CN114650155A

CN114650155A - Method and system for issuing vehicle-mounted unit, storage medium, and electronic device

Info

Publication number: CN114650155A
Application number: CN202011507706.9A
Authority: CN
Inventors: 余亮; 郑高; 武宏伟; 朱胜超; 张威
Original assignee: Beijing Wanji Technology Co Ltd
Current assignee: Beijing Wanji Technology Co Ltd
Priority date: 2020-12-18
Filing date: 2020-12-18
Publication date: 2022-06-21

Abstract

The invention provides a method and a system for issuing a vehicle-mounted unit, a storage medium and an electronic device, wherein the method comprises the following steps: a primary release process: sending identity information to a server through a target vehicle-mounted unit; determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification; and (3) secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server; and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification. According to the invention, the technical problem of low issuing efficiency of the vehicle-mounted unit in the related technology can be solved, and the issuing efficiency of the vehicle-mounted unit is improved.

Description

Method and system for issuing vehicle-mounted unit, storage medium, and electronic apparatus

Technical Field

The invention relates to the field of intelligent transportation, in particular to a method and a system for issuing a vehicle-mounted unit, a storage medium and an electronic device.

Background

With the continuous development of automobile networking and automobile automatic driving technologies, vehicle-road cooperation becomes a research hotspot in the field of intelligent transportation. In the vehicle-road cooperative system, vehicle, road, person and cloud information are effectively combined, data generated by the vehicle, the road, the person and the like and related data are combined and flexibly utilized, the travel problem of a vehicle owner can be effectively solved, and a reasonable solution can be provided for various traffic conditions on the road. The Vehicle-road cooperative system is established on the basis of rapid interconnection of human, Vehicle, road and cloud information, wherein in Vehicle-to-Vehicle (V2V for short), a Vehicle-mounted unit plays an important role. In the related art, before the vehicle-mounted unit is put into use formally, the vehicle-mounted unit is generally required to be issued by using a handheld issuing device, and the issuing process needs manual operation, so that the method is low in efficiency.

In the related art, no effective technical scheme is provided for the technical problem that the issuing efficiency of the vehicle-mounted unit is low.

Disclosure of Invention

An alternative embodiment of the present invention provides a method and a system for issuing an on-board unit, a storage medium, and an electronic device, so as to at least solve the technical problem of low issuing efficiency of an on-board unit in the related art.

According to an embodiment of the present invention, there is provided a method of issuing an in-vehicle unit, including: a primary release process: sending identity information to a server through a target vehicle-mounted unit; determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification; and (3) secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server; and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification.

Optionally, the sending, by the target vehicle-mounted unit, the identity information to the server includes: signing the authentication code of the target vehicle-mounted unit by using a first private key through the target vehicle-mounted unit to obtain a digital signature; encrypting the authentication code and the digital signature by using a second public key through the target vehicle-mounted unit to obtain the identity information, wherein the second public key is a public key of the server; and sending the identity information to the server through the target vehicle-mounted unit.

Optionally, after the sending of the identity information to the server by the target on-board unit, the method further includes: decrypting, by the server, the identity information using a second private key paired with the second public key to obtain the authentication code and the digital signature; and determining that the first public key is legal under the condition that the server decrypts the digital signature by using the first public key to obtain the authentication code, wherein the first public key and the first private key are pairing keys generated by the target vehicle-mounted unit.

Optionally, the authentication code includes a device code, a manufacturer name and a device model number of the target on-board unit, wherein after the determining that the first public key is legal, the method further includes: searching first information and second information which are stored in advance and correspond to the equipment codes through the server; and determining that the identity of the target vehicle-mounted unit is legal under the condition that the name of the manufacturer is consistent with the first information and the model of the equipment is consistent with the second information.

Optionally, the server is a root node in a blockchain system, wherein before the verification of the first vehicle identification code sent by the target on-board unit by the server, the method further includes: reading the first vehicle identification code from the vehicle through the target on-board unit, and sending the first vehicle identification code and the device code of the target on-board unit to the server; searching a second vehicle identification code which is stored in advance and corresponds to the equipment code according to the equipment code through the server; and under the condition that the first vehicle identification code is consistent with the second vehicle identification code, determining that the first vehicle identification code is verified through the server, and sending a writing instruction to the target vehicle-mounted unit through a processing node in the block chain system, wherein the writing instruction is used for instructing to write the first vehicle identification code or the second vehicle identification code into a safety module of the target vehicle-mounted unit.

Optionally, the method further comprises: acquiring a vehicle identification code written in the safety module through the server; comparing, by the server, the written vehicle identification code with the second vehicle identification code, and in the event of a match, determining that the written vehicle identification code passes verification; sending a first notification message to the operator device through the processing node, wherein the first notification message is used for indicating that the vehicle identification code written in the target vehicle-mounted unit passes verification; writing, by the operator device, the vehicle information to the target on-board unit in response to the first notification message.

Optionally, the method further comprises: verifying, by the target on-board unit, an electronic controller unit in the vehicle and verifying, by the server, the electronic controller unit; under the condition that the target vehicle-mounted unit passes the verification of an electronic controller unit in the vehicle and the electronic controller unit passes the verification of the server, sending a second notification message to the operator equipment through the processing node, wherein the second notification message is used for indicating that target function authority is written into the target vehicle-mounted unit so that the target vehicle-mounted unit has the target function indicated by the target function authority; and responding to the second notification message, writing the target function authority into the target vehicle-mounted unit through the operator equipment so as to complete the secondary issuing process of the target vehicle-mounted unit.

Optionally, said validating, by the target on-board unit, an electronic controller unit in the vehicle comprises: receiving, by the target on-board unit, third vehicle identification code information sent by the electronic controller unit, where the third vehicle identification code information is obtained by the electronic controller unit encrypting a third vehicle identification code stored in the electronic controller unit by using a third public key of the target on-board unit; decrypting, by the target on-board unit, the third vehicle identification code information using a third private key paired with the third public key to obtain the third vehicle identification code; determining, by the target on-board unit, that the electronic controller unit is validated if the third vehicle identification code is consistent with the vehicle identification code written in the target on-board unit; wherein said validating, by said server, said electronic controller unit comprises: under the condition that the target vehicle-mounted unit receives a target instruction, the target instruction is transmitted to the electronic controller unit through the target vehicle-mounted unit, wherein the target instruction comprises a target identifier which is used for indicating the target vehicle-mounted unit to transmit the target instruction to the electronic controller unit; in response to the target instruction, sending fourth vehicle identification code information to the server through the electronic controller unit, wherein the fourth vehicle identification code information is obtained by encrypting the third vehicle identification code by the electronic controller unit by using a fourth public key of the server; decrypting, by the server, the fourth vehicle identification code information using a fourth private key paired with the fourth public key to obtain the third vehicle identification code; determining, by the server, that the electronic controller unit is validated if the third vehicle identification code matches the second vehicle identification code pre-stored in the server.

Optionally, after the secondary issuing process is completed, determining, by the server, that the target on-board unit has a legal right, wherein the method further includes: acquiring vehicle-mounted unit identification information stored in the target vehicle-mounted unit through monitoring equipment; identifying a first license plate number and first appearance information of a vehicle where the target vehicle-mounted unit is located through identification equipment; acquiring the identification information of the vehicle-mounted unit, the first license plate number and the first appearance information through the server; inquiring a second license plate number and second appearance information which are stored in advance and correspond to the identification information of the vehicle-mounted unit through the server; determining to maintain the legal authority of the target vehicle-mounted unit under the condition that the first license plate number is consistent with the second license plate number and the first appearance information is consistent with the second appearance information, and storing first information for indicating to maintain the legal authority of the target vehicle-mounted unit; and under the condition that the first license plate number is inconsistent with the second license plate number or the first appearance information is inconsistent with the second appearance information, determining to cancel the legal authority of the target vehicle-mounted unit, and storing second information for indicating to cancel the legal authority of the target vehicle-mounted unit.

According to another embodiment of the present invention, there is provided an issuing system of an in-vehicle unit, including: the system comprises a target vehicle-mounted unit, a server and operator equipment, wherein the target vehicle-mounted unit is used for sending identity information to the server in a one-time issuing process; the server is used for verifying the identity information and determining that the identity of the target vehicle-mounted unit is legal under the condition that the identity information is verified; the server is also used for verifying the first vehicle identification code sent by the target vehicle-mounted unit in the secondary issuing process; the operator device is used for writing the vehicle information of the vehicle into the target vehicle-mounted unit under the condition that the server verifies the first vehicle identification code.

Optionally, the target on-board unit is further configured to: signing the authentication code of the target vehicle-mounted unit by using a first private key to obtain a digital signature; encrypting the authentication code and the digital signature by using a second public key to obtain the identity information, wherein the second public key is a public key of the server; and sending the identity information to the server.

Optionally, the server is further configured to: decrypting the identity information by using a second private key matched with the second public key to obtain the authentication code and the digital signature; and under the condition that the digital signature is decrypted by using a first public key to obtain the authentication code, determining that the first public key is legal, wherein the first public key and the first private key are pairing keys generated by the target vehicle-mounted unit.

Optionally, the authentication code includes a device code, a manufacturer name and a device model of the target on-board unit, wherein the server is further configured to: searching first information and second information which are stored in advance and correspond to the equipment codes; and determining that the identity of the target vehicle-mounted unit is legal under the condition that the name of the manufacturer is consistent with the first information and the model of the equipment is consistent with the second information.

Optionally, the server is a root node in a blockchain system, the system further includes a processing node, wherein the target on-board unit is further configured to: reading the first vehicle identification code from the vehicle and sending the first vehicle identification code and the device code of the target on-board unit to the server; the server is further configured to: searching a second vehicle identification code which is stored in advance and corresponds to the equipment code according to the equipment code; determining that the first vehicle identification code is verified if the first vehicle identification code is consistent with the second vehicle identification code; the processing node is configured to send a write instruction to the target on-board unit when the first vehicle identification code passes verification, where the write instruction is used to instruct to write the first vehicle identification code or the second vehicle identification code into a security module of the target on-board unit.

Optionally, the server is further configured to: acquiring a vehicle identification code written in the safety module; comparing the written vehicle identification code with the second vehicle identification code, and determining that the written vehicle identification code passes verification under the condition of consistency; the processing node is further configured to send a first notification message to the operator device when the written vehicle identification code passes the verification, where the first notification message is used to indicate that the vehicle identification code written in the target on-board unit passes the verification; the operator device is further configured to write the vehicle information to the target on-board unit.

Optionally, the target on-board unit is further configured to verify an electronic controller unit in the vehicle; the server is also used for verifying the electronic controller unit; the processing node is further configured to send a second notification message to the operator device when the target on-board unit passes verification on an electronic controller unit in the vehicle and the server passes verification on the electronic controller unit, where the second notification message is used to instruct writing of a target function permission into the target on-board unit, so that the target on-board unit has a target function indicated by the target function permission; the operator equipment is further used for responding to the second notification message, writing the target function authority into the target vehicle-mounted unit, and therefore the secondary issuing process of the target vehicle-mounted unit is completed.

Optionally, the target on-board unit is further configured to: receiving third vehicle identification code information sent by the electronic controller unit, wherein the third vehicle identification code information is obtained by encrypting a third vehicle identification code stored in the electronic controller unit by using a third public key of the target vehicle-mounted unit through the electronic controller unit; decrypting the third vehicle identification code information by using a third private key paired with the third public key to obtain a third vehicle identification code; determining that the electronic controller unit passes verification if the third vehicle identification code is identical to the vehicle identification code written in the target on-board unit; wherein the target on-board unit is further configured to: under the condition that a target instruction is received, the target instruction is transmitted to the electronic controller unit in a transparent mode, wherein the target instruction comprises a target identifier, and the target identifier is used for indicating the target vehicle-mounted unit to transmit the target instruction to the electronic controller unit in the transparent mode; the electronic controller unit is further configured to: responding to the target instruction, and sending fourth vehicle identification code information to the server, wherein the fourth vehicle identification code information is obtained by encrypting the third vehicle identification code by using a fourth public key of the server through the electronic controller unit; the server is further configured to decrypt the fourth vehicle identification code information by using a fourth private key paired with the fourth public key to obtain the third vehicle identification code; determining that the electronic controller unit is validated if the third vehicle identification code matches the second vehicle identification code pre-stored in the server.

Optionally, the server is further configured to determine that the target vehicle-mounted unit has a legal right after a secondary issuing process of the target vehicle-mounted unit is completed, where the issuing system further includes a monitoring device and an identification device, and the monitoring device is configured to acquire vehicle-mounted unit identification information stored in the target vehicle-mounted unit; the identification device is used for identifying a first license plate number and first appearance information of a vehicle where the target vehicle-mounted unit is located; the server is further configured to: acquiring the identification information of the vehicle-mounted unit, the first license plate number and the first appearance information; inquiring a second license plate number and second appearance information which are stored in advance and correspond to the identification information of the vehicle-mounted unit; determining to maintain the legal authority of the target vehicle-mounted unit under the condition that the first license plate number is consistent with the second license plate number and the first appearance information is consistent with the second appearance information, and storing first information for indicating to maintain the legal authority of the target vehicle-mounted unit; and under the condition that the first license plate number is inconsistent with the second license plate number or the first appearance information is inconsistent with the second appearance information, determining to cancel the legal authority of the target vehicle-mounted unit, and storing second information for indicating to cancel the legal authority of the target vehicle-mounted unit.

Alternatively, according to another embodiment of the present invention, a storage medium is provided, in which a computer program is stored, wherein the computer program is arranged to perform the above-mentioned method when executed.

Alternatively, according to another embodiment of the present invention, there is provided an electronic apparatus, including a memory in which a computer program is stored and a processor configured to execute the computer program to perform the above method.

According to the present invention, a method for issuing an on-board unit includes: a primary issuing process: sending identity information to a server through a target vehicle-mounted unit; determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification; and (3) secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server; and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification. The primary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the server, and the secondary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the operator equipment without manual operation in the issuing process, so that the technical problem of low issuing efficiency of the vehicle-mounted unit in the related technology can be solved, and the issuing efficiency of the vehicle-mounted unit is improved.

Drawings

The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:

FIG. 1 is a flow chart of a method of issuing on-board units according to an alternative embodiment;

FIG. 2 is a schematic diagram of an issue system for an on-board unit according to an alternative embodiment;

fig. 3 is a schematic structural diagram of an alternative electronic device according to an alternative embodiment.

Detailed Description

The invention will be described in detail hereinafter with reference to the accompanying drawings in conjunction with embodiments. It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict.

It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.

Technical terms in the embodiments of the present invention are explained as follows:

all nodes: the all nodes in the block chain system are used for storing and recording all block data;

and (3) light node: the light node in the block chain system is used for accessing the block chain main node to realize query or upload data;

root node: the root node in the blockchain system is used for storing and recording all the blockdata and has higher authority relative to the full node, for example, but not limited to, the root node can obtain more accounting right distribution opportunities, and the root node is always in an online state.

An alternative embodiment provides a method for issuing a vehicle-mounted unit, fig. 1 is a flowchart of a method for issuing a vehicle-mounted unit according to an alternative embodiment, as shown in fig. 1, including:

step S102, identity information is sent to a server through a target vehicle-mounted unit;

step S104, determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification;

step S106, the server verifies the first vehicle identification code sent by the target vehicle-mounted unit;

and step S108, writing the vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code is verified.

According to the present invention, a method for issuing an on-board unit includes: a primary release process: sending identity information to a server through a target vehicle-mounted unit; determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification; and (3) a secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server; and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification. The primary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the server, and the secondary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the operator equipment without manual operation in the issuing process, so that the technical problem of low issuing efficiency of the vehicle-mounted unit in the related technology can be solved, and the issuing efficiency of the vehicle-mounted unit is improved.

It should be noted that steps S102 to S104 belong to the primary distribution process, and steps S106 to S108 belong to the secondary distribution process.

In the above embodiment, there may be a plurality of servers, and in the case where the server is a root node in the blockchain system, the blockchain system may include a plurality of root nodes. The IP addresses of a plurality of root nodes are pre-stored in the target vehicle-mounted unit, and in the one-time issuing process, the target vehicle-mounted unit randomly selects one IP address from the stored IP addresses and initiates the one-time issuing process to the root node corresponding to the IP address.

The identity information comprises a digital signature obtained by signing the authentication code of the target vehicle-mounted unit through a first private key; the first public key and the first private key are pairing keys generated by the target vehicle-mounted unit, and the first public key is used for decrypting the digital signature; the first vehicle identification code is used for identifying the vehicle where the target vehicle-mounted unit is located.

As an alternative embodiment, the target on-board unit includes a security module and a communication module. After the target vehicle-mounted unit is powered on and networked, the security module is used for automatically generating a first public key and a first private key, and the communication module is used for sending the first public key to the server. The network address (IP) of the server is stored in the target in-vehicle unit in advance, and for example, but not limited to, the IP address of the server is written in the target in-vehicle unit when the target in-vehicle unit is shipped.

In the embodiment, the target vehicle-mounted unit automatically generates the key pair, and the server verifies the validity of the first public key in the key pair, so that the issuing efficiency of the target vehicle-mounted unit is improved.

It should be noted that, as an alternative embodiment, the server receives, in advance, information related to the target on-board unit sent by the operator device, including but not limited to an authentication code of the target on-board unit (for example, an authentication code including a device code, a manufacturer name, and a device model), determines the received manufacturer name as the first information and stores the first information, and determines the received device model as the second information and stores the second information. Therefore, in the one-time issuing process, the server can search the pre-stored first information and the pre-stored second information corresponding to the device codes according to the decrypted device codes, and perform information matching to complete the identity verification of the target vehicle-mounted unit in the one-time issuing process.

Alternatively, the authentication code includes, but is not limited to, other forms of authentication codes.

The device code includes, but is not limited to, a device Number (SN) Number of the target on-board unit, and the SN Number is used to uniquely identify the on-board unit.

Optionally, the server is a root node in a blockchain system, wherein before the first vehicle identification code sent by the target on-board unit is verified by the server, the method further includes: reading the first vehicle identification code from the vehicle through the target on-board unit, and sending the first vehicle identification code and the device code of the target on-board unit to the server; searching a second vehicle identification code which is stored in advance and corresponds to the equipment code according to the equipment code through the server; and if the first vehicle identification code is consistent with the second vehicle identification code, determining that the first vehicle identification code is verified through the server, and sending a writing instruction to the target on-board unit through a processing node in the block chain system, wherein the writing instruction is used for instructing to write the first vehicle identification code or the second vehicle identification code into a safety module of the target on-board unit.

The Vehicle Identification code is also called a Vehicle Identification Number (Vehicle Identification Number) and is used for identifying a Vehicle. In the above embodiment, in the process of secondary issuing of the target on-board unit, the server verifies the vehicle identification code received from the target on-board unit first, and after the verification is passed, the security of the issued target on-board unit is further improved.

Optionally, the method further comprises: acquiring the vehicle identification codes written in the whole nodes through the server; comparing, by the server, the written vehicle identification code with the second vehicle identification code, and in the event of a match, determining that the written vehicle identification code passes verification; sending a first notification message to the operator device through the processing node, wherein the first notification message is used for indicating that the vehicle identification code written in the target vehicle-mounted unit passes verification; writing, by the operator device, the vehicle information to the target on-board unit in response to the first notification message.

After the vehicle identification code is written into the target vehicle-mounted unit, in order to avoid tampering of the vehicle identification code written into the target vehicle-mounted unit or replacement of the identification target vehicle-mounted unit, the vehicle identification code written into the target vehicle-mounted unit is verified through the server, and after the verification is passed, the operator equipment is informed to write the vehicle information into the target vehicle-mounted unit, so that the safety of the issuing process is improved.

As an optional implementation manner, the second notification message is further used to instruct to write an operator name corresponding to the operator device into the target vehicle-mounted unit. Wherein the target function permission comprises at least one of: auxiliary positioning authority, signal monitoring authority, signal acquisition authority, data transfer authority and instruction decision authority.

The auxiliary positioning authority includes, but is not limited to, the target vehicle-mounted unit assisting other devices (including, but not limited to, a vehicle-mounted unit, a roadside unit) in positioning and the authority for positioning other devices, for example, the vehicle-mounted unit may position itself through the target vehicle-mounted unit having the auxiliary positioning authority, and the target vehicle-mounted unit having the auxiliary positioning authority may position other devices to obtain corresponding location information; the signal monitoring authority includes but is not limited to the authority for detecting the quality and the existence of abnormality of peripheral signals (including but not limited to signals sent by an on-board unit, signals sent by a peripheral road side unit and the like); the signal acquisition authority includes but is not limited to the authority of acquiring (or monitoring) the peripheral signals; data transfer rights include, but are not limited to, the right to forward received and/or collected signals to other devices; the command decision authority includes but is not limited to authority for providing a driving strategy for the vehicle according to the road condition information.

Based on the above embodiment, after verifying the target onboard unit at one root node of the plurality of root nodes and determining that the first public key is legal, synchronizing a message for indicating that the first public key of the target onboard unit is legal to other root nodes and all full nodes in the block chain system, thereby notifying other root nodes and all nodes that the first public key of the target onboard unit is legal.

In the above embodiment, the target on-board unit may automatically generate multiple key pairs, where each key pair has different application access rights, and in the event that one of the key pairs fails, the other key pairs may continue to be used. Optionally, the plurality of key pairs may include, but are not limited to, a master key pair, a maintenance key pair, a consumption key pair, and an external authentication key pair (including, but not limited to, the first public key and the first private key in the above embodiments), wherein the master key pair has application access rights including creation of data in a directory of the target on-board unit, the maintenance key pair has application access rights including maintenance of the directory, and the consumption key pair has rights including application in a cash consumption process flow.

In the above-described embodiment, in the secondary issuance process, the Electronic controller Unit (Electronic Control Unit, abbreviated as ECU) of the vehicle is also verified by the target on-board Unit, and the Electronic controller Unit is verified by the server. As an alternative embodiment, the target on-board unit and the electronic controller unit, and the server and the electronic controller unit may be authenticated in both directions.

And under the condition that the target vehicle-mounted unit passes the verification of the electronic controller unit in the vehicle and the server passes the verification of the electronic controller unit, informing the operator equipment to write the target function authority into the target vehicle-mounted unit, thereby completing the secondary issuing process of the target vehicle-mounted unit.

For the target on-board unit that completes the secondary distribution process, it may be placed into service after activation.

The electronic controller unit may include a second security module, and the second security module stores therein a fifth public key and a fifth private key that are paired. The target vehicle-mounted unit acquires a fifth public key randomly generated by the second security module, encrypts a third public key in a pairing key generated by the security module of the target vehicle-mounted unit and a vehicle identification code reading instruction by using the fifth public key to obtain first data, and sends the first data to the second security module in the electronic control unit; the second security module decrypts the first data by using a fifth private key paired with the fifth public key to obtain a third public key and a vehicle identification code reading instruction, encrypts the vehicle identification code (i.e., the third vehicle identification code in the above embodiment) stored in the second security module by using the third public key in response to the vehicle identification code reading instruction to obtain third identification code information, and sends the third identification code information to the target vehicle-mounted unit. And the target vehicle-mounted unit decrypts the third identification code information by using a third private key matched with the third public key, compares the decrypted vehicle identification code with the vehicle identification code stored by the target vehicle-mounted unit, determines that the electronic controller unit passes the verification if the vehicle identification code is consistent with the vehicle identification code stored by the target vehicle-mounted unit, and determines that the electronic controller unit does not pass the verification if the vehicle identification code is inconsistent with the vehicle identification code stored by the target vehicle-mounted unit. The target on-board unit also sends the verification result to the server.

And under the condition that the target vehicle-mounted unit determines that the electronic control unit is not verified, the server determines that the target vehicle-mounted unit is a distrusted node according to the received verification result. In the case that the server is the root node in the blockchain system, the server writes the received verification result into the block of the blockchain and synchronizes to other root nodes and the full node in the blockchain system.

In the above embodiment, the data transmission between the electronic controller unit and the server may be performed by the target on-board unit. The server acquires a sixth public key randomly generated by the second security module, encrypts a fourth public key in a pairing key randomly generated by the server and a vehicle identification code reading instruction by using the sixth public key to obtain encrypted data, adds a target identifier in the encrypted data to obtain second data, and sends the second data to a target vehicle-mounted unit; and after the target vehicle-mounted unit receives the second data, determining to transmit the second data to the electronic controller unit according to the target identification. The second security module in the electronic control unit decrypts the second data by using a sixth private key paired with the sixth public key to obtain a fourth public key and a vehicle identification code reading instruction, encrypts the vehicle identification code (i.e., the third vehicle identification code in the above embodiment) stored in the second security module by using the seventh public key in response to the vehicle identification code reading instruction to obtain fourth identification code information, and sends the fourth identification code information to the server. And the server decrypts the fourth identification code information by using a fourth private key matched with the fourth public key, compares the decrypted vehicle identification code with a second vehicle identification code stored in advance, determines that the electronic controller unit passes the verification if the vehicle identification code is consistent with the second vehicle identification code, and determines that the vehicle identification code does not pass the verification if the vehicle identification code is inconsistent with the second vehicle identification code.

And under the condition that the server is the root node in the blockchain system, the server writes the verification result into the block of the blockchain and synchronizes the verification result to other root nodes and all nodes in the blockchain system.

Optionally, after the secondary issuing process is completed, determining, by the server, that the target on-board unit has a legal right, wherein the method further includes: acquiring vehicle-mounted unit identification information stored in the target vehicle-mounted unit through monitoring equipment; identifying a first license plate number and first appearance information of a vehicle in which the target vehicle-mounted unit is located through identification equipment; acquiring the identification information of the vehicle-mounted unit, the first license plate number and the first appearance information through the server; inquiring a second license plate number and second appearance information which are stored in advance and correspond to the identification information of the vehicle-mounted unit through the server; determining to maintain the legal authority of the target vehicle-mounted unit under the condition that the first license plate number is consistent with the second license plate number and the first appearance information is consistent with the second appearance information, and storing first information for indicating to maintain the legal authority of the target vehicle-mounted unit; and under the condition that the first license plate number is inconsistent with the second license plate number or the first appearance information is inconsistent with the second appearance information, determining to cancel the legal authority of the target vehicle-mounted unit, and storing second information for indicating to cancel the legal authority of the target vehicle-mounted unit.

It should be noted that the monitoring device may be a device installed at a traffic inspection point or a roadside unit, and the recognition device may be a license plate device recognizer. The monitoring device is configured to acquire on-board unit identification information (including but not limited to an on-board unit ID) in a currently-passing target on-board unit, and the identification device is configured to capture a vehicle image and identify a license plate number and vehicle information (i.e., first appearance information in the above embodiment, including but not limited to a vehicle type, a number of axles, a color of the vehicle, and the like) of the vehicle. As an alternative embodiment, the monitoring device and the identification device are arranged at the same position, so that the monitoring and identification of the same vehicle currently passing are realized.

The server verifies the license plate number and the vehicle information according to the received information, and stores a verification result in the block chain. And verifying by comparing whether the received first license plate number is consistent with a pre-stored second license plate number and whether the received first appearance information is consistent with the pre-stored second appearance information, storing a verification result (the verification result is used for indicating to maintain the legal authority of the target vehicle-mounted unit or cancel the legal authority) into the block chain, and synchronizing the verification result to other root nodes and all nodes in the block chain system. Optionally, under the condition that the legal authority of the target vehicle-mounted unit is determined to be maintained, storing first information for indicating that the legal authority of the target vehicle-mounted unit is maintained, and synchronizing the first information to other root nodes and all nodes; and under the condition that the legal authority of the target vehicle-mounted unit is determined to be cancelled, determining that the target vehicle-mounted unit is detached, storing second information for indicating that the legal authority of the target vehicle-mounted unit is cancelled, and synchronizing the second information to other root nodes and all nodes.

It should be noted that the issuing method of the on-board unit in the above embodiment may be applied to a vehicle-road cooperation system.

The following explains the issuing method of the on-board unit in the above embodiment with an example, but is not intended to limit the technical solution of the embodiment of the present invention.

Taking an issuing target vehicle-mounted unit as an example, the target vehicle-mounted unit internally comprises a security module, a data processing module and a communication module, wherein,

after the target vehicle-mounted unit leaves a factory, after the target vehicle-mounted unit is powered on and networked, a security module in the target vehicle-mounted unit generates an asymmetric algorithm key pair (namely, a key pair in the above embodiment, which includes a first public key and a first private key), the first private key cannot be derived from the security module, and the first public key corresponds to an equipment account Identifier (ID) of the target vehicle-mounted unit; alternatively, the first public key may be derived from the security module and sent to the root node in the blockchain system through the communication module.

Taking the example that the device code in the above embodiment includes a device Sequence (SN) number, the security module of the target on-board unit stores the SN number, the manufacturer name, the device model, and the IP address of the root node in the block chain system, where the IP address is written into the target on-board unit when the target on-board unit leaves the factory.

According to another embodiment of the present invention, there is provided an issuing method of an in-vehicle unit, the method including a primary issuing process and a secondary issuing process, wherein, in a case where an authentication code includes device key parameter information,

in a one-time distribution process:

the target vehicle-mounted unit generates a first public key and a first private key through an internal security module; optionally, the security module has a key pair generation authority and a generation number threshold value stored in advance, and when the number of times of generating the key pair exceeds the number threshold value, the key pair cannot be regenerated; the first public key is paired with a first private key;

the target vehicle-mounted unit may access a root node (a part of a root node IP address pre-stored when the device leaves a factory) in the vehicle-road cooperative device management blockchain system (i.e., the blockchain system in the above embodiment) through the internet of vehicles or the mobile network, sign device key parameter information (i.e., the device information in the above embodiment) using a first private key to obtain a digital signature, where the device parameter key information includes a device SN number, a manufacturer name, a device model, and other basic information, encrypt the device key parameter information and the digital signature using a second public key to obtain identity information of the target vehicle-mounted unit, and send the obtained identity information to the root node in the vehicle-road cooperative device management blockchain system. And the second public key is the public key of the root node. Alternatively, the target onboard unit may request the second public key by sending a request to the root node, or write the second public key into the security module of the target onboard unit in advance when the target onboard unit leaves the factory.

As an optional implementation manner, the target vehicle-mounted unit generates digest information on the device key parameter information by using a Hash (Hash) function, and then encrypts the digest information by using a first private key, so as to obtain a digital signature.

And if the decryption is successful, the first public key is continuously used for verifying and signing the decrypted digital signature, so that the legality of the first public key is confirmed.

Optionally, the root node reads a manufacturer name and an equipment type which are stored in the block chain in advance and correspond to the equipment SN number of the target vehicle-mounted unit, matches the read information with the information obtained through decryption, and if the information is consistent with the information obtained through decryption, the identity of the target vehicle-mounted unit is determined to be legal; the root node sends the first location information to the target on-board unit and the operator device, records a first public key, an IP address and a timestamp of the target on-board unit in a new block of the blockchain, and synchronizes the new block to a full node in the blockchain system. The manufacturer name and the equipment type corresponding to the equipment SN number of the target vehicle-mounted unit, which are stored in the block chain in advance, are uploaded to the root node in advance by the operator equipment of the target vehicle-mounted unit.

The blockchain system further comprises a processing node (including but not limited to an intelligent contract node), and after a one-time issuing process is completed, the root node triggers the processing node to execute a push message (including information such as a first public key of a target vehicle-mounted unit) to an operator device to which the target vehicle-mounted unit belongs.

And (3) secondary release process:

a target vehicle-mounted unit reads a first vehicle identification code of a vehicle in which the target vehicle-mounted unit is located through a Controller Area Network (CAN) bus, for example, reads a vehicle identification code stored in an ECU of the vehicle; the target vehicle-mounted unit sends the first vehicle identification code and the equipment code of the target vehicle-mounted unit to the server; searching a second vehicle identification code which is stored in advance and corresponds to the equipment code according to the equipment code through the server; and under the condition that the first vehicle identification code is consistent with the second vehicle identification code, determining that the first vehicle identification code is verified through the server, and sending a writing instruction to the target vehicle-mounted unit through a processing node in the block chain system, wherein the writing instruction is used for instructing to write the second vehicle identification code into a safety module of the target vehicle-mounted unit.

Further, the target vehicle-mounted unit reads the written vehicle identification code from a Chip Operating System (COS) in the security module, encrypts the read vehicle identification code by using a second public key to obtain encrypted information, and sends the encrypted information to the server; and the server decrypts the encrypted information by using the second private key to obtain a decrypted vehicle identification code, matches the decrypted vehicle identification code with a prestored second vehicle identification code, and if the decrypted vehicle identification code is consistent with the prestored second vehicle identification code, determines that the second vehicle identification code is written completely.

After determining that the second vehicle identification code is written, the server sends a first notification message to the operator device, so as to notify the operator device to write vehicle information to the target vehicle-mounted unit, wherein the vehicle information comprises but is not limited to information such as license plate number, vehicle type, axle number and the like of the vehicle.

Optionally, the electronic controller unit of the vehicle in which the target on-board unit is located is further connected to a second safety module in the vehicle, or the second safety module is integrated inside the electronic controller unit. Wherein the second security module may also be mounted on the vehicle CAN bus for authenticated access to vehicle-mounted devices (including but not limited to target on-board units) behind the vehicle, said second security module may also be provided with mechanical tamper protection to prevent the second security module from being illegally detached.

When a safety module in the target vehicle-mounted unit reads and verifies a vehicle identification code (namely, the third identification code in the above embodiment) stored in the electronic controller unit at the time of vehicle starting or at regular time, the target vehicle-mounted unit acquires a fifth public key generated by the second safety module from the second safety module, and sends the third public key and a VIN code reading instruction encrypted by using the fifth public key to the second safety module; the second safety unit decrypts the received data to obtain a third public key and a VIN code reading instruction, reads a vehicle identification code (namely, the third vehicle identification code in the embodiment) of a vehicle machine (namely, a vehicle) stored in the second safety unit, encrypts the read vehicle identification code by using the third public key and then sends the encrypted vehicle identification code to the target vehicle-mounted unit; the safety module in the target vehicle-mounted unit decrypts the received data by using a third private key matched with a third public key, and compares a vehicle identification code obtained by decryption with a vehicle identification code stored by the safety module, wherein under the condition of inconsistency, the target vehicle-mounted unit sends a verification result for indicating that the electronic controller unit fails to verify to a root node in the vehicle-road cooperative block chain system; and the root node determines that the target vehicle-mounted unit is a message loss node and synchronously informs other nodes in the block chain system.

Optionally, the root node in the vehicle-road cooperative block chain system may also perform data transparent transmission through the target vehicle-mounted unit, so as to realize data transmission through the CAN bus and the second security module. The root node in the vehicle-road cooperative block chain system acquires a sixth public key from the second safety module; a root node in the vehicle-road cooperative block chain system sends a fourth public key and a VIN code reading instruction encrypted by using a sixth public key to the second safety module; the second safety unit decrypts the received data to obtain a fourth public key and a VIN code reading instruction, reads the VIN code of the vehicle machine, encrypts the VIN code by using the fourth public key and then sends the VIN code to a root node in the vehicle-road cooperative block chain system; a root node in the vehicle-road cooperative block chain system decrypts a vehicle identification code in a plaintext by using a fourth private key matched with a fourth public key, matches the vehicle identification code with a second vehicle identification code pre-stored in a block chain to verify the received vehicle identification code, and writes a verification result into a block of the block chain, wherein if the verification is passed, it is determined that a target vehicle-mounted unit in a vehicle is not detached; and if the verification is not passed, determining that the target vehicle-mounted unit is detached.

And if the verification is passed, the operator equipment writes the target function authority into the target vehicle-mounted unit according to the requirement.

Optionally, the monitoring device at the traffic inspection point may also complete positioning of the current vehicle, acquire position information, acquire on-board unit identification information of the vehicle, and simultaneously capture the current license plate and acquire vehicle information through the license plate identifier by matching among the multiple roadside units or on-board units. The method comprises the steps of uploading position information, vehicle-mounted unit identification information, license plate numbers and vehicle information of related vehicles to a block chain system, matching the received license plate numbers and the vehicle information with prestored license plate numbers and vehicle information by a root node in the block chain system according to the vehicle-mounted unit identification information, and cancelling legal authority for account IDs of vehicle-mounted units of unmatched vehicles at will, recording the legal authority into a new block, and synchronizing the legal authority to all other nodes.

It should be noted that, in the above embodiment, the target vehicle-mounted unit may be bound through a mobile terminal or other intelligent terminals; the target vehicle-mounted unit can upload information such as vehicle owner identity information, vehicle information pictures, driving license pictures and corresponding identification information to the blockchain system, and nodes (such as root nodes) of the blockchain system authenticate, extract and audit related data.

Alternatively, the issuing process for the target in-vehicle unit may be initiated by operating the mobile terminal bound to the target in-vehicle unit.

Optionally, before the user activates the on-board unit, the SN number of the purchased on-board unit and the initial key data of the on-board unit may be applied by using the driving license and the vehicle owner identity information, and written into the block chain system.

By the embodiment, efficient and automatic remote autonomous issuing of the vehicle-mounted unit is realized; the vehicle identification code is written into the safety module and verified in the issuing process, so that the vehicle-mounted unit is effectively prevented from being counterfeited, and the safety is improved; when the vehicle is started or the VIN code of the vehicle is read at regular time and verified, the disassembly condition of the vehicle-mounted unit is detected.

Through the above description of the embodiments, those skilled in the art can clearly understand that the method according to the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention or portions thereof contributing to the prior art may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (which may be a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present invention.

According to another embodiment of the present invention, there is provided an issuing system of an on-board unit, which is used for implementing the above-mentioned embodiments and preferred embodiments, and the description thereof is omitted. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.

Fig. 2 is a schematic diagram of a publishing system of on-board units according to an alternative embodiment, as shown in fig. 2, the system comprising: target on-board unit 22, server 24 and operator device 26,

the target on-board unit 22 is used for sending identity information to the server 24 in a distribution process;

the server 24 is configured to verify the identity information, and determine that the identity of the target vehicle-mounted unit is legal when the identity information is verified;

the server 24 is further configured to verify the first vehicle identification code sent by the target on-board unit 22 in the secondary issuing process;

the operator device 26 is configured to write vehicle information of the vehicle to the target on-board unit 22 if the server 24 verifies that the first vehicle identification code passes.

By the invention, the primary issuing process comprises the following steps: sending identity information to a server through a target vehicle-mounted unit; determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification; and (3) secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server; and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification. The primary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the server, and the secondary issuing process of the target vehicle-mounted unit can be automatically completed through the interaction between the target vehicle-mounted unit and the operator equipment without manual operation in the issuing process, so that the technical problem of low issuing efficiency of the vehicle-mounted unit in the related technology can be solved, and the issuing efficiency of the vehicle-mounted unit is improved.

Optionally, the server is further configured to: decrypting the identity information by using a second private key paired with the second public key to obtain the authentication code and the digital signature; and under the condition that the digital signature is decrypted by using a first public key to obtain the authentication code, determining that the first public key is legal, wherein the first public key and the first private key are pairing keys generated by the target vehicle-mounted unit.

It should be noted that, as an alternative embodiment, the server 24 and the operator device 26 may be two independent devices; alternatively, the server 24 and the carrier device 26 may be one device, for example, the server 24 and the carrier device 26 are integrated in one device in the blockchain system, so that the one device performs each operation performed by the server 24 and the carrier device 26 in the above embodiments.

Optionally, the server is further configured to: acquiring vehicle identification codes written in the whole nodes; comparing the written vehicle identification code with the second vehicle identification code, and determining that the written vehicle identification code passes verification under the condition of consistency; the processing node is further configured to send a first notification message to the operator device when the written vehicle identification code passes the verification, where the first notification message is used to indicate that the vehicle identification code written in the target on-board unit passes the verification; the operator device is further configured to write the vehicle information to the target on-board unit.

Optionally, the target on-board unit is further configured to: receiving third vehicle identification code information sent by the electronic controller unit, wherein the third vehicle identification code information is obtained by encrypting a third vehicle identification code stored in the electronic controller unit by using a third public key of the target vehicle-mounted unit through the electronic controller unit; decrypting the third vehicle identification code information by using a third private key paired with the third public key to obtain a third vehicle identification code; determining that the electronic controller unit passes verification if the third vehicle identification code is consistent with the vehicle identification code written in the target on-board unit; wherein the target on-board unit is further configured to: under the condition that a target instruction is received, the target instruction is transmitted to the electronic controller unit in a transparent mode, wherein the target instruction comprises a target identification, and the target identification is used for indicating the target vehicle-mounted unit to transmit the target instruction to the electronic controller unit in a transparent mode; the electronic controller unit is further configured to: responding to the target instruction, and sending fourth vehicle identification code information to the server, wherein the fourth vehicle identification code information is obtained by encrypting the third vehicle identification code by using a fourth public key of the server through the electronic controller unit; the server is further configured to decrypt the fourth vehicle identification code information by using a fourth private key paired with the fourth public key to obtain the third vehicle identification code; determining that the electronic controller unit is validated if the third vehicle identification code matches the second vehicle identification code pre-stored in the server.

An embodiment of the present invention further provides a storage medium including a stored program, wherein the program executes any one of the methods described above.

Alternatively, in the present embodiment, the storage medium may be configured to store program codes for performing the following steps:

s1, identity information is sent to the server through the target vehicle-mounted unit;

s2, determining that the identity of the target vehicle-mounted unit is legal under the condition that the server verifies the identity information;

s3, the server verifies the first vehicle identification code sent by the target vehicle-mounted unit;

and S4, writing the vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code is verified.

Optionally, in this embodiment, the storage medium may include, but is not limited to: various media capable of storing program codes, such as a usb disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic disk, or an optical disk.

Optionally, the specific examples in this embodiment may refer to the examples described in the above embodiments and optional implementation manners, and this embodiment is not described herein again.

Embodiments of the present invention also provide an electronic device comprising a memory having a computer program stored therein and a processor arranged to run the computer program to perform the steps of any of the above method embodiments.

Optionally, the electronic apparatus may further include a transmission device and an input/output device, wherein the transmission device is connected to the processor, and the input/output device is connected to the processor.

Optionally, in this embodiment, the processor may be configured to execute the following steps by a computer program:

s2, determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification;

s3, verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server;

Fig. 3 is a schematic structural diagram of an alternative electronic device according to an alternative embodiment. Alternatively, it can be understood by those skilled in the art that the structure shown in fig. 3 is only an illustration, and the electronic device may also be a terminal device such as a smart phone (e.g., an Android phone, an iOS phone, etc.), a tablet computer, a palm computer, a Mobile Internet Devices (MID), a PAD, a desktop computer, a server, etc. Fig. 3 is a diagram illustrating the structure of the electronic device. For example, the electronic device may also include more or fewer components (e.g., network interfaces, etc.) than shown in FIG. 3, or have a different configuration than shown in FIG. 3.

The memory 1002 may be used to store software programs and modules, such as program instructions/modules corresponding to the issuing method and system of the on-board unit in the alternative embodiment, and the processor 1004 executes various functional applications and data processing by running the software programs and modules stored in the memory 1002, that is, the issuing method of the on-board unit described above is implemented. The memory 1002 may include high-speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some examples, the memory 1002 may further include memory located remotely from the processor 1004, which may be connected to the terminal over a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof. As an example, the memory 1002 may include, but is not limited to, a program module for executing the issuing method of the on-board unit. In addition, other module units may also be included, but are not limited to these, and are not described in detail in this example.

Optionally, the transmission device 1006 is used for receiving or transmitting data via a network. Examples of the network may include a wired network and a wireless network. In one example, the transport device 1006 includes a Network adapter (NIC) that can be connected to a router via a Network cable to communicate with the internet or a local area Network. In one example, the transmission device 1006 is a Radio Frequency (RF) module, which is used for communicating with the internet in a wireless manner.

In addition, the electronic device further includes: a display 1008 for displaying a screen; and a connection bus 1010 for connecting the respective module parts in the above-described electronic apparatus.

It will be apparent to those skilled in the art that the modules or steps of the present invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of multiple computing devices, and alternatively, they may be implemented by program code executable by a computing device, such that they may be stored in a storage device and executed by a computing device, and in some cases, the steps shown or described may be performed in an order different than that described herein, or they may be separately fabricated into individual integrated circuit modules, or multiple ones of them may be fabricated into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.

The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the principle of the present invention should be included in the protection scope of the present invention.

Claims

1. A method for issuing an on-board unit, comprising:

a primary release process: sending identity information to a server through a target vehicle-mounted unit;

determining that the identity of the target vehicle-mounted unit is legal under the condition that the server passes the identity information verification;

and (3) secondary release process: verifying the first vehicle identification code sent by the target vehicle-mounted unit through the server;

and writing vehicle information of the vehicle into the target vehicle-mounted unit through operator equipment under the condition that the first vehicle identification code passes verification.

2. The method for issuing on-board units according to claim 1, wherein the sending identity information to the server by the target on-board unit comprises:

signing the authentication code of the target vehicle-mounted unit by using a first private key through the target vehicle-mounted unit to obtain a digital signature;

encrypting the authentication code and the digital signature by using a second public key through the target vehicle-mounted unit to obtain the identity information, wherein the second public key is a public key of the server;

and sending the identity information to the server through the target vehicle-mounted unit.

3. The method of claim 2, wherein after the sending of the identity information to the server by the target on-board unit, the method further comprises:

decrypting, by the server, the identity information using a second private key paired with the second public key to obtain the authentication code and the digital signature;

and determining that the first public key is legal under the condition that the server decrypts the digital signature by using the first public key to obtain the authentication code, wherein the first public key and the first private key are pairing keys generated by the target vehicle-mounted unit.

4. The method of issuing a vehicle-mounted unit according to claim 3, wherein said certification code includes a device code, a manufacturer name and a device model number of said target vehicle-mounted unit, wherein after said determining that the first public key is legal, said method further comprises:

searching first information and second information which are stored in advance and correspond to the equipment codes through the server;

and determining that the identity of the target vehicle-mounted unit is legal under the condition that the name of the manufacturer is consistent with the first information and the model of the equipment is consistent with the second information.

5. The method of claim 1, wherein the server is a root node in a blockchain system, and wherein the method further comprises, before the verifying the first vehicle identification code sent by the target on-board unit by the server:

reading the first vehicle identification code from the vehicle through the target on-board unit, and sending the first vehicle identification code and the device code of the target on-board unit to the server;

searching a second vehicle identification code which is stored in advance and corresponds to the equipment code according to the equipment code through the server;

and under the condition that the first vehicle identification code is consistent with the second vehicle identification code, determining that the first vehicle identification code is verified through the server, and sending a writing instruction to the target vehicle-mounted unit through a processing node in the block chain system, wherein the writing instruction is used for instructing to write the first vehicle identification code or the second vehicle identification code into a safety module of the target vehicle-mounted unit.

6. The method of issuing on-board units according to claim 5, characterized in that the method further comprises:

acquiring a vehicle identification code written in the safety module through the server;

comparing the written vehicle identification code with the second vehicle identification code through the server, and determining that the written vehicle identification code passes verification under the condition of consistency;

sending a first notification message to the operator device through the processing node, wherein the first notification message is used for indicating that the vehicle identification code written in the target vehicle-mounted unit passes verification;

writing, by the operator device, the vehicle information to the target on-board unit in response to the first notification message.

7. The method of issuing on-board units according to claim 6, characterized in that the method further comprises:

verifying, by the target on-board unit, an electronic controller unit in the vehicle and verifying, by the server, the electronic controller unit;

under the condition that the target vehicle-mounted unit passes the verification of an electronic controller unit in the vehicle and the electronic controller unit passes the verification of the server, sending a second notification message to the operator equipment through the processing node, wherein the second notification message is used for indicating that target function authority is written into the target vehicle-mounted unit so that the target vehicle-mounted unit has the target function indicated by the target function authority;

and responding to the second notification message, writing the target function authority into the target vehicle-mounted unit through the operator equipment so as to complete the secondary issuing process of the target vehicle-mounted unit.

8. A system for issuing an on-board unit, comprising: target on-board units, servers and operator equipment, wherein,

the target vehicle-mounted unit is used for sending identity information to the server in a one-time issuing process;

the server is used for verifying the identity information and determining that the identity of the target vehicle-mounted unit is legal under the condition that the identity information is verified;

the server is also used for verifying the first vehicle identification code sent by the target vehicle-mounted unit in the secondary issuing process;

the operator device is configured to write vehicle information of the vehicle to the target on-board unit when the server verifies that the first vehicle identification code passes.

9. A storage medium, in which a computer program is stored, wherein the computer program is arranged to perform the method of any of claims 1 to 7 when executed.

10. An electronic device comprising a memory and a processor, characterized in that the memory has stored therein a computer program, the processor being arranged to execute the method of any of claims 1 to 7 by means of the computer program.