CN107609878A - A kind of safety certifying method and system of shared automobile - Google Patents
A kind of safety certifying method and system of shared automobile Download PDFInfo
- Publication number
- CN107609878A CN107609878A CN201711012015.XA CN201711012015A CN107609878A CN 107609878 A CN107609878 A CN 107609878A CN 201711012015 A CN201711012015 A CN 201711012015A CN 107609878 A CN107609878 A CN 107609878A
- Authority
- CN
- China
- Prior art keywords
- net silver
- certificate
- user
- shared automobile
- communication link
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Abstract
The embodiment of the invention discloses a kind of safety certifying method and system of shared automobile.Wherein, this method includes:The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, user's digital certificate is verified, and payout figure certificate is forwarded to shared automobile payment services system and verified;According to user's digital certificate and the result of payout figure certificate, the unique information of shared automobile is obtained out of Net silver shield and is confirmed;Result generation order request is confirmed according to unique information and receives sequence information;The confirmation result of sequence information is obtained, unblock message is sent to the terminal device of shared automobile, completes vehicle unblock.Present invention reduces the time audited using identity during shared automobile, the security of userspersonal information is ensured, has improved the security of payment environment.
Description
Technical field
The present embodiments relate to identity identifying technology, more particularly to a kind of safety certifying method of shared automobile and it is
System.
Background technology
With the rise of " shared economy ", shared automobile is gradually shown up prominently in the market, and pole is provided for masses' trip
Big convenience.There is automobile particularly with indivedual areas and limit purchase and the situation of restricting the number, select shared automobile to be asked as solving trip
One effective ways of topic.
Before using shared automobile, automobile services business needs to carry out safety certification to the identity information of user, for example,
Identity card and driver's license of user etc..Prior art is more using mobile phone two-dimension code scanning and near-field communication mode (Near
Field Communication, NFC) communicated with automobile foundation, by mobile phone terminal small amount payment, complete authentication and payment
Expense.Secure payment platform is mostly according to trusted domain in the Third-party payment platform and mobile phone hardware platform of small amount guarantee
(TrustZone) mechanism, its safe class are relatively low.
The identity identifying method of use in existing market has the following disadvantages:1) authentication is uploaded certainly by user
Oneself identity card and the photo of driver's license information and itself hand-held identity card to facilitator system, the examination & verification knot of waiting system
Fruit, this audit time is typically long, is unfavorable for user and uses car at once immediately;2) identity card, driver's license belong to user
Individual privacy data, existence information leakage or stolen risk during shooting is uploaded to facilitator system;3) mesh
It is preceding in branch deposit and vehicle cost, in view of safe class requires limitation, more using small amount payment, this gives shared automobile to occur
Payment environment during compared with high cost brings limitation, such as the long-distance or long-time of shared automobile to use and high-grade Demand and service
Deng;4) most of current form of payment does not support third party's examination function, can not pass through third party when order dispute occurs
Mechanism carries out responsibility discrimination.
The content of the invention
The embodiment of the present invention provides a kind of safety certifying method and system of shared automobile, when using shared automobile to shorten
The time of identity examination & verification, the safety of userspersonal information is ensured, improve the safety of payment environment.
In a first aspect, the embodiments of the invention provide a kind of safety certifying method of shared automobile, this method includes:
The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, it is right
User's digital certificate is verified, and the payout figure certificate is forwarded into shared automobile payment services system and carried out
Checking;
According to user's digital certificate and the result of payout figure certificate, obtained out of described Net silver shield shared
The unique information of automobile is simultaneously confirmed;
Result generation order request is confirmed according to the unique information and receives sequence information, wherein the sequence information
Generated after receiving the order request by the shared automobile payment services system;
The confirmation result of the sequence information is obtained, unblock message is sent to the terminal device of the shared automobile, completes
Vehicle unlocks, wherein the confirmation of the sequence information is complete by the Net silver shield and the shared automobile payment services system successively
Into.
Further, it is described according to user's digital certificate and the result of payout figure certificate, from the net
The unique information of shared automobile is obtained in silver-colored shield and is confirmed, including:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication
Link key, the communication link key is encrypted and transmitted to the Net silver shield;
The unique information of the shared automobile in the Net silver shield and corresponding signature value are received, wherein the signature value
It is to be generated by the unique information after the private key signature inside the Net silver shield, the unique information and correspondingly
Signature value is that the communication link key encryption for decrypting to obtain by the Net silver shield is transmitted to the shared automobile services system afterwards
System;
The unique information of the reception and corresponding signature value are decrypted using the communication link key, and tested
Card, wherein the signature value of the unique information is verified using the public key in user's digital certificate.
Further, the confirmation result for obtaining the sequence information, unblock message is sent to the shared automobile
Terminal device, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by the Net silver shield and the shared automobile branch
Service system is paid to complete, including:
The sequence information of the reception is encrypted using the communication link key and transmitted to the Net silver shield;
The sequence information is received to decrypt and pass through after the private key signature inside the Net silver shield by the Net silver shield
The signature value of generation, wherein the signature value is to be transmitted after communication link key encryption to the shared automobile services
System;
The signature value of the sequence information of the reception is decrypted using the communication link key, and is forwarded to described
Shared automobile payment services system is verified, wherein the signature value of the sequence information is using in the payout figure certificate
Public key verified;
The result of the sequence information signature value is received, unblock message to the terminal of the shared automobile is sent and sets
It is standby, complete vehicle unblock.
Further, the result for receiving user's digital certificate and payout figure certificate, produces one group
Random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key, including:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication
Link key;
The communication link key is encrypted using the public key in user's digital certificate, transmitted to the net
Silver-colored shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key
The unique information.
Further, the user's digital certificate and branch in the Net silver shield of the terminal device forwarding for receiving shared automobile
Digital certificate is paid, including:
The communication connection established using terminal device and the Net silver shield of the shared automobile, subscriber authentication into
After work(, user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding, wherein institute are received
It is to input personal recognition code on the terminal device by the user to carry out checking completion to state subscriber authentication.
Second aspect, the embodiment of the present invention additionally provide a kind of security certification system of shared automobile, and the system includes:
Receiving module, the user's digital certificate and branch in Net silver shield that the terminal device for receiving shared automobile forwards
Digital certificate is paid, user's digital certificate is verified, and the payout figure certificate is forwarded to shared automobile branch
Service system is paid to be verified;
Acquisition module, for the result according to user's digital certificate and payout figure certificate, from the net
The unique information of shared automobile is obtained in silver-colored shield and is confirmed;
Sequence information module, for confirming result generation order request according to the unique information and receiving order letter
Breath, wherein the sequence information generates after receiving the order request by the shared automobile payment services system;
Unlocked state, for obtaining the confirmation result of the sequence information, unblock message is sent to the shared automobile
Terminal device, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by the Net silver shield and the shared automobile branch
Service system is paid to complete.
Further, the acquisition module includes:
First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce
One group of random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key;
Second receiving unit, for the unique information for receiving the shared automobile in the Net silver shield and corresponding signature
Value, wherein the signature value is to be generated by the unique information after the private key signature inside the Net silver shield, it is described
Unique information and corresponding signature value be transmit after the communication link key encryption for decrypting to obtain by the Net silver shield to
The shared vehicle service system;
First decryption unit, for utilizing unique information and corresponding label of the communication link key to the reception
Name value is decrypted, and verifies, wherein the signature value of the unique information is to utilize the public affairs in user's digital certificate
Key is verified.
Further, the unlocked state includes:
First transmission unit, for transmission to be encrypted to the sequence information of the reception using the communication link key
To the Net silver shield;
3rd receiving unit, decrypt and pass through in the Net silver shield by the Net silver shield for receiving the sequence information
The signature value generated after the private key signature in portion, wherein the signature value be transmitted after communication link key encryption to
The shared vehicle service system;
Second decryption unit, for being carried out using the communication link key to the signature value of the sequence information of the reception
Decryption, and be forwarded to the shared automobile payment services system and verified, wherein the signature value of the sequence information is to utilize
Public key in the payout figure certificate is verified;
First unlocking unit, for receiving the result of the sequence information signature value, unblock message is sent to described
The terminal device of shared automobile, complete vehicle unblock.
Further, first receiving unit is specifically used for:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication
Link key;
The communication link key is encrypted using the public key in user's digital certificate, transmitted to the net
Silver-colored shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key
The unique information.
Further, the receiving module includes:
Certificate receiving unit, the communication link established for the terminal device using the shared automobile with the Net silver shield
Connect, after subscriber authentication success, receive user's digital certificate in the Net silver shield of terminal device forwarding and
Payout figure certificate, wherein the subscriber authentication is that to input personal identification on the terminal device by the user close
Code carries out checking completion;
Certificate verification unit, turn for being verified to user's digital certificate, and by the payout figure certificate
Shared automobile payment services system is sent to be verified.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate
Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order
Information, vehicle is unlocked after the completion of payment, solve existing shared user vehicle identity checking method and expend time length, easily make
The problem of being revealed into user profile and be stolen low with payment environment safe class, is shortened and is audited using identity during shared automobile
Time, ensured the security of userspersonal information, improved the security of payment environment.
Brief description of the drawings
Fig. 1 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention one is provided;
Fig. 2 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention two is provided;
Fig. 3 is a kind of structural representation of the security certification system for shared automobile that the embodiment of the present invention three is provided.
Embodiment
The present invention is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched
The specific embodiment stated is used only for explaining the present invention, rather than limitation of the invention.It also should be noted that in order to just
Part related to the present invention rather than entire infrastructure are illustrate only in description, accompanying drawing.
Embodiment one
A kind of flow chart of the safety certifying method for shared automobile that Fig. 1 is provided by the embodiment of the present invention one, this implementation
Example is applicable to carry out the situation of safety certification using shared automobile, this method can by the security certification system of sharing automobile Lai
Perform, the system can be realized by the way of software and/or hardware.
As shown in figure 1, the method in the present embodiment comprises the following steps:
The user's digital certificate and payout figure card in Net silver shield that S110, the terminal device of the shared automobile of reception forward
Book, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to shared automobile and pays clothes
Business system is verified.
Wherein, Net silver shield (KEY) is that user makes according to the pre- first to file of identity information of oneself, and Net silver shield includes interior
Smart card security chip is put, there is certain memory space.Wherein, the safe class of separate hardware safety chip is universal very high,
There is high security, protection side-channel attack, anti-cracking and anti-copying, even if chip is dissolved and polished
Violence operates, and can also destroy the data of the inside storage, prevent sensitive information leakage.Can specially it specified when making Net silver shield
In the environment of carry out, such as the special service window that opens up of supplier of shared automobile cooperation.Sales counter staff is to user's
The personal information such as identity card, bank card and driver's license are audited, and special Net silver shield is made after auditing successfully.
In manufacturing process, Net silver shield utilizes built-in public (asymmetric) key algorithm generation based on userspersonal information
A pair of secret keys of user, including a public keys (public key, public key) and corresponding private cipher key (private key,
Private key), wherein the information content being encrypted by a key, can only be by another paired key ability
It is decrypted.Public key and userspersonal information are transmitted to infrastructure system (Public Key by dedicated communications network
Infrashtructure, PKI), the authentication center (Certification Authority, CA) in infrastructure system can tie
The identity information and public key at family are shared, generates and provides the user's digital certificate and payout figure certificate of user, i.e. user
This two parts of certificates in include the identity information and public key of user, be then transmit to Net silver shield and preserved.Set using basis
The authentication center applied in system carries out effectively management and distributing certificates, and the hardware requirement that infrastructure system is strict, can
To ensure when leasing both sides and disputing by third party's ruling, and safety guarantor is provided for the payment environment including wholesale expense
Barrier.
It should be noted that to belong to user privately owned for the private key in Net silver shield, so private key will be stored in Net silver always
Inside shield and it cannot be exported.Using special in the application of user's digital certificate and payout figure certificate and manufacturing process
With communication network, the leakage of userspersonal information is avoided.Private key be mainly used in vehicle uniqueness information in subsequent step and
Sequence information is signed, and public key is mainly used in verifying signature value caused by corresponding private key.
After user finds shared automobile, the Net silver shield of oneself is inserted into the terminal device of shared automobile, terminal is set
Standby established with Net silver shield communicates to connect and reads user's digital certificate in Net silver shield and payout figure certificate, is then forwarded to
Shared vehicle service system.Shared vehicle service system receives this two parts of certificates, and user's digital certificate therein is tested
Card, and another payout figure certificate is forwarded to shared automobile payment services system and verified.
By that will be reduced to verify the user's digital certificate and payout figure inside Net silver shield to the checking of user identity
Certificate, carried out compared to traditional authentication method, such as by pictorial information to the server of supplier of frequent upload user
Checking, shortens the time audited using identity during shared automobile, and in digital certificate user personal information with one group without
The form of ordinal number word is present, and has ensured the security of userspersonal information.
Alternatively, the user's digital certificate and branch in the Net silver shield of the terminal device forwarding of shared automobile are received in S110
Paying digital certificate includes:The communication connection established using terminal device and the Net silver shield of shared automobile, subscriber authentication into
After work(, user's digital certificate and payout figure certificate in the Net silver shield for the terminal device forwarding for receiving shared automobile, wherein
Subscriber authentication is to input personal recognition code on the terminal device by user to carry out checking completion.
Wherein, after the terminal device of shared automobile is established with Net silver shield to be communicated to connect, terminal device can show user
The inputting interface of people's recognition code, user is reminded to carry out input validation.The personal recognition code of user can be that user is applying
Pre-set during Net silver shield, specifically:User is supplied to identity card, driver's license and the bank of sales counter staff oneself
Other personal information such as card;The information that Receptionist is submitted to user is audited, and after examination & verification passes through, prompts user in service window
One group of character string is inputted on the service terminal of mouth, the personal recognition code using password, i.e. user as Net silver shield
(personal identification number, PIN code);Continue to make special Net silver shield after being provided with.Work as user
After success sets personal recognition code, every time before using Net silver shield, it is necessary to which correctly personal recognition code just may be used for input
To carry out subsequent operation, this avoid user after the Net silver shield of oneself is lost, by other people irrational uses.Also, work as
After the personal recognition code of user is proved to be successful, application program in Net silver shield is by the right to use of the private key obtained in Net silver shield
Limit, is realized to the vehicle uniqueness information and the signature authentication of sequence information in subsequent step.
S120, according to user's digital certificate and the result of payout figure certificate, shared vapour is obtained out of Net silver shield
The unique information of car is simultaneously confirmed.
Wherein, vehicle service system is shared according to user's digital certificate and the result of payout figure certificate, can be with
By the internal communication link established with Net silver shield, instruction to Net silver shield, the Net silver shield for sending input information of vehicles is shown accordingly
Interface input the unique information of vehicle for user, wherein unique information includes but is not limited to the number-plate number and vehicle only
One identifier etc..After user, which inputs, to complete, Net silver shield can be signed using its internal private key to this information of vehicles, and again
The secondary unique information of vehicle and corresponding signature value are sent to shared vehicle service system using internal communication link is carried out
Confirm, wherein, shared vehicle service system is verified using the public key in user's digital certificate to the signature value of reception, from
And determine the use state of Current vehicle.If Current vehicle is inquired not used by other users, and without operation event
Barrier, then active user is allowed to use;If inquiring Current vehicle to be used by other users, or operation troubles be present,
Then Current vehicle is unusable.
S130, result generation order request is confirmed according to the unique information of shared automobile and receives sequence information, wherein
Sequence information generates after receiving order request by shared automobile payment services system.
When S120 determines that Current vehicle can use, shared vehicle service system confirms that result generates order request accordingly, passes through
Network transmits this order request to shared automobile payment services system, after sharing automobile payment services system generation sequence information
Return again to shared vehicle service system.Wherein, sequence information includes information of vehicles and cost of use etc..
S140, the confirmation result for obtaining sequence information, unblock message is sent to the terminal device of shared automobile, completes vehicle
Unblock, the wherein confirmation of sequence information are completed by Net silver shield and shared automobile payment services system.
After shared vehicle service system receives sequence information, this sequence information is sent true by user to Net silver shield
Recognize, to judge whether user has objection to this sequence information;If user is without demur to sequence information, Net silver shield is internal private using it
Key is signed to sequence information.Shared vehicle service system again sends out this signature value after receiving the signature value of sequence information
Shared automobile payment services system is delivered to be confirmed.Shared automobile payment services system utilizes the public key in payout figure certificate
Order signature value is verified.After shared vehicle service system receives the confirmation result of sequence information signature value, send
Message is unlocked to the terminal device of shared automobile, completes vehicle unblock.
Wherein, during user confirms to sequence information, specifically, user can pass through pressing on Net silver shield
Determination prompting on key or Net silver shield display interface is confirmed, and is confirmed in user key-press or clicked on the same of confirmation
When, complete order on reimbursement of expense, expense therein include with car cash pledge or this used with fare, user for the first time enter
, will not repeat request user payment after row cash pledge is paid.By the signature value of the sequence information after the confirmation of user send again to
Shared automobile payment services system is confirmed, it is ensured that order reimbursement of expense successfully completes, and provides safety guarantor for payment environment
Card, the reimbursement of expense of especially big amount, a reliable third party can be provided by the Signature Confirmation to pay invoice
Mechanism guarantees payment the safety of environment.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate
Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order
Information, vehicle is unlocked after the completion of payment, solve existing shared user vehicle identity checking method and expend time length, easily make
The problem of being revealed into user profile and be stolen low with payment environment safe class, is shortened and is audited using identity during shared automobile
Time, ensured the security of userspersonal information, improved the security of payment environment;When lease both sides dispute
Can be by serving as the authentication center in third-party infrastructure system come ruling.
Embodiment two
Fig. 2 is a kind of flow chart of the safety certifying method for shared automobile that the embodiment of the present invention two is provided.This implementation
Example is the further optimization on the basis of above-described embodiment.As shown in Fig. 2 the method in the present embodiment comprises the following steps:
The user's digital certificate and payout figure card in Net silver shield that S210, the terminal device of the shared automobile of reception forward
Book, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to shared automobile and pays clothes
Business system is verified.
S220, the result for receiving user's digital certificate and payout figure certificate, one group of random number is produced as logical
Link key is interrogated, communication link key is encrypted and transmitted to Net silver shield.
Wherein, caused communication link key can be used for the uniqueness to transmitting vehicle in subsequent step and its corresponding label
It is encrypted during name value, ensures security of this unique information in transmitting procedure.Communication link key is carried out after producing
Encrypted transmission ensure that communication link key in shared safe transmission between vehicle service system and Net silver shield to Net silver shield.
Shared vehicle service system and Net silver shield are each stored with a identical communication link key, can form man-to-man encryption
Process.
Alternatively, S220 is specifically included:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link
Key;
Communication link key is encrypted using the public key in user's digital certificate, transmitted to Net silver shield, wherein, net
Silver-colored shield shows the display interface of input information of vehicles to obtain the unique information of vehicle when receiving communication link key.
Wherein, transmit after communication link key being encrypted using the public key in user's digital certificate, only utilize
Corresponding private key can just be decrypted in Net silver shield, ensure that the security of communication link key.Net silver shield is receiving communication
During link key, this communication link key can be transferred to the control system inside Net silver shield as information command, control Net silver
The display interface of shield display input information of vehicles, to facilitate user to input the unique information of vehicle.
S230, receive Net silver shield in shared automobile unique information and corresponding signature value, wherein corresponding label
Name value is to be generated by unique information after the private key signature inside Net silver shield, and unique information and corresponding signature value are
Transmitted after the communication link key encryption for decrypting to obtain by Net silver shield to shared vehicle service system.
Wherein, the display interface for the input information of vehicles that user is shown by Net silver shield completes the unique information of vehicle
Input, after confirmation is errorless, Net silver shield is signed using the private key of inside to this information.Then, Net silver shield utilizes communication link
Key is transmitted to shared vehicle service system after unique information and signature value are encrypted.Because user completes individual
After the checking of recognition code, the application program in Net silver shield obtains the access right of the private key in Net silver shield, therefore Net silver shield can
Obtained after being decrypted with the communication link key using private key pair encryption.
S240, the unique information of reception and corresponding signature value are decrypted rear using communication link key and tested
Card, the signature value of wherein unique information is verified using the public key in user's digital certificate.
Shared vehicle service system is carried out using communication link key to the unique information of reception and corresponding signature value
Decryption, then, then verifies to vehicle uniqueness information and signature value, determines the use state of Current vehicle.
S250, result generation order request is confirmed according to the unique information of shared automobile and receives sequence information, wherein
Sequence information generates after receiving order request by shared automobile payment services system.
S260, the sequence information of reception is encrypted using caused communication link key and transmitted to Net silver shield.It is shared
Vehicle service system is carried out using communication link key to reception sequence information as caused by shared automobile payment services system
Transmitted after encryption to Net silver shield.
S270, receive the label generated after the private key signature that sequence information is decrypted and passed through inside Net silver shield by Net silver shield
Name value, wherein the signature value generated is to be transmitted after the encryption of communication link key to shared vehicle service system.
After Net silver shield receives the sequence information of encryption, it is decrypted using communication link key, it is determined that sequence information
Signature is completed using internal private key in the case of errorless, then passes the signature value of generation again after the encryption of communication link key
Transport to shared vehicle service system.
S280, using communication link key the signature value of the sequence information of reception is decrypted, and is forwarded to shared vapour
Car payment services system is verified that the signature value of wherein sequence information is tested using the public key in payout figure certificate
Card.Due to not having communication link key in shared automobile payment services system, so the sequence information signature value of encryption can only
By being forwarded to shared automobile payment services system again after shared vehicle service system decryption, signature verification is carried out.
S290, the result for receiving sequence information signature value, unblock message is sent to the terminal device of shared automobile, it is complete
Unlocked into vehicle.Shared automobile payment services system receives the result of sequence information signature value, if this signature value verifies nothing
By mistake, share automobile payment services system and send unblock message to the terminal device of shared automobile, complete vehicle unblock.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate
Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order
Information, vehicle is unlocked after the completion of payment, and during the unique information of shared automobile and the whole confirmation of sequence information,
Coded communication is established using internal communication link key, when solving existing shared user vehicle identity checking method consuming
Between it is long, easily cause user profile leakage and it is stolen low with payment environment safe class the problem of, shorten using shared vapour
The time that identity is audited during car, the security of userspersonal information is ensured, has improved the security of payment environment;When lease is double
Side can be by serving as the authentication center in third-party infrastructure system come ruling when disputing;In addition, by shared
Automobile unique information signature is signed to payment result and verifies corresponding signature value, has effectively evaded the business wind of the form of denial
Danger.
Embodiment three
Fig. 3 is a kind of structural representation of the security certification system for shared automobile that the embodiment of the present invention three is provided, this
Embodiment is applicable to carry out the situation of safety certification using shared automobile.The security certification system that the embodiment of the present invention is provided
The safety certifying method that is there is provided of any embodiment of the present invention is provided, possesses and performs the corresponding functional module of this method and beneficial
Effect.
As shown in figure 3, the system in the present embodiment includes receiving module 310, acquisition module 320, sequence information module 330
With unlocked state 340.Wherein:
Receiving module 310, user's digital certificate in Net silver shield that the terminal device for receiving shared automobile forwards
With payout figure certificate, user's digital certificate of reception is verified, and the payout figure certificate of reception is forwarded to altogether
Automobile payment services system is enjoyed to be verified.
Alternatively, receiving module 310 includes certificate receiving unit and certificate verification unit, wherein:
Certificate receiving unit, for the communication connection established using the terminal device of shared automobile with Net silver shield, in user
After authentication success, user's digital certificate and payout figure in the Net silver shield for the terminal device forwarding for receiving shared automobile
Certificate, wherein subscriber authentication are to input personal recognition code on the terminal device by user to carry out checking completion;
Certificate verification unit, demonstrate,proved for being verified to user's digital certificate of reception, and by the payout figure of reception
Book is forwarded to shared automobile payment services system and verified.
Acquisition module 320, for the result according to user's digital certificate and payout figure certificate, out of Net silver shield
Obtain the unique information of shared automobile and confirmed.
Sequence information module 330, for confirming result generation order request according to the unique information of shared automobile and connecing
Sequence information is received, wherein sequence information generates after receiving order request by shared automobile payment services system.
Unlocked state 340, for obtaining the confirmation result of sequence information, send unblock message to the terminal of shared automobile and set
It is standby, vehicle unblock is completed, the wherein confirmation of sequence information is completed by Net silver shield and shared automobile payment services system.
On the basis of above-mentioned technical proposal, further optimization, acquisition module 320 connects including the first receiving unit, second
Unit and the first decryption unit are received, wherein:
First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce one group
Random number is encrypted to communication link key and transmitted to Net silver shield as communication link key;Alternatively, the first receiving unit
It is specifically used for:
The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link
Key;
Communication link key is encrypted using the public key in user's digital certificate, transmitted to Net silver shield, its
In, Net silver shield shows that the display interface of input information of vehicles is believed to obtain the uniqueness of vehicle when receiving communication link key
Breath.
Second receiving unit, for the unique information for receiving the shared automobile in Net silver shield and corresponding signature value,
Wherein corresponding signature value is to be generated by unique information after the private key signature inside Net silver shield, unique information and
Corresponding signature value is that the communication link key encryption for decrypting to obtain by Net silver shield is transmitted to shared vehicle service system afterwards.
First decryption unit, for being carried out using communication link key to the unique information of reception and corresponding signature value
Decryption, and verify, the signature value of wherein unique information is verified using the public key in user's digital certificate.
On the basis of above-mentioned technical proposal, alternatively, unlocked state 340 includes the first transmission unit, the 3rd reception list
Member, the second decryption unit and the first unlocking unit, wherein:
First transmission unit, the sequence information of reception is encrypted for communication link key caused by utilization transmit to
Net silver shield.
3rd receiving unit, the private key signature for passing through Net silver shield for receiving sequence information and decrypting and passing through inside Net silver shield
The signature value generated afterwards, wherein the signature value generated is to be transmitted after the encryption of communication link key to shared automobile services system
System.
Second decryption unit, for the signature value of the sequence information of reception to be decrypted using communication link key, and
It is forwarded to shared automobile payment services system to be verified, wherein the signature value of sequence information is using in payout figure certificate
Public key is verified.
First unlocking unit, for receiving the result of sequence information signature value, unblock message is sent to shared automobile
Terminal device, complete vehicle unblock.
The embodiment of the present invention is entered by user's digital certificate to being stored in advance in Net silver shield and payout figure certificate
Row checking, the unique information of shared automobile is obtained according to this result, determine the use state of vehicle, and then generate order
Information, vehicle is unlocked after the completion of payment, and coded communication is established using internal communication link key in whole process, solved
Existing shared user vehicle identity checking method expends time length, easily causes user profile leakage and is stolen and pays ring
The problem of border safe class is low, the time audited using identity during shared automobile is shortened, has ensured the peace of userspersonal information
Quan Xing, improve the security of payment environment;Can be by serving as third-party infrastructure system when leasing both sides and disputing
Authentication center in system carrys out ruling.
Pay attention to, above are only presently preferred embodiments of the present invention and institute's application technology principle.It will be appreciated by those skilled in the art that
The invention is not restricted to specific embodiment described here, can carry out for a person skilled in the art various obvious changes,
Readjust and substitute without departing from protection scope of the present invention.Therefore, although being carried out by above example to the present invention
It is described in further detail, but the present invention is not limited only to above example, without departing from the inventive concept, also
Other more equivalent embodiments can be included, and the scope of the present invention is determined by scope of the appended claims.
Claims (10)
- A kind of 1. safety certifying method of shared automobile, it is characterised in that including:The user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding of shared automobile are received, to described User's digital certificate is verified, and the payout figure certificate is forwarded into shared automobile payment services system and tested Card;According to user's digital certificate and the result of payout figure certificate, shared automobile is obtained out of described Net silver shield Unique information and confirmed;Result generation order request is confirmed according to the unique information and receives sequence information, wherein the sequence information is by institute State after shared automobile payment services system receives the order request and generate;The confirmation result of the sequence information is obtained, unblock message is sent to the terminal device of the shared automobile, completes vehicle Unblock, wherein the confirmation of the sequence information is completed by the Net silver shield and the shared automobile payment services system successively.
- 2. according to the method for claim 1, it is characterised in that described according to user's digital certificate and payout figure The result of certificate, the unique information of shared automobile is obtained out of described Net silver shield and is confirmed, including:The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key, the communication link key is encrypted and transmitted to the Net silver shield;Receive the unique information of the shared automobile in the Net silver shield and corresponding signature value, wherein the signature value be by The unique information generates after the private key signature inside the Net silver shield, the unique information and corresponding signature Value is that the communication link key encryption for decrypting to obtain by the Net silver shield is transmitted to the shared vehicle service system afterwards;The unique information of the reception and corresponding signature value are decrypted using the communication link key, and verified, The signature value of wherein described unique information is verified using the public key in user's digital certificate.
- 3. according to the method for claim 2, it is characterised in that the confirmation result for obtaining the sequence information, send Message is unlocked to the terminal device of the shared automobile, vehicle unblock is completed, wherein the confirmation of the sequence information is successively by institute State Net silver shield and the shared automobile payment services system is completed, including:The sequence information of the reception is encrypted using the communication link key and transmitted to the Net silver shield;The private key signature that the sequence information is decrypted and passed through inside the Net silver shield by the Net silver shield is received to generate afterwards Signature value, wherein the signature value be by the communication link key encryption after transmit to the shared automobile services system System;The signature value of the sequence information of the reception is decrypted using the communication link key, and is forwarded to described shared Automobile payment services system is verified, wherein the signature value of the sequence information is to utilize the public affairs in the payout figure certificate Key is verified;The result of the sequence information signature value is received, sends unblock message to the terminal device of the shared automobile, it is complete Unlocked into vehicle.
- 4. according to the method for claim 2, it is characterised in that described to receive user's digital certificate and payout figure The result of certificate, one group of random number is produced as communication link key, transmission is encrypted to the communication link key To the Net silver shield, including:The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;The communication link key is encrypted using the public key in user's digital certificate, transmitted to the Net silver Shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key State unique information.
- 5. according to the method for claim 1, it is characterised in that the Net silver of the terminal device forwarding for receiving shared automobile User's digital certificate and payout figure certificate in shield, including:The communication connection established using the terminal device of the shared automobile with the Net silver shield, in subscriber authentication success Afterwards, the user's digital certificate and payout figure certificate in the Net silver shield of the terminal device forwarding are received, wherein described Subscriber authentication is to input personal recognition code on the terminal device by the user to carry out checking completion.
- A kind of 6. security certification system of shared automobile, it is characterised in that including:Receiving module, the user's digital certificate and payment number in Net silver shield that the terminal device for receiving shared automobile forwards Word certificate, user's digital certificate is verified, and the payout figure certificate is forwarded to shared automobile and pays clothes Business system is verified;Acquisition module, for the result according to user's digital certificate and payout figure certificate, from the Net silver shield The interior unique information for obtaining shared automobile is simultaneously confirmed;Sequence information module, for confirming result generation order request according to the unique information and receiving sequence information, its Described in sequence information the order request is received by the shared automobile payment services system after generate;Unlocked state, for obtaining the confirmation result of the sequence information, unblock message is sent to the terminal of the shared automobile Equipment, vehicle unblock is completed, wherein the confirmation of the sequence information pays clothes by the Net silver shield and the shared automobile successively Business system is completed.
- 7. system according to claim 6, it is characterised in that the acquisition module includes:First receiving unit, for receiving the result of user's digital certificate and payout figure certificate, produce one group Random number is encrypted to the communication link key and transmitted to the Net silver shield as communication link key;Second receiving unit, for the unique information for receiving the shared automobile in the Net silver shield and corresponding signature value, Wherein described signature value is to be generated by the unique information after the private key signature inside the Net silver shield, described unique Property information and corresponding signature value be to transmit to described after the communication link key encryption for decrypting to obtain by the Net silver shield Shared vehicle service system;First decryption unit, for utilizing unique information and corresponding signature value of the communication link key to the reception It is decrypted, and verifies, wherein the signature value of the unique information is entered using the public key in user's digital certificate Row checking.
- 8. system according to claim 7, it is characterised in that the unlocked state includes:First transmission unit, transmitted for the sequence information of the reception to be encrypted using the communication link key to institute State Net silver shield;3rd receiving unit, decrypt and pass through inside the Net silver shield by the Net silver shield for receiving the sequence information The signature value generated after private key signature, wherein the signature value is to be transmitted after communication link key encryption to described Shared vehicle service system;Second decryption unit, for being solved using the communication link key to the signature value of the sequence information of the reception It is close, and be forwarded to the shared automobile payment services system and verified, wherein the signature value of the sequence information is to utilize institute The public key stated in payout figure certificate is verified;First unlocking unit, for receiving the result of the sequence information signature value, send unblock message and shared to described The terminal device of automobile, complete vehicle unblock.
- 9. system according to claim 7, it is characterised in that first receiving unit is specifically used for:The result of user's digital certificate and payout figure certificate is received, produces one group of random number as communication link Key;The communication link key is encrypted using the public key in user's digital certificate, transmitted to the Net silver Shield, wherein, the Net silver shield shows the display interface of input information of vehicles to obtain when receiving the communication link key State unique information.
- 10. system according to claim 6, it is characterised in that the receiving module includes:Certificate receiving unit, the communication connection established for the terminal device using the shared automobile with the Net silver shield, After subscriber authentication success, receive user's digital certificate in the Net silver shield of the terminal device forwarding and pay number Word certificate, wherein the subscriber authentication is to input personal recognition code on the terminal device by the user to carry out Checking is completed;Certificate verification unit, for being verified to user's digital certificate, and the payout figure certificate is forwarded to Shared automobile payment services system is verified.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711012015.XA CN107609878B (en) | 2017-10-26 | 2017-10-26 | Security authentication method and system for shared automobile |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201711012015.XA CN107609878B (en) | 2017-10-26 | 2017-10-26 | Security authentication method and system for shared automobile |
Publications (2)
Publication Number | Publication Date |
---|---|
CN107609878A true CN107609878A (en) | 2018-01-19 |
CN107609878B CN107609878B (en) | 2020-09-29 |
Family
ID=61080736
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201711012015.XA Active CN107609878B (en) | 2017-10-26 | 2017-10-26 | Security authentication method and system for shared automobile |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN107609878B (en) |
Cited By (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2020258837A1 (en) * | 2019-06-28 | 2020-12-30 | 创新先进技术有限公司 | Unlocking method, device for realizing unlocking, and computer readable medium |
US10997808B2 (en) | 2019-06-28 | 2021-05-04 | Advanced New Technologies Co., Ltd. | Secure smart unlocking |
CN113965639A (en) * | 2021-11-22 | 2022-01-21 | 徐州初壹网络科技有限公司 | APP function platform and method for book sharing |
Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN202159373U (en) * | 2011-07-19 | 2012-03-07 | 孙海东 | Electromobile in network of things and supporting electronic payment |
CN105553949A (en) * | 2015-12-09 | 2016-05-04 | 苏州海博智能系统有限公司 | In-car payment authentication device |
CN106023458A (en) * | 2016-05-13 | 2016-10-12 | 智车优行科技(北京)有限公司 | Vehicle control method, apparatus and terminal, vehicle, server and system |
CN108122311A (en) * | 2017-11-30 | 2018-06-05 | 北京九五智驾信息技术股份有限公司 | Vehicle virtual key realization method and system |
-
2017
- 2017-10-26 CN CN201711012015.XA patent/CN107609878B/en active Active
Patent Citations (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN202159373U (en) * | 2011-07-19 | 2012-03-07 | 孙海东 | Electromobile in network of things and supporting electronic payment |
CN105553949A (en) * | 2015-12-09 | 2016-05-04 | 苏州海博智能系统有限公司 | In-car payment authentication device |
CN106023458A (en) * | 2016-05-13 | 2016-10-12 | 智车优行科技(北京)有限公司 | Vehicle control method, apparatus and terminal, vehicle, server and system |
CN108122311A (en) * | 2017-11-30 | 2018-06-05 | 北京九五智驾信息技术股份有限公司 | Vehicle virtual key realization method and system |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
WO2020258837A1 (en) * | 2019-06-28 | 2020-12-30 | 创新先进技术有限公司 | Unlocking method, device for realizing unlocking, and computer readable medium |
US10997808B2 (en) | 2019-06-28 | 2021-05-04 | Advanced New Technologies Co., Ltd. | Secure smart unlocking |
US11295565B2 (en) | 2019-06-28 | 2022-04-05 | Advanced New Technologies Co., Ltd. | Secure smart unlocking |
CN113965639A (en) * | 2021-11-22 | 2022-01-21 | 徐州初壹网络科技有限公司 | APP function platform and method for book sharing |
CN113965639B (en) * | 2021-11-22 | 2023-04-25 | 徐州初壹网络科技有限公司 | APP functional platform and method for book sharing |
Also Published As
Publication number | Publication date |
---|---|
CN107609878B (en) | 2020-09-29 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN109150548B (en) | Digital certificate signing and signature checking method and system and digital certificate system | |
CN104994114B (en) | A kind of identity authorization system and method based on electronic ID card | |
CN101300808B (en) | Method and arrangement for secure autentication | |
EP1476980B1 (en) | Requesting digital certificates | |
US7362869B2 (en) | Method of distributing a public key | |
TW201741922A (en) | Biological feature based safety certification method and device | |
US20190251561A1 (en) | Verifying an association between a communication device and a user | |
CN101860525B (en) | Realizing method of electronic authorization warrant, intelligent terminal, authorization system and verification terminal | |
US20090187980A1 (en) | Method of authenticating, authorizing, encrypting and decrypting via mobile service | |
CN108551455A (en) | The configuration method and device of smart card | |
CN102202300A (en) | System and method for dynamic password authentication based on dual channels | |
CN103632436B (en) | A kind of method of the withdrawal based on terminal | |
WO2018133674A1 (en) | Method of verifying and feeding back bank payment permission authentication information | |
CN101777978A (en) | Method and system based on wireless terminal for applying digital certificate and wireless terminal | |
JP2006318489A (en) | Method and device for confirming authentication of id of service user | |
CN101770619A (en) | Multiple-factor authentication method for online payment and authentication system | |
TWI591553B (en) | Systems and methods for mobile devices to trade financial documents | |
CN103944736A (en) | Data security interactive method | |
CN101652782B (en) | Communication terminal device, communication device, electronic card, method for a communication terminal device and method for a communication device for providing a verification | |
CN106209383A (en) | A kind of method and device of mobile payment security certification | |
US20230133418A1 (en) | Personalised, server-specific authentication mechanism | |
CN109600296A (en) | A kind of certificate chain instant communicating system and its application method | |
CN110278084B (en) | eID establishing method, related device and system | |
CN107609878A (en) | A kind of safety certifying method and system of shared automobile | |
CN105682092B (en) | Bidirectional authentication method based on short-distance wireless communication technology |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant |