CN112615850A - Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle - Google Patents
Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle Download PDFInfo
- Publication number
- CN112615850A CN112615850A CN202011481860.3A CN202011481860A CN112615850A CN 112615850 A CN112615850 A CN 112615850A CN 202011481860 A CN202011481860 A CN 202011481860A CN 112615850 A CN112615850 A CN 112615850A
- Authority
- CN
- China
- Prior art keywords
- vehicle
- heartbeat
- authorization
- heartbeat packet
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000013475 authorization Methods 0.000 title claims abstract description 94
- 238000000034 method Methods 0.000 title claims abstract description 66
- 238000012544 monitoring process Methods 0.000 title claims abstract description 33
- 230000004913 activation Effects 0.000 claims abstract description 29
- 238000012795 verification Methods 0.000 claims description 15
- 230000001360 synchronised effect Effects 0.000 claims description 12
- 238000004590 computer program Methods 0.000 claims description 10
- 238000001514 detection method Methods 0.000 claims description 6
- 238000001994 activation Methods 0.000 description 25
- 230000008569 process Effects 0.000 description 9
- 238000012545 processing Methods 0.000 description 3
- 238000004891 communication Methods 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012806 monitoring device Methods 0.000 description 2
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000001788 irregular Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000007781 pre-processing Methods 0.000 description 1
- 230000008439 repair process Effects 0.000 description 1
- 238000012163 sequencing technique Methods 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Theoretical Computer Science (AREA)
- Power Engineering (AREA)
- Multimedia (AREA)
- Technology Law (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention provides an anti-counterfeiting monitoring method for vehicle-mounted service authorization, which comprises the following steps: sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit; receiving a heartbeat packet list sent by a vehicle-mounted control unit; and detecting whether the heartbeat package list is consistent with a preset database record or not, if so, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal. The invention also provides a vehicle, and the vehicle-mounted service authorization anti-counterfeiting monitoring method is realized on the vehicle. The method of the invention synchronously sends the heartbeat packet to the vehicle at regular time through the server, verifies the consistency of the heartbeat packet and effectively solves the problem of forgery possibly faced by authorized activation of vehicle-mounted payment software.
Description
Technical Field
The invention relates to the technical field of vehicles, in particular to a vehicle-mounted service authorization anti-counterfeiting monitoring method and a vehicle.
Background
More and more value-added services are provided for intelligent automobiles, and users are usually required to pay for the services and use the services after authorized activation. One key technology in the authorization and activation process of value added service is the security design of authorization and activation to prevent the activation in an illegal way. Although some existing authorization activation methods can prevent illegal activation in some cases, in the case of an irregular attack, for example, when VIN or ECU ID information is modified through OBD, the information is forged, or an additional authorization file is obtained by illegally using a repair and replacement process or an open test process, and then value-added services are activated, which will bring losses to companies and paying customers.
Disclosure of Invention
After the vehicle-mounted payment software is activated and authorized, the use condition needs to be monitored, the monitored abnormal authorized activation is corrected, and the authorization is removed, so that the counterfeit condition is prevented.
Based on the above problem, an embodiment of the present invention provides an anti-counterfeit monitoring method for vehicle-mounted service authorization, where the method includes the following steps:
sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit;
receiving a heartbeat packet list sent by a vehicle-mounted control unit;
and detecting whether the heartbeat package list is consistent with a preset database record or not, if so, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal.
Further, the step of sending the synchronization heartbeat packet and the token for identity authentication to the vehicle-mounted control unit comprises the following steps:
receiving a power-on notice sent by a vehicle, and detecting whether the vehicle has an authorized service activation record;
and if so, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit, wherein the heartbeat packet synchronization notification message comprises a token for identity authentication.
And further generating a new heartbeat package when the heartbeat package list is detected to be consistent with the preset database record.
Specifically, the heartbeat packet information includes a vehicle VIN code, a vehicle-mounted control unit ID, a current server timestamp, and a heartbeat ID.
Preferably, the heartbeat packet list is stored in the preset database and uniquely corresponds to the vehicle.
Preferably, the heartbeat packets in the heartbeat packet list are sorted in a reverse order of the generation time.
And the generation time of the heartbeat packet is subject to the time of a server side.
Another embodiment of the present invention provides an anti-counterfeit monitoring method for authorization of vehicle-mounted services, comprising the following steps:
receiving a notification message sent by a server to acquire a token for identity authentication;
when the identity authentication is passed, sending a locally received heartbeat packet list with a preset number to a server for verification;
if the verification is passed, receiving a synchronous heartbeat packet sent by the server;
and writing the heartbeat packet into a local disk, and informing a server to synchronize the local heartbeat packet and the server side so as to determine the legality of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
Further, the method also comprises a pre-processing step,
when the vehicle is powered on, sending a notification message to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records;
if the legal activation record exists, the server sends the notification message including the identity authentication token;
and if the record is not legally activated, the server does not send the notification message.
Specifically, whether authorization of the vehicle-mounted service is valid or not is detected, and if yes, whether heartbeat package records exist locally or not is detected.
Specifically, the detection environment recorded by the heartbeat packet is a network offline environment.
And when detecting that a legal heartbeat packet is not received within the preset time and/or detecting that the time recorded by the heartbeat packet is inconsistent with the local time, judging that the vehicle-mounted service authorization is illegal.
Yet another embodiment of the present invention provides a vehicle, including one or more processors, a memory, and a computer program stored in the memory and operable on the processor, wherein the computer program is executed to implement the on-board service authorization anti-counterfeit monitoring method as described in any one of the above.
Yet another embodiment of the present invention provides a computer storage medium having instructions stored thereon, which when executed by one or more processors, cause the processors to perform the in-vehicle service authorization anti-counterfeiting monitoring method as described in any one of the above.
The heartbeat package is sent to the vehicle in a timing and synchronous mode through the server, the consistency of the heartbeat package is verified, and the problem of counterfeiting possibly faced by authorized activation of vehicle-mounted payment software is effectively solved.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings needed to be used in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art that other drawings can be obtained according to these drawings without creative efforts.
FIG. 1 is a schematic flow chart of a method for monitoring vehicle-mounted service authorization and anti-counterfeiting according to an embodiment of the present invention;
FIG. 2 is a schematic flow chart of a vehicle-mounted service authorization anti-counterfeit monitoring method according to another embodiment of the disclosure;
fig. 3 is a timing sequence interaction flowchart of a vehicle-mounted service authorization anti-counterfeiting monitoring method according to still another embodiment of the invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It is to be noted that the terms "comprises" and "comprising" and any variations thereof in the embodiments and drawings of the present invention are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those steps or elements listed, but may alternatively include other steps or elements not listed, or inherent to such process, method, article, or apparatus.
The vehicle-mounted authorization service provided by the invention comprises but is not limited to vehicle value-added software service, OTA (over the air) upgrading service of vehicle software and hardware, endurance upgrading, customized function activation and other services needing authorization activation in any form. In order to prevent the vehicle-mounted authorization service from being activated in an improper way and being maliciously forged, and unnecessary loss is brought to an authorizer or a user, the invention provides an anti-counterfeiting monitoring method for the vehicle-mounted authorization service, which is shown in fig. 1 and specifically comprises the following steps:
s11, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit;
the vehicle-mounted control unit is a control unit in a vehicle module environment where the vehicle-mounted service is operated after being installed and activated, and the specific vehicle-mounted service operation is executed by a corresponding vehicle-mounted control unit, such as an ECU.
The method comprises the steps that a notice is sent to a server after a vehicle is electrified and operated, and a background server detects whether a corresponding vehicle has a legal vehicle-mounted authorization service activation record or not after receiving notice information. Preferably, in the vehicle-mounted service authorization activation stage, the vehicle synchronizes service authorization activation information to the server, so that the server stores the vehicle-mounted service authorization activation information of the corresponding vehicle, and thus the server can directly judge whether a legal vehicle-mounted service authorization activation record exists by detecting the service authorization activation information of the corresponding vehicle.
If the vehicle has legal authorization to activate the vehicle-mounted service, the server sends a heartbeat package synchronization notification message to the vehicle through the message center, preferably, the notification message comprises a token which is distributed to the vehicle by the server and used for identity authentication, and the token is disposable and uniquely corresponds to the vehicle.
According to the Internet of vehicles communication mechanism, the heartbeat is acquired by informing a vehicle to pull heartbeat information through a background authorization service, and the initiative is controlled by a server side; even if multiple vehicles have the same VIN number, only one of the vehicles can be notified to obtain a unique heartbeat.
S12, receiving a heartbeat packet list sent by the vehicle-mounted control unit;
and after receiving the heartbeat packet synchronization notification message sent by the server, the vehicle carries the received token for identity authentication, and sends a heartbeat packet list within preset time (such as within three months) recorded locally to the server. The server firstly verifies the token used for identity authentication of the vehicle, and exits if the token is invalid; and if the received heartbeat packet list is valid, further checking the received heartbeat packet list.
S13, detecting whether the heartbeat package list is consistent with a preset database record or not, if so, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal.
The server detects the received heartbeat packet list sent by the vehicle, wherein the heartbeat packet list information recorded in the server database meets the following rules:
1, heartbeat ID lists sent by a vehicle end must all exist in a database of a server and belong to the vehicle, and the heartbeat ID lists and VIN codes of the vehicle are stored in a one-to-one correspondence mode;
2> the records of the heartbeat ID list sent by the vehicle end in the database must be sorted in a reverse order of all the heartbeat generation times thereof, specifically based on the time of the server end. If the generation time at the server end is 20:00, 20:10, 20:20, respectively, the ordering in the database is 20:20, 20:10, 20: 00. The server can preferentially compare the consistency of the latest heartbeat packet information by adopting the reverse sequencing mode, so that whether the condition of illegal authorization exists can be quickly judged.
3> if the heartbeat ID state in the database is 'sent unconfirmed', the heartbeat ID can not exist in the heartbeat ID list which is allowed to be sent by the vehicle end, because the heartbeat is lost due to communication possibly; if the heartbeat ID status in the database is "sent confirmed," the heartbeat ID list sent by the vehicle end must exist.
And when the server detects that the heartbeat package list is consistent with the preset database record, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal. When the judgment result is illegal, manual intervention is needed for checking, and new heartbeat is regenerated after no risk is confirmed.
Further, when the heartbeat package list is detected to be consistent with the preset database record, namely when the vehicle-mounted service authorization is legal, the server generates a new heartbeat package. Specifically, the heartbeat packet information includes a vehicle VIN code, a vehicle-mounted control unit ID, a current server timestamp, and a heartbeat ID. And after the vehicle successfully receives the new heartbeat packet, the server records the heartbeat packet information into a database.
Further, the authorized activation software continues the authorized activation by periodically acquiring the heartbeat, and if the heartbeat is not acquired in a longer time, the authorized activation is invalid.
The heartbeat package of the embodiment of the invention takes the time of the server side as the standard, and the heartbeat package is signed by a unique corresponding public and private key of the vehicle. Optionally, a root certificate is built in when the vehicle leaves a factory, when the vehicle-mounted service is authorized and activated, the root certificate is triggered to generate a public and private key pair, the private key is left locally, and the public key is sent to the server. Therefore, the server side sequentially signs and encrypts the generated heartbeat packet by using the private key of the server side and the public key of the vehicle side, and the vehicle side sequentially decrypts and checks the heartbeat packet by using the private key of the server side and the public key of the vehicle side, so that the safety of the heartbeat packet is ensured, the heartbeat packet cannot be forged and falsified, and meanwhile, the phenomenon that the time of the heartbeat packet is inconsistent due to inaccurate time of the vehicle side can be avoided.
As shown in fig. 2, another embodiment of the present invention provides another monitoring method for vehicle-mounted service authorization method, which is executed by a vehicle, and specifically includes the following steps:
s21, receiving a notification message sent by the server to acquire a token for identity authentication;
after the vehicle is powered on, the vehicle-mounted control unit automatically sends a power-on notification to the server, and the server sends a heartbeat packet synchronization notification message including the identity authentication token to the vehicle after receiving the notification so as to start detection of the heartbeat packet. The token for identity authentication is uniquely corresponding to the vehicle and is a disposable token, and the token is retransmitted after being electrified every time, so that the security of identity authentication is ensured.
S22, when the identity authentication is passed, sending the heartbeat package list of the preset number received locally to a server for verification;
the vehicle carries the token for identity authentication to send a heartbeat package list to the server, and the server verifies the token to finish the identity authentication of the vehicle. After the verification is passed, the server verifies a heartbeat package list sent by the vehicle, wherein the heartbeat package list is a list of preset number recently received by the vehicle, such as 5 heartbeat package lists received within three months.
The heartbeat packet list has the same record in a database of the server and is stored in one-to-one correspondence with the VIN code of the vehicle. When the vehicle sends the heartbeat packet lists with the preset number to the server, the server compares the received heartbeat packet lists with the heartbeat packet lists in the database, and if the heartbeat packet lists are consistent, the verification is passed.
S23, receiving the synchronous heartbeat packet sent by the server if the verification is passed;
and when the heartbeat packet list sent by the vehicle passes verification, the server generates a new heartbeat packet and sends the heartbeat packet to the vehicle, wherein the heartbeat packet at least comprises information such as a vehicle VIN code, a vehicle-mounted control unit ID, a current server time stamp, a heartbeat ID and the like.
And S24, writing the heartbeat package into a local disk, and informing a server to synchronize the local heartbeat package and the server side so as to determine the legality of the vehicle-mounted service authorization based on the synchronous heartbeat package.
The vehicle receives the heartbeat packet sent by the server, writes corresponding information of the heartbeat packet into the local disk, and informs the server so that the server confirms that the heartbeat packet is successfully received according to the notification information sent by the vehicle, and sets the heartbeat state as 'confirmed sent', so that the validity of the authorization of the vehicle-mounted service can be judged by carrying out consistency check on the heartbeat packets with the confirmed preset number in the follow-up process. The specific verification method is as described in the first embodiment of the present invention, and is not described herein again.
In another embodiment of the invention, the vehicle can also monitor the forgery of the vehicle-mounted service authorization by detecting the heartbeat packet, and preferably, the vehicle heartbeat detection is purely offline, so that the vehicle-mounted service starting judgment cannot be influenced by the poor vehicle network. Specifically, when a legal heartbeat record fed back by the vehicle is not received within a preset time, or a local time of the heartbeat record fed back by the vehicle is wrong, if the time recorded in a recently received legal heartbeat packet is later than the local time of the vehicle, if the conditions exist, it is indicated that the vehicle-mounted service authorization has an illegal risk.
The vehicle further comprises a step of detecting whether the authorization of the vehicle-mounted service is effective or not by the vehicle, and if so, continuously detecting whether a heartbeat packet record exists locally or not so as to judge whether the vehicle-mounted authorization service is legal or not through the heartbeat packet record.
In another embodiment of the present invention, the method further comprises the preceding steps of:
when the vehicle is powered on, sending a notification message to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records;
if the legal activation record exists, the server sends the notification message including the identity authentication token;
and if the record is not legally activated, the server does not send the notification message.
The vehicle generates the heartbeat packet by the server and stores the heartbeat packet locally, and compares the heartbeat packet with a heartbeat packet list recorded by the server when the vehicle is powered on every time, so that monitoring of vehicle-mounted service authorization counterfeiting can be realized by judging the consistency of the heartbeat packet list.
To further explain the anti-counterfeit monitoring method for authorization of vehicle-mounted service in the present invention, the present embodiment explains how to monitor the authorization and counterfeit behavior of vehicle-mounted service through the synchronous heartbeat packet through the interaction process between the server and the vehicle end, please refer to fig. 3, which includes the following steps:
step S1: when the vehicle is started every time, the ECU informs an authorized service vehicle of powering on;
step S2: detecting whether the VIN has an activated license or not, and if not, exiting; the heartbeat is delivered at most once a day, so exit if the day has already been delivered; otherwise, continuing to execute step S3;
step S3: the background authorization service informs the vehicle ECU of synchronous heartbeat through a message center and allocates a disposable token;
step S4: the vehicle ECU sends the latest 5 heartbeat lists and carries the received token to initiate a pre-activation request to an authorization service;
step S5: the background authorization service verifies whether the token is valid, and exits if the token is invalid;
step S6: the background authorization service checks whether the heartbeat ID list of the VIN is consistent with the database record, if not, the license is risky and needs manual intervention processing, and if no risk is judged according to the processing result, the heartbeat is continuously issued; otherwise, not sending down the heartbeat; if so, step S7 is performed.
Step S7: the server generates a new heartbeat. The heartbeat content at least comprises a VIN code, an ID of a vehicle ECU, a server-side timestamp and a unique ID number, and is signed by a unique private key of each vehicle and finally encrypted.
Step S8: the server sends the heartbeat to the vehicle ECU. The heartbeat state is that the sending is not confirmed;
step S9: and the vehicle end ECU writes the heartbeat into a local disk after receiving the heartbeat, and then replies to the authorization server. The heartbeat status is now sent confirmed.
Step S10: and the authorization service writes the VIN code, the heartbeat time and other information of the vehicle into a database.
It should be noted that the server, the authorization service, the authorization server, the background authorization service, and the background authorization server in the present invention all refer to servers for vehicle-mounted service authorization anti-counterfeit monitoring, and different names are used only for convenience of expression.
In summary, in the invention, the server generates heartbeats and synchronously sends the heartbeats to the vehicle end, the vehicle end records the heartbeats in the heartbeat list, after each time the vehicle is powered on, the vehicle end actively initiates a request to notify the server to start heartbeat packet verification, the server verifies the heartbeat packet list fed back by the vehicle, and when the verification result is consistent with the heartbeat packet list of the corresponding vehicle recorded in the server database, the vehicle-mounted service corresponding to the vehicle is judged to be legal. Therefore, through the synchronous design of the heartbeat package, the problem of counterfeiting possibly faced by vehicle-mounted service authorization activation is effectively solved, illegal authorization license is detected on line at regular time, and closed-loop license detection is formed.
Another embodiment of the present invention provides a monitoring device for a vehicle-mounted service authorization method, wherein the device comprises the following modules:
the sending module is used for sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit;
the receiving module is used for receiving the heartbeat packet list sent by the vehicle-mounted control unit;
and the detection module is used for detecting whether the heartbeat package list is consistent with a preset database record or not, judging that the vehicle-mounted service authorization is legal if the heartbeat package list is consistent with the preset database record, and judging that the vehicle-mounted service authorization is illegal if the heartbeat package list is inconsistent with the preset database record.
The modules respectively and correspondingly execute corresponding steps according to the vehicle-mounted service authorization anti-counterfeiting monitoring method described in the first embodiment, and reference may be specifically made to the vehicle-mounted service authorization anti-counterfeiting monitoring method described in the first embodiment, which is not described herein again.
The invention further provides a monitoring device of a vehicle-mounted service authorization method, which comprises the following modules:
the receiving module is used for receiving the notification message sent by the server to acquire a token for identity authentication;
the sending module is used for sending the locally received heartbeat packet list with the preset number to the server for verification when the identity authentication is passed;
the verification module is used for receiving the synchronous heartbeat packet sent by the server if the verification is passed;
and the disk writing module is used for writing the heartbeat package into a local disk and informing the server to synchronize the local heartbeat package and the server side so as to determine the legality of the vehicle-mounted service authorization based on the synchronous heartbeat package.
The modules respectively and correspondingly execute corresponding steps according to the vehicle-mounted service authorization anti-counterfeiting monitoring method described in the second embodiment, and reference may be specifically made to the vehicle-mounted service authorization anti-counterfeiting monitoring method described in the above embodiment, which is not described herein again.
The invention also provides a vehicle, which comprises one or more processors, a memory and a computer program stored in the memory and capable of running on the processor, wherein the computer program is used for realizing the vehicle-mounted service authorization anti-counterfeiting monitoring method when being executed.
The embodiment of the invention also discloses a computer readable storage medium, wherein the computer readable storage medium stores a program code, and the program code comprises instructions for executing part or all of the steps of the method or the system in the above method embodiments.
Embodiments of the present invention also disclose a computer program product, wherein, when the computer program product is run on a computer, the computer is caused to execute part or all of the steps of the method as in the above method embodiments.
The embodiment of the present invention also discloses an application publishing platform, wherein the application publishing platform is used for publishing a computer program product, and when the computer program product runs on a computer, the computer is caused to execute part or all of the steps of the method in the above method embodiments.
It should be appreciated that reference throughout this specification to "an embodiment of the present invention" means that a particular feature, structure or characteristic described in connection with the embodiment is included in at least one embodiment of the present invention. Thus, the appearances of the phrase "in embodiments of the invention" appearing in various places throughout the specification are not necessarily all referring to the same embodiments. Furthermore, the particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. Those skilled in the art should also appreciate that the embodiments described in this specification are exemplary and alternative embodiments, and that the acts and modules illustrated are not required in order to practice the invention.
In various embodiments of the present invention, it should be understood that the sequence numbers of the above-mentioned processes do not imply an inevitable order of execution, and the execution order of the processes should be determined by their functions and inherent logic, and should not constitute any limitation on the implementation process of the embodiments of the present invention.
In addition, the terms "system" and "network" are often used interchangeably herein. It should be understood that the term "and/or" herein is merely one type of association relationship describing an associated object, meaning that three relationships may exist, for example, a and/or B, may mean: a exists alone, A and B exist simultaneously, and B exists alone. In addition, the character "/" herein generally indicates that the former and latter related objects are in an "or" relationship.
In the embodiments provided herein, it should be understood that "B corresponding to a" means that B is associated with a from which B can be determined. It should also be understood, however, that determining B from a does not mean determining B from a alone, but may also be determined from a and/or other information.
It will be understood by those skilled in the art that all or part of the steps in the methods of the embodiments described above may be implemented by instructions associated with hardware, and the programs may be stored in a computer-readable storage medium, which includes Read-Only Memory (ROM), Random Access Memory (RAM), Programmable Read-Only Memory (PROM), Erasable Programmable Read-Only Memory (EPROM), One-time Programmable Read-Only Memory (OTPROM), Electrically Erasable Programmable Read-Only Memory (EEPROM), Compact Disc-Read Only Memory (CD-ROM), or other Memory, magnetic disk, magnetic tape, or magnetic tape, Or any other medium which can be used to carry or store data and which can be read by a computer.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated units, if implemented as software functional units and sold or used as a stand-alone product, may be stored in a computer accessible memory. Based on such understanding, the technical solution of the present invention, which is a part of or contributes to the prior art in essence, or all or part of the technical solution, can be embodied in the form of a software product, which is stored in a memory and includes several requests for causing a computer device (which may be a personal computer, a server, a network device, or the like, and may specifically be a processor in the computer device) to execute part or all of the steps of the above-described method of each embodiment of the present invention.
The onboard service authorization anti-counterfeiting monitoring method and the vehicle disclosed by the embodiment of the invention are introduced in detail, a specific example is applied in the method to explain the principle and the implementation mode of the invention, and the description of the embodiment is only used for helping to understand the method and the core idea of the invention; meanwhile, for a person skilled in the art, according to the idea of the present invention, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present invention.
Claims (14)
1. An anti-counterfeiting monitoring method for vehicle-mounted service authorization is characterized by comprising the following steps:
sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit;
receiving a heartbeat packet list sent by a vehicle-mounted control unit;
and detecting whether the heartbeat package list is consistent with a preset database record or not, if so, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal.
2. The vehicle-mounted authorization service anti-counterfeiting monitoring method according to claim 1, further comprising the step of sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit, wherein the step of sending the heartbeat packet synchronization notification message comprises the steps of:
receiving a power-on notice sent by a vehicle, and detecting whether the vehicle has an authorized service activation record;
and if so, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit, wherein the heartbeat packet synchronization notification message comprises a token for identity authentication.
3. The vehicle authorization service anti-counterfeiting monitoring method according to claim 1, further comprising generating a new heartbeat package when the heartbeat package list is detected to be consistent with a preset database record.
4. The anti-counterfeiting monitoring method for the vehicle-mounted authorization service according to claim 1, wherein the heartbeat package information comprises a vehicle VIN code, a vehicle-mounted control unit ID, a current service end timestamp and a heartbeat ID.
5. The vehicle-mounted authorization service anti-counterfeiting monitoring method according to claim 1, wherein the heartbeat package list is stored in the preset database and uniquely corresponds to a vehicle.
6. The anti-counterfeiting monitoring method for the vehicle-mounted authorization service according to claim 1, wherein the heartbeat packets in the heartbeat packet list are sorted in a reverse order of the generation time of the heartbeat packets.
7. The anti-counterfeiting monitoring method for the vehicle-mounted authorization service according to claim 6, wherein the generation time of the heartbeat packet is based on the time of a server side.
8. An anti-counterfeiting monitoring method for vehicle-mounted service authorization is characterized by comprising the following steps:
receiving a notification message sent by a server to acquire a token for identity authentication;
when the identity authentication is passed, sending a locally received heartbeat packet list with a preset number to a server for verification;
if the verification is passed, receiving a synchronous heartbeat packet sent by the server;
and writing the heartbeat packet into a local disk, and informing a server to synchronize the local heartbeat packet and the server side so as to determine the legality of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
9. The method of claim 8, further comprising a pre-step,
when the vehicle is powered on, sending a notification message to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records;
if the legal activation record exists, the server sends the notification message including the identity authentication token;
and if the record is not legally activated, the server does not send the notification message.
10. The method of claim 8, further comprising detecting whether authorization of the in-vehicle service is valid, and if so, detecting whether a heartbeat package record exists locally.
11. The method of claim 10, wherein the detection environment of the heartbeat packet record is a network offline environment.
12. The method according to claim 8, wherein when it is detected that a legal heartbeat packet is not received within a preset time and/or the time recorded by the heartbeat packet is not consistent with the local time, it is determined that the vehicle service authorization is illegal.
13. A vehicle comprising one or more processors, memory, and a computer program stored in the memory and operable on the processor, the computer program when executed implementing a telematics service authorization anti-counterfeiting monitoring method according to any one of claims 8 to 12.
14. A computer storage medium having instructions stored thereon that, when executed by one or more processors, cause the processors to perform the in-vehicle service authorization anti-counterfeiting monitoring method of any one of claims 1-12.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011481860.3A CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
| PCT/CN2021/112246 WO2022127145A1 (en) | 2020-12-15 | 2021-08-12 | Method for anti-counterfeiting monitoring of vehicle-mounted service license, and vehicle |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011481860.3A CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112615850A true CN112615850A (en) | 2021-04-06 |
| CN112615850B CN112615850B (en) | 2023-05-19 |
Family
ID=75239359
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011481860.3A Active CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN112615850B (en) |
| WO (1) | WO2022127145A1 (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2022127145A1 (en) * | 2020-12-15 | 2022-06-23 | 广州橙行智动汽车科技有限公司 | Method for anti-counterfeiting monitoring of vehicle-mounted service license, and vehicle |
| CN114710521A (en) * | 2022-03-11 | 2022-07-05 | 重庆长安汽车股份有限公司 | Vehicle cloud platform architecture system and method for realizing vehicle-mounted software payment authorization |
| CN114745149A (en) * | 2022-02-17 | 2022-07-12 | 惠州市博实结科技有限公司 | Software authorization management method |
| CN114756428A (en) * | 2022-04-12 | 2022-07-15 | 广州汽车集团股份有限公司 | Internet of vehicles payment software monitoring method and system |
| CN115220989A (en) * | 2021-07-29 | 2022-10-21 | 广州汽车集团股份有限公司 | Payment software monitoring method, device and system |
| CN115242417A (en) * | 2021-06-03 | 2022-10-25 | 广州汽车集团股份有限公司 | Vehicle-mounted function control method, system and device and vehicle |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070220375A1 (en) * | 2006-02-24 | 2007-09-20 | Symbol Technologies, Inc. | Methods and apparatus for a software process monitor |
| CN109041006A (en) * | 2018-08-23 | 2018-12-18 | 北京新能源汽车股份有限公司 | Method for acquiring vehicle data |
Family Cites Families (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102497374A (en) * | 2011-12-13 | 2012-06-13 | 方正国际软件有限公司 | Off-line available software license centralized security authentication system based on cloud computation, and method of the same |
| WO2018208777A1 (en) * | 2017-05-08 | 2018-11-15 | Bae Systems Information And Electronic Systems Integration Inc. | System and method for cryptographic verification of vehicle authenticity |
| CN108881132B (en) * | 2017-07-25 | 2021-03-23 | 北京旷视科技有限公司 | Application authorization method, client, server and computer readable medium |
| CN110071904B (en) * | 2018-01-24 | 2021-07-20 | 比亚迪股份有限公司 | Detection method and system of vehicle-mounted terminal, server and storage medium |
| CN112615850B (en) * | 2020-12-15 | 2023-05-19 | 广州橙行智动汽车科技有限公司 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
-
2020
- 2020-12-15 CN CN202011481860.3A patent/CN112615850B/en active Active
-
2021
- 2021-08-12 WO PCT/CN2021/112246 patent/WO2022127145A1/en active Application Filing
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070220375A1 (en) * | 2006-02-24 | 2007-09-20 | Symbol Technologies, Inc. | Methods and apparatus for a software process monitor |
| CN109041006A (en) * | 2018-08-23 | 2018-12-18 | 北京新能源汽车股份有限公司 | Method for acquiring vehicle data |
Non-Patent Citations (1)
| Title |
|---|
| 胡国良等: "基于实时授权的License控制技术在制造执行系统中的应用", 《制造业自动化》 * |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2022127145A1 (en) * | 2020-12-15 | 2022-06-23 | 广州橙行智动汽车科技有限公司 | Method for anti-counterfeiting monitoring of vehicle-mounted service license, and vehicle |
| CN115242417A (en) * | 2021-06-03 | 2022-10-25 | 广州汽车集团股份有限公司 | Vehicle-mounted function control method, system and device and vehicle |
| CN115242417B (en) * | 2021-06-03 | 2023-07-25 | 广州汽车集团股份有限公司 | Vehicle-mounted function control method, system, device and vehicle |
| CN115220989A (en) * | 2021-07-29 | 2022-10-21 | 广州汽车集团股份有限公司 | Payment software monitoring method, device and system |
| CN115220989B (en) * | 2021-07-29 | 2024-03-29 | 广州汽车集团股份有限公司 | Payment software monitoring method, device and system |
| CN114745149A (en) * | 2022-02-17 | 2022-07-12 | 惠州市博实结科技有限公司 | Software authorization management method |
| CN114745149B (en) * | 2022-02-17 | 2023-12-05 | 惠州市博实结科技有限公司 | Software authorization management method |
| CN114710521A (en) * | 2022-03-11 | 2022-07-05 | 重庆长安汽车股份有限公司 | Vehicle cloud platform architecture system and method for realizing vehicle-mounted software payment authorization |
| CN114710521B (en) * | 2022-03-11 | 2023-04-18 | 重庆长安汽车股份有限公司 | Vehicle cloud platform architecture system and method for realizing vehicle-mounted software payment authorization |
| CN114756428A (en) * | 2022-04-12 | 2022-07-15 | 广州汽车集团股份有限公司 | Internet of vehicles payment software monitoring method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112615850B (en) | 2023-05-19 |
| WO2022127145A1 (en) | 2022-06-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112615850A (en) | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle | |
| US12045599B2 (en) | Distribution package generation device, distribution package communication system, distribution package transmission method, and storage medium | |
| US11683197B2 (en) | Vehicle master device, update data distribution control method, computer program product and data structure of specification data | |
| US11669323B2 (en) | Vehicle electronic control system, program update notification control method and computer program product | |
| US11822366B2 (en) | Electronic control unit, vehicle electronic control system, rewrite execution method, rewrite execution program, and data structure of specification data | |
| US11947953B2 (en) | Vehicle electronic control system, progress screen display control method and computer program product | |
| US11671498B2 (en) | Vehicle master device, update data verification method and computer program product | |
| CN109324590B (en) | Management system, vehicle, and information processing method | |
| US12030443B2 (en) | Vehicle electronic control system, distribution package download determination method and computer program product | |
| US12083970B2 (en) | Vehicle master device, vehicle electronic control system, activation request instruction method and computer program product | |
| US11604637B2 (en) | Electronic control unit, vehicle electronic control system, difference data consistency determination method and computer program product | |
| US12061897B2 (en) | Vehicle master device, non-rewrite target power supply administration method and computer program product | |
| US20210157570A1 (en) | Vehicle master device, installation instruction determination method and computer program product | |
| US20210157492A1 (en) | Vehicle electronic control system, file transfer control method, computer program product and data structure of specification data | |
| CN112597447A (en) | Vehicle-mounted service authorization activation method and device and vehicle | |
| US20210165644A1 (en) | Vehicle master device, rewrite target group administration method, computer program product and data structure of specification data | |
| US11926270B2 (en) | Display control device, rewrite progress display control method and computer program product | |
| US11907697B2 (en) | Vehicle electronic control system, center device, vehicle master device, display control information transmission control method, display control information reception control method, display control information transmission control program, and display control information reception control program | |
| CN113411311B (en) | ECU diagnosis authorization verification method, storage medium and system | |
| JP2019029988A (en) | Management system, vehicle, and information processing method | |
| US11656771B2 (en) | Electronic control unit, vehicle electronic control system, activation execution control method and computer program product | |
| US11876898B2 (en) | Vehicle master device, security access key management method, security access key management program and data structure of specification data | |
| CN106598661A (en) | Method and system for dynamically updating plug-in | |
| JP7465915B2 (en) | Information processing method, device, and vehicle | |
| CN116665326A (en) | Vehicle-mounted charging equipment identification method and device and vehicle |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |