CN111010411B - Communication method, communication apparatus, roadside device, vehicle, and storage medium - Google Patents

Communication method, communication apparatus, roadside device, vehicle, and storage medium Download PDF

Info

Publication number
CN111010411B
CN111010411B CN202010164206.3A CN202010164206A CN111010411B CN 111010411 B CN111010411 B CN 111010411B CN 202010164206 A CN202010164206 A CN 202010164206A CN 111010411 B CN111010411 B CN 111010411B
Authority
CN
China
Prior art keywords
vehicle
communication
communicated
communication key
target vehicle
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202010164206.3A
Other languages
Chinese (zh)
Other versions
CN111010411A (en
Inventor
汪宗斌
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Infosec Technologies Co Ltd
Original Assignee
Beijing Infosec Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Infosec Technologies Co Ltd filed Critical Beijing Infosec Technologies Co Ltd
Priority to CN202010164206.3A priority Critical patent/CN111010411B/en
Publication of CN111010411A publication Critical patent/CN111010411A/en
Application granted granted Critical
Publication of CN111010411B publication Critical patent/CN111010411B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/06Network architectures or network communication protocols for network security for supporting key management in a packet data network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/02Protecting privacy or anonymity, e.g. protecting personally identifiable information [PII]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Traffic Control Systems (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention relates to a communication method, a communication device, roadside equipment, a vehicle and a storage medium, and belongs to the technical field of vehicle networking. The method comprises the following steps: when a communication joining request sent by a target vehicle is received, determining a vehicle to be communicated corresponding to the target vehicle, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device; generating a first communication key required by the target vehicle to communicate with the vehicle to be communicated; acquiring a second communication key required by the communication between the roadside equipment and the target vehicle and the vehicle to be communicated; encrypting the first communication key by the second communication key; and respectively sending the encrypted first communication key to the target vehicle and the vehicle to be communicated. By adopting the invention, the safety of communication in the Internet of vehicles can be ensured.

Description

Communication method, communication apparatus, roadside device, vehicle, and storage medium
Technical Field
The invention relates to the technical field of vehicle networking, in particular to a communication method, a communication device, roadside equipment, a vehicle and a storage medium.
Background
With the development of the car networking technology, the application of intelligent transportation is more and more extensive. The car networking technology brings more convenient intelligent trip experience for users, and simultaneously, higher requirements are provided for the safety of communication. In the internet of vehicles, roadside devices and vehicles and different vehicles need to communicate with each other. In the process of transmitting the communication message, the lawless person can eavesdrop the communication message, forge the false communication message to be sent to the communication party, or directly interfere the process of transmitting the communication message, etc. In order to prevent these situations, a communication method capable of ensuring the security of communication in the internet of vehicles is needed.
Disclosure of Invention
The invention provides a communication method, a communication device, roadside equipment, a vehicle and a storage medium, which can ensure the safety of communication in an internet of vehicles.
A first aspect of the present invention provides a method of communication, applied to roadside equipment, the method comprising:
when a communication joining request sent by a target vehicle is received, determining a vehicle to be communicated corresponding to the target vehicle, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device;
generating a first communication key required by the target vehicle to communicate with the vehicle to be communicated;
acquiring a second communication key required by the roadside device to communicate with the target vehicle and the vehicle to be communicated;
encrypting the first communication key by the second communication key;
and respectively sending the encrypted first communication key to the target vehicle and the vehicle to be communicated.
Optionally, the obtaining the second communication key required for the roadside device to communicate with the target vehicle and the vehicle to be communicated includes:
acquiring an identity certificate of the target vehicle;
and if the target vehicle passes the identity authentication process based on the identity certificate of the target vehicle, determining a communication key required by the roadside device to communicate with the target vehicle.
Optionally, the first communication key includes communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated.
Optionally, the second communication key includes a communication key of the roadside device and the target vehicle and a communication key of the roadside device and the vehicle to be communicated, and the encrypting the first communication key by the second communication key includes:
encrypting the first communication key through a communication key of the roadside device and the target vehicle;
for each vehicle to be communicated, encrypting the communication keys of the target vehicle and the vehicle to be communicated through the communication keys of the roadside equipment and the vehicle to be communicated;
the sending the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively comprises:
sending the encrypted first communication key to the target vehicle;
and for each vehicle to be communicated, sending the encrypted communication keys of the target vehicle and the vehicle to be communicated to the vehicle to be communicated.
Optionally, the generating a first communication key required for the target vehicle to communicate with the vehicle to be communicated includes:
generating random numbers respectively corresponding to the target vehicle and the plurality of vehicles to be communicated;
and determining first communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated based on the random numbers.
Optionally, the generating a first communication key required for the target vehicle to communicate with the vehicle to be communicated includes:
acquiring a vehicle identifier of the target vehicle and vehicle identifiers respectively corresponding to the vehicles to be communicated;
for each vehicle to be communicated, determining a first communication key required by the target vehicle to communicate with the vehicle to be communicated based on the vehicle identification of the target vehicle and the vehicle identification of the vehicle to be communicated.
Optionally, the method further comprises:
and if the time length of the target vehicle leaving the communication coverage range of the roadside device reaches the preset time length, deleting the first communication key and the second communication key.
Optionally, the deleting the first communication key and the second communication key if the time length for which the target vehicle leaves the communication coverage of the roadside device reaches a preset time length includes:
and if the preset time length is reached after the roadside equipment receives a communication ending request sent by the target vehicle, deleting the first communication key and the second communication key.
A second aspect of the present invention provides a method of communication, for application to a target vehicle, the method comprising:
when detecting roadside equipment to be joined, sending a communication joining request to the roadside equipment;
receiving a first communication key which is returned by the roadside equipment based on the communication joining request and is subjected to encryption processing;
acquiring a second communication key of the roadside device;
based on the second communication key, carrying out decryption processing on the encrypted first communication key to obtain a first communication key;
and communicating with a vehicle to be communicated based on the first communication key, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside equipment.
Optionally, the method further comprises:
determining the current position of the target vehicle and a communication coverage range corresponding to the roadside device;
and if the current position exceeds the communication coverage, sending a communication end request to the roadside equipment.
A third aspect of the present invention provides an apparatus for communication, comprising:
the communication control device comprises a determining module, a communication joining module and a communication joining module, wherein the determining module is used for determining a vehicle to be communicated corresponding to a target vehicle when a communication joining request sent by the target vehicle is received, and the vehicle to be communicated is any vehicle in the communication coverage range of the roadside equipment;
the generating module is used for generating a first communication key required by the target vehicle to communicate with the vehicle to be communicated;
the acquisition module is used for acquiring a second communication key required by the roadside device for communicating with the target vehicle and the vehicle to be communicated;
an encryption module for encrypting the first communication key by the second communication key;
and the sending module is used for sending the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively.
Optionally, the obtaining module is configured to:
acquiring an identity certificate of the target vehicle;
and if the target vehicle passes the identity authentication process based on the identity certificate of the target vehicle, determining a communication key required by the roadside device to communicate with the target vehicle.
Optionally, the first communication key includes communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated.
Optionally, the second communication key includes a communication key of the roadside device and the target vehicle and a communication key of the roadside device and the vehicle to be communicated, and the encryption module is configured to:
encrypting the first communication key through a communication key of the roadside device and the target vehicle;
for each vehicle to be communicated, encrypting the communication keys of the target vehicle and the vehicle to be communicated through the communication keys of the roadside equipment and the vehicle to be communicated;
the sending module is configured to:
sending the encrypted first communication key to the target vehicle;
and for each vehicle to be communicated, sending the encrypted communication keys of the target vehicle and the vehicle to be communicated to the vehicle to be communicated.
Optionally, the generating module is configured to:
generating random numbers respectively corresponding to the target vehicle and the plurality of vehicles to be communicated;
and determining first communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated based on the random numbers.
Optionally, the generating module is configured to:
acquiring a vehicle identifier of the target vehicle and vehicle identifiers respectively corresponding to the vehicles to be communicated;
for each vehicle to be communicated, determining a first communication key required by the target vehicle to communicate with the vehicle to be communicated based on the vehicle identification of the target vehicle and the vehicle identification of the vehicle to be communicated.
Optionally, the apparatus further comprises:
and the deleting module is used for deleting the first communication key and the second communication key if the time length of the target vehicle leaving the communication coverage range of the roadside equipment reaches a preset time length.
Optionally, the deleting module is configured to:
and if the preset time length is reached after the roadside equipment receives a communication ending request sent by the target vehicle, deleting the first communication key and the second communication key.
A fourth aspect of the present invention provides an apparatus for communication, comprising:
the system comprises a sending module, a communication joining module and a joining module, wherein the sending module is used for sending a communication joining request to roadside equipment when the roadside equipment to be joined is detected;
the receiving module is used for receiving the encrypted first communication key returned by the roadside equipment based on the communication joining request;
the acquisition module is used for acquiring a second communication key of the roadside equipment;
the decryption module is used for decrypting the encrypted first communication key based on the second communication key to obtain a first communication key;
and the communication module is used for communicating with a vehicle to be communicated based on the first communication key, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside equipment.
Optionally, the apparatus further comprises:
the determining module is used for determining the current position of the target vehicle and the communication coverage range corresponding to the roadside device;
the sending module is further configured to send a communication end request to the roadside device if the current location is beyond the communication coverage.
A fifth aspect of the present invention provides a roadside apparatus comprising a memory and a processor, wherein:
the memory for storing a computer program;
the processor is configured to execute the computer program stored in the memory to implement the method of communication provided by the first aspect.
A sixth aspect of the invention provides a target vehicle comprising a memory and a processor, wherein:
the memory for storing a computer program;
the processor is configured to execute the computer program stored in the memory to implement the communication method provided by the second aspect.
In a seventh aspect of the present invention, a computer-readable storage medium is provided, and the storage medium is a computer-readable storage medium, and program instructions are stored in the computer-readable storage medium, and the program instructions are used for implementing the method for communication provided by the first aspect.
In an eighth aspect of the present invention, a computer-readable storage medium is provided, and the storage medium is a computer-readable storage medium, in which program instructions are stored, and the program instructions are used for implementing the method for communication provided by the second aspect.
The technical scheme provided by the embodiment of the invention can have the following beneficial effects:
by the method provided by the embodiment of the invention, when the target vehicle enters the communication coverage range of the roadside device, the roadside device can acquire the second communication key required by the roadside device for communicating with the target vehicle, and simultaneously can generate the first communication key required by the target vehicle for communicating with the vehicle to be communicated, the first communication key is encrypted through the second communication key, and the encrypted first communication key is respectively sent to the target vehicle and the vehicle to be communicated, so that the target vehicle and the vehicle to be communicated can be communicated with each other based on the decrypted first communication key. In the process, after the first communication key is encrypted, the encrypted first communication key is respectively sent to the target vehicle and the vehicle to be communicated, so that the encrypted first communication key cannot be hijacked or tampered, and the safety of communication in the Internet of vehicles is further guaranteed.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this specification, illustrate embodiments of the invention and together with the description serve to explain the invention and not to limit the invention. In the drawings:
FIG. 1 is a flow diagram illustrating a method of communication in accordance with an exemplary embodiment;
FIG. 2 is a block diagram illustrating a system for communication in accordance with an exemplary embodiment;
FIG. 3 is a flow diagram illustrating a method of communication in accordance with an exemplary embodiment;
FIG. 4 is a block diagram illustrating an apparatus for communication in accordance with an exemplary embodiment;
FIG. 5 is a block diagram illustrating an apparatus for communication in accordance with an exemplary embodiment;
FIG. 6 is a schematic diagram illustrating a configuration of a computer device, according to an example embodiment.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Unless defined otherwise, all technical and scientific terms used herein have the same meaning as commonly understood by one of ordinary skill in the art to which this invention belongs. The terminology used in the description of the invention herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the invention.
An exemplary embodiment of the present invention provides a communication method, and as shown in fig. 1, a processing flow of the method may include the following steps:
step S101, when the target vehicle detects the roadside equipment to be joined, the target vehicle sends a communication joining request to the roadside equipment.
In implementation, a Road Side Unit (RSU) may be disposed at a distance from a Road side, each of the Road side units may perform short-distance communication, and each of the Road side units corresponds to a communication coverage area. When the roadside device is arranged, the communication coverage areas of two adjacent roadside devices can be overlapped to a certain extent, and therefore the situation that no blank area exists in the position of the total communication coverage area of the roadside device in the ground can be guaranteed.
The target vehicle may constantly detect the roadside apparatus, and when the target vehicle enters the communication coverage of any one of the roadside apparatuses, the target vehicle may detect the roadside apparatus and then transmit a communication join request, which may also be referred to as an authentication request, to the roadside apparatus. It should be noted that, in the overlapping area of the communication coverage areas of two adjacent roadside apparatuses, the target vehicle may join the two adjacent roadside apparatuses at the same time.
The target vehicle may be an unmanned vehicle, a manned vehicle, and the target vehicle may be an automobile, an electric vehicle, or the like. The target vehicle may include an On Board Unit (OBU), and a part of the target vehicle in the method provided by the embodiment of the present invention may be implemented by the OBU. The method provided by the embodiment of the invention can be used in an unmanned scene, an assisted driving scene in a manned scene, and other possible scenes, and the embodiment of the invention is not limited. The method provided by the embodiment of the invention can be applied to a safety communication system, and the system can be a communication system in a vehicle networking, as shown in fig. 2, and can comprise a roadside device, a target vehicle and a vehicle to be communicated.
Step S102, when the roadside device receives a communication joining request sent by the target vehicle, the roadside device determines a vehicle to be communicated corresponding to the target vehicle.
The vehicle to be communicated is any vehicle within the communication coverage range of the roadside equipment.
In implementation, the roadside device may receive a communication joining request sent by the target vehicle, and may further determine a vehicle to be communicated corresponding to the target vehicle. The vehicle to be communicated may be any vehicle within communication coverage of the roadside apparatus. Assuming that the communication coverage of the roadside apparatus is the entire target street, the vehicle to be communicated may be any vehicle on the target street. The vehicle to be communicated may be one vehicle or a plurality of vehicles.
When a vehicle to be communicated just enters the communication coverage range of the roadside device, the vehicle to be communicated can join the roadside device. A list of joined vehicles may be established in the roadside apparatus, and each vehicle joined to the roadside apparatus may be recorded in the list. The roadside apparatus can determine a vehicle to be communicated corresponding to the target vehicle based on the list.
In step S103, the roadside apparatus generates a first communication key required for the target vehicle to communicate with the vehicle to be communicated.
In an implementation, after the roadside apparatus determines a vehicle to be communicated corresponding to a target vehicle, a first communication key required for the target vehicle to communicate with the vehicle to be communicated may be generated. The first communication key may be a symmetric key.
Step S104, the roadside device acquires a second communication key required by the roadside device to communicate with the target vehicle and the vehicle to be communicated.
In implementation, before the roadside apparatus acquires the second communication key required by the roadside apparatus to communicate with the target vehicle and the vehicle to be communicated, the target vehicle may acquire an identity certificate of the target vehicle, and after performing signature processing based on the identity certificate of the target vehicle, the target vehicle may send the information after the signature processing to the roadside apparatus. The identity Certificate may be a Certificate issued by an Authority department, which may be a vehicle registration management department, etc., and the identity Certificate is signed by a Certificate Authority (CA).
The roadside device can also acquire an identity certificate of the roadside device, and the roadside device can also perform signature processing based on the identity certificate of the roadside device and send information after the signature processing to the target vehicle. In this way, the roadside apparatus and the target vehicle can perform the authentication process based on the information after the signature process, which may also be referred to as a bidirectional authentication process. The identity certificate of the target vehicle may be sent to the roadside device in a communication join request. After the bidirectional authentication processing is performed, the roadside device may perform a key agreement operation with the target vehicle, and the roadside device may determine a second communication key required for the roadside device to communicate with the target vehicle, and the target vehicle may also determine a second communication key required for the target vehicle to communicate with the roadside device.
The vehicle to be communicated is added into the roadside device before the target vehicle is added into the roadside device, so that the vehicle to be communicated and the roadside device negotiate a second communication key required by the roadside device for communicating with the vehicle to be communicated, the second communication key can be stored in the roadside device and the vehicle to be communicated, and the roadside device can directly acquire the second communication key required by the roadside device for communicating with the vehicle to be communicated. The second communication key may also be a symmetric key.
In step S105, the roadside apparatus encrypts the first communication key by the second communication key.
In implementation, the roadside device can encrypt the first communication key through the second communication key, so that the first communication key can be prevented from being tampered, hijacked and the like in the transmission process, and the safety of vehicle networking communication is guaranteed.
And step S106, the roadside device sends the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively.
In implementation, the roadside apparatus may transmit the encrypted first communication key to the target vehicle and the vehicle to be communicated, respectively.
In step S107, the target vehicle receives the encrypted first communication key returned by the roadside apparatus based on the communication join request.
In implementation, after the roadside apparatus transmits the encrypted first communication key to the target vehicle and the vehicle to be communicated, the target vehicle may receive the encrypted first communication key, and the vehicle to be communicated may also receive the encrypted first communication key.
The target vehicle may further acquire a second communication key with the roadside apparatus, the second communication key being obtained by performing a key agreement operation with the roadside apparatus after passing through the bidirectional authentication process. The target vehicle may decrypt the encrypted first communication key based on the second communication key to obtain the first communication key, where the first communication key is an unencrypted communication key. Finally, the target vehicle can communicate with the vehicle to be communicated based on the first communication key, and the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device. The specific target vehicle can generate a message to be communicated, encrypt the message to be communicated based on the first communication key, and send the encrypted message to the vehicle to be communicated. Since the first communication key is stored in the vehicle to be communicated in advance, the encrypted message can be decrypted, and the message in the encrypted message can also be acquired. The message to be communicated may be traveling condition information of the target vehicle, and the traveling condition information may include information of a traveling speed, a current position, a traveling direction, and the like of the vehicle.
In summary, the method provided in the embodiment of the present invention may include three phases, namely, a vehicle authentication phase, a key distribution phase, and a secure communication phase. Through the operation of these three stages, can ensure the security of communication in the car networking.
Optionally, the first communication key includes communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated.
In an implementation, when the vehicles to be communicated are a plurality of vehicles, the first communication key includes communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated. There is a different communication key between the target vehicle and each vehicle to be communicated than the other vehicles. The different communication keys and the corresponding vehicle identifications may be jointly transmitted to the corresponding vehicles.
Optionally, the second communication key includes a communication key of the roadside apparatus and the target vehicle and a communication key of the roadside apparatus and the vehicle to be communicated, and the step of encrypting the first communication key by the second communication key may include: encrypting the first communication key through the communication key of the roadside device and the target vehicle; and for each vehicle to be communicated, encrypting the communication key of the target vehicle and the vehicle to be communicated through the communication key of the roadside equipment and the vehicle to be communicated. The step of sending the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively may include: sending the encrypted first communication key to a target vehicle; and for each vehicle to be communicated, sending the encrypted communication keys of the target vehicle and the vehicle to be communicated to the vehicle to be communicated.
In the implementation, it is assumed that the set of vehicles to be communicated is { V }, and that a plurality of duplets are included in { V }, each duplet being a target vehicle and a corresponding vehicle to be communicated, and the duplets may be denoted as (I, J), where I denotes the target vehicle, J denotes a current vehicle to be communicated, and J ∈ { V }. as shown in fig. 3, the roadside device and the target vehicle OBU are connected to the road side deviceICan be noted as KSIRoadside equipment and vehicle OBU to be communicatedJCan be noted as KSJ,OBUIAnd OBUJCan be recorded as KIJ. Can pass through KSITo KIJEncryption by KSJTo KIJEncrypted, will pass KSIEncrypted KIJIs sent to the OBUIWill pass through KSJEncrypted KIJIs sent to the OBUJ. Since there are a plurality of vehicles to be communicated in the set { V }, the above operation can be performed for each vehicle to be communicated until the communication keys of the target vehicle and each vehicle to be communicated are obtained, and the encrypted communication keys are respectively transmitted to the corresponding vehicles. Sending encrypted KIJWhile the OBU can be usedIAnd OBUJIs sent to the corresponding vehicle together so that the vehicle can determine the specific vehicle corresponding to the received communication key through the identificationAnd (4) vehicles. The first and second communication keys, during the transmission and subsequent communication phases, are known only to the devices that they legally hold.
By the method, the target vehicle and each vehicle to be communicated in the communication coverage range of the roadside device correspond to one communication key, and the target vehicle and the vehicle to be communicated can encrypt the message to be transmitted through the corresponding communication keys, so that the message is prevented from being tampered, hijacked and the like in the message transmission process, and the communication safety in the internet of vehicles is improved.
Alternatively, the roadside device may encrypt each first communication key separately based on a symmetric encryption algorithm by using the second communication key. Or, the roadside device may encrypt each first communication key based on the message authentication code algorithm through the second communication key. Or, the roadside device may encrypt each first communication key by the second communication key based on the symmetric encryption algorithm and the message authentication code algorithm, respectively.
The algorithm complexity of the symmetric encryption algorithm is low, which is beneficial to quickly encrypting the message to be communicated so as to meet the requirement of a short-time high-frequency information publishing scene. The message authentication code algorithm can guarantee the integrity of the message and prevent the message to be communicated from being tampered.
Alternatively, the step of generating the first communication key required for the target vehicle to communicate with the vehicle to be communicated may include: generating random numbers corresponding to a target vehicle and a plurality of vehicles to be communicated respectively; and determining first communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated on the basis of the random numbers.
In implementation, the roadside device may directly generate different random numbers, and determine the first communication keys corresponding to the target vehicle and the multiple vehicles to be communicated, respectively, based on the different random numbers, so that the first communication keys of the target vehicle and the different vehicles to be communicated are different, thereby further ensuring the security of communication.
Alternatively, the step of generating the first communication key required for the target vehicle to communicate with the vehicle to be communicated may include: acquiring a vehicle identifier of a target vehicle and vehicle identifiers respectively corresponding to a plurality of vehicles to be communicated; for each vehicle to be communicated, a first communication key required for the target vehicle to communicate with the vehicle to be communicated is determined based on the vehicle identification of the target vehicle and the vehicle identification of the vehicle to be communicated.
In implementation, the roadside device may further determine, based on the vehicle identifiers of different vehicles, a first communication key required by the target vehicle to communicate with different vehicles to be communicated, so that the first communication keys of the target vehicle and the different vehicles to be communicated are also different, and the communication security is further ensured.
Optionally, the method provided in the embodiment of the present invention may further include: and if the time length that the target vehicle leaves the communication coverage range of the roadside device reaches the preset time length, deleting the first communication key and the second communication key.
In implementation, the target vehicle may acquire the current location periodically, and may further determine a communication coverage of the roadside device, and when it is determined that the current location exceeds the communication coverage of the roadside device, may send a communication end request to the roadside device. The roadside apparatus may receive a communication end request transmitted by the target vehicle, and if the communication end request is received, the roadside apparatus may determine that the target vehicle leaves the communication coverage. Alternatively, when the roadside apparatus does not detect the target vehicle within the preset time period and the target vehicle is disconnected from the roadside apparatus, the roadside apparatus may also determine that the target vehicle leaves the communication coverage. After determining that the target vehicle leaves the communication coverage of the roadside apparatus, a timer may be started, and if the target vehicle does not return to the communication coverage of the roadside apparatus within a preset time period, the first communication key and the second communication key may be deleted, that is, both the materials related to the target vehicle may be deleted.
In the above process, in order to prevent the target vehicle from being disconnected from the roadside apparatus only temporarily or returning to the communication coverage of the roadside apparatus immediately after leaving the communication coverage of the roadside apparatus, the key associated with the target vehicle needs to be regenerated, and therefore, the material associated with the target vehicle may be deleted after a preset time period. It should be noted that, when any vehicle leaves the communication coverage of the roadside apparatus, if the target vehicle requests a communication key with the vehicle, the roadside apparatus may return a message to the target apparatus that the vehicle is not in the current area.
By the method provided by the embodiment of the invention, when the target vehicle enters the communication coverage range of the roadside device, the roadside device can acquire the second communication key required by the roadside device for communicating with the target vehicle, and simultaneously can generate the first communication key required by the target vehicle for communicating with the vehicle to be communicated, the first communication key is encrypted through the second communication key, and the encrypted first communication key is respectively sent to the target vehicle and the vehicle to be communicated, so that the target vehicle and the vehicle to be communicated can be communicated with each other based on the decrypted first communication key. In the process, after the first communication key is encrypted, the encrypted first communication key is respectively sent to the target vehicle and the vehicle to be communicated, so that the encrypted first communication key cannot be hijacked or tampered, and the safety of communication in the Internet of vehicles is further guaranteed.
Yet another exemplary embodiment of the present invention provides an apparatus for communication, as shown in fig. 4, the apparatus including:
a determining module 401, configured to determine, when a communication join request sent by a target vehicle is received, a vehicle to be communicated corresponding to the target vehicle, where the vehicle to be communicated is any vehicle within a communication coverage of the roadside device;
a generating module 402, configured to generate a first communication key required for the target vehicle to communicate with the vehicle to be communicated;
an obtaining module 403, configured to obtain a second communication key required by the roadside device to communicate with the target vehicle and the vehicle to be communicated;
an encryption module 404 for encrypting the first communication key by the second communication key;
a sending module 405, configured to send the encrypted first communication key to the target vehicle and the vehicle to be communicated, respectively.
Optionally, the obtaining module 403 is configured to:
acquiring an identity certificate of the target vehicle;
and if the target vehicle passes the identity authentication process based on the identity certificate of the target vehicle, determining a communication key required by the roadside device to communicate with the target vehicle.
Optionally, the first communication key includes communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated.
Optionally, the second communication key includes a communication key of the roadside device and the target vehicle and a communication key of the roadside device and the vehicle to be communicated, and the encryption module 404 is configured to:
encrypting the first communication key through a communication key of the roadside device and the target vehicle;
for each vehicle to be communicated, encrypting the communication keys of the target vehicle and the vehicle to be communicated through the communication keys of the roadside equipment and the vehicle to be communicated;
the sending module 405 is configured to:
sending the encrypted first communication key to the target vehicle;
and for each vehicle to be communicated, sending the encrypted communication keys of the target vehicle and the vehicle to be communicated to the vehicle to be communicated.
Optionally, the generating module 402 is configured to:
generating random numbers respectively corresponding to the target vehicle and the plurality of vehicles to be communicated;
and determining first communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated based on the random numbers.
Optionally, the generating module 402 is configured to:
acquiring a vehicle identifier of the target vehicle and vehicle identifiers respectively corresponding to the vehicles to be communicated;
for each vehicle to be communicated, determining a first communication key required by the target vehicle to communicate with the vehicle to be communicated based on the vehicle identification of the target vehicle and the vehicle identification of the vehicle to be communicated.
Optionally, the apparatus further comprises:
and the deleting module is used for deleting the first communication key and the second communication key if the time length of the target vehicle leaving the communication coverage range of the roadside equipment reaches a preset time length.
Optionally, the deleting module is configured to:
and if the preset time length is reached after the roadside equipment receives a communication ending request sent by the target vehicle, deleting the first communication key and the second communication key.
Yet another exemplary embodiment of the present invention provides an apparatus for communication, as shown in fig. 5, the apparatus including:
a sending module 501, configured to send a communication joining request to a roadside device when the roadside device to be joined is detected;
a receiving module 502, configured to receive an encrypted first communication key returned by the roadside device based on the communication join request;
an obtaining module 503, configured to obtain a second communication key with the roadside device;
a decryption module 504, configured to decrypt the encrypted first communication key based on the second communication key to obtain a first communication key;
and a communication module 505, configured to communicate with a vehicle to be communicated based on the first communication key, where the vehicle to be communicated is any vehicle in the communication coverage of the roadside device.
Optionally, the apparatus further comprises:
the determining module is used for determining the current position of the target vehicle and the communication coverage range corresponding to the roadside device;
the sending module 501 is further configured to send a communication end request to the roadside apparatus if the current location is beyond the communication coverage.
The communication devices shown in fig. 4 and 5 may perform the method of the embodiments shown in fig. 1 to 3, and parts of the embodiment not described in detail may refer to the related description of the embodiments shown in fig. 1 to 3. The implementation process and technical effect of the technical solution refer to the descriptions in the embodiments shown in fig. 1 to fig. 3, and are not described herein again.
As shown in fig. 6, the embodiment of the present invention further provides a computer device, where the computer device may be a roadside device or a target vehicle in the above embodiments, and the computer device includes a memory 1910 and a processor 1920, and the processor 1920 is configured to execute the instructions stored in the memory 1910 so as to implement the above-described method for communication in fig. 1 to 3.
In addition, an embodiment of the present invention provides a computer-readable storage medium, where the storage medium is a computer-readable storage medium, and program instructions are stored in the computer-readable storage medium, where the program instructions are used to implement the communication method in fig. 1 to 3.
The technical solutions and the technical features in the above embodiments may be used alone or in combination without conflict, and all embodiments that fall within the scope of the present invention are equivalent embodiments within the scope of the present invention as long as they do not exceed the knowledge of those skilled in the art.
The above description is only an embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes performed by the present specification and drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present invention.

Claims (15)

1. A method of communication, for use with a wayside device, the method comprising:
when a communication joining request sent by a target vehicle is received, determining a vehicle to be communicated corresponding to the target vehicle, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device, the vehicle to be communicated is a vehicle in a preset vehicle list, and the preset vehicle list is used for storing vehicles which have joined the roadside device;
generating a first communication key required by the target vehicle to communicate with the vehicle to be communicated, wherein the first communication key comprises communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated;
acquiring a second communication key required by the roadside device to communicate with the target vehicle and the vehicle to be communicated;
encrypting the first communication key by the second communication key;
and respectively sending the encrypted first communication key to the target vehicle and the vehicle to be communicated.
2. The method according to claim 1, wherein the second communication key comprises a communication key of the roadside apparatus and the target vehicle, and the obtaining of the second communication key required for the roadside apparatus to communicate with the target vehicle and the vehicle to be communicated comprises:
acquiring an identity certificate of the target vehicle;
and if the target vehicle passes the identity authentication process based on the identity certificate of the target vehicle, determining a communication key required by the roadside device to communicate with the target vehicle.
3. The method according to claim 1, wherein the second communication key includes a communication key of the roadside apparatus and the target vehicle and a communication key of the roadside apparatus and the vehicle to be communicated, and the encrypting the first communication key by the second communication key includes:
encrypting the first communication key through a communication key of the roadside device and the target vehicle;
for each vehicle to be communicated, encrypting the first communication key through the communication keys of the roadside equipment and the vehicle to be communicated;
the sending the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively comprises:
sending the encrypted first communication key to the target vehicle;
and for each vehicle to be communicated, sending the encrypted first communication key to the vehicle to be communicated.
4. The method of claim 1, wherein the generating a first communication key required for the target vehicle to communicate with the vehicle to be communicated comprises:
generating random numbers respectively corresponding to the target vehicle and the plurality of vehicles to be communicated;
and determining first communication keys respectively corresponding to the target vehicle and the plurality of vehicles to be communicated based on the random numbers.
5. The method of claim 1, wherein the generating a first communication key required for the target vehicle to communicate with the vehicle to be communicated comprises:
acquiring a vehicle identifier of the target vehicle and vehicle identifiers respectively corresponding to the vehicles to be communicated;
for each vehicle to be communicated, determining a first communication key required by the target vehicle to communicate with the vehicle to be communicated based on the vehicle identification of the target vehicle and the vehicle identification of the vehicle to be communicated.
6. The method of claim 1, further comprising:
and if the time length of the target vehicle leaving the communication coverage range of the roadside device reaches the preset time length, deleting the first communication key and the second communication key.
7. The method according to claim 6, wherein the deleting the first communication key and the second communication key if the target vehicle leaves the communication coverage of the roadside apparatus for a preset time period comprises:
and if the preset time length is reached after the roadside equipment receives a communication ending request sent by the target vehicle, deleting the first communication key and the second communication key.
8. A method of communication, for application to a target vehicle, the method comprising:
when detecting roadside equipment to be joined, sending a communication joining request to the roadside equipment;
receiving a first communication key which is returned by the roadside device based on the communication joining request and is subjected to encryption processing, wherein the first communication key is obtained by performing encryption processing through a second communication key, and the second communication key is a key required by the target vehicle and the roadside device for communication;
acquiring the second communication key;
based on the second communication key, decrypting the encrypted first communication key to obtain a first communication key, wherein the first communication key comprises communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated;
and communicating with a vehicle to be communicated based on the first communication key, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device, the vehicle to be communicated is a vehicle in a preset vehicle list, and the preset vehicle list is used for storing vehicles which are added into the roadside device.
9. The method of claim 8, further comprising:
determining the current position of the target vehicle and a communication coverage range corresponding to the roadside device;
and if the current position exceeds the communication coverage, sending a communication end request to the roadside equipment.
10. An apparatus for communication, the apparatus comprising:
the communication joining method comprises the steps that a determining module is used for determining a vehicle to be communicated corresponding to a target vehicle when a communication joining request sent by the target vehicle is received, wherein the vehicle to be communicated is any vehicle in a communication coverage range of roadside equipment, the vehicle to be communicated is a vehicle in a preset vehicle list, and the preset vehicle list is used for storing vehicles which have joined the roadside equipment;
the generating module is used for generating a first communication key required by the target vehicle to communicate with the vehicle to be communicated, and the first communication key comprises communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated;
the acquisition module is used for acquiring a second communication key required by the roadside device for communicating with the target vehicle and the vehicle to be communicated;
an encryption module for encrypting the first communication key by the second communication key;
and the sending module is used for sending the encrypted first communication key to the target vehicle and the vehicle to be communicated respectively.
11. An apparatus for communication, the apparatus comprising:
the system comprises a sending module, a communication joining module and a joining module, wherein the sending module is used for sending a communication joining request to roadside equipment when the roadside equipment to be joined is detected;
a receiving module, configured to receive a first encrypted communication key returned by the roadside device based on the communication join request, where the first encrypted communication key is obtained by encrypting a second communication key, and the second communication key is a key required by the target vehicle for communicating with the roadside device;
the acquisition module is used for acquiring a second communication key of the roadside equipment;
the decryption module is used for decrypting the encrypted first communication key based on the second communication key to obtain a first communication key, and the first communication key comprises communication keys respectively corresponding to the target vehicle and a plurality of vehicles to be communicated;
and the communication module is used for communicating with a vehicle to be communicated based on the first communication key, wherein the vehicle to be communicated is any vehicle in the communication coverage range of the roadside device, the vehicle to be communicated is a vehicle in a preset vehicle list, and the preset vehicle list is used for storing vehicles which are added into the roadside device.
12. A wayside device, comprising a memory and a processor, wherein:
the memory for storing a computer program;
the processor is configured to execute a computer program stored in the memory to implement the method of communication of any one of claims 1 to 7.
13. A target vehicle comprising a memory and a processor, wherein:
the memory for storing a computer program;
the processor is configured to execute a computer program stored in the memory to implement the method of communication according to any one of claims 8 to 9.
14. A computer-readable storage medium, characterized in that the storage medium is a computer-readable storage medium having stored therein program instructions for implementing the method of communication of any one of claims 1-7.
15. A computer-readable storage medium, characterized in that the storage medium is a computer-readable storage medium having stored therein program instructions for implementing the method of communication of any one of claims 8-9.
CN202010164206.3A 2020-03-11 2020-03-11 Communication method, communication apparatus, roadside device, vehicle, and storage medium Active CN111010411B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010164206.3A CN111010411B (en) 2020-03-11 2020-03-11 Communication method, communication apparatus, roadside device, vehicle, and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010164206.3A CN111010411B (en) 2020-03-11 2020-03-11 Communication method, communication apparatus, roadside device, vehicle, and storage medium

Publications (2)

Publication Number Publication Date
CN111010411A CN111010411A (en) 2020-04-14
CN111010411B true CN111010411B (en) 2020-08-11

Family

ID=70121059

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010164206.3A Active CN111010411B (en) 2020-03-11 2020-03-11 Communication method, communication apparatus, roadside device, vehicle, and storage medium

Country Status (1)

Country Link
CN (1) CN111010411B (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2022178871A1 (en) * 2021-02-26 2022-09-01 华为技术有限公司 Key acquisition method and apparatus, and key management system
CN113271543B (en) * 2021-05-14 2023-04-07 阿波罗智联(北京)科技有限公司 Vehicle communication method and device and electronic equipment
CN114282232A (en) * 2021-11-22 2022-04-05 岚图汽车科技有限公司 Vehicle communication key management method and device, storage medium and equipment

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106027233A (en) * 2016-04-28 2016-10-12 江苏大学 Method for designing vehicle network group negotiation communication protocol
WO2019066114A1 (en) * 2017-09-29 2019-04-04 엘지전자(주) V2x communication device and method for inspecting forgery/falsification of key thereof
KR20190056661A (en) * 2017-11-17 2019-05-27 (주)이씨스 Secure Communication Method through RSU-based Group Key in Vehicular Network
CN110831004A (en) * 2019-10-16 2020-02-21 上海交通大学 Node identity authentication method and system suitable for Internet of vehicles
CN110855670A (en) * 2019-11-15 2020-02-28 扬州大学 Method suitable for credible message broadcasting and security authentication of vehicle-mounted ad hoc network

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106027233A (en) * 2016-04-28 2016-10-12 江苏大学 Method for designing vehicle network group negotiation communication protocol
WO2019066114A1 (en) * 2017-09-29 2019-04-04 엘지전자(주) V2x communication device and method for inspecting forgery/falsification of key thereof
KR20190056661A (en) * 2017-11-17 2019-05-27 (주)이씨스 Secure Communication Method through RSU-based Group Key in Vehicular Network
CN110831004A (en) * 2019-10-16 2020-02-21 上海交通大学 Node identity authentication method and system suitable for Internet of vehicles
CN110855670A (en) * 2019-11-15 2020-02-28 扬州大学 Method suitable for credible message broadcasting and security authentication of vehicle-mounted ad hoc network

Also Published As

Publication number Publication date
CN111010411A (en) 2020-04-14

Similar Documents

Publication Publication Date Title
CN111010411B (en) Communication method, communication apparatus, roadside device, vehicle, and storage medium
CN110572418B (en) Vehicle identity authentication method and device, computer equipment and storage medium
CN111479244B (en) V2I Internet of vehicles identity authentication system and method
US7934095B2 (en) Method for exchanging messages and verifying the authenticity of the messages in an ad hoc network
CN107623912B (en) Method and device for safety communication between internet of vehicles terminals
CN107580006B (en) Vehicular ad hoc network conditionity method for secret protection based on register list
WO2011148744A1 (en) Communication system, vehicle-mounted terminal, roadside device
JP5587239B2 (en) Vehicle-to-vehicle / road-vehicle communication system
CN109922475A (en) Vehicle authentication and message verification method under In-vehicle networking environment
JP3920583B2 (en) COMMUNICATION SECURITY MAINTAINING METHOD, APPARATUS THEREOF, AND PROCESSING PROGRAM THEREOF
CN111132032B (en) Method and system for improving communication efficiency and safety of V2X
CN111818483B (en) V2V vehicle networking communication system and method based on 5G
CN112423262B (en) Motorcade key negotiation method, storage medium and vehicle
WO2018108293A1 (en) Methods, devices and vehicles for authenticating a vehicle during a cooperative maneuver
Park et al. An Efficient Anonymous Authentication Protocol for Secure Vehicular Communications.
CN115694891B (en) Road side equipment communication system and method based on central computing platform
CN115484025B (en) Vehicle encryption communication method and device
CN115119178A (en) Encryption communication method for vehicle-road cooperation and equipment with encryption communication function
CN114697899A (en) Vehicle communication method, server, system, and storage medium
CN106657021B (en) Vehicle message authentication method and device in Internet of vehicles
CN111010412B (en) Communication method, communication apparatus, roadside device, and storage medium
CN113839782A (en) Light-weight safe communication method for CAN (controller area network) bus in vehicle based on PUF (physical unclonable function)
CN111601312B (en) Block link access authentication method, Internet of vehicles terminal and operator system
US20090212972A1 (en) Method for Protecting Deployed Assets in a Cooperative System
CN114025328B (en) Vehicle verification method, control function entity and vehicle

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant