CN114675616A - Remote diagnosis control system, method and device and electric automobile - Google Patents
Remote diagnosis control system, method and device and electric automobile Download PDFInfo
- Publication number
- CN114675616A CN114675616A CN202110545009.0A CN202110545009A CN114675616A CN 114675616 A CN114675616 A CN 114675616A CN 202110545009 A CN202110545009 A CN 202110545009A CN 114675616 A CN114675616 A CN 114675616A
- Authority
- CN
- China
- Prior art keywords
- diagnosis
- vehicle
- platform
- remote
- remote diagnosis
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B23/00—Testing or monitoring of control systems or parts thereof
- G05B23/02—Electric testing or monitoring
- G05B23/0205—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults
- G05B23/0208—Electric testing or monitoring by means of a monitoring system capable of detecting and responding to faults characterized by the configuration of the monitoring system
- G05B23/0213—Modular or universal configuration of the monitoring system, e.g. monitoring system having modules that may be combined to build monitoring program; monitoring system that can be applied to legacy systems; adaptable monitoring system; using different communication protocols
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B2219/00—Program-control systems
- G05B2219/20—Pc systems
- G05B2219/24—Pc safety
- G05B2219/24065—Real time diagnostics
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Automation & Control Theory (AREA)
- Small-Scale Networks (AREA)
- Selective Calling Equipment (AREA)
Abstract
The invention provides a remote diagnosis control system, a method and a device thereof and an electric automobile, relating to the technical field of electric automobiles, wherein the remote diagnosis control system comprises: a remote diagnostic platform; the system comprises a vehicle-mounted networking terminal, a gateway and at least one electronic controller to be diagnosed, wherein the vehicle-mounted networking terminal and the gateway are arranged on the electric automobile; the vehicle-mounted networking terminal is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, wherein the diagnosis instruction comprises a diagnosis message; sending an activation authentication request to the gateway, and sending a diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway; and the remote diagnosis platform is used for sending a diagnosis instruction to the vehicle-mounted networking terminal after the bidirectional authentication with the vehicle-mounted networking terminal is passed, wherein the diagnosis instruction comprises a diagnosis message. The scheme of the invention realizes the diagnosis of a plurality of electronic controllers of the whole vehicle based on the vehicle-mounted networking terminal, and strengthens the safety certification between the vehicle-mounted networking terminal and the remote diagnosis platform and the gateway.
Description
Technical Field
The invention belongs to the technical field of electric automobiles, and particularly relates to a remote diagnosis control system, method and device and an electric automobile.
Background
In order to solve the problem brought to the maintenance industry by the rapid development of the automobile industry, the remote diagnosis function is a necessary way for the development and planning of the intelligent network-connected automobile. The remote diagnosis function is a function of remotely diagnosing the vehicle state, and means that the remote wireless diagnosis platform can be used for monitoring vehicle fault information in real time through a remote diagnosis technology, eliminating potential risks such as faults and security holes existing in the vehicle in time, effectively reducing the vehicle recall rate and the customer complaint rate, reducing the updating and after-sales cost for manufacturers, and continuously improving the user experience.
However, the remote diagnosis function commonly available in the market is from a remote diagnosis platform to an intelligent terminal, generally without intervention of a third-party security device, and is easy to be invaded by hackers to intercept or tamper specific data, thereby causing a vehicle security accident.
Disclosure of Invention
The embodiment of the invention aims to provide a remote diagnosis control system, a remote diagnosis control method, a remote diagnosis control device and an electric automobile, so that the problem of potential safety hazard of a remote diagnosis function in the prior art is solved.
In order to achieve the above object, an embodiment of the present invention provides a remote diagnosis control system, including: a remote diagnostic platform; the system comprises a vehicle-mounted networking terminal, a gateway and at least one electronic controller to be diagnosed, wherein the vehicle-mounted networking terminal and the gateway are arranged on the electric automobile;
the vehicle-mounted networking terminal is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, wherein the diagnosis instruction comprises a diagnosis message;
sending an activation authentication request to the gateway, and sending the diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway;
and the remote diagnosis platform is used for sending the diagnosis instruction to the vehicle-mounted internet terminal after the bidirectional authentication with the vehicle-mounted internet terminal is passed, wherein the diagnosis instruction comprises the diagnosis message.
Optionally, the vehicle-mounted internet terminal is further configured to obtain a response message sent by the at least one electronic controller according to the diagnosis message, and send the response message to the remote diagnosis platform.
Optionally, the remote diagnosis platform is further configured to obtain, through the gateway and the vehicle-mounted internet terminal, a response message sent by the at least one electronic controller according to the diagnosis message;
And diagnosing the response message.
Optionally, the vehicle-mounted internet terminal includes: the system comprises a vehicle gauge level communication module, a microprocessor and a safety chip;
the safety chip performs bidirectional authentication with the remote diagnosis platform through the vehicle gauge communication module and the microprocessor;
and the vehicle gauge communication module and the microprocessor are used for transmitting the ciphertext data during the bidirectional authentication after the connection with the remote diagnosis platform is established.
Optionally, the vehicle-scale communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after the bidirectional authentication is passed, where the diagnosis instruction includes the diagnosis message; and
and performing controller local area network message interaction with a vehicle control unit through the microprocessor and the gateway, and judging whether the electric vehicle is in a diagnosis-allowed state or not and whether at least one electronic controller is in a diagnosable range or not.
Optionally, the microprocessor is further configured to send the activation authentication request to the gateway when the electric vehicle is in a diagnosis-enabled state and at least one of the electronic controllers is within a diagnosable range.
Optionally, after acquiring the information of successful activation of the gateway, the microprocessor is further configured to send the diagnostic message acquired by the vehicle-scale communication module to at least one electronic controller through the gateway; and
and sending a connection maintaining message to the gateway at preset time intervals.
Optionally, the microprocessor is further configured to obtain, through the gateway, a response message sent by at least one of the electronic controllers according to the diagnosis message;
sending the response message to the remote diagnosis platform through the vehicle gauge communication module;
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the gateway.
Optionally, the safety chip is configured to generate a first random number after acquiring a random number generation instruction of the vehicle gauge-level communication module through the microprocessor;
encrypting the first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and forwarding the first ciphertext to the remote diagnosis platform through the microprocessor and the vehicle gauge communication module;
decrypting a second ciphertext generated by the remote diagnosis platform forwarded by the microprocessor and the vehicle gauge communication module according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
Performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication passes, forwarding a first signature verification authentication passing result to the remote diagnosis platform through the microprocessor and the vehicle gauge level communication module;
decrypting a third ciphertext of the remote diagnosis platform forwarded by the microprocessor and the vehicle-scale communication module according to a built-in security chip private key and a first decryption algorithm to generate a second random number, and signing a certificate by using the security chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext, and forwarding the fourth ciphertext to the remote diagnosis platform through the microprocessor and the vehicle gauge communication module.
Optionally, the vehicle gauge level communication module is further configured to obtain, by the microprocessor, a first verification authentication failure result, and then disconnect the first verification authentication failure result from the remote diagnosis platform.
Optionally, the vehicle-gauge-level communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after obtaining a second verification result obtained by the remote diagnosis platform according to the fourth ciphertext.
The embodiment of the invention also provides a remote diagnosis control method, which is applied to the vehicle-mounted networking terminal and comprises the following steps:
after the bidirectional authentication with a remote diagnosis platform is passed, acquiring a diagnosis instruction of the remote diagnosis platform, wherein the diagnosis instruction comprises a diagnosis message;
and sending an activation authentication request to a gateway, and sending the diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway.
Optionally, the method further comprises:
and acquiring a response message sent by at least one electronic controller according to the diagnosis message, and sending the response message to the remote diagnosis platform.
Optionally, after the bidirectional authentication with the remote diagnosis platform is passed, before the diagnosis instruction of the remote diagnosis platform is acquired, the method further includes:
and after the connection with the remote diagnosis platform is established, performing bidirectional authentication with the remote diagnosis platform.
Optionally, after establishing a connection with the remote diagnosis platform, performing bidirectional authentication with the remote diagnosis platform, including:
encrypting the generated first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and sending the first ciphertext to the remote diagnosis platform;
Decrypting a second ciphertext generated by the remote diagnosis platform according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication passes, sending a first signature verification authentication passing result to the remote diagnosis platform;
decrypting a third ciphertext of the remote diagnosis platform according to a built-in security chip private key and a first decryption algorithm to generate a second random number, and signing the certificate by using the security chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext and sending the fourth ciphertext to the remote diagnosis platform.
Optionally, after establishing a connection with the remote diagnosis platform, performing bidirectional authentication with the remote diagnosis platform, further comprising:
and after the first signature verification authentication failure result is obtained, disconnecting the remote diagnosis platform from the remote diagnosis platform.
Optionally, after the bidirectional authentication with the remote diagnosis platform is passed and the diagnosis instruction of the remote diagnosis platform is acquired, the method further includes:
And performing controller local area network message interaction with the vehicle controller, and judging whether the electric vehicle is in a diagnosis-allowed state or not and whether at least one electronic controller is in a diagnosable range or not.
Optionally, sending the activation authentication request to the gateway comprises:
sending the activation authentication request to the gateway when the electric vehicle is in a diagnostic enabled state and at least one of the electronic controllers is within a diagnosable range.
Optionally, after acquiring the activation success information of the gateway, the method further includes, after sending the diagnostic message to at least one electronic controller through the gateway, the method further includes:
and sending a connection maintaining message to the gateway at preset time intervals.
Optionally, after obtaining a response message sent by at least one electronic controller according to the diagnosis message and sending the response message to the remote diagnosis platform, the method further includes:
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the gateway.
The embodiment of the invention also provides a remote diagnosis control method, which is applied to a remote diagnosis platform and comprises the following steps:
and after the mutual authentication with the vehicle-mounted networking terminal is passed, sending the diagnosis instruction to the vehicle-mounted networking terminal, wherein the diagnosis instruction comprises a diagnosis message.
Optionally, the method further comprises:
acquiring a response message sent by at least one electronic controller according to the diagnosis message through a gateway and the vehicle-mounted networking terminal;
and diagnosing the response message.
Optionally, after the bidirectional authentication with the vehicle-mounted networking terminal is passed, before the diagnosis instruction is sent to the vehicle-mounted networking terminal, the method further includes:
and after the connection with the vehicle-mounted networking terminal is established, performing bidirectional authentication with the vehicle-mounted networking terminal.
Optionally, after establishing connection with the vehicle-mounted internet connection terminal, performing bidirectional authentication with the vehicle-mounted internet connection terminal, including:
decrypting a first ciphertext of the vehicle-mounted networking terminal according to a built-in platform private key and a first decryption algorithm to generate a first random number, and signing a certificate by using the platform private key to generate first signature information;
encrypting the first signature information according to the first random number and a second encryption algorithm to generate a second ciphertext, and sending the second ciphertext to the vehicle-mounted internet terminal;
after a first signature verification authentication passing result obtained by the vehicle-mounted internet terminal according to the second ciphertext is obtained, encrypting a generated second random number according to a built-in security chip public key and a first encryption algorithm to generate a third ciphertext, and sending the third ciphertext to the vehicle-mounted internet terminal;
Decrypting a fourth ciphertext generated by the vehicle-mounted internet terminal according to the third ciphertext according to the second random number and a second decryption algorithm to obtain second signature information;
performing second signature verification authentication on the second signature information by using the public key of the security chip;
and after the second signature verification authentication is passed, sending a second signature verification authentication passing result to the vehicle-mounted internet terminal.
Optionally, after establishing connection with the vehicle-mounted internet connection terminal, performing bidirectional authentication with the vehicle-mounted internet connection terminal, further comprising:
and after a second signature verification authentication failure result is obtained, disconnecting the vehicle-mounted internet terminal.
An embodiment of the present invention further provides a remote diagnosis control apparatus, including:
the system comprises a first acquisition module, a second acquisition module and a third acquisition module, wherein the first acquisition module is used for acquiring a diagnosis instruction of a remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, and the diagnosis instruction comprises a diagnosis message;
and the first sending module is used for sending an activation authentication request to the gateway and sending the diagnosis message to at least one electronic controller through the gateway after the activation authentication request is obtained and the activation authentication information of the gateway is successfully obtained.
An embodiment of the present invention further provides a remote diagnosis control apparatus, including:
And the second sending module is used for sending the diagnosis instruction to the vehicle-mounted internet terminal after the mutual authentication between the vehicle-mounted internet terminal and the vehicle-mounted internet terminal is passed, wherein the diagnosis instruction comprises a diagnosis message.
The embodiment of the invention also provides an electric automobile which comprises the remote diagnosis control device.
The technical scheme of the invention at least has the following beneficial effects:
in the foregoing aspect, the remote diagnosis control system includes: a remote diagnostic platform; the system comprises a vehicle-mounted networking terminal, a gateway and at least one electronic controller to be diagnosed, wherein the vehicle-mounted networking terminal and the gateway are arranged on the electric automobile; the vehicle-mounted networking terminal is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, wherein the diagnosis instruction comprises a diagnosis message; sending an activation authentication request to the gateway, and sending the diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway; the remote diagnosis platform is used for sending the diagnosis instruction to the vehicle-mounted networking terminal after the bidirectional authentication with the vehicle-mounted networking terminal passes, the diagnosis instruction comprises the diagnosis message, the safety authentication between the vehicle-mounted networking terminal and the remote diagnosis platform and between the vehicle-mounted networking terminal and the gateway is realized, potential risks such as faults and safety holes existing in each electronic controller are eliminated, the stability, the risk protection and the information safety are improved, the vehicle recall rate and the customer complaint rate are effectively reduced, and the updating and after-sales cost is reduced for manufacturers.
Drawings
FIG. 1 is a schematic diagram of a remote diagnostic control system according to an embodiment of the present invention;
FIG. 2 is a flow chart illustrating the mutual authentication of the remote diagnostic control system according to an embodiment of the present invention;
FIG. 3 is a flow chart of a remote diagnosis control method according to an embodiment of the present invention;
FIG. 4 is a second flowchart of a remote diagnosis control method according to an embodiment of the present invention;
FIG. 5 is a schematic diagram of a remote diagnostic control according to an embodiment of the present invention;
fig. 6 is a second schematic diagram of the remote diagnosis control device according to the embodiment of the invention.
Detailed Description
In order to make the technical problems, technical solutions and advantages of the present invention more apparent, the following detailed description is given with reference to the accompanying drawings and specific embodiments.
The embodiment of the invention provides a remote diagnosis control system, a method and a device and an electric automobile, aiming at the problem of potential safety hazard in a remote diagnosis function in the prior art.
As shown in fig. 1, an embodiment of the present invention provides a remote diagnosis control system including: a remote diagnostic platform; TBOX (vehicle internet access terminal), GW (gateway) and at least one ECU (electronic controller) to be diagnosed on the electric vehicle;
the TBOX is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform is passed, wherein the diagnosis instruction comprises a diagnosis message;
Sending an activation authentication request to the GW, and sending the diagnosis message to at least one ECU through the GW after acquiring activation success information of the GW;
and the remote diagnosis platform is used for sending the diagnosis instruction to the TBOX after the mutual authentication with the TBOX passes, wherein the diagnosis instruction comprises the diagnosis message.
The embodiment of the invention comprises a remote diagnosis platform; TBOX, gateway and at least one ECU to be diagnosed on the electric vehicle; the TBOX is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform is passed, wherein the diagnosis instruction comprises a diagnosis message; sending an activation authentication request to the GW, and sending the diagnosis message to at least one ECU through the GW after acquiring activation success information of the GW; the remote diagnosis platform is used for sending the diagnosis instruction to the TBOX after the two-way authentication of the vehicle TBOX passes, the diagnosis instruction comprises the diagnosis message, so that the safety authentication between the TBOX and the remote diagnosis platform and between the TBOX and the GW is realized, the potential risks of faults, safety holes and the like of each electronic controller are eliminated, the stability, the risk protection and the information safety are improved, the vehicle recall rate and the customer complaint rate are effectively reduced, and the updating and after-sale cost is reduced for manufacturers.
Optionally, the TBOX is further configured to obtain a response message sent by at least one of the ECUs according to the diagnosis message, and send the response message to the remote diagnosis platform.
It should be noted that, the remote diagnosis control system according to the embodiment of the present invention is based on TBOX, and can implement remote diagnosis for 30 ECUs on a whole vehicle according to different BUS domains, and can perform diagnosis for a certain ECU, or perform one-key diagnosis for all ECUs, read a data stream of the whole vehicle, read a freeze frame, write part information, and clear a fault.
Optionally, the remote diagnosis platform is further configured to obtain, through the GW and the TBOX, a response message sent by at least one of the ECUs according to the diagnosis message;
and diagnosing the response message.
It should be noted that the remote diagnosis control system according to the embodiment of the present invention can diagnose the response message, and before receiving the response message, the remote diagnosis platform needs to perform bidirectional authentication with the TBOX, so as to improve risk protection and information security in a diagnosis process, eliminate potential risks such as faults and security holes existing in each ECU more, effectively reduce a vehicle recall rate and a customer complaint rate, and save update and after-sale costs for an enterprise.
Optionally, the TBOX comprises: the system comprises a vehicle gauge level communication module, an MCU (micro control unit) and an SE (safety) safety chip;
the SE chip performs bidirectional authentication with the remote diagnosis platform through the vehicle gauge communication module and the MCU;
and the vehicle gauge communication module and the MCU are used for transmitting the ciphertext data during the bidirectional authentication after the connection with the remote diagnosis platform is established.
As shown in fig. 1, AG35 is used as a vehicle-scale communication module. The AG35 comprises a tbox-ss module, a QBTSP module, a PassM module, a Remdiagnostic module and a CanMgr module, wherein the tbox-ss module is used for establishing TCP (Transmission control protocol) communication connection with the remote diagnosis platform, receiving command data sent by the remote diagnosis platform and sending the data to the remote diagnosis platform; the QBTSP module is used for analyzing and packaging the command data issued by the remote diagnosis platform and distributing the received command data to other modules; packaging and sending the received data from other modules to the remote diagnosis platform; the passM module is used for data encryption authentication when the passM module performs bidirectional authentication with the remote diagnosis platform; the RemDiagnostic module is used for realizing the diagnosis of the response message; the CanMgr module is communicated with the MCU through a serial port and receives and transmits data of the MCU.
Optionally, the vehicle-specification-level communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after the bidirectional authentication is passed, where the diagnosis instruction includes the diagnosis message; and
and performing CAN (controller area network) message interaction with a VCU (vehicle control unit) through the MCU and the GW to judge whether the electric vehicle is in a diagnosis-allowed state and whether at least one ECU is in a diagnosable range.
It should be noted that the RemDiagnostic module in the vehicle-specification-level communication module sequentially passes through the CanMgr module, the MCU and the GW, performs CAN message interaction with the VCU, and determines whether the current vehicle allows diagnosis and whether the ECU to be diagnosed is within a diagnosable range.
Optionally, the MCU is further configured to send the activation authentication request to the GW when the electric vehicle is in a diagnosis-enabled state and at least one of the ECUs is within a diagnosable range.
It should be noted that, when the MCU determines that the current vehicle is in a diagnosis-enabled state and at least one of the ECUs is within a diagnosable range, the MCU sends the activation authentication request for activating the GW, that is, performs security authentication with the GW, so that the GW is in an activated state.
Optionally, after acquiring the activation success information of the gateway, the MCU is further configured to send the diagnostic packet acquired by the vehicle-scale communication module to at least one ECU through the GW; and
and sending a connection maintaining message to the GW every preset time interval.
It should be noted that, after the tbox-ss module in the vehicle specification-level communication module establishes connection with the remote diagnosis platform, the QBTsp module analyzes and packages the diagnosis message sent by the remote diagnosis platform, and transmits the diagnosis message to the MCU sequentially through the rem Diagnostic module and the CanMgr module, and after acquiring the activation success information of the gateway, the MCU transmits the diagnosis message to at least one ECU through the GW, where the diagnosis message may be a UDS (Unified Diagnostic service) diagnosis message.
It should be further noted that, in order to keep the GW in the active state, the MCU needs to send a keep-alive message to the GW every a preset time period, for example, the preset time period may be 1s (second); and the GW continues to keep the connection after receiving the connection keeping message, wherein the GW is disconnected with the MCU when not receiving the connection keeping message within a first preset time length, and enters a closing state from the activation state.
Optionally, the MCU is further configured to obtain, through the GW, at least one response message sent by the ECU according to the diagnosis message;
sending the response message to the remote diagnosis platform through the vehicle gauge communication module;
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the gateway.
Here, after the diagnosis is completed, the MCU may further transmit a diagnosis authentication request for turning off the GW, and switch to an off state after the GW authentication passes.
Optionally, the SE chip is configured to generate a first random number after acquiring a random number generation instruction of the vehicle gauge communication module through the MCU;
encrypting the first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and forwarding the first ciphertext to the remote diagnosis platform through the MCU and the vehicle rule level communication module;
decrypting a second ciphertext generated by the remote diagnosis platform forwarded by the MCU and the vehicle gauge level communication module according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
Performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication is passed, a first signature verification authentication passing result is forwarded to the remote diagnosis platform through the MCU and the vehicle-scale communication module;
decrypting a third ciphertext of the remote diagnosis platform forwarded by the MCU and the vehicle-scale communication module according to a built-in SE chip private key and a first decryption algorithm to generate a second random number, and signing a certificate by using the security chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext, and forwarding the fourth ciphertext to the remote diagnosis platform through the MCU and the vehicle gauge communication module.
It should be noted that, the first encryption algorithm is an RSA encryption algorithm; the first decryption algorithm is an RSA decryption algorithm; the second decryption algorithm is an AES decryption algorithm, and the key length is 128 bits.
Optionally, the vehicle gauge communication module is further configured to obtain, through the MCU, a first verification result and disconnect the first verification result from the remote diagnosis platform.
Here, as shown in fig. 2, a flow of bidirectional authentication in the remote diagnosis control system according to the embodiment of the present invention will be described:
step 201, after a TBOX is connected with a remote diagnosis platform, a vehicle gauge-level communication module sends a random number generating instruction to an SE chip;
202, after receiving a random number generation instruction, the SE chip generates a first random number, encrypts the first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext and sends the first ciphertext to the vehicle-specification-level communication module;
step 203, the vehicle gauge communication module forwards the received first ciphertext to a remote diagnosis platform;
step 204, the remote diagnosis platform decrypts the received first ciphertext according to a built-in platform private key and a first decryption algorithm to generate a first random number;
step 205, the remote diagnosis platform uses a platform private key to sign the certificate, and first signature information is generated;
step 206, the remote diagnosis platform encrypts the first signature information according to the first random number and a built-in second encryption algorithm to generate a second ciphertext;
step 207, the remote diagnosis platform sends the second ciphertext to the vehicle gauge communication module;
step 208, the vehicle-level communication module forwards the second ciphertext to the SE chip;
Step 209, the SE chip decrypts the received second ciphertext according to the first random number and a built-in second decryption algorithm to obtain first signature information;
step 210, the SE chip performs a first signature verification authentication on the first signature information by using a built-in platform private key to generate a first signature verification authentication result;
step 211, the SE chip sends the first signature verification authentication result to the vehicle-level communication module;
step 212, when the first signature verification result is that the first signature verification authentication fails, the vehicle gauge-level communication module is disconnected from the remote diagnosis platform;
step 213, when the first signature verification result is that the first signature verification authentication passes, the vehicle-specification-level communication module sends the first signature verification authentication passing result to the remote diagnosis platform;
step 214, after receiving the first signature verification authentication passing result, the remote diagnosis platform generates a second random number, encrypts the second random number according to a built-in SE chip public key and a first encryption algorithm, generates a third ciphertext and sends the third ciphertext to the vehicle-specification-level communication module;
step 215, the vehicle-level communication module forwards the third ciphertext to the SE chip;
step 216, the SE chip decrypts the received third ciphertext according to the built-in SE chip private key and the first decryption algorithm to generate a second random number;
Step 217, the SE chip signs the certificate by using the SE chip private key to generate second signature information;
step 218, encrypting the second signature information by the SE chip according to the second random number and a built-in second encryption algorithm to generate a fourth ciphertext;
step 219, the SE chip sends the fourth ciphertext to the vehicle-scale communication module;
step 220, the vehicle-specification-level communication module forwards the fourth ciphertext to the remote diagnosis platform;
step 221, the remote diagnosis platform decrypts the received fourth ciphertext according to the second random number and a built-in second decryption algorithm to obtain second signature information;
step 222, the remote diagnosis platform uses the SE chip public key to perform second signature verification and authentication on the second signature information;
step 223, when the second signature verification authentication result is that the second signature verification authentication fails, disconnecting the remote diagnosis platform from the TBOX;
and 224, when the second verification result is that the second verification passes, the remote diagnosis platform sends the second verification passing result to the vehicle gauge communication module.
When the two signature verification authentications in the above steps are passed, TBOX can perform normal service communication with the remote diagnosis platform through an AES encryption algorithm (the key is 128 bits), for example, to receive and transmit a diagnosis instruction.
Optionally, the vehicle-gauge-level communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after obtaining a second verification result obtained by the remote diagnosis platform according to the fourth ciphertext.
It should be noted that, when the first signature verification authentication passes, the second signature verification can be performed, and after the second signature verification authentication passes, the vehicle gauge-level communication module distributes the received diagnosis instruction issued by the remote diagnosis platform.
As shown in fig. 3, an embodiment of the present invention further provides a remote diagnosis control method applied to TBOX, including:
it should be noted that the remote diagnosis platform may adopt an online diagnosis mode and a remote diagnosis mode to diagnose at least one ECU on the electric vehicle. Wherein the online diagnosis mode is that the remote diagnosis platform acquires the diagnosis information of the current vehicle online through the TBOX; the off-line diagnosis mode is that the remote diagnosis platform issues the diagnosis period configuration to the TBOX, and the TBOX diagnoses the current vehicle according to the diagnosis period configuration and uploads the diagnosis information to the remote diagnosis platform.
It should be noted that activation authentication is required between the TBOX and the GW, and after the activation authentication is passed, the GW is in an active state, and the TBOX may send a diagnostic message to at least one ECU through the GW.
In the embodiment of the invention, after the bidirectional authentication with the remote diagnosis platform is passed, the diagnosis instruction of the remote diagnosis platform is obtained, wherein the diagnosis instruction comprises a diagnosis message; the method comprises the steps of sending an activation authentication request to a GW, sending a diagnosis message to at least one ECU through the GW after activation success information of the GW is obtained, achieving safety authentication between the TBOX and a remote diagnosis platform and between the TBOX and the GW, eliminating potential risks such as faults and safety holes of the ECUs, improving stability, risk protection and information safety, effectively reducing vehicle recall rate and customer complaint rate, and reducing updating and after-sale cost for manufacturers.
Optionally, the method further comprises:
and acquiring at least one response message sent by the ECU according to the diagnosis message, and sending the response message to the remote diagnosis platform.
It should be noted that, in consideration of the safety problem of the remote diagnosis functional scenario, the TBOX needs to perform bidirectional authentication with the remote diagnosis platform and perform activation authentication with the GW, and after the authentication is passed, the GW may issue the diagnosis message to at least one ECU, receive a response message sent by the ECU according to the diagnosis message, and send the response message to the remote diagnosis platform. The remote diagnosis platform reads the vehicle data stream, reads the freeze frame, writes the part information, clears the fault and the like according to the diagnosis information, and diagnoses the current vehicle.
Optionally, after the bidirectional authentication with the remote diagnosis platform is passed, before the diagnosis instruction of the remote diagnosis platform is acquired, the method further includes:
and after the connection with the remote diagnosis platform is established, performing bidirectional authentication with the remote diagnosis platform.
It should be noted that the TBOX establishes a TCP communication connection with the remote diagnosis platform.
Optionally, the step 301, after establishing a connection with the remote diagnosis platform, performing bidirectional authentication with the remote diagnosis platform, includes:
Encrypting the generated first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and sending the first ciphertext to the remote diagnosis platform;
decrypting a second ciphertext generated by the remote diagnosis platform according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication passes, sending a first signature verification authentication passing result to the remote diagnosis platform;
decrypting a third ciphertext of the remote diagnosis platform according to a built-in SE chip private key and a first decryption algorithm to generate a second random number, and signing the ciphertext by using the SE chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext and sending the fourth ciphertext to the remote diagnosis platform.
Optionally, the step 301, after establishing a connection with the remote diagnosis platform, performs bidirectional authentication with the remote diagnosis platform, further including:
and after a first signature verification authentication failure result is obtained, disconnecting the remote diagnosis platform from the remote diagnosis platform.
It should be noted that the mutual authentication between the TBOX and the remote diagnosis platform is as described above for fig. 2, and is not described herein again.
Optionally, after the bidirectional authentication with the remote diagnosis platform is passed and the diagnosis instruction of the remote diagnosis platform is obtained, the method further comprises:
and performing CAN message interaction with the VCU, and judging whether the electric automobile is in a diagnosis-allowed state or not and whether at least one ECU is in a diagnosable range or not.
It should be noted that the TBOX performs CAN message interaction with the VCU through the GW according to different BUS domains, and determines whether the current vehicle allows diagnosis, and whether the ECU to be diagnosed is within a diagnosable range.
Optionally, sending the activation authentication request to the GW includes:
transmitting the activation authentication request to the GW when the electric vehicle is in a diagnosis-enabled state and at least one of the ECUs is within a diagnosable range.
When it is determined that the current vehicle is in the diagnosis-enabled state and at least one ECU is in the diagnosable range, the activation authentication request for activating the GW is transmitted, that is, the GW is securely authenticated to be in the activated state.
Optionally, after acquiring the activation success information of the GW, the method further includes, after sending the diagnostic message to at least one of the ECUs through the GW:
And sending a connection maintaining message to the GW every preset time interval.
It should be noted that, in order to keep the GW in the active state, the TBOX needs to send a keep-alive message to the GW every a preset time period, for example, the preset time period may be 1s (second); and the GW continues to keep the connection after receiving the connection keeping message, wherein the GW is disconnected with the TBOX when not receiving the connection keeping message within a first preset time length, and enters a closing state from the activation state.
Optionally, after obtaining a response message sent by at least one of the ECUs according to the diagnosis message and sending the response message to the remote diagnosis platform, the method further includes:
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the GW.
Here, after the diagnosis is completed, a diagnosis authentication request for turning off the GW may be transmitted, and after the GW authentication is passed, the state may be switched to the off state.
As shown in fig. 4, an embodiment of the present invention further provides a remote diagnosis control method applied to a remote diagnosis platform, including:
According to the embodiment of the invention, after the mutual authentication with the TBOX passes, the diagnosis instruction is sent to the TBOX, and the diagnosis instruction comprises the diagnosis message, so that the safety authentication between the TBOX and a remote diagnosis platform is realized, the potential risks of faults, safety holes and the like of each ECU are eliminated, the stability, risk protection and information safety are improved, the vehicle recall rate and the customer complaint rate are effectively reduced, and the updating and after-sale costs are reduced for manufacturers.
Optionally, the method further comprises:
acquiring a response message sent by at least one ECU according to the diagnosis message through GW and the TBOX;
and diagnosing the response message.
It should be noted that the remote diagnosis control method according to the embodiment of the present invention can diagnose the response message, before receiving the response message, the remote diagnosis platform needs to perform bidirectional authentication with the TBOX, thereby improving risk protection and information security in a diagnosis process, eliminating potential risks such as faults and security holes existing in each ECU, effectively reducing a vehicle recall rate and a customer complaint rate, and saving update and after-sales costs for an enterprise.
Optionally, after the mutual authentication with the TBOX is passed and before the diagnostic instruction is sent to the TBOX, the method further comprises:
And after connection is established with the TBOX, performing bidirectional authentication with the TBOX.
It should be noted that the remote diagnosis platform establishes a TCP communication connection with the TBOX.
Optionally, after establishing a connection with the TBOX, performing mutual authentication with the TBOX includes:
decrypting the first ciphertext of the TBOX according to a built-in platform private key and a first decryption algorithm to generate a first random number, and signing a certificate by using the platform private key to generate first signature information;
encrypting the first signature information according to the first random number and a second encryption algorithm to generate a second ciphertext, and sending the second ciphertext to the TBOX;
after a first signature verification authentication passing result obtained by the TBOX according to the second ciphertext is obtained, encrypting a generated second random number according to a built-in SE chip public key and a first encryption algorithm to generate a third ciphertext, and sending the third ciphertext to the TBOX;
decrypting a fourth ciphertext generated by the TBOX according to the third ciphertext according to the second random number and a second decryption algorithm to obtain second signature information;
performing second signature verification authentication on the second signature information by using the SE chip public key;
And after the second signature verification passes, sending a second signature verification passing result to the TBOX.
Optionally, after establishing a connection with the TBOX, performing bidirectional authentication with the TBOX, further comprising:
and after a second signature verification authentication failure result is obtained, disconnecting the TBOX.
It should be noted that the mutual authentication between the remote diagnosis platform and the TBOX is as described above for fig. 2, and is not described herein again.
As shown in fig. 5, an embodiment of the present invention further provides a remote diagnosis control apparatus, including:
a first obtaining module 501, configured to obtain a diagnosis instruction of a remote diagnosis platform after bidirectional authentication with the remote diagnosis platform passes, where the diagnosis instruction includes a diagnosis packet;
a first sending module 502, configured to send an activation authentication request to a GW, and send the diagnostic packet to at least one ECU through the GW after acquiring activation success information of the GW.
In the embodiment of the invention, after the bidirectional authentication with the remote diagnosis platform is passed, the diagnosis instruction of the remote diagnosis platform is obtained, wherein the diagnosis instruction comprises a diagnosis message; the method comprises the steps of sending an activation authentication request to a GW, sending a diagnosis message to at least one ECU through the GW after activation success information of the GW is obtained, achieving safety authentication between the TBOX and a remote diagnosis platform and between the TBOX and the GW, eliminating potential risks such as faults and safety holes of the ECUs, improving stability, risk protection and information safety, effectively reducing vehicle recall rate and customer complaint rate, and reducing updating and after-sale cost for manufacturers.
Optionally, the apparatus further comprises:
and the second acquisition module is used for acquiring at least one response message sent by the ECU according to the diagnosis message and sending the response message to the remote diagnosis platform.
Optionally, before the first obtaining module 501, the apparatus further includes:
and the first authentication module is used for performing bidirectional authentication with the remote diagnosis platform after the connection with the remote diagnosis platform is established.
Optionally, the first authentication module is specifically configured to:
encrypting the generated first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and sending the first ciphertext to the remote diagnosis platform;
decrypting a second ciphertext generated by the remote diagnosis platform according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication passes, sending a first signature verification authentication passing result to the remote diagnosis platform;
decrypting a third ciphertext of the remote diagnosis platform according to a built-in SE chip private key and a first decryption algorithm to generate a second random number, and signing the certificate by using the SE chip private key to generate second signature information;
And encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext and sending the fourth ciphertext to the remote diagnosis platform.
Optionally, the first authentication module is further configured to:
and after the first signature verification authentication failure result is obtained, disconnecting the remote diagnosis platform from the remote diagnosis platform.
Optionally, after the first obtaining module 501, the apparatus further includes:
and the judgment module is used for carrying out CAN message interaction with the VCU, judging whether the electric automobile is in a diagnosis-allowed state or not and judging whether at least one ECU is in a diagnosable range or not.
Optionally, the first sending module 502 is specifically configured to:
transmitting the activation authentication request to the GW when the electric vehicle is in a diagnosis-enabled state and at least one of the ECUs is within a diagnosable range.
Optionally, after the first sending module 502, the apparatus further includes:
and the third sending module is used for sending the keep-connection message to the GW every preset time interval.
Optionally, after the second obtaining module, the apparatus further includes:
and a fourth sending module, configured to send a close request to the GW when the remote diagnosis platform completes diagnosis of the response packet.
It should be noted that the remote diagnosis control apparatus provided in the embodiments of the present invention is an apparatus capable of executing the above remote diagnosis control method, and all embodiments of the above remote diagnosis control method are applicable to the apparatus and can achieve the same or similar technical effects.
As shown in fig. 6, an embodiment of the present invention further provides a remote diagnosis control apparatus, including:
a second sending module 601, configured to send the diagnostic instruction to the TBOX after the mutual authentication with the TBOX passes, where the diagnostic instruction includes a diagnostic message.
According to the embodiment of the invention, after the bidirectional authentication with the TBOX passes, the diagnosis instruction is sent to the TBOX, and the diagnosis instruction comprises the diagnosis message, so that the safety authentication between the TBOX and a remote diagnosis platform is realized, the potential risks of faults, safety holes and the like of each ECU are eliminated, the stability, risk protection and information safety are improved, the vehicle recall rate and the customer complaint rate are effectively reduced, and the updating and after-sale cost is reduced for manufacturers.
Optionally, the apparatus further comprises:
a third obtaining module, configured to obtain, through the GW and the TBOX, a response message sent by at least one ECU according to the diagnostic message;
And the diagnosis module is used for diagnosing the response message.
Optionally, before the second sending module 601, the apparatus further includes:
and the second authentication module is used for performing bidirectional authentication with the TBOX after connection with the TBOX is established.
Optionally, the second authentication module is specifically configured to:
decrypting a first ciphertext of the vehicle-mounted networking terminal according to a built-in platform private key and a first decryption algorithm to generate a first random number, and signing a certificate by using the platform private key to generate first signature information;
encrypting the first signature information according to the first random number and a second encryption algorithm to generate a second ciphertext, and sending the second ciphertext to the TBOX;
after a first signature verification authentication passing result obtained by the TBOX according to the second ciphertext is obtained, encrypting a generated second random number according to a built-in SE chip public key and a first encryption algorithm to generate a third ciphertext, and sending the third ciphertext to the TBOX;
decrypting a fourth ciphertext generated by the TBOX according to the third ciphertext according to the second random number and a second decryption algorithm to obtain second signature information;
performing second signature verification and authentication on the second signature information by using the SE chip public key;
And after the second signature verification passes, sending a second signature verification passing result to the TBOX.
Optionally, the second authentication module is further configured to:
and after a second signature verification authentication failure result is obtained, disconnecting the TBOX.
It should be noted that the remote diagnosis control apparatus provided in the embodiments of the present invention is an apparatus capable of executing the above remote diagnosis control method, and all embodiments of the above remote diagnosis control method are applicable to the apparatus and can achieve the same or similar technical effects.
The embodiment of the invention also provides an electric automobile which is characterized by comprising the remote diagnosis control device.
The electric automobile provided by the embodiment of the invention comprises the remote diagnosis control device, and all the embodiments of the remote diagnosis control device are suitable for the electric automobile and can achieve the same or similar beneficial effects.
While the foregoing is directed to the preferred embodiment of the present invention, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention as defined in the appended claims.
Claims (28)
1. A remote diagnostic control system comprising: a remote diagnostic platform; the vehicle-mounted networking terminal, the gateway and at least one electronic controller to be diagnosed on the electric automobile are characterized in that,
the vehicle-mounted networking terminal is used for acquiring a diagnosis instruction of the remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, wherein the diagnosis instruction comprises a diagnosis message;
sending an activation authentication request to the gateway, and sending the diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway;
and the remote diagnosis platform is used for sending the diagnosis instruction to the vehicle-mounted internet terminal after the bidirectional authentication with the vehicle-mounted internet terminal is passed, wherein the diagnosis instruction comprises the diagnosis message.
2. The remote diagnosis control system according to claim 1, wherein the vehicle-mounted networking terminal is further configured to obtain a response message sent by the at least one electronic controller according to the diagnosis message, and send the response message to the remote diagnosis platform.
3. The remote diagnosis control system according to claim 1, wherein the remote diagnosis platform is further configured to obtain, through the gateway and the vehicle-mounted internet terminal, a response message sent by the at least one electronic controller according to the diagnosis message;
And diagnosing the response message.
4. The remote diagnosis control system according to claim 1, wherein the on-board internet terminal comprises: the system comprises a vehicle gauge level communication module, a microprocessor and a safety chip;
the safety chip performs bidirectional authentication with the remote diagnosis platform through the vehicle gauge communication module and the microprocessor;
and the vehicle gauge communication module and the microprocessor are used for transmitting the ciphertext data during the bidirectional authentication after the connection with the remote diagnosis platform is established.
5. The remote diagnosis control system according to claim 4, wherein the vehicle-scale communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after the mutual authentication is passed, and the diagnosis instruction includes the diagnosis message; and
and performing controller local area network message interaction with a vehicle controller through the microprocessor and the gateway, and judging whether the electric vehicle is in a diagnosis-allowed state or not and whether at least one electronic controller is in a diagnosable range or not.
6. The remote diagnostic control system of claim 5, wherein the microprocessor is further configured to send the activation authentication request to the gateway when the electric vehicle is in a diagnostic enabled state and at least one of the electronic controllers is within a diagnosable range.
7. The remote diagnostic control system of claim 6, wherein after acquiring the activation success information of the gateway, the microprocessor is further configured to send the diagnostic message acquired by the vehicle-scale communication module to at least one of the electronic controllers through the gateway; and
and sending a connection maintaining message to the gateway at preset time intervals.
8. The remote diagnostic control system of claim 5, wherein the microprocessor is further configured to obtain, via the gateway, a response message sent by at least one of the electronic controllers based on the diagnostic message;
sending the response message to the remote diagnosis platform through the vehicle gauge communication module;
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the gateway.
9. The remote diagnosis control system according to claim 4, wherein the security chip is configured to generate a first random number after acquiring, by the microprocessor, a random number generation instruction of the vehicle gauge-level communication module;
encrypting the first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and forwarding the first ciphertext to the remote diagnosis platform through the microprocessor and the vehicle gauge communication module;
Decrypting a second ciphertext generated by the remote diagnosis platform forwarded by the microprocessor and the vehicle gauge communication module according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication is passed, a first signature verification authentication passing result is forwarded to the remote diagnosis platform through the microprocessor and the vehicle-scale communication module;
decrypting a third ciphertext of the remote diagnosis platform forwarded by the microprocessor and the vehicle-scale communication module according to a built-in security chip private key and a first decryption algorithm to generate a second random number, and signing a certificate by using the security chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext, and forwarding the fourth ciphertext to the remote diagnosis platform through the microprocessor and the vehicle gauge communication module.
10. The remote diagnosis control system according to claim 9, wherein the vehicle-scale communication module is further configured to disconnect from the remote diagnosis platform after the microprocessor acquires the first verification authentication failure result.
11. The remote diagnosis control system according to claim 9, wherein the vehicle-scale communication module is further configured to obtain the diagnosis instruction of the remote diagnosis platform after obtaining a second verification result obtained by the remote diagnosis platform according to the fourth ciphertext.
12. A remote diagnosis control method is applied to a vehicle-mounted networking terminal and is characterized by comprising the following steps:
after the bidirectional authentication with a remote diagnosis platform is passed, acquiring a diagnosis instruction of the remote diagnosis platform, wherein the diagnosis instruction comprises a diagnosis message;
and sending an activation authentication request to a gateway, and sending the diagnosis message to at least one electronic controller through the gateway after acquiring the activation success information of the gateway.
13. The remote diagnostic control method of claim 12, further comprising:
and acquiring a response message sent by at least one electronic controller according to the diagnosis message, and sending the response message to the remote diagnosis platform.
14. The remote diagnosis control method according to claim 12, wherein before the diagnostic instruction of the remote diagnosis platform is acquired after the bidirectional authentication with the remote diagnosis platform is passed, the method further comprises:
And after the connection with the remote diagnosis platform is established, performing bidirectional authentication with the remote diagnosis platform.
15. The remote diagnostic control method of claim 14, wherein performing a bidirectional authentication with the remote diagnostic platform after establishing a connection with the remote diagnostic platform comprises:
encrypting the generated first random number according to a built-in platform public key and a first encryption algorithm to generate a first ciphertext, and sending the first ciphertext to the remote diagnosis platform;
decrypting a second ciphertext generated by the remote diagnosis platform according to the first ciphertext according to the first random number and a second decryption algorithm to obtain first signature information;
performing first signature verification authentication on the first signature information by using the platform public key;
after the first signature verification authentication passes, sending a first signature verification authentication passing result to the remote diagnosis platform;
decrypting a third ciphertext of the remote diagnosis platform according to a built-in security chip private key and a first decryption algorithm to generate a second random number, and signing the certificate by using the security chip private key to generate second signature information;
and encrypting the second signature information according to the second random number and a second encryption algorithm to generate a fourth ciphertext and sending the fourth ciphertext to the remote diagnosis platform.
16. The remote diagnostic control method of claim 15, wherein the bidirectional authentication with the remote diagnostic platform is performed after the connection with the remote diagnostic platform is established, further comprising:
and after the first signature verification authentication failure result is obtained, disconnecting the remote diagnosis platform from the remote diagnosis platform.
17. The remote diagnosis control method according to claim 12, wherein after the bidirectional authentication with the remote diagnosis platform is passed and the diagnosis instruction of the remote diagnosis platform is acquired, the method further comprises:
and performing controller local area network message interaction with the vehicle controller, and judging whether the electric vehicle is in a diagnosis-allowed state or not and whether at least one electronic controller is in a diagnosable range or not.
18. The remote diagnostic control method of claim 17, wherein sending an activation authentication request to a gateway comprises:
sending the activation authentication request to the gateway when the electric vehicle is in a diagnostic enabled state and at least one of the electronic controllers is within a diagnosable range.
19. The remote diagnostic control method according to claim 12, wherein after acquiring the activation success information of the gateway, the method further comprises, after sending the diagnostic message to at least one of the electronic controllers via the gateway:
And sending a connection maintaining message to the gateway at preset time intervals.
20. The remote diagnostic control method of claim 13, wherein after obtaining a response message sent by at least one of the electronic controllers according to the diagnostic message and sending the response message to the remote diagnostic platform, the method further comprises:
and when the remote diagnosis platform finishes the diagnosis of the response message, sending a closing request to the gateway.
21. A remote diagnosis control method is applied to a remote diagnosis platform and is characterized by comprising the following steps:
and after the mutual authentication with the vehicle-mounted networking terminal is passed, sending a diagnosis instruction to the vehicle-mounted networking terminal, wherein the diagnosis instruction comprises a diagnosis message.
22. The remote diagnostic control method of claim 21, further comprising:
acquiring a response message sent by at least one electronic controller according to the diagnosis message through a gateway and the vehicle-mounted networking terminal;
and diagnosing the response message.
23. The remote diagnosis control method according to claim 21, wherein after the bidirectional authentication with the on-board internet terminal is passed, before the diagnosis instruction is sent to the on-board internet terminal, the method further comprises:
And after the connection with the vehicle-mounted internet terminal is established, performing bidirectional authentication with the vehicle-mounted internet terminal.
24. The remote diagnosis control method according to claim 23, wherein performing bidirectional authentication with the on-vehicle internet connection terminal after establishing connection with the on-vehicle internet connection terminal comprises:
decrypting a first ciphertext of the vehicle-mounted networking terminal according to a built-in platform private key and a first decryption algorithm to generate a first random number, and signing a certificate by using the platform private key to generate first signature information;
encrypting the first signature information according to the first random number and a second encryption algorithm to generate a second ciphertext, and sending the second ciphertext to the vehicle-mounted internet terminal;
after a first signature verification authentication passing result obtained by the vehicle-mounted internet terminal according to the second ciphertext is obtained, encrypting the generated second random number according to a built-in security chip public key and a first encryption algorithm to generate a third ciphertext, and sending the third ciphertext to the vehicle-mounted internet terminal;
decrypting a fourth ciphertext generated by the vehicle-mounted internet terminal according to the third ciphertext according to the second random number and a second decryption algorithm to obtain second signature information;
Performing second signature verification authentication on the second signature information by using the public key of the security chip;
and after the second signature verification authentication is passed, sending a second signature verification authentication passing result to the vehicle-mounted internet terminal.
25. The remote diagnosis control method according to claim 24, wherein performing bidirectional authentication with the on-vehicle internet connection terminal after establishing connection with the on-vehicle internet connection terminal, further comprising:
and after a second signature verification authentication failure result is obtained, disconnecting the vehicle-mounted internet terminal.
26. A remote diagnostic control, comprising:
the system comprises a first acquisition module, a second acquisition module and a third acquisition module, wherein the first acquisition module is used for acquiring a diagnosis instruction of a remote diagnosis platform after the bidirectional authentication with the remote diagnosis platform passes, and the diagnosis instruction comprises a diagnosis message;
and the first sending module is used for sending an activation authentication request to the gateway and sending the diagnosis message to at least one electronic controller through the gateway after the activation authentication request is obtained and the activation authentication information of the gateway is successfully obtained.
27. A remote diagnostic control, comprising:
and the second sending module is used for sending a diagnosis instruction to the vehicle-mounted internet terminal after the mutual authentication between the vehicle-mounted internet terminal and the vehicle-mounted internet terminal is passed, wherein the diagnosis instruction comprises a diagnosis message.
28. An electric vehicle comprising the remote diagnostic control of claim 26.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110545009.0A CN114675616A (en) | 2021-05-19 | 2021-05-19 | Remote diagnosis control system, method and device and electric automobile |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110545009.0A CN114675616A (en) | 2021-05-19 | 2021-05-19 | Remote diagnosis control system, method and device and electric automobile |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114675616A true CN114675616A (en) | 2022-06-28 |
Family
ID=82070534
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110545009.0A Pending CN114675616A (en) | 2021-05-19 | 2021-05-19 | Remote diagnosis control system, method and device and electric automobile |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114675616A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115599070A (en) * | 2022-09-26 | 2023-01-13 | 成都赛力斯科技有限公司(Cn) | Vehicle diagnosis method, system, computer equipment and storage medium |
-
2021
- 2021-05-19 CN CN202110545009.0A patent/CN114675616A/en active Pending
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115599070A (en) * | 2022-09-26 | 2023-01-13 | 成都赛力斯科技有限公司(Cn) | Vehicle diagnosis method, system, computer equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106713264B (en) | A kind of method and system remotely controlled for vehicle safety with diagnosis | |
| CN109862040A (en) | A kind of safety certifying method and Verification System | |
| CN104717071B (en) | Road train data authentication method for authenticating and car-mounted terminal | |
| CN109688146A (en) | A kind of data access method, gateway controller and automobile | |
| CN107682334A (en) | A kind of OBD interface data security protection system and data security protection method | |
| CN111031147B (en) | Remote vehicle-mounted control system and method based on MQTT framework | |
| CN104333576A (en) | ECU (Electronic Control Unit) upgrading device and method | |
| CN109905488B (en) | Safety communication method for electronic and electric appliances of commercial vehicle | |
| CN106656960B (en) | hilscher-based credible data acquisition system and method | |
| CN112937478A (en) | Method and system for controlling electric automobile to run by mobile intelligent equipment | |
| CN113781678B (en) | Vehicle Bluetooth key generation and authentication method and system in networking-free environment | |
| CN108777681A (en) | Network data unidirectional transmission control method based on NDIS filtration drives | |
| CN111756693A (en) | Encryption type electric power monitored control system network safety monitoring device | |
| CN107554481B (en) | A kind of long-range locking system of pure electric vehicle and its control method | |
| CN114257388A (en) | Information safety protection method and device of Internet of vehicles system and electric vehicle | |
| CN111935258A (en) | Method and system for performing parameter operation on electric vehicle-mounted terminal | |
| CN115865350A (en) | Car cloud service system based on quantum safety | |
| CN114675616A (en) | Remote diagnosis control system, method and device and electric automobile | |
| CN113556710A (en) | Vehicle Bluetooth key method and device and vehicle | |
| CN110597546A (en) | Method for upgrading vehicle-mounted controller program and vehicle | |
| CN112398810B (en) | Identity authentication system and method of OBD (on-Board diagnostics) equipment | |
| CN106685967A (en) | Vehicle network communication encryption and intrusion monitoring device | |
| CN109714759A (en) | A kind of safe automobile OTA method of servicing and service system | |
| CN113037720B (en) | Vehicle network access method, device, readable storage medium and gateway | |
| CN113660271B (en) | Security authentication method and device for Internet of vehicles |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |