CN109067771A - Security protection system, method and the vehicle of vehicle - Google Patents

Security protection system, method and the vehicle of vehicle Download PDF

Info

Publication number
CN109067771A
CN109067771A CN201811039660.5A CN201811039660A CN109067771A CN 109067771 A CN109067771 A CN 109067771A CN 201811039660 A CN201811039660 A CN 201811039660A CN 109067771 A CN109067771 A CN 109067771A
Authority
CN
China
Prior art keywords
vehicle
security
terminal
sent
control instruction
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201811039660.5A
Other languages
Chinese (zh)
Inventor
陆群
王颖鑫
王磊
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
CH Auto Technology Co Ltd
Beijing Changcheng Huaguan Automobile Technology Development Co Ltd
Original Assignee
Beijing Changcheng Huaguan Automobile Technology Development Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Changcheng Huaguan Automobile Technology Development Co Ltd filed Critical Beijing Changcheng Huaguan Automobile Technology Development Co Ltd
Priority to CN201811039660.5A priority Critical patent/CN109067771A/en
Publication of CN109067771A publication Critical patent/CN109067771A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/123Applying verification of the received information received data contents, e.g. message integrity
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords

Abstract

The present invention proposes that the security protection system, method and vehicle of a kind of vehicle, the system include: network communication module, for receiving the control instruction and/or external network information that terminal is sent outside the vehicle for passing through authorized public key encryption;Security firewall, security firewall is connected with network communication module, security firewall includes high safety grade operating system, high safety grade operating system has the key pair generated by predetermined cryptographic algorithm, key pair includes private key and public key, for being decrypted and verifying by control instruction and/or external network information of the private key to terminal transmission outside vehicle, and control instruction and/or external network information that terminal outside vehicle is sent selectively are sent to by interior control system according to verification result.The present invention realizes the safety mechanical defense system of vehicle using non-rewritable secure hardware as foundation for security, guarantees that system data is not tampered, improves vehicle security.

Description

Security protection system, method and the vehicle of vehicle
Technical field
The present invention relates to technical field of vehicle safety, in particular to a kind of security protection system of vehicle, method and vehicle.
Background technique
Currently, high-intelligentization and net connectionization automobile are gradually popularized, it is main to realize that adaptive learning algorithms and deviation are pre- Alert system and remote functionality control etc..It is subsequent, active safety function and intelligent driving and remote software can be further increased The functions such as upgrading.However, high-intelligentization, which controls, gives hacker attack automobile, obtains automobile control and provide more possibility, also increase Added the risk of vehicle rogue attacks and control, once by attacking, it is small get a fright to passenger inside the vehicle, property incurs loss, greatly It is on the hazard to life security.Therefore, how to guarantee that user information is not stolen and identifies false control instruction, make automobile can be with Enjoy network it is convenient and efficient while, guarantee that the safety of user information property and driving becomes the key technology of automotive safety.
Current electric car is most of to carry T-BOX, realizes that vehicle device is remotely controlled with external network information exchange and APP Function processed.Therefore, premeditated attacker can be entered by portable equipment, network communication and the intrinsic software upgrading loophole of vehicle system It invades, information and vehicle system is distorted with remote mode, this system after distorting can receive after network instruction to inside vehicle device Network system sends pseudo-command.For this problem, the technical solution of most main engine plants is added by T-BOX progress information at present The software modes such as close processing and authentication are protected, but as intelligent interconnection technology develops, the safety of car networking system Hidden danger can not have been prevented by simple software defense measure, this causes the safety of vehicle to gradually decrease.
Summary of the invention
The present invention is directed at least solve one of above-mentioned technical problem.
For this purpose, the first purpose of this invention is to propose a kind of security protection system of vehicle, the system is can not change The secure hardware write realizes the safety mechanical defense system of vehicle as foundation for security, guarantees that system data is not tampered, mentions High vehicle security.
Second object of the present invention is to propose a kind of vehicle.
Third object of the present invention is to propose a kind of safety protecting method of vehicle.
To achieve the goals above, the embodiment of first aspect present invention proposes a kind of security protection system of vehicle, It include: network communication module, for receiving terminal is sent outside the vehicle for passing through authorized public key encryption control instruction and/or outer Portion's network information;Security firewall, the security firewall are connected with the network communication module, and the security firewall includes High safety grade operating system, the high safety grade operating system has the key pair generated by predetermined cryptographic algorithm, described close Key to include private key and the public key, for by the private key to outside the vehicle terminal transmission control instruction and/or outside The network information is decrypted and verifies, and according to verification result selectively by outside the vehicle terminal send control instruction and/ Or external network information is sent to interior control system.
The security protection system of vehicle according to an embodiment of the present invention, devises security firewall, with non-rewritable peace Devices at full hardware realizes the safety mechanical defense system of intelligent network connection automobile as foundation for security, when detecting that transmission information is usurped Change or send pseudo-command, security firewall can close the communication with vehicle by internal relay, forbid interior and vehicle The interaction of information between outer guarantees that system data is not tampered, and improves vehicle security, also, the system have it is good Practicability and can continuity, while security firewall can have both gateway function, and scalability is strong.
In addition, the security protection system of vehicle according to the above embodiment of the present invention can also have following additional technology Feature:
In some instances, the security firewall is connected by hardware switch with the interior control system, right After the control instruction and/or external network Information Authentication that the outer terminal of the vehicle is sent pass through, the hardware switch is closed with to institute It states interior control system and sends control instruction and/or external network information that the outer terminal of the vehicle is sent.
In some instances, the security firewall be also used to control instruction that outside to vehicle terminal is sent and/or After external network Information Authentication failure, the hardware switch is opened to forbid sending outside the vehicle eventually to the interior control system Hold the control instruction and/or external network information sent.
In some instances, the security firewall further includes low level security operating system, low level security operation system System realizes the information exchange between interior control system and the outer terminal of the vehicle for handling non-vital data.
In some instances, the network communication module is vehicle-mounted T-BOX.
To achieve the goals above, the embodiment of second aspect of the present invention proposes a kind of vehicle, including as in the present invention State the security protection system of vehicle described in embodiment.
Vehicle according to an embodiment of the present invention, devises security firewall, using non-rewritable secure hardware as safety Basis, realize intelligent network connection automobile safety mechanical defense system, when detect transmission information be tampered or send falseness Instruction, security firewall can close the communication with vehicle by internal relay, forbid the friendship of information between outside interior and vehicle Mutually, guarantee that system data is not tampered, improve vehicle security.
To achieve the goals above, the embodiment of third aspect present invention proposes a kind of safety protecting method of vehicle, The following steps are included: receiving the control instruction sent by the outer terminal of vehicle of authorized public key encryption and/or external network letter Breath;The high safety grade operating system of security firewall is by private key to the control instruction of terminal transmission and/or outside outside the vehicle The network information is decrypted and verifies;According to verification result selectively by outside the vehicle terminal send control instruction and/or External network information is sent to interior control system, wherein the high safety grade operating system, which has, passes through predetermined cryptographic algorithm The key pair of generation, the key pair include private key and the public key.
The safety protecting method of vehicle according to an embodiment of the present invention, devises security firewall, with non-rewritable peace Devices at full hardware realizes the safety mechanical defense system of intelligent network connection automobile as foundation for security, when detecting that transmission information is usurped Change or send pseudo-command, security firewall can close the communication with vehicle by internal relay, forbid interior and vehicle The interaction of information between outer guarantees that system data is not tampered, improves vehicle security.
In addition, the safety protecting method of vehicle according to the above embodiment of the present invention can also have following additional technology Feature:
In some instances, the security firewall is connected by hardware switch with the interior control system, and described Control instruction and/or external network information that terminal outside the vehicle is sent selectively are sent to interior control according to verification result System, comprising: after the control instruction and/or external network Information Authentication that terminal is sent outside to the vehicle pass through, described in closing Hardware switch is to send the control instruction and/or external network information that terminal is sent outside the vehicle to the interior control system.
In some instances, further includes: the control instruction and/or external network information that terminal is sent outside to the vehicle are tested After card failure, the hardware switch is opened to forbid the control for sending terminal transmission outside the vehicle to the interior control system to refer to Order and/or external network information.
In some instances, the security firewall further includes low level security operating system, the method also includes: it is described Low level security operating system handles non-vital data, and realizes the letter between interior control system and the outer terminal of the vehicle Breath interaction.
Additional aspect and advantage of the invention will be set forth in part in the description, and will partially become from the following description Obviously, or practice through the invention is recognized.
Detailed description of the invention
Above-mentioned and/or additional aspect of the invention and advantage will become from the description of the embodiment in conjunction with the following figures Obviously and it is readily appreciated that, in which:
Fig. 1 is the structural block diagram of the security protection system of vehicle according to an embodiment of the invention;
Fig. 2 is the implementation principle schematic diagram of the security protection system of vehicle according to an embodiment of the invention;
Fig. 3 is the flow chart of the safety protecting method of vehicle according to an embodiment of the invention.
Specific embodiment
The embodiment of the present invention is described below in detail, examples of the embodiments are shown in the accompanying drawings, wherein from beginning to end Same or similar label indicates same or similar element or element with the same or similar functions.Below with reference to attached The embodiment of figure description is exemplary, and for explaining only the invention, and is not considered as limiting the invention.
In the description of the present invention, it is to be understood that, term " center ", " longitudinal direction ", " transverse direction ", "upper", "lower", The orientation or positional relationship of the instructions such as "front", "rear", "left", "right", "vertical", "horizontal", "top", "bottom", "inner", "outside" is It is based on the orientation or positional relationship shown in the drawings, is merely for convenience of description of the present invention and simplification of the description, rather than instruction or dark Show that signified device or element must have a particular orientation, be constructed and operated in a specific orientation, therefore should not be understood as pair Limitation of the invention.In addition, term " first ", " second " are used for description purposes only, it is not understood to indicate or imply opposite Importance.
In the description of the present invention, it should be noted that unless otherwise clearly defined and limited, term " installation ", " phase Even ", " connection " shall be understood in a broad sense, for example, it may be being fixedly connected, may be a detachable connection, or be integrally connected;It can To be mechanical connection, it is also possible to be electrically connected;It can be directly connected, can also can be indirectly connected through an intermediary Connection inside two elements.For the ordinary skill in the art, above-mentioned term can be understood at this with concrete condition Concrete meaning in invention.
The security protection system, method and vehicle of vehicle according to an embodiment of the present invention are described below in conjunction with attached drawing.
Fig. 1 is the structural block diagram of the security protection system of vehicle according to an embodiment of the invention.As shown in Figure 1, should System 100 includes: network communication module 110 and security firewall 120.
Wherein, network communication module 110 is used to receive through the vehicle of authorized public key encryption terminal (i.e. institute in Fig. 2 outside The outer terminal system of the vehicle that shows) control instruction and/or external network information that send.In specific example, as shown in connection with fig. 2, net Network communication module 110 is vehicle-mounted T-BOX.
Security firewall 120 (S-GW as shown in Figure 2) is connected with network communication module 110, and security firewall 120 wraps High safety grade operating system (Secure Hardware System as shown in Figure 2) is included, high safety grade operating system has The key pair generated by predetermined cryptographic algorithm, key pair includes private key and public key, for being sent by private key to terminal outside vehicle Control instruction and/or external network information be decrypted and verify, and selectively terminal outside vehicle is sent out according to verification result The control instruction and/or external network information sent are sent to interior control system.
Specifically, as shown in connection with fig. 2, security firewall 120 passes through hardware switch (the hardware Relay switch in such as Fig. 2) It is connected with interior control system, realizes CAN communication, with the control instruction and/or external network information that terminal is sent outside to vehicle After being verified, hardware switch is closed to send the control instruction and/or extranets that terminal is sent outside vehicle to interior control system Network information.
In one embodiment of the invention, security firewall 120 is also used to the control instruction that terminal is sent outside to vehicle And/or after external network Information Authentication failure, hardware switch is opened to forbid sending terminal transmission outside vehicle to interior control system Control instruction and/or external network information.In other words, when the transmission information for detecting terminal outside vehicle is tampered or sends When pseudo-command, security firewall 120 controls hardware switch and disconnects, and then closes the CAN network between interior control system, The interaction for forbidding information between interior control system and the outer terminal of vehicle, to increase vehicle security.
Further, security firewall 120 further includes low level security operating system (UnSecure as shown in Figure 2 System).Low level security operating system realizes interior control system and the outer terminal of vehicle for handling non-vital data Between information exchange.
For example, the security protection system of vehicle of the invention, the security architecture technology based on total system rank are realized The security isolation of processor, memory and peripheral hardware, while high safety grade operating system and low level security operating system are run, and two Mutually isolated operation between operating system, will not influence each other.Security firewall 120 grasps non-vital data by low level security It is sent to T-BOX as system, is exported using 4G network etc. and gives terminal outside vehicle (such as cloud platform).But such as security information: The control instruction and external network information that the outer terminal (such as smart phone) of vehicle is sent, are handled by high safety grade operating system Afterwards, it is passed by control hardware switch and is connected to the CAN network of interior control system, and then exported to each subsystem controller, from And improve the safety of information of vehicles.Wherein, high safety grade operating system is passed through based on not modifiable hardware chip Default security algorithm (such as PKI security algorithm) is decrypted with public key encryption and private key, realizes the function such as data signature and non-repudiation Energy.It is main to realize following functions: 1) to open clean boot function, guarantee system is not tampered;2) secure storage function can lead to It crosses data signature and guarantees that data are not tampered;3) each application service is isolated, if the service of connection internet is by hacker Attack guarantees that system critical function does not receive the influence that attack is used.In turn, after being verified by high safety grade operating system, By control hardware switch closure to open the CAN communication of interior control system, interior control system could with terminal outside vehicle into Row information interaction, to improve vehicle security.
The security protection system of vehicle according to an embodiment of the present invention, devises security firewall, with non-rewritable peace Devices at full hardware realizes the safety mechanical defense system of intelligent network connection automobile as foundation for security, when detecting that transmission information is usurped Change or send pseudo-command, security firewall can close the communication with vehicle by internal relay, forbid interior and vehicle The interaction of information between outer guarantees that system data is not tampered, and improves vehicle security, also, the system have it is good Practicability and can continuity, while security firewall can have both gateway function, and scalability is strong.
Further embodiment of the present invention also proposed a kind of vehicle.The vehicle includes any one above-mentioned implementation of the present invention The security protection system of vehicle described in example.
Vehicle according to an embodiment of the present invention, devises security firewall, using non-rewritable secure hardware as safety Basis, realize intelligent network connection automobile safety mechanical defense system, when detect transmission information be tampered or send falseness Instruction, security firewall can close the communication with vehicle by internal relay, forbid the friendship of information between outside interior and vehicle Mutually, guarantee that system data is not tampered, improve vehicle security.
In addition, other compositions of vehicle according to an embodiment of the present invention and effect are for those of ordinary skill in the art For be all it is known, in order to reduce redundancy, be not repeated herein.
Further embodiment of the present invention also proposed a kind of safety protecting method of vehicle.
Fig. 3 is the flow chart of the safety protecting method of vehicle according to an embodiment of the invention.As shown in figure 3, the party Method the following steps are included:
Step S1: the control instruction sent by the outer terminal of vehicle of authorized public key encryption and/or external network are received Information.
Step S2: the control instruction that the high safety grade operating system of security firewall sends terminal outside vehicle by private key And/or external network information is decrypted and verifies.
Step S3: the control instruction and/or external network information for selectively being sent terminal outside vehicle according to verification result It is sent to interior control system, wherein high safety grade operating system has the key pair generated by predetermined cryptographic algorithm, key To including private key and public key.
Specifically, security firewall is connected by hardware switch with interior control system, is realized CAN communication, is tested with basis Control instruction and/or external network information that terminal outside vehicle is sent selectively are sent to interior control system by card result.Tool After body includes: the control instruction that terminal is sent outside to vehicle and/or external network Information Authentication passes through, close hardware switch with to Interior control system sends the control instruction and/or external network information that the outer terminal of vehicle is sent.
In one embodiment of the invention, this method further include: further include: the control instruction that terminal is sent outside to vehicle And/or after external network Information Authentication failure, hardware switch is opened to forbid sending terminal transmission outside vehicle to interior control system Control instruction and/or external network information.In other words, when the transmission information for detecting terminal outside vehicle is tampered or sends When pseudo-command, security firewall controls hardware switch and disconnects, and then closes the CAN network between interior control system, prohibits Only between interior control system and the outer terminal of vehicle information interaction, to increase vehicle security.
Further, in one embodiment of the invention, security firewall further includes low level security operating system.It is based on This, this method further include: low level security operating system handles non-vital data, and realizes outside interior control system and vehicle Information exchange between terminal.
For example, the safety protecting method of vehicle of the invention, the security architecture technology based on total system rank are realized The security isolation of processor, memory and peripheral hardware, while high safety grade operating system and low level security operating system are run, and two Mutually isolated operation between operating system, will not influence each other.Security firewall operates non-vital data by low level security System is sent to T-BOX, exports using 4G network etc. and gives terminal outside vehicle (such as cloud platform).But such as security information: vehicle The control instruction and external network information that outer terminal (such as smart phone) sends, after the processing of high safety grade operating system, The CAN network for being connected to interior control system is passed by control hardware switch, and then is exported to each subsystem controller, to mention The high safety of information of vehicles.Wherein, high safety grade operating system is based on not modifiable hardware chip, by default Security algorithm (such as PKI security algorithm) is decrypted with public key encryption and private key, realizes the functions such as data signature and non-repudiation. It is main to realize following functions: 1) to open clean boot function, guarantee system is not tampered;2) secure storage function can pass through number Guarantee that data are not tampered according to signature;3) each application service is isolated, if the service of connection internet by hacker attack, Guarantee system critical function does not receive the influence that attack is used.In turn, after verifying by high safety grade operating system, pass through control Hardware switch processed is closed to open the CAN communication of interior control system, and interior control system could carry out information with terminal outside vehicle Interaction, to improve vehicle security.
It should be noted that the specific implementation of the safety protecting method of the vehicle of the embodiment of the present invention and the present invention are real The specific implementation for applying the security protection system of the vehicle of example is similar, specifically refers to the description of components of system as directed, in order to reduce Redundancy, details are not described herein again.
The safety protecting method of vehicle according to an embodiment of the present invention, devises security firewall, with non-rewritable peace Devices at full hardware realizes the safety mechanical defense system of intelligent network connection automobile as foundation for security, when detecting that transmission information is usurped Change or send pseudo-command, security firewall can close the communication with vehicle by internal relay, forbid interior and vehicle The interaction of information between outer guarantees that system data is not tampered, improves vehicle security.
In the description of this specification, reference term " one embodiment ", " some embodiments ", " example ", " specifically show The description of example " or " some examples " etc. means specific features, structure, material or spy described in conjunction with this embodiment or example Point is included at least one embodiment or example of the invention.In the present specification, schematic expression of the above terms are not Centainly refer to identical embodiment or example.Moreover, particular features, structures, materials, or characteristics described can be any One or more embodiment or examples in can be combined in any suitable manner.
Although an embodiment of the present invention has been shown and described, it will be understood by those skilled in the art that: not A variety of change, modification, replacement and modification can be carried out to these embodiments in the case where being detached from the principle of the present invention and objective, this The range of invention is by claim and its equivalent limits.

Claims (10)

1. a kind of security protection system of vehicle characterized by comprising
Network communication module, for receiving terminal is sent outside the vehicle for passing through authorized public key encryption control instruction and/or outer Portion's network information;
Security firewall, the security firewall are connected with the network communication module, and the security firewall includes high safety Grade operating system, the high safety grade operating system have the key pair generated by predetermined cryptographic algorithm, the key pair packet Private key and the public key are included, for believing by the private key the control instruction of terminal transmission and/or external network outside the vehicle Breath is decrypted and verifies, and according to verification result selectively by the control instruction of terminal transmission and/or outside outside the vehicle The network information is sent to interior control system.
2. the security protection system of vehicle according to claim 1, which is characterized in that the security firewall passes through hardware Switch is connected with the interior control system, with the control instruction and/or external network information that terminal is sent outside to the vehicle After being verified, the hardware switch is closed to send the control instruction that terminal is sent outside the vehicle to the interior control system And/or external network information.
3. the security protection system of vehicle according to claim 2, which is characterized in that the security firewall is also used to After the control instruction and/or external network Information Authentications failure that send to terminal outside the vehicle, the hardware switch is opened to prohibit Only the control instruction and/or external network information that terminal is sent outside the vehicle are sent to the interior control system.
4. the security protection system of vehicle according to claim 1, which is characterized in that the security firewall further includes low Safety level operating system, the low level security operating system realize interior control system for handling non-vital data Information exchange between system and the outer terminal of the vehicle.
5. the security protection system of vehicle according to claim 1, which is characterized in that the network communication module is vehicle-mounted T-BOX。
6. a kind of vehicle characterized by comprising the security protection system of vehicle according to claim 1-5.
7. a kind of safety protecting method of vehicle, which comprises the following steps:
Receive the control instruction and/or external network information sent by the outer terminal of vehicle of authorized public key encryption;
The high safety grade operating system of security firewall is by private key to the control instruction of terminal transmission and/or outside outside the vehicle The network information is decrypted and verifies;
Control instruction and/or external network information that terminal outside the vehicle is sent selectively are sent to vehicle according to verification result Controlling system,
Wherein, the high safety grade operating system has the key pair generated by predetermined cryptographic algorithm, and the key pair includes Private key and the public key.
8. the safety protecting method of vehicle according to claim 7, which is characterized in that the security firewall passes through hardware Switch is connected with the interior control system, described selectively to be referred to the control that terminal outside the vehicle is sent according to verification result It enables and/or external network information is sent to interior control system, comprising:
After the control instruction and/or external network Information Authentication that terminal is sent outside to the vehicle pass through, closes the hardware and open Car control system described in Guan Yixiang sends the control instruction and/or external network information that the outer terminal of the vehicle is sent.
9. the safety protecting method of vehicle according to claim 8, which is characterized in that further include:
After terminal is sent outside to the vehicle control instruction and/or external network Information Authentication failure, opens the hardware and open It closes to forbid sending the control instruction and/or external network information that terminal is sent outside the vehicle to the interior control system.
10. the safety protecting method of vehicle according to claim 7, which is characterized in that the security firewall further includes Low level security operating system, the method also includes:
The low level security operating system handles non-vital data, and realizes interior control system and the outer terminal of the vehicle Between information exchange.
CN201811039660.5A 2018-09-06 2018-09-06 Security protection system, method and the vehicle of vehicle Pending CN109067771A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201811039660.5A CN109067771A (en) 2018-09-06 2018-09-06 Security protection system, method and the vehicle of vehicle

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201811039660.5A CN109067771A (en) 2018-09-06 2018-09-06 Security protection system, method and the vehicle of vehicle

Publications (1)

Publication Number Publication Date
CN109067771A true CN109067771A (en) 2018-12-21

Family

ID=64760645

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201811039660.5A Pending CN109067771A (en) 2018-09-06 2018-09-06 Security protection system, method and the vehicle of vehicle

Country Status (1)

Country Link
CN (1) CN109067771A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108924835A (en) * 2018-06-29 2018-11-30 百度在线网络技术(北京)有限公司 Vehicle control system, method and security control unit
CN109640293A (en) * 2019-01-08 2019-04-16 北京汽车股份有限公司 Vehicular communication system and vehicle
CN110138823A (en) * 2019-03-29 2019-08-16 福建省汽车工业集团云度新能源汽车股份有限公司 A kind of long-range Body Control method and system
CN110188542A (en) * 2019-04-18 2019-08-30 华为技术有限公司 A kind of terminal device starting method and apparatus
CN111741049A (en) * 2019-03-25 2020-10-02 美光科技公司 Apparatus, system, and method for secure vehicle component communication
CN115134146A (en) * 2022-06-27 2022-09-30 中国第一汽车股份有限公司 Vehicle-mounted entertainment system and vehicle

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102555989A (en) * 2010-12-24 2012-07-11 同致电子科技(厦门)有限公司 Communication method for electronic burglary protection system of engine
CN103580901A (en) * 2012-08-06 2014-02-12 研祥智能科技股份有限公司 Network bypass control device and method
CN105656884A (en) * 2015-12-28 2016-06-08 延锋伟世通电子科技(上海)有限公司 Automobile bus security control device based on security elements and control method thereof
CN105871830A (en) * 2016-03-28 2016-08-17 成都信息工程大学 Firewall of vehicle-mounted information system of automobile
CN106612258A (en) * 2015-10-26 2017-05-03 重庆杨力科技有限公司 Automobile production and processing network equipment security system
CN106878008A (en) * 2017-02-15 2017-06-20 北京航空航天大学 A kind of vehicle-mounted T Box and user mobile phone information interaction security Verification System and method
CN107294912A (en) * 2016-03-31 2017-10-24 比亚迪股份有限公司 Vehicle safety communications method, device, vehicle multimedia system and vehicle
US20180241717A1 (en) * 2017-02-23 2018-08-23 The Boeing Company Multi-level security device

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102555989A (en) * 2010-12-24 2012-07-11 同致电子科技(厦门)有限公司 Communication method for electronic burglary protection system of engine
CN103580901A (en) * 2012-08-06 2014-02-12 研祥智能科技股份有限公司 Network bypass control device and method
CN106612258A (en) * 2015-10-26 2017-05-03 重庆杨力科技有限公司 Automobile production and processing network equipment security system
CN105656884A (en) * 2015-12-28 2016-06-08 延锋伟世通电子科技(上海)有限公司 Automobile bus security control device based on security elements and control method thereof
CN105871830A (en) * 2016-03-28 2016-08-17 成都信息工程大学 Firewall of vehicle-mounted information system of automobile
CN107294912A (en) * 2016-03-31 2017-10-24 比亚迪股份有限公司 Vehicle safety communications method, device, vehicle multimedia system and vehicle
CN106878008A (en) * 2017-02-15 2017-06-20 北京航空航天大学 A kind of vehicle-mounted T Box and user mobile phone information interaction security Verification System and method
US20180241717A1 (en) * 2017-02-23 2018-08-23 The Boeing Company Multi-level security device

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108924835A (en) * 2018-06-29 2018-11-30 百度在线网络技术(北京)有限公司 Vehicle control system, method and security control unit
CN108924835B (en) * 2018-06-29 2021-08-17 百度在线网络技术(北京)有限公司 Vehicle control system, method and safety control unit
CN109640293A (en) * 2019-01-08 2019-04-16 北京汽车股份有限公司 Vehicular communication system and vehicle
CN111741049A (en) * 2019-03-25 2020-10-02 美光科技公司 Apparatus, system, and method for secure vehicle component communication
CN110138823A (en) * 2019-03-29 2019-08-16 福建省汽车工业集团云度新能源汽车股份有限公司 A kind of long-range Body Control method and system
CN110138823B (en) * 2019-03-29 2022-03-11 福建省汽车工业集团云度新能源汽车股份有限公司 Remote vehicle body control method and system
CN110188542A (en) * 2019-04-18 2019-08-30 华为技术有限公司 A kind of terminal device starting method and apparatus
WO2020211738A1 (en) * 2019-04-18 2020-10-22 华为技术有限公司 Terminal device starting method and apparatus
CN115134146A (en) * 2022-06-27 2022-09-30 中国第一汽车股份有限公司 Vehicle-mounted entertainment system and vehicle
CN115134146B (en) * 2022-06-27 2023-11-21 中国第一汽车股份有限公司 Vehicle-mounted entertainment system and vehicle

Similar Documents

Publication Publication Date Title
CN109067771A (en) Security protection system, method and the vehicle of vehicle
Eiza et al. Driving with sharks: Rethinking connected vehicles with vehicle cybersecurity
Humayed et al. Cyber-physical systems security—A survey
Khan et al. Threat analysis of blackenergy malware for synchrophasor based real-time control and monitoring in smart grid
CN103477666B (en) Mobile device is connected, is connected to vehicle and the cloud service of internet
CN105323302B (en) The communication of safety is established for vehicle diagnostic data
CA2968452C (en) Device keys protection
CN107294912A (en) Vehicle safety communications method, device, vehicle multimedia system and vehicle
Harvey et al. A survey of intelligent transportation systems security: challenges and solutions
Plappert et al. Attack surface assessment for cybersecurity engineering in the automotive domain
Carlos et al. An updated threat model for security ceremonies
CN108769007A (en) Gateway security authentication method, server and gateway
CN104283879A (en) Virtual machine remote connection method and system
Lamba et al. Identifying & Mitigating Cyber Security Threats In Vehicular Technologies
CN106056419A (en) Method, system and device for realizing independent transaction by using electronic signature equipment
Luo et al. Cyberattacks and countermeasures for intelligent and connected vehicles
CN107640124B (en) Onboard safety systems
Lau et al. Blockchain‐based authentication and secure communication in IoT networks
CN111047849B (en) Networking remote control password module and safe remote control system
CN113839782B (en) Light-weight safe communication method for CAN (controller area network) bus in vehicle based on PUF (physical unclonable function)
Majumder et al. Retracted Chapter: Cyber-Physical System Security Controls: A Review
Soares et al. An efficient authentication mechanism based on software-defined networks for electric vehicles
Ranabhat Secure design and development of IoT enabled charging infrastructure for electric vehicle: Using CCS standards for DC fast charging
Kumar et al. Investigation on cyber-attacks against in-vehicle network
Takahashi et al. Security threat analysis of automotive infotainment systems

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WD01 Invention patent application deemed withdrawn after publication
WD01 Invention patent application deemed withdrawn after publication

Application publication date: 20181221