corresponding signature value be transmit after the communication link key encryption for decrypting to obtain by the Net silver shield to The shared vehicle service system;
First decryption unit, for utilizing unique information and corresponding label of the communication link key to the reception Name value is decrypted, and verifies, wherein the signature value of the unique information is to utilize the public affairs in user's digital certificate Key is verified.
Further, the unlocked state includes:
First transmission unit, for transmission to be encrypted to the sequence information of the reception using the communication link key To the Net silver shield;
3rd receiving unit, decrypt and pass through in the Net silver shield by the Net silver shield for receiving the sequence information The signature value generated after the private key signature in portion, wherein the signature value be transmitted after communication link key encryption to The shared vehicle service system;
Second decryption unit, for being carried out using the communication link key to the signature value of the sequence information of the reception Decryption, and be forwarded to the shared automobile payment services system and verified, wherein the signature value of the sequence information is to utilize Public key in the payout figure certificate is verified;
First unlocking unit, for receiving the result of the sequence information signature value, unblock message is sent to described The terminal device of shared automobile, complete vehicle unblock.
Further, first receiving unit is specifically used for:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication Link key;
The communication link key is encrypted using the public key in user's digital certificate, transmitted to the net Silver-colored shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key The unique information.
Further, the receiving module includes:
Certificate receiving unit, the communication link established for the terminal device using the shared automobile with the Net silver shield Connect, after subscriber authentication success, receive user's digital certificate in the Net silver shield of terminal device forwarding and Payout figure certificate, wherein the subscriber authentication is that to input personal identification on the terminal device by the user close Code carries out checking completion;
Certificate verification unit, turn for being verified to user's digital certificate, and by the payout figure certificate Shared automobile payment services system is sent to be verified.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order Information, vehicle is unlocked after the completion of payment, solve existing shared user vehicle identity checking method and expend time length, easily make The problem of being revealed into user profile and be stolen low with payment environment safe class, is shortened and is audited using identity during shared automobile Time, ensured the security of userspersonal information, improved the security of payment environment.
Brief description of the drawings
Fig. 1 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention one is provided;
Fig. 2 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention two is provided;
Fig. 3 is a kind of structural representation of the security certification system for shared automobile that the embodiment of the present invention three is provided.
Embodiment
The present invention is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched The specific embodiment stated is used only for explaining the present invention, rather than limitation of the invention.It also should be noted that in order to just Part related to the present invention rather than entire infrastructure are illustrate only in description, accompanying drawing.
Embodiment one
A kind of flow chart of the safety certifying method for shared automobile that Fig. 1 is provided by the embodiment of the present invention one, this implementation Example is applicable to carry out the situation of safety certification using shared automobile, this method can by the security certification system of sharing automobile Lai Perform, the system can be realized by the way of software and/or hardware.
As shown in figure 1, the method in the present embodiment comprises the following steps:
The user's digital certificate and payout figure card in Net silver shield that S110, the terminal device of the shared automobile of reception forward Book, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to shared automobile and pays clothes Business system is verified.
Wherein, Net silver shield (KEY) is that user makes according to the pre- first to file of identity information of oneself, and Net silver shield includes interior Smart card security chip is put, there is certain memory space.Wherein, the safe class of separate hardware safety chip is universal very high, There is high security, protection side-channel attack, anti-cracking and anti-copying, even if chip is dissolved and polished Violence operates, and can also destroy the data of the inside storage, prevent sensitive information leakage.Can specially it specified when making Net silver shield In the environment of carry out, such as the special service window that opens up of supplier of shared automobile cooperation.Sales counter staff is to user's The personal information such as identity card, bank card and driver's license are audited, and special Net silver shield is made after auditing successfully.
In manufacturing process, Net silver shield utilizes built-in public (asymmetric) key algorithm generation based on userspersonal information A pair of secret keys of user, including a public keys (public key, public key) and corresponding private cipher key (private key, Private key), wherein the information content being encrypted by a key, can only be by another paired key ability It is decrypted.Public key and userspersonal information are transmitted to infrastructure system (Public Key by dedicated communications network Infrashtructure, PKI), the authentication center (Certification Authority, CA) in infrastructure system can tie The identity information and public key at family are shared, generates and provides the user's digital certificate and payout figure certificate of user, i.e. user This two parts of certificates in include the identity information and public key of user, be then transmit to Net silver shield and preserved.Set using basis The authentication center applied in system carries out effectively management and distributing certificates, and the hardware requirement that infrastructure system is strict, can To ensure when leasing both sides and disputing by third party's ruling, and safety guarantor is provided for the payment environment including wholesale expense Barrier.
It should be noted that to belong to user privately owned for the private key in Net silver shield, so private key will be stored in Net silver always Inside shield and it cannot be exported.Using special in the application of user's digital certificate and payout figure certificate and manufacturing process With communication network, the leakage of userspersonal information is avoided.Private key be mainly used in vehicle uniqueness information in subsequent step and Sequence information is signed, and public key is mainly used in verifying signature value caused by corresponding private key.
After user finds shared automobile, the Net silver shield of oneself is inserted into the terminal device of shared automobile, terminal is set Standby established with Net silver shield communicates to connect and reads user's digital certificate in Net silver shield and payout figure certificate, is then forwarded to Shared vehicle service system.Shared vehicle service system receives this two parts of certificates, and user's digital certificate therein is tested Card, and another payout figure certificate is forwarded to shared automobile payment services system and verified.
By that will be reduced to verify the user's digital certificate and payout figure inside Net silver shield to the checking of user identity Certificate, carried out compared to traditional authentication method, such as by pictorial information to the server of supplier of frequent upload user Checking, shortens the time audited using identity during shared automobile, and in digital certificate user personal information with one group without The form of ordinal number word is present, and has ensured the security of userspersonal information.
Alternatively, the user's digital certificate and branch in the Net silver shield of the terminal device forwarding of shared automobile are received in S110 Paying digital certificate includes:The communication connection established using terminal device and the Net silver shield of shared automobile, subscriber authentication into After work(, user's digital certificate and payout figure certificate in the Net silver shield for the terminal device forwarding for receiving shared automobile, wherein Subscriber authentication is to input personal recognition code on the terminal device by user to carry out checking completion.
Wherein, after the terminal device of shared automobile is established with Net silver shield to be communicated to connect, terminal device can show user The inputting interface of people's recognition code, user is reminded to carry out input validation.The personal recognition code of user can be that user is applying Pre-set during Net silver shield, specifically:User is supplied to identity card, driver's license and the bank of sales counter staff oneself Other personal information such as card;The information that Receptionist is submitted to user is audited, and after examination & verification passes through, prompts user in service window One group of character string is inputted on the service terminal of mouth, the personal recognition code using password, i.e. user as Net silver shield (personal identification number, PIN code);Continue to make special Net silver shield after being provided with.Work as user After success sets personal recognition code, every time before using Net silver shield, it is necessary to which correctly personal recognition code just may be used for input To carry out subsequent operation, this avoid user after the Net silver shield of oneself is lost, by other people irrational uses.Also, work as After the personal recognition code of user is proved to be successful, application program in Net silver shield is by the right to use of the private key obtained in Net silver shield Limit, is realized to the vehicle uniqueness information and the signature authentication of sequence information in subsequent step.
S120, according to user's digital certificate and the result of payout figure certificate, shared vapour is obtained out of Net silver shield The unique information of car is simultaneously confirmed.
Wherein, vehicle service system is shared according to user's digital certificate and the result of payout figure certificate, can be with By the internal communication link established with Net silver shield, instruction to Net silver shield, the Net silver shield for sending input information of vehicles is shown accordingly Interface input the unique information of vehicle for user, wherein unique information includes but is not limited to the number-plate number and vehicle only One identifier etc..After user, which inputs, to complete, Net silver shield can be signed using its internal private key to this information of vehicles, and again The secondary unique information of vehicle and corresponding signature value are sent to shared vehicle service system using internal communication link is carried out Confirm, wherein, shared vehicle service system is verified using the public key in user's digital certificate to the signature value of reception, from And determine the use state of Current vehicle.If Current vehicle is inquired not used by other users, and without operation event Barrier, then active user is allowed to use;If inquiring Current vehicle to be used by other users, or operation troubles be present, Then Current vehicle is unusable.
S130, result generation order request is confirmed according to the unique information of shared automobile and receives sequence information, wherein Sequence information generates after receiving order request by shared automobile payment services system.
When S120 determines that Current vehicle can use, shared vehicle service system confirms that result generates order request accordingly, passes through Network transmits this order request to shared automobile payment services system, after sharing automobile payment services system generation sequence information Return again to shared vehicle service system.Wherein, sequence information includes information of vehicles and cost of use etc..
S140, the confirmation result for obtaining sequence information, unblock message is sent to the terminal device of shared automobile, completes vehicle Unblock, the wherein confirmation of sequence information are completed by Net silver shield and shared automobile payment services system.
After shared vehicle service system receives sequence information, this sequence information is sent true by user to Net silver shield Recognize, to judge whether user has objection to this sequence information;If user is without demur to sequence information, Net silver shield is internal private using it Key is signed to sequence information.Shared vehicle service system again sends out this signature value after receiving the signature value of sequence information Shared automobile payment services system is delivered to be confirmed.Shared automobile payment services system utilizes the public key in payout figure certificate Order signature value is verified.After shared vehicle service system receives the confirmation result of sequence information signature value, send Message is unlocked to the terminal device of shared automobile, completes vehicle unblock.
Wherein, during user confirms to sequence information, specifically, user can pass through pressing on Net silver shield Determination prompting on key or Net silver shield display interface is confirmed, and is confirmed in user key-press or clicked on the same of confirmation When, complete order on reimbursement of expense, expense therein include with car cash pledge or this used with fare, user for the first time enter , will not repeat request user payment after row cash pledge is paid.By the signature value of the sequence information after the confirmation of user send again to Shared automobile payment services system is confirmed, it is ensured that order reimbursement of expense successfully completes, and provides safety guarantor for payment environment Card, the reimbursement of expense of especially big amount, a reliable third party can be provided by the Signature Confirmation to pay invoice Mechanism guarantees payment the safety of environment.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order Information, vehicle is unlocked after the completion of payment, solve existing shared user vehicle identity checking method and expend time length, easily make The problem of being revealed into user profile and be stolen low with payment environment safe class, is shortened and is audited using identity during shared automobile Time, ensured the security of userspersonal information, improved the security of payment environment;When lease both sides dispute Can be by serving as the authentication center in third-party infrastructure system come ruling.
Embodiment two
Fig. 2 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention two is provided.This implementation Example is the further optimization on the basis of above-described embodiment.As shown in Fig. 2 the method in the present embodiment comprises the following steps:
The user's digital certificate and payout figure card in Net silver shield that S210, the terminal device of the shared automobile of reception forward Book, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to shared automobile and pays clothes Business system is verified.
S220, the result for receiving user's digital certificate and payout figure certificate, one group of random number is produced as logical Link key is interrogated, communication link key is encrypted and transmitted to Net silver shield.
Wherein, caused communication link key can be used for the uniqueness to transmitting vehicle in subsequent step and its corresponding label It is encrypted during name value, ensures security of this unique information in transmitting procedure.Communication link key is carried out after producing Encrypted transmission ensure that communication link key in shared safe transmission between vehicle service system and Net silver shield to Net silver shield. Shared vehicle service system and Net silver shield are each stored with a identical communication link key, can form man-to-man encryption Process.
Alternatively, S220 is specifically included:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;
Communication link key is encrypted using the public key in user's digital certificate, transmitted to Net silver shield, wherein, net Silver-colored shield shows the display interface of input information of vehicles to obtain the unique information of vehicle when receiving communication link key.
Wherein, transmit after communication link key being encrypted using the public key in user's digital certificate, only utilize Corresponding private key can just be decrypted in Net silver shield, ensure that the security of communication link key.Net silver shield is receiving communication During link key, this communication link key can be transferred to the control system inside Net silver shield as information command, control Net silver The display interface of shield display input information of vehicles, to facilitate user to input the unique information of vehicle.
S230, receive Net silver shield in shared automobile unique information and corresponding signature value, wherein corresponding label Name value is to be generated by unique information after the private key signature inside Net silver shield, and unique information and corresponding signature value are Transmitted after the communication link key encryption for decrypting to obtain by Net silver shield to shared vehicle service system.
Wherein, the display interface for the input information of vehicles that user is shown by Net silver shield completes the unique information of vehicle Input, after confirmation is errorless, Net silver shield is signed using the private key of inside to this information.Then, Net silver shield utilizes communication link Key is transmitted to shared vehicle service system after unique information and signature value are encrypted.Because user completes individual After the checking of recognition code, the application program in Net silver shield obtains the access right of the private key in Net silver shield, therefore Net silver shield can Obtained after being decrypted with the communication link key using private key pair encryption.
S240, the unique information of reception and corresponding signature value are decrypted rear using communication link key and tested Card, the signature value of wherein unique information is verified using the public key in user's digital certificate.
Shared vehicle service system is carried out using communication link key to the unique information of reception and corresponding signature value Decryption, then, then verifies to vehicle uniqueness information and signature value, determines the use state of Current vehicle.
S250, result generation order request is confirmed according to the unique information of shared automobile and receives sequence information, wherein Sequence information generates after receiving order request by shared automobile payment services system.
S260, the sequence information of reception is encrypted using caused communication link key and transmitted to Net silver shield.It is shared Vehicle service system is carried out using communication link key to reception sequence information as caused by shared automobile payment services system Transmitted after encryption to Net silver shield.
S270, receive the label generated after the private key signature that sequence information is decrypted and passed through inside Net silver shield by Net silver shield Name value, wherein the signature value generated is to be transmitted after the encryption of communication link key to shared vehicle service system.
After Net silver shield receives the sequence information of encryption, it is decrypted using communication link key, it is determined that sequence information Signature is completed using internal private key in the case of errorless, then passes the signature value of generation again after the encryption of communication link key Transport to shared vehicle service system.
S280, using communication link key the signature value of the sequence information of reception is decrypted, and is forwarded to shared vapour Car payment services system is verified that the signature value of wherein sequence information is tested using the public key in payout figure certificate Card.Due to not having communication link key in shared automobile payment services system, so the sequence information signature value of encryption can only By being forwarded to shared automobile payment services system again after shared vehicle service system decryption, signature verification is carried out.
S290, the result for receiving sequence information signature value, unblock message is sent to the terminal device of shared automobile, it is complete Unlocked into vehicle.Shared automobile payment services system receives the result of sequence information signature value, if this signature value verifies nothing By mistake, share automobile payment services system and send unblock message to the terminal device of shared automobile, complete vehicle unblock.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order Information, vehicle is unlocked after the completion of payment, and during the unique information of shared automobile and the whole confirmation of sequence information, Coded communication is established using internal communication link key, when solving existing shared user vehicle identity checking method consuming Between it is long, easily cause user profile leakage and it is stolen low with payment environment safe class the problem of, shorten using shared vapour The time that identity is audited during car, the security of userspersonal information is ensured, has improved the security of payment environment;When lease is double Side can be by serving as the authentication center in third-party infrastructure system come ruling when disputing;In addition, by shared Automobile unique information signature is signed to payment result and verifies corresponding signature value, has effectively evaded the business wind of the form of denial Danger.
Embodiment three
Fig. 3 is a kind of structural representation of the security certification system for shared automobile that the embodiment of the present invention three is provided, this Embodiment is applicable to carry out the situation of safety certification using shared automobile.The security certification system that the embodiment of the present invention is provided The safety certifying method that is there is provided of any embodiment of the present invention is provided, possesses and performs the corresponding functional module of this method and beneficial Effect.
As shown in figure 3, the system in the present embodiment includes receiving module 310, acquisition module 320, sequence information module 330 With unlocked state 340.Wherein:
Receiving module 310, user's digital certificate in Net silver shield that the terminal device for receiving shared automobile forwards With payout figure certificate, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to altogether Automobile payment services system is enjoyed to be verified.
Alternatively, receiving module 310 includes certificate receiving unit and certificate verification unit, wherein:
Certificate receiving unit, for the communication connection established using the terminal device of shared automobile with Net silver shield, in user After authentication success, user's digital certificate and payout figure in the Net silver shield for the terminal device forwarding for receiving shared automobile Certificate, wherein subscriber authentication are to input personal recognition code on the terminal device by user to carry out checking completion;
Certificate verification unit, demonstrate,proved for being verified to user's digital certificate of reception, and by the payout figure of reception Book is forwarded to shared automobile payment services system and verified.
Acquisition module 320, for the result according to user's digital certificate and payout figure certificate, out of Net silver shield Obtain the unique information of shared automobile and confirmed.
Sequence information module 330, for confirming result generation order request according to the unique information of shared automobile and connecing Sequence information is received, wherein sequence information generates after receiving order request by shared automobile payment services system.
Unlocked state 340, for obtaining the confirmation result of sequence information, send unblock message to the terminal of shared automobile and set It is standby, vehicle unblock is completed, the wherein confirmation of sequence information is completed by Net silver shield and shared automobile payment services system.
On the basis of above-mentioned technical proposal, further optimization, acquisition module 320 connects including the first receiving unit, second Unit and the first decryption unit are received, wherein:
First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce one group Random number is encrypted to communication link key and transmitted to Net silver shield as communication link key;Alternatively, the first receiving unit It is specifically used for:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;
Communication link key is encrypted using the public key in user's digital certificate, transmitted to Net silver shield, its In, Net silver shield shows that the display interface of input information of vehicles is believed to obtain the uniqueness of vehicle when receiving communication link key Breath.
Second receiving unit, for the unique information for receiving the shared automobile in Net silver shield and corresponding signature value, Wherein corresponding signature value is to be generated by unique information after the private key signature inside Net silver shield, unique information and Corresponding signature value is that the communication link key encryption for decrypting to obtain by Net silver shield is transmitted to shared vehicle service system afterwards.
First decryption unit, for being carried out using communication link key to the unique information of reception and corresponding signature value Decryption, and verify, the signature value of wherein unique information is verified using the public key in user's digital certificate.
On the basis of above-mentioned technical proposal, alternatively, unlocked state 340 includes the first transmission unit, the 3rd reception list Member, the second decryption unit and the first unlocking unit, wherein:
First transmission unit, the sequence information of reception is encrypted for communication link key caused by utilization transmit to Net silver shield.
3rd receiving unit, the private key signature for passing through Net silver shield for receiving sequence information and decrypting and passing through inside Net silver shield The signature value generated afterwards, wherein the signature value generated is to be transmitted after the encryption of communication link key to shared automobile services system System.
Second decryption unit, for the signature value of the sequence information of reception to be decrypted using communication link key, and It is forwarded to shared automobile payment services system to be verified, wherein the signature value of sequence information is using in payout figure certificate Public key is verified.
First unlocking unit, for receiving the result of sequence information signature value, unblock message is sent to shared automobile Terminal device, complete vehicle unblock.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order Information, vehicle is unlocked after the completion of payment, and coded communication is established using internal communication link key in whole process, solved Existing shared user vehicle identity checking method expends time length, easily causes user profile leakage and is stolen and pays ring The problem of border safe class is low, the time audited using identity during shared automobile is shortened, has ensured the peace of userspersonal information Quan Xing, improve the security of payment environment;Can be by serving as third-party infrastructure system when leasing both sides and disputing Authentication center in system carrys out ruling.
Pay attention to, above are only presently preferred embodiments of the present invention and institute's application technology principle.It will be appreciated by those skilled in the art that The invention is not restricted to specific embodiment described here, can carry out for a person skilled in the art various obvious changes, Readjust and substitute without departing from protection scope of the present invention.Therefore, although being carried out by above example to the present invention It is described in further detail, but the present invention is not limited only to above example, without departing from the inventive concept, also Other more equivalent embodiments can be included, and the scope of the present invention is determined by scope of the appended claims.

Claims (10)

  1. A kind of 1. safety certifying method of shared automobile, it is characterised in that including:
    The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, to described User's digital certificate is verified, and the payout figure certificate is forwarded into shared automobile payment services system and tested Card;
    According to user's digital certificate and the result of payout figure certificate, shared automobile is obtained out of described Net silver shield Unique information and confirmed;
    Result generation order request is confirmed according to the unique information and receives sequence information, wherein the sequence information is by institute State after shared automobile payment services system receives the order request and generate;
    The confirmation result of the sequence information is obtained, unblock message is sent to the terminal device of the shared automobile, completes vehicle Unblock, wherein the confirmation of the sequence information is completed by the Net silver shield and the shared automobile payment services system successively.
  2. 2. according to the method for claim 1, it is characterised in that described according to user's digital certificate and payout figure The result of certificate, the unique information of shared automobile is obtained out of described Net silver shield and is confirmed, including:
    The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key, the communication link key is encrypted and transmitted to the Net silver shield;
    Receive the unique information of the shared automobile in the Net silver shield and corresponding signature value, wherein the signature value be by The unique information generates after the private key signature inside the Net silver shield, the unique information and corresponding signature Value is that the communication link key encryption for decrypting to obtain by the Net silver shield is transmitted to the shared vehicle service system afterwards;
    The unique information of the reception and corresponding signature value are decrypted using the communication link key, and verified, The signature value of wherein described unique information is verified using the public key in user's digital certificate.
  3. 3. according to the method for claim 2, it is characterised in that the confirmation result for obtaining the sequence information, send Message is unlocked to the terminal device of the shared automobile, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by institute State Net silver shield and the shared automobile payment services system is completed, including:
    The sequence information of the reception is encrypted using the communication link key and transmitted to the Net silver shield;
    The private key signature that the sequence information is decrypted and passed through inside the Net silver shield by the Net silver shield is received to generate afterwards Signature value, wherein the signature value be by the communication link key encryption after transmit to the shared automobile services system System;
    The signature value of the sequence information of the reception is decrypted using the communication link key, and is forwarded to described shared Automobile payment services system is verified, wherein the signature value of the sequence information is to utilize the public affairs in the payout figure certificate Key is verified;
    The result of the sequence information signature value is received, sends unblock message to the terminal device of the shared automobile, it is complete Unlocked into vehicle.
  4. 4. according to the method for claim 2, it is characterised in that described to receive user's digital certificate and payout figure The result of certificate, one group of random number is produced as communication link key, transmission is encrypted to the communication link key To the Net silver shield, including:
    The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;
    The communication link key is encrypted using the public key in user's digital certificate, transmitted to the Net silver Shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key State unique information.
  5. 5. according to the method for claim 1, it is characterised in that the Net silver of the terminal device forwarding for receiving shared automobile User's digital certificate and payout figure certificate in shield, including:
    The communication connection established using the terminal device of the shared automobile with the Net silver shield, in subscriber authentication success Afterwards, the user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding are received, wherein described Subscriber authentication is to input personal recognition code on the terminal device by the user to carry out checking completion.
  6. A kind of 6. security certification system of shared automobile, it is characterised in that including:
    Receiving module, the user's digital certificate and payment number in Net silver shield that the terminal device for receiving shared automobile forwards Word certificate, user's digital certificate is verified, and the payout figure certificate is forwarded to shared automobile and pays clothes Business system is verified;
    Acquisition module, for the result according to user's digital certificate and payout figure certificate, from the Net silver shield The interior unique information for obtaining shared automobile is simultaneously confirmed;
    Sequence information module, for confirming result generation order request according to the unique information and receiving sequence information, its Described in sequence information the order request is received by the shared automobile payment services system after generate;
    Unlocked state, for obtaining the confirmation result of the sequence information, unblock message is sent to the terminal of the shared automobile Equipment, vehicle unblock is completed, wherein the confirmation of the sequence information pays clothes by the Net silver shield and the shared automobile successively Business system is completed.
  7. 7. system according to claim 6, it is characterised in that the acquisition module includes:
    First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce one group Random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key;
    Second receiving unit, for the unique information for receiving the shared automobile in the Net silver shield and corresponding signature value, Wherein described signature value is to be generated by the unique information after the private key signature inside the Net silver shield, described unique Property information and corresponding signature value be to transmit to described after the communication link key encryption for decrypting to obtain by the Net silver shield Shared vehicle service system;
    First decryption unit, for utilizing unique information and corresponding signature value of the communication link key to the reception It is decrypted, and verifies, wherein the signature value of the unique information is entered using the public key in user's digital certificate Row checking.
  8. 8. system according to claim 7, it is characterised in that the unlocked state includes:
    First transmission unit, transmitted for the sequence information of the reception to be encrypted using the communication link key to institute State Net silver shield;
    3rd receiving unit, decrypt and pass through inside the Net silver shield by the Net silver shield for receiving the sequence information The signature value generated after private key signature, wherein the signature value is to be transmitted after communication link key encryption to described Shared vehicle service system;
    Second decryption unit, for being solved using the communication link key to the signature value of the sequence information of the reception It is close, and be forwarded to the shared automobile payment services system and verified, wherein the signature value of the sequence information is to utilize institute The public key stated in payout figure certificate is verified;
    First unlocking unit, for receiving the result of the sequence information signature value, send unblock message and shared to described The terminal device of automobile, complete vehicle unblock.
  9. 9. system according to claim 7, it is characterised in that first receiving unit is specifically used for:
    The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;
    The communication link key is encrypted using the public key in user's digital certificate, transmitted to the Net silver Shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key State unique information.
  10. 10. system according to claim 6, it is characterised in that the receiving module includes:
    Certificate receiving unit, the communication connection established for the terminal device using the shared automobile with the Net silver shield, After subscriber authentication success, receive user's digital certificate in the Net silver shield of the terminal device forwarding and pay number Word certificate, wherein the subscriber authentication is to input personal recognition code on the terminal device by the user to carry out Checking is completed;
    Certificate verification unit, for being verified to user's digital certificate, and the payout figure certificate is forwarded to Shared automobile payment services system is verified.
CN201711012015.XA 2017-10-26 2017-10-26 Security authentication method and system for shared automobile Active CN107609878B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711012015.XA CN107609878B (en) 2017-10-26 2017-10-26 Security authentication method and system for shared automobile

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711012015.XA CN107609878B (en) 2017-10-26 2017-10-26 Security authentication method and system for shared automobile

Publications (2)

Publication Number Publication Date
CN107609878A true CN107609878A (en) 2018-01-19
CN107609878B CN107609878B (en) 2020-09-29

Family

ID=61080736

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711012015.XA Active CN107609878B (en) 2017-10-26 2017-10-26 Security authentication method and system for shared automobile

Country Status (1)

Country Link
CN (1) CN107609878B (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2020258837A1 (en) * 2019-06-28 2020-12-30 创新先进技术有限公司 Unlocking method, device for realizing unlocking, and computer readable medium
US10997808B2 (en) 2019-06-28 2021-05-04 Advanced New Technologies Co., Ltd. Secure smart unlocking
CN113965639A (en) * 2021-11-22 2022-01-21 徐州初壹网络科技有限公司 APP function platform and method for book sharing

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN202159373U (en) * 2011-07-19 2012-03-07 孙海东 Electromobile in network of things and supporting electronic payment
CN105553949A (en) * 2015-12-09 2016-05-04 苏州海博智能系统有限公司 In-car payment authentication device
CN106023458A (en) * 2016-05-13 2016-10-12 智车优行科技(北京)有限公司 Vehicle control method, apparatus and terminal, vehicle, server and system
CN108122311A (en) * 2017-11-30 2018-06-05 北京九五智驾信息技术股份有限公司 Vehicle virtual key realization method and system

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN202159373U (en) * 2011-07-19 2012-03-07 孙海东 Electromobile in network of things and supporting electronic payment
CN105553949A (en) * 2015-12-09 2016-05-04 苏州海博智能系统有限公司 In-car payment authentication device
CN106023458A (en) * 2016-05-13 2016-10-12 智车优行科技(北京)有限公司 Vehicle control method, apparatus and terminal, vehicle, server and system
CN108122311A (en) * 2017-11-30 2018-06-05 北京九五智驾信息技术股份有限公司 Vehicle virtual key realization method and system

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2020258837A1 (en) * 2019-06-28 2020-12-30 创新先进技术有限公司 Unlocking method, device for realizing unlocking, and computer readable medium
US10997808B2 (en) 2019-06-28 2021-05-04 Advanced New Technologies Co., Ltd. Secure smart unlocking
US11295565B2 (en) 2019-06-28 2022-04-05 Advanced New Technologies Co., Ltd. Secure smart unlocking
CN113965639A (en) * 2021-11-22 2022-01-21 徐州初壹网络科技有限公司 APP function platform and method for book sharing
CN113965639B (en) * 2021-11-22 2023-04-25 徐州初壹网络科技有限公司 APP functional platform and method for book sharing

Also Published As

Publication number Publication date
CN107609878B (en) 2020-09-29

Similar Documents

Publication Publication Date Title
CN109150548B (en) Digital certificate signing and signature checking method and system and digital certificate system
CN104994114B (en) A kind of identity authorization system and method based on electronic ID card
CN101300808B (en) Method and arrangement for secure autentication
EP1476980B1 (en) Requesting digital certificates
US7362869B2 (en) Method of distributing a public key
TW201741922A (en) Biological feature based safety certification method and device
US20190251561A1 (en) Verifying an association between a communication device and a user
CN101860525B (en) Realizing method of electronic authorization warrant, intelligent terminal, authorization system and verification terminal
US20090187980A1 (en) Method of authenticating, authorizing, encrypting and decrypting via mobile service
CN108551455A (en) The configuration method and device of smart card
CN102202300A (en) System and method for dynamic password authentication based on dual channels
CN103632436B (en) A kind of method of the withdrawal based on terminal
WO2018133674A1 (en) Method of verifying and feeding back bank payment permission authentication information
CN101777978A (en) Method and system based on wireless terminal for applying digital certificate and wireless terminal
JP2006318489A (en) Method and device for confirming authentication of id of service user
CN101770619A (en) Multiple-factor authentication method for online payment and authentication system
TWI591553B (en) Systems and methods for mobile devices to trade financial documents
CN103944736A (en) Data security interactive method
CN101652782B (en) Communication terminal device, communication device, electronic card, method for a communication terminal device and method for a communication device for providing a verification
CN106209383A (en) A kind of method and device of mobile payment security certification
US20230133418A1 (en) Personalised, server-specific authentication mechanism
CN109600296A (en) A kind of certificate chain instant communicating system and its application method
CN110278084B (en) eID establishing method, related device and system
CN107609878A (en) A kind of safety certifying method and system of shared automobile
CN105682092B (en) Bidirectional authentication method based on short-distance wireless communication technology

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant