CN112615850B - Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle - Google Patents
Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle Download PDFInfo
- Publication number
- CN112615850B CN112615850B CN202011481860.3A CN202011481860A CN112615850B CN 112615850 B CN112615850 B CN 112615850B CN 202011481860 A CN202011481860 A CN 202011481860A CN 112615850 B CN112615850 B CN 112615850B
- Authority
- CN
- China
- Prior art keywords
- vehicle
- heartbeat
- heartbeat packet
- server
- authorization
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000013475 authorization Methods 0.000 title claims abstract description 93
- 238000000034 method Methods 0.000 title claims abstract description 60
- 238000012544 monitoring process Methods 0.000 title claims abstract description 27
- 230000004913 activation Effects 0.000 claims abstract description 33
- 230000001360 synchronised effect Effects 0.000 claims abstract description 13
- 238000012795 verification Methods 0.000 claims description 15
- 238000004590 computer program Methods 0.000 claims description 10
- 238000001514 detection method Methods 0.000 claims description 6
- 238000005242 forging Methods 0.000 abstract description 2
- 238000001994 activation Methods 0.000 description 28
- 230000008569 process Effects 0.000 description 8
- 238000004891 communication Methods 0.000 description 2
- 238000013461 design Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000012806 monitoring device Methods 0.000 description 2
- 238000012545 processing Methods 0.000 description 2
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000006399 behavior Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000003203 everyday effect Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000002452 interceptive effect Effects 0.000 description 1
- 230000001788 irregular Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008439 repair process Effects 0.000 description 1
- 238000012360 testing method Methods 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
- G06F21/12—Protecting executable software
- G06F21/121—Restricting unauthorised execution of programs
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D30/00—Reducing energy consumption in communication networks
- Y02D30/70—Reducing energy consumption in communication networks in wireless communication networks
Abstract
The invention provides a vehicle-mounted service authorization anti-counterfeiting monitoring method, which comprises the following steps: sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit; receiving a heartbeat packet list sent by a vehicle-mounted control unit; and detecting whether the heartbeat packet list is consistent with a preset database record, if so, judging that the vehicle service authorization is legal, and if not, judging that the vehicle service authorization is illegal. The invention also provides a vehicle, on which the vehicle-mounted service authorization anti-counterfeiting monitoring method is realized. The method of the invention sends the heartbeat package to the vehicle through the server in a timing and synchronous way, verifies the consistency of the heartbeat package, and effectively solves the possible forging problem of the authorization activation of the vehicle-mounted payment software.
Description
Technical Field
The invention relates to the technical field of vehicles, in particular to a vehicle-mounted service authorization anti-counterfeiting monitoring method and a vehicle.
Background
Value added services on intelligent automobiles are increasing, and users are usually required to pay for purchase and use after authorized activation. One key technology in the authorization activation process of value added services is the security design of authorization activation to prevent activation by illegal means. Although some existing authorization activation methods exist at present, illegal activation under some conditions can be prevented, in the case of irregular attacks, for example, when the ID information of VIN or ECU is modified by OBD, the information is forged, or additional authorization files are obtained by illegally using a repair and replacement process or a public test process, etc., and then value added services are activated, which will cause loss to companies and paying customers.
Disclosure of Invention
After the vehicle-mounted payment software activates the authorization, the use condition is also required to be monitored, the monitored abnormal authorization activation is corrected, and the authorization is released, so that the counterfeiting condition is prevented.
Based on the above problems, an embodiment of the present invention provides a vehicle-mounted service authorization anti-counterfeiting monitoring method, which includes the following steps:
sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit;
receiving a heartbeat packet list sent by a vehicle-mounted control unit;
and detecting whether the heartbeat packet list is consistent with a preset database record, if so, judging that the vehicle service authorization is legal, and if not, judging that the vehicle service authorization is illegal.
Further, the step of sending the synchronous heartbeat packet and the token for identity authentication to the vehicle-mounted control unit comprises the following steps:
receiving a power-on notification sent by a vehicle, and detecting whether an authorized service activation record exists in the vehicle;
if yes, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit, wherein the heartbeat packet synchronization notification message comprises a token for identity authentication.
Further comprising generating a new heartbeat package when the heartbeat package list is detected to be consistent with a preset database record.
Specifically, the heartbeat packet information includes a vehicle VIN code, a vehicle-mounted control unit ID, a current server time stamp, and a heartbeat ID.
Preferably, the heartbeat packet list is stored in the preset database and uniquely corresponds to the vehicle.
Preferably, the heartbeat packets in the heartbeat packet list are ordered in a reverse order of the generation time.
The generation time of the heartbeat packet is based on the server-side time.
Another embodiment of the present invention provides a vehicle-mounted service authorization anti-counterfeiting monitoring method, including the following steps:
receiving a notification message sent by a server to obtain a token for identity authentication;
when the identity authentication is passed, a preset number of heartbeat packet lists received locally are sent to a server for verification;
receiving a synchronous heartbeat packet sent by a server when verification is passed;
and writing the heartbeat packet into a local disk, and informing a server to synchronize the local heartbeat packet with the server so as to determine the legitimacy of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
Further, the method also comprises a pre-step,
after the vehicle is electrified, a notification message is sent to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records or not;
if the legal activation record exists, the server sends the notification message comprising the identity authentication token;
and if the legal activation record does not exist, the server does not send the notification message.
Specifically, the method further comprises the step of detecting whether the authorization of the vehicle-mounted service is effective, and if so, detecting whether the heartbeat packet record exists locally.
Specifically, the detection environment of the heartbeat packet record is a network offline environment.
And when the legal heartbeat packet is not received within the preset time and/or the time recorded by the heartbeat packet is detected to be inconsistent with the local time, judging that the vehicle-mounted service authorization is illegal.
A further embodiment of the present invention provides a vehicle, including one or more processors, a memory, and a computer program stored in the memory and executable on the processor, the computer program implementing the method for on-board service authorization anti-counterfeit monitoring as described in any of the above when executed.
Yet another embodiment of the invention provides a computer storage medium having instructions stored thereon that, when executed by one or more processors, cause the processors to perform the in-vehicle service authorization anti-counterfeiting monitoring method as described in any one of the above.
The invention sends the heartbeat package to the vehicle through the timing synchronization of the server, verifies the consistency of the heartbeat package, and effectively solves the possible forging problem of the authorization activation of the vehicle-mounted payment software.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present invention, the drawings that are needed in the embodiments will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a schematic flow chart of a vehicle-mounted service authorization anti-counterfeiting monitoring method disclosed by an embodiment of the invention;
FIG. 2 is a schematic flow chart of a method for monitoring the authorization of anti-counterfeiting of a vehicle-mounted service according to another embodiment of the invention;
fig. 3 is a timing interactive flowchart of an anti-counterfeit monitoring method for vehicle service authorization according to still another embodiment of the present invention.
Detailed Description
The following description of the embodiments of the present invention will be made clearly and completely with reference to the accompanying drawings, in which it is apparent that the embodiments described are only some embodiments of the present invention, but not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to be within the scope of the invention.
It should be noted that the terms "comprising" and "having" and any variations thereof in the embodiments of the present invention and the accompanying drawings are intended to cover non-exclusive inclusions. For example, a process, method, system, article, or apparatus that comprises a list of steps or elements is not limited to only those listed steps or elements but may include other steps or elements not listed or inherent to such process, method, article, or apparatus.
The vehicle-mounted authorization service comprises, but is not limited to, a vehicle value-added software service, an OTA (over the air) upgrading service of vehicle software and hardware, a continuous voyage upgrade service, a customized function activation service and other services needing authorization activation in any form. In order to prevent the vehicle-mounted authorization service from being activated in an improper way and being maliciously counterfeited and bringing unnecessary loss to an authorizer or a user, the invention provides a vehicle-mounted authorization service anti-counterfeiting monitoring method, which is shown by referring to fig. 1, and specifically comprises the following steps:
s11, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit;
the vehicle-mounted control unit refers to a control unit in a vehicle module environment where the vehicle-mounted service is operated after being installed and activated, and the specific vehicle-mounted service operation is executed by the corresponding vehicle-mounted control unit, such as an ECU.
When the vehicle is powered on and operates, a notice is sent to the server, and after the background server receives the notice information, whether the corresponding vehicle has legal vehicle-mounted authorization service activation records or not is detected. Preferably, in the vehicle-mounted service authorization activation stage, the vehicle synchronizes the service authorization activation information with the server so that the server stores the vehicle-mounted service authorization activation information of the corresponding vehicle, and therefore the server can directly judge whether a legal vehicle-mounted service authorization activation record exists or not by detecting the service authorization activation information of the corresponding vehicle.
If the vehicle has legal authorization to activate the vehicle-mounted service, the server sends a heartbeat packet synchronous notification message to the vehicle through the message center, preferably, the notification message comprises a token which is distributed to the vehicle by the server and used for identity authentication, and the token is disposable and uniquely corresponds to the vehicle.
According to the communication mechanism of the Internet of vehicles, the heartbeat is acquired by informing the vehicle to pull heartbeat information by a background authorization service, and the initiative is controlled by a server; even if there are multiple vehicles with the same VIN number, only one of the vehicles can be notified, thus obtaining a unique heartbeat.
S12, receiving a heartbeat packet list sent by the vehicle-mounted control unit;
after the vehicle receives the heartbeat packet synchronization notification message sent by the server, carrying the received token for identity authentication, and sending a heartbeat packet list in a preset time (such as within three months) recorded locally to the server. The server firstly verifies the token for identity authentication of the vehicle, and if invalid, the vehicle exits; if the heartbeat packet list is valid, further checking the received heartbeat packet list.
And S13, detecting whether the heartbeat packet list is consistent with a preset database record, if so, judging that the vehicle-mounted service authorization is legal, and if not, judging that the vehicle-mounted service authorization is illegal.
The server detects a received heartbeat packet list sent by the vehicle, wherein the heartbeat packet list information recorded in the server database meets the following rules:
1, a heartbeat ID list sent by a vehicle end must exist in a database of a server and belongs to the vehicle, and the heartbeat ID list is stored in one-to-one correspondence with VIN codes of the vehicle;
2> records of the heartbeat ID list sent by the vehicle side in the database must be ordered in reverse order of all the heartbeat generation times thereof, specifically based on the time of the server side. If the generation time at the server is 20:00, 20:10, 20:20, respectively, the ordering in the database is 20:20, 20:10, 20:00. By adopting the reverse order ordering mode, the server can compare the consistency of the latest heartbeat packet information preferentially, so that whether the condition of illegal authorization exists can be judged rapidly.
3> if the status of the heartbeat ID in the database is "unacknowledged sent", the heartbeat ID may not exist in the heartbeat ID list allowed to be sent by the vehicle end, because it may be that the heartbeat is lost due to communication reasons; if the heartbeat ID status in the database is "acknowledged sent", then the heartbeat ID list sent by the vehicle end must be present.
And when the server detects that the heartbeat packet list is consistent with the preset database record, judging that the vehicle-mounted service authorization is legal, and if the heartbeat packet list is inconsistent with the preset database record, judging that the vehicle-mounted service authorization is illegal. When the heart beat is judged to be illegal, the heart beat needs to be checked by manual intervention, and a new heart beat is regenerated after no risk is confirmed.
Further, when the heartbeat packet list is detected to be consistent with the preset database record, namely, the vehicle-mounted service authorization is legal, the server generates a new heartbeat packet. Specifically, the heartbeat packet information includes a vehicle VIN code, a vehicle-mounted control unit ID, a current server time stamp, and a heartbeat ID. And after the vehicle successfully receives the new heartbeat packet, the server inputs the heartbeat packet information into a database.
Further, the authorized activation software continues the authorized activation by periodically acquiring the heartbeat, and if the heartbeat is not acquired for a longer period of time, the authorized activation is disabled.
The heartbeat package in the embodiment of the invention takes the time of the server as the reference, and the heartbeat package is signed by the public and private key uniquely corresponding to the vehicle. Optionally, a root certificate is built in the vehicle when leaving the factory, when the vehicle-mounted service is authorized to be activated, the root certificate is triggered to generate a public-private key pair, the private key is left locally, and the public key is sent to the server. Thus, the service end sequentially signs and encrypts the generated heartbeat packet by using the private key of the service end and the public key of the vehicle end, and the vehicle end sequentially decrypts and checks the heartbeat packet by using the private key of the service end and the public key of the service end, so that the safety of the heartbeat packet is ensured, the heartbeat packet cannot be forged or tampered, and meanwhile, the time inconsistency of the heartbeat packet caused by inaccurate time of the vehicle end can be avoided.
As shown in fig. 2, another embodiment of the present invention provides another monitoring method for vehicle-mounted service authorization method, which is executed by a vehicle end, and specifically includes the following steps:
s21, receiving a notification message sent by a server to obtain a token for identity authentication;
after the vehicle is electrified, the vehicle-mounted control unit automatically sends an electrified notification to the server, and the server sends a heartbeat packet synchronization notification message comprising an identity authentication token to the vehicle after receiving the notification so as to start detection of the heartbeat packet. The token for identity authentication uniquely corresponds to the vehicle and is a disposable token, and is retransmitted after being electrified each time, so that the security of the identity authentication is ensured.
S22, when the identity authentication is passed, sending a locally received heartbeat packet list with preset number to a server for verification;
and the vehicle carries the token for identity authentication and sends a heartbeat packet list to the server, and the server completes the identity authentication of the vehicle by verifying the token. After the verification is passed, the server verifies the heartbeat packet list sent by the vehicle, wherein the heartbeat packet list is a list with a preset number recently received by the vehicle, such as a list of 5 heartbeat packets received in three months.
The heartbeat packet list has the same record in a database of the server and is stored in one-to-one correspondence with the VIN codes of the vehicle. When the vehicle sends the heartbeat packet list with the preset number to the server, the server compares the received heartbeat packet list with the heartbeat packet list in the database, and if the heartbeat packet list is consistent with the heartbeat packet list, the verification is passed.
S23, receiving a synchronous heartbeat packet sent by the server after verification is passed;
and after the verification of the heartbeat packet list sent by the vehicle is passed, the server generates a new heartbeat packet and sends the heartbeat packet to the vehicle, wherein the heartbeat packet at least comprises information such as a vehicle VIN code, a vehicle-mounted control unit ID, a current service end timestamp, a heartbeat ID and the like.
S24, writing the heartbeat packet into a local disk, and informing a server to synchronize the local heartbeat packet with the server side so as to determine the legitimacy of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
The vehicle receives the heartbeat package sent by the server, writes corresponding information of the heartbeat package into the local disk, and notifies the server, so that the server confirms that the heartbeat package is successfully received according to the notification information sent by the vehicle, and the heartbeat state is set to be 'confirmed sent', so that the validity of the vehicle-mounted service authorization can be judged by carrying out consistency check on the preset number of the heartbeat packages which are confirmed to be sent later. The specific verification method is described in the first embodiment of the present invention, and is not described herein.
In another embodiment of the present invention, the vehicle may monitor the falsification of the authorization of the vehicle-mounted service by detecting the heartbeat packet, preferably, the vehicle heartbeat detection is off-line, and the vehicle-mounted service start judgment is not affected because the vehicle network is bad. Specifically, when the legal heartbeat record fed back by the vehicle is not received within the preset time, or the local time error of the heartbeat record fed back by the vehicle, for example, the time recorded in the latest received legal heartbeat packet is later than the local time of the vehicle, if the conditions exist, the vehicle-mounted service authorization is proved to be at risk illegal.
And further comprising the steps that the vehicle detects whether the authorization of the vehicle-mounted service is effective, and if so, the vehicle continuously detects whether the heartbeat packet record exists locally so as to judge whether the vehicle-mounted authorization service is legal or not through the heartbeat packet record.
In a further embodiment of the invention, the method further comprises the preliminary steps of:
after the vehicle is electrified, a notification message is sent to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records or not;
if the legal activation record exists, the server sends the notification message for the identity authentication token;
if the legal activation record does not exist, the server does not send the notification message.
The vehicle generates the heartbeat package by the server, saves the heartbeat package locally, and compares the heartbeat package with the heartbeat package list recorded by the server when the vehicle is electrified every time, so that the monitoring of vehicle-mounted service authorization counterfeiting can be realized by judging the consistency of the heartbeat package list.
In order to further explain the anti-counterfeit monitoring method for vehicle-mounted service authorization of the present invention, the present embodiment describes how to monitor the counterfeit behavior of vehicle-mounted service authorization by synchronizing the heartbeat packet through the interaction process between the server and the vehicle end, please refer to fig. 3, which includes the following steps:
step S1: each time the vehicle starts, the ECU informs the authorized service vehicle to power up;
step S2: detecting whether the VIN has an activation authorization license, and if not, exiting; the heartbeat is issued once at most every day, so if the heartbeat is issued on the same day, the heartbeat is exited; otherwise, continuing to execute the step S3;
step S3: the background authorization service informs the vehicle ECU of synchronizing the heartbeat through a message center and distributes a disposable token;
step S4: the vehicle ECU sends the latest 5 heartbeat lists and initiates a pre-activation request to the authorization service with the received token;
step S5: the background authorization service verifies whether the token is valid or not, and the method exits if the token is invalid;
step S6: the background authorization service checks whether the heartbeat ID list of the VIN is consistent with the database record, if not, the license is at risk, manual intervention is needed, and if no risk is judged according to the processing result, the heartbeat is continuously issued; otherwise, not issuing heartbeat; if so, step S7 is performed.
Step S7: the server generates a new heartbeat. The heartbeat content at least comprises VIN code, vehicle ECU ID, service end timestamp, unique ID number, and signs with unique private key of each vehicle, and finally encrypts.
Step S8: the server sends the heartbeat to the vehicle ECU. The heartbeat state is not confirmed when the heartbeat state is sent;
step S9: and the vehicle-end ECU writes the heartbeat into a local disk and replies to the authorization server. The heartbeat status is now acknowledged as sent.
Step S10: the authorization service writes information such as the VIN code and the heartbeat time of the vehicle into the database.
It should be noted that, the server, the authorization service, the authorization server, the background authorization service and the background authorization server in the invention all refer to the server for the anti-counterfeit monitoring of the vehicle service authorization, and only adopt different names for convenience of expression.
In summary, the server generates the heartbeat and synchronously sends the heartbeat to the vehicle end, the vehicle end records the heartbeat list, after the vehicle is electrified, the vehicle end actively initiates a request to inform the server to start heartbeat packet verification, the server verifies the heartbeat packet list fed back by the vehicle, and when the verification result is consistent with the heartbeat packet list of the corresponding vehicle recorded in the server database, the vehicle-mounted service corresponding to the vehicle is judged to be legal. Therefore, through the synchronous design of the heartbeat packet, the fake problem possibly faced by vehicle-mounted service authorization activation is effectively solved, illegal authorization license is detected regularly on line, and closed-loop license detection is formed.
The invention further provides a vehicle-mounted service authorization method monitoring device, which comprises the following modules:
the sending module is used for sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit;
the receiving module is used for receiving the heartbeat packet list sent by the vehicle-mounted control unit;
the detection module is used for detecting whether the heartbeat packet list is consistent with a preset database record, judging that the vehicle-mounted service authorization is legal if the heartbeat packet list is consistent with the preset database record, and judging that the vehicle-mounted service authorization is illegal if the heartbeat packet list is inconsistent with the preset database record.
The corresponding steps of the respective modules are correspondingly executed according to the vehicle-mounted service authorization anti-counterfeiting monitoring method according to the first embodiment, and specific reference may be made to the vehicle-mounted service authorization anti-counterfeiting monitoring method according to the first embodiment, which is not described herein.
In another embodiment of the present invention, a monitoring device for a vehicle service authorization method includes the following modules:
the receiving module is used for receiving the notification message sent by the server to obtain a token for identity authentication;
the sending module is used for sending a preset number of heartbeat packet lists received locally to the server for verification when the identity authentication is passed;
the verification module is used for verifying the synchronous heartbeat packet sent by the receiving server if the synchronous heartbeat packet passes through the verification module;
and the disk writing module is used for writing the heartbeat packet into a local disk and notifying a server to synchronize the local heartbeat packet with the server side so as to determine the legitimacy of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
The modules correspondingly execute corresponding steps according to the vehicle-mounted service authorization anti-counterfeiting monitoring method in the second embodiment, and reference may be made to the vehicle-mounted service authorization anti-counterfeiting monitoring method in the second embodiment specifically, and details are not repeated here.
The invention also provides a vehicle comprising one or more processors, a memory and a computer program stored in the memory and capable of running on the processor, wherein the computer program is executed to realize the vehicle-mounted service authorization anti-counterfeiting monitoring method.
The embodiment of the invention also discloses a computer readable storage medium, wherein the computer readable storage medium stores program code, and the program code comprises instructions for executing part or all of the steps of the method or system in the above method embodiments.
The embodiments of the present invention also disclose a computer program product, wherein the computer program product, when run on a computer, causes the computer to perform some or all of the steps of the method as in the method embodiments above.
The embodiment of the invention also discloses an application release platform, wherein the application release platform is used for releasing a computer program product, and the computer program product is used for enabling the computer to execute part or all of the steps of the method in the method embodiments.
It should be appreciated that reference throughout this specification to "an embodiment of the invention" means that a particular feature, structure or characteristic described in connection with the embodiment is included in at least one embodiment of the present invention. Thus, the appearances of the phrase "in an embodiment of the invention" in various places throughout this specification are not necessarily all referring to the same embodiment. Furthermore, the particular features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. Those skilled in the art will also appreciate that the embodiments described in the specification are alternative embodiments and that the acts and modules referred to are not necessarily required for the present invention.
In various embodiments of the present invention, it should be understood that the sequence numbers of the foregoing processes do not imply that the execution sequences of the processes should be determined by the functions and internal logic of the processes, and should not be construed as limiting the implementation of the embodiments of the present invention.
In addition, the terms "system" and "network" are often used interchangeably herein. It should be understood that the term "and/or" is merely an association relationship describing the associated object, and means that three relationships may exist, for example, a and/or B, and may mean: a exists alone, A and B exist together, and B exists alone. In addition, the character "/" herein generally indicates that the front and rear associated objects are an "or" relationship.
In the embodiments provided herein, it should be understood that "B corresponding to a" means that B is associated with a, from which B can be determined. It should also be understood that determining B from a does not mean determining B from a alone, but may also determine B from a and/or other information.
Those of ordinary skill in the art will appreciate that all or part of the steps of the various methods of the above embodiments may be implemented by a program to instruct related hardware, the program may be stored in a computer readable storage medium including Read-Only Memory (ROM), random access Memory (RandomAccess Memory, RAM), programmable Read-Only Memory (Programmable Read-Only Memory, PROM), erasable programmable Read-Only Memory (Erasable Programmable Read Only Memory, EPROM), one-time programmable Read-Only Memory (One-time Programmable Read-OnlyMemory, OTPROM), electrically erasable rewritable Read-Only Memory (EEPROM), compact disc Read-Only Memory (Compact Disc Read-Only Memory, CD-ROM) or other optical disc Memory, magnetic tape Memory, or any other medium capable of being used for carrying or storing data that is readable by a computer.
The units described above as separate components may or may not be physically separate, and components shown as units may or may not be physical units, may be located in one place, or may be distributed over a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the embodiment.
In addition, each functional unit in the embodiments of the present invention may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units may be implemented in hardware or in software functional units.
The integrated units described above, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer-accessible memory. Based on this understanding, the technical solution of the present invention, or a part contributing to the prior art or all or part of the technical solution, may be embodied in the form of a software product stored in a memory, comprising several requests for a computer device (which may be a personal computer, a server or a network device, etc., in particular may be a processor in a computer device) to execute some or all of the steps of the above-mentioned method of the various embodiments of the present invention.
The vehicle-mounted service authorization anti-counterfeiting monitoring method and the vehicle disclosed by the embodiment of the invention are described in detail, and specific examples are applied to explain the principle and the implementation mode of the invention, and the description of the above examples is only used for helping to understand the method and the core idea of the invention; meanwhile, as those skilled in the art will have variations in the specific embodiments and application scope in accordance with the ideas of the present invention, the present description should not be construed as limiting the present invention in view of the above.
Claims (10)
1. The vehicle-mounted service authorization anti-counterfeiting monitoring method is characterized by comprising the following steps of:
sending a heartbeat packet synchronization notification message to a vehicle-mounted control unit;
receiving a heartbeat packet list sent by a vehicle-mounted control unit;
detecting whether the heartbeat packet list is consistent with a preset database record, if so, judging that the vehicle service authorization is legal, and if not, judging that the vehicle service authorization is illegal; the heartbeat packet information comprises a vehicle VIN code, a vehicle-mounted control unit ID, a current service end timestamp and a heartbeat ID; the preset heartbeat packet list information recorded by the database meets the following rules:
the first rule is that a heartbeat packet list is stored in the preset database and uniquely corresponds to the vehicle;
secondly, ordering heartbeat packages in the heartbeat package list in a reverse order mode of generation time of the heartbeat packages, wherein the generation time of the heartbeat packages is based on the time of a server side;
rule three, if the heartbeat ID status in the database is not confirmed, the heartbeat ID may not exist in the heartbeat ID list allowed to be sent by the vehicle end.
2. The method of claim 1, further wherein the step of sending a heartbeat packet synchronization notification message to the on-board control unit comprises the steps of:
receiving a power-on notification sent by a vehicle, and detecting whether an authorized service activation record exists in the vehicle;
if yes, sending a heartbeat packet synchronization notification message to the vehicle-mounted control unit, wherein the heartbeat packet synchronization notification message comprises a token for identity authentication.
3. The method of claim 1, further comprising generating a new heartbeat package when the heartbeat package list is detected to be consistent with a preset database record.
4. The vehicle-mounted service authorization anti-counterfeiting monitoring method is characterized by comprising the following steps of:
receiving a notification message sent by a server to obtain a token for identity authentication;
when the identity authentication is passed, a preset number of heartbeat packet lists received locally are sent to a server for verification; the server detects whether the heartbeat packet list is consistent with a preset database record or not according to a received heartbeat packet list sent by the vehicle, wherein the heartbeat packet information comprises a vehicle VIN code, a vehicle-mounted control unit ID, a current server time stamp and a heartbeat ID; the preset heartbeat packet list information recorded by the database meets the following rules:
the first rule is that the heartbeat packet list is stored in a preset database and uniquely corresponds to the vehicle;
secondly, ordering heartbeat packages in the heartbeat package list in a reverse order mode of generation time of the heartbeat packages, wherein the generation time of the heartbeat packages is based on the time of a server side;
rule III, if the heartbeat ID state in the database is not confirmed, the heartbeat ID can not exist in the heartbeat ID list which is allowed to be sent by the vehicle end;
receiving a synchronous heartbeat packet sent by a server when verification is passed;
and writing the heartbeat packet into a local disk, and informing a server to synchronize the local heartbeat packet with the server so as to determine the legitimacy of the vehicle-mounted service authorization based on the synchronous heartbeat packet.
5. The method of claim 4, further comprising the step of pre-step,
after the vehicle is electrified, a notification message is sent to a server to trigger the server to detect whether the vehicle-mounted authorization service has legal activation records or not;
if the legal activation record exists, the server sends a notification message comprising a token for identity authentication;
if the legal activation record does not exist, the server does not send the notification message.
6. The method of claim 4, further comprising detecting whether authorization of the in-vehicle service is valid, and if so, detecting whether a heartbeat packet record exists locally.
7. The method of claim 6, wherein the detection environment of the heartbeat packet record is a network offline environment.
8. The method according to claim 4, wherein when it is detected that a valid heartbeat packet is not received within a preset time and/or that the time recorded by the heartbeat packet is inconsistent with the local time, determining that the vehicle service authorization is not valid.
9. A vehicle comprising one or more processors, a memory, and a computer program stored in the memory and operable on the processor, the computer program when executed implementing a vehicle service authorization anti-counterfeiting monitoring method according to any one of claims 4 to 8.
10. A computer storage medium having instructions stored thereon that, when executed by one or more processors, cause the processors to perform the in-vehicle service authorization anti-counterfeiting monitoring method according to any one of claims 1-8.
Priority Applications (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011481860.3A CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
| PCT/CN2021/112246 WO2022127145A1 (en) | 2020-12-15 | 2021-08-12 | Method for anti-counterfeiting monitoring of vehicle-mounted service license, and vehicle |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011481860.3A CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112615850A CN112615850A (en) | 2021-04-06 |
| CN112615850B true CN112615850B (en) | 2023-05-19 |
Family
ID=75239359
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011481860.3A Active CN112615850B (en) | 2020-12-15 | 2020-12-15 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
Country Status (2)
| Country | Link |
|---|---|
| CN (1) | CN112615850B (en) |
| WO (1) | WO2022127145A1 (en) |
Families Citing this family (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112615850B (en) * | 2020-12-15 | 2023-05-19 | 广州橙行智动汽车科技有限公司 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
| CN115242417B (en) * | 2021-06-03 | 2023-07-25 | 广州汽车集团股份有限公司 | Vehicle-mounted function control method, system, device and vehicle |
| CN115220989B (en) * | 2021-07-29 | 2024-03-29 | 广州汽车集团股份有限公司 | Payment software monitoring method, device and system |
| CN114745149B (en) * | 2022-02-17 | 2023-12-05 | 惠州市博实结科技有限公司 | Software authorization management method |
| CN114710521B (en) * | 2022-03-11 | 2023-04-18 | 重庆长安汽车股份有限公司 | Vehicle cloud platform architecture system and method for realizing vehicle-mounted software payment authorization |
| CN114756428B (en) * | 2022-04-12 | 2023-03-24 | 广州汽车集团股份有限公司 | Internet of vehicles payment software monitoring method and system thereof |
Family Cites Families (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20070220375A1 (en) * | 2006-02-24 | 2007-09-20 | Symbol Technologies, Inc. | Methods and apparatus for a software process monitor |
| CN102497374A (en) * | 2011-12-13 | 2012-06-13 | 方正国际软件有限公司 | Off-line available software license centralized security authentication system based on cloud computation, and method of the same |
| WO2018208777A1 (en) * | 2017-05-08 | 2018-11-15 | Bae Systems Information And Electronic Systems Integration Inc. | System and method for cryptographic verification of vehicle authenticity |
| CN108881132B (en) * | 2017-07-25 | 2021-03-23 | 北京旷视科技有限公司 | Application authorization method, client, server and computer readable medium |
| CN110071904B (en) * | 2018-01-24 | 2021-07-20 | 比亚迪股份有限公司 | Detection method and system of vehicle-mounted terminal, server and storage medium |
| CN109041006A (en) * | 2018-08-23 | 2018-12-18 | 北京新能源汽车股份有限公司 | A method of obtaining vehicle data |
| CN112615850B (en) * | 2020-12-15 | 2023-05-19 | 广州橙行智动汽车科技有限公司 | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle |
-
2020
- 2020-12-15 CN CN202011481860.3A patent/CN112615850B/en active Active
-
2021
- 2021-08-12 WO PCT/CN2021/112246 patent/WO2022127145A1/en active Application Filing
Also Published As
| Publication number | Publication date |
|---|---|
| CN112615850A (en) | 2021-04-06 |
| WO2022127145A1 (en) | 2022-06-23 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112615850B (en) | Vehicle-mounted service authorization anti-counterfeiting monitoring method and vehicle | |
| US20210157571A1 (en) | Center device | |
| CN110228445B (en) | Vehicle remote control system and method | |
| US20210167988A1 (en) | Vehicle master device, update data distribution control method, computer program product and data structure of specification data | |
| US20210165869A1 (en) | Management system, vehicle, and information processing method | |
| US20210182048A1 (en) | Vehicle electronic control system, program update notification control method and computer program product | |
| US20220179644A1 (en) | Vehicle electronic control system, vehicle master device, and rewrite instruction program product under specific mode | |
| US11947953B2 (en) | Vehicle electronic control system, progress screen display control method and computer program product | |
| US20210255805A1 (en) | Vehicle master device, update data verification method and computer program product | |
| JP7421856B2 (en) | Operation management system, vehicle, and information processing method | |
| US20210155177A1 (en) | Vehicle electronic control system, distribution package download determination method and computer program product | |
| JP2023133296A (en) | Operation management system, vehicle, and information processing method | |
| US11604637B2 (en) | Electronic control unit, vehicle electronic control system, difference data consistency determination method and computer program product | |
| US20210155252A1 (en) | Vehicle master device, control method for executing rollback, computer program product for executing rollback and data structure of specification data | |
| US11467821B2 (en) | Vehicle master device, installation instruction determination method and computer program product | |
| CN112597447A (en) | Vehicle-mounted service authorization activation method and device and vehicle | |
| US20210157574A1 (en) | Vehicle master device, non-rewrite target power supply administration method and computer program product | |
| US20210157492A1 (en) | Vehicle electronic control system, file transfer control method, computer program product and data structure of specification data | |
| US11941384B2 (en) | Vehicle master device, rewrite target group administration method, computer program product and data structure of specification data | |
| US11926270B2 (en) | Display control device, rewrite progress display control method and computer program product | |
| JP2019029988A (en) | Management system, vehicle, and information processing method | |
| US11656771B2 (en) | Electronic control unit, vehicle electronic control system, activation execution control method and computer program product | |
| US11876898B2 (en) | Vehicle master device, security access key management method, security access key management program and data structure of specification data | |
| US11907697B2 (en) | Vehicle electronic control system, center device, vehicle master device, display control information transmission control method, display control information reception control method, display control information transmission control program, and display control information reception control program | |
| CN109532754A (en) | Automobile control method, device, entire car controller and automobile |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |