CN114938294A - Control method and control device for network access of vehicle-mounted system - Google Patents
Control method and control device for network access of vehicle-mounted system Download PDFInfo
- Publication number
- CN114938294A CN114938294A CN202210479582.0A CN202210479582A CN114938294A CN 114938294 A CN114938294 A CN 114938294A CN 202210479582 A CN202210479582 A CN 202210479582A CN 114938294 A CN114938294 A CN 114938294A
- Authority
- CN
- China
- Prior art keywords
- vehicle
- application
- target
- network access
- white list
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer And Data Communications (AREA)
- Small-Scale Networks (AREA)
Abstract
The invention discloses a control method for network access of a vehicle-mounted system, which comprises the steps of obtaining a network access request of a target vehicle-mounted application; acquiring a target number of the target vehicle-mounted application according to the network access request; judging whether the target number is a vehicle-mounted system application number or not; and if the target number is the application number of the vehicle-mounted system, controlling the target vehicle-mounted application to carry out network access. The control method and the control device for network access of the vehicle-mounted system can dynamically control whether the vehicle-mounted application program allows networking or not, and improve the flow control efficiency of the vehicle-mounted terminal.
Description
Technical Field
The invention relates to the technical field of vehicles, in particular to a control method and a control device for network access of a vehicle-mounted system.
Background
With the rapid development of the car networking technology, more and more networking applications are widely installed on devices such as a car-mounted terminal of a car, and thus the demand on traffic management in the car networking is higher and higher. In networking operation of devices such as a vehicle-mounted terminal, a scene of mobile network traffic selling and managing exists. When the traffic of the vehicle-mounted terminal is exhausted, the vehicle-mounted terminal cannot use key applications such as navigation and the like, and the vehicle-mounted terminal cannot operate and perform OTA (Over-the-Air Technology) upgrading.
In the prior art, in order to not influence the use of key applications by a user and ensure that a vehicle-mounted terminal can perform normal system upgrade and operation, part of traffic is given for the user to perform navigation and operate the vehicle-mounted terminal when the traffic is exhausted. However, this traffic needs to allow only limited applications to use, while other applications cannot be networked, i.e., non-critical applications need to be prohibited from using; when the flow is not consumed, the network can be connected only by means of configuration realized by a public interface provided by the system, and the function of dynamically controlling the network of the vehicle-mounted application program cannot be realized, so that the flow control efficiency of the vehicle-mounted terminal is poor.
Disclosure of Invention
The embodiment of the invention provides a control method and a control device for network access of a vehicle-mounted system, which can dynamically control whether a vehicle-mounted application program is allowed to be networked or not, and improve the flow control efficiency of a vehicle-mounted terminal.
A first aspect of an embodiment of the present invention provides a method for controlling network access of a vehicle-mounted system, where the method includes:
acquiring a network access request of a target vehicle-mounted application;
acquiring a target number of the target vehicle-mounted application according to the network access request;
judging whether the target number is a vehicle-mounted system application number or not;
and if the target number is the application number of the vehicle-mounted system, controlling the target vehicle-mounted application to carry out network access.
Optionally, after determining whether the target number is the vehicle-mounted system application number, the method further includes:
if the target number is an off-board system application number, judging whether the target on-board application is in a vehicle-mounted white list of the vehicle-mounted system;
and if the target vehicle-mounted application is in the vehicle-mounted white list, controlling the target vehicle-mounted application to carry out network access.
Optionally, after determining whether the target vehicle-mounted application is in a vehicle-mounted white list of the vehicle-mounted system, the method further includes:
and if the target vehicle-mounted application is not in the vehicle-mounted white list, forbidding the target vehicle-mounted application to carry out network access.
Optionally, the prohibiting the target vehicle-mounted application from performing network access includes:
generating a prohibition command for prohibiting network access through a packet filtering firewall;
constructing a first output chain rule for prohibiting the target vehicle-mounted application from performing network access according to the prohibition command;
and forbidding the target network to carry out network access according to the first output chain rule.
Optionally, the controlling the target vehicle-mounted application to perform network access includes:
generating a control command for allowing network access through the packet filtering firewall;
according to the control command, a second output chain rule allowing the target vehicle-mounted application to carry out network access is constructed;
and controlling the target vehicle-mounted application to perform network access through the second output chain rule.
Optionally, the constructing a second output chain rule allowing the target vehicle-mounted application to perform network access according to the control command includes:
acquiring a current network interface;
and constructing the second output chain rule by using the current network interface according to the control command.
Optionally, after the target number is an off-board system application number, before determining whether the target on-board application is in a on-board white list of the on-board system, the method further includes:
and if the vehicle-mounted system is not connected with the cloud, reading a local white list from the vehicle-mounted system as the vehicle-mounted white list.
And if the vehicle-mounted system is connected with the cloud end, acquiring a cloud end white list from the cloud end to serve as the vehicle-mounted white list.
Optionally, if the vehicle-mounted system is connected to the cloud, the method further includes:
and acquiring the cloud white list from the cloud, updating the local white list by using the cloud white list, and taking the updated local white list as the vehicle-mounted white list.
In a second aspect, the present invention further provides an apparatus for controlling network access of an in-vehicle system, where the apparatus includes:
the data acquisition unit is used for acquiring a network access request of the target vehicle-mounted application;
the number acquisition unit is used for acquiring a target number of the target vehicle-mounted application according to the network access request;
the judging unit is used for judging whether the target number is the application number of the vehicle-mounted system;
and the network control unit is used for controlling the target vehicle-mounted application to carry out network access if the target number is the vehicle-mounted system application number.
Optionally, the determining unit is configured to, after determining whether the target number is a vehicle-mounted system application number, determine whether the target vehicle-mounted application is in a vehicle-mounted white list of the vehicle-mounted system if the target number is an off-vehicle system application number;
and the network control unit is used for controlling the target vehicle-mounted application to carry out network access if the target vehicle-mounted application is in the vehicle-mounted white list.
The above one or at least one technical solution in the embodiments of the present application has at least the following technical effects:
based on the technical scheme, after receiving the access request of the target vehicle-mounted application, the target number of the target vehicle-mounted application is acquired; if the target serial number is the vehicle-mounted system application serial number, controlling the target vehicle-mounted application to carry out network access; therefore, whether the target serial number is the vehicle-mounted system application serial number to control whether the target vehicle-mounted application performs network access or not is judged, and networking can be performed without configuration of a public interface provided by the system, so that whether networking is allowed by a vehicle-mounted application program is dynamically controlled, and the flow control efficiency of the vehicle-mounted terminal is improved.
Drawings
Fig. 1 is a flowchart of a method for controlling network access of an in-vehicle system according to an embodiment of the present application;
fig. 2 is a schematic flowchart of a method for controlling network access of an in-vehicle system according to an embodiment of the present application;
fig. 3 is a schematic flowchart of obtaining and updating a white list according to an embodiment of the present application;
fig. 4 is a schematic structural diagram of a control device for network access of an in-vehicle system according to an embodiment of the present application.
Detailed Description
The main implementation principle, the specific implementation mode and the corresponding beneficial effects of the technical solutions of the embodiments of the present application are described in detail below with reference to the accompanying drawings.
Examples
Referring to fig. 1, an embodiment of the present application provides a method for controlling network access of an in-vehicle system, where the method includes:
s101, acquiring a network access request of a target vehicle-mounted application;
s102, acquiring a target number of the target vehicle-mounted application according to the network access request;
s103, judging whether the target number is a vehicle-mounted system application number or not;
and S104, if the target number is the vehicle-mounted system application number, controlling the target vehicle-mounted application to carry out network access.
The method for controlling network access of the vehicle-mounted system in the embodiment of the present description is applied to the vehicle-mounted system, and may also be applied to a vehicle-mounted terminal, and the following specifically applies to the vehicle-mounted system as an example.
The control method for network access of the vehicle-mounted system in the embodiment of the description is generally applied to an android platform.
In the embodiment of the present specification, the in-vehicle application may be, for example, a music application, a navigation application, a video application, and the like installed in the in-vehicle terminal.
In step S101, after detecting that the vehicle-mounted user operates the target vehicle-mounted application, the vehicle-mounted terminal automatically responds to the operation, generates a network access request of the target vehicle-mounted application, and sends the network access request to the vehicle-mounted system, where the vehicle-mounted system acquires the network access request.
For example, in the process of driving the electric vehicle B, the user a starts the music application C and clicks playing, at this time, the vehicle-mounted terminal of the electric vehicle B automatically generates the network access request of C and sends the network access request to the vehicle-mounted system, so that the vehicle-mounted system obtains the network access request of C.
After acquiring the network access request, step S102 is executed.
In step S102, after receiving the network access request, if the network access request carries an application number of the target vehicle-mounted application, taking the application number of the target vehicle-mounted application as a target number; if the network access request does not carry the application number of the target vehicle-mounted application but carries the application identification of the target vehicle-mounted application, the vehicle-mounted system searches the application number of the target vehicle-mounted application from a pre-stored corresponding table of the application identification and the application number as the target number.
After the target number is acquired, step S103 is executed.
In step S103, it is determined whether the target number is a vehicle-mounted system application number, and at this time, if the vehicle-mounted system application number is not greater than the preset value, it may be directly determined whether the target number is greater than the preset value, and if not, it is determined that the target number is a vehicle-mounted system application number, and at this time, it represents that the target vehicle-mounted application is a vehicle-mounted system application; if the number is larger than the preset value, the target number is judged to be the off-board system application number, namely the target number is not the on-board system application number, and at the moment, the representation target on-board application is not the on-board system application.
In the embodiment of the present specification, the preset value is usually set according to an actual situation, for example, if it is usually set that all application numbers not exceeding 10000 are vehicle-mounted system numbers, it can be determined whether the target number is not greater than 10000; of course, if the preset value is 9000, at this time, all the application numbers not exceeding 9000 are the vehicle-mounted system numbers, and it is determined whether the target number is not greater than 9000.
Specifically, all the vehicle-mounted system application numbers can be put into a vehicle-mounted number database, then the target numbers are used as key words to search in the vehicle-mounted number database, and if data corresponding to the target numbers exist in the vehicle-mounted number database, the target numbers are judged to be the vehicle-mounted system application numbers; otherwise, the target number is determined to be the off-board system application number. Of course, the target number can also be directly compared with each vehicle-mounted system application number, and if the vehicle-mounted system application number corresponding to the target number exists through comparison, the target number is determined to be the vehicle-mounted system application number; otherwise, the target number is determined to be the off-board system application number.
After determining that the target number is the in-vehicle system application number, step S104 is performed.
In step S104, after determining that the target number is the in-vehicle system application number, first, a control command for allowing network access is generated through a packet filtering firewall iptables; then according to the control command, a second output chain rule allowing the target vehicle-mounted application to carry out network access is constructed; and the control target vehicle-mounted application carries out network access through the second output chain rule.
Specifically, when a second output chain rule allowing the target vehicle-mounted application to access the network is constructed according to the control command, a current network interface needs to be acquired; and then according to the control command, a second output chain rule is constructed by utilizing the current network interface, and because the current network interface is utilized in the second output chain rule, when the target vehicle-mounted application carries out network access through the second output chain rule, the network access can be carried out through the current network interface, the second output chain rule is automatically constructed by iptables, and the networking can be carried out without realizing the configuration through a public interface provided by the system, so that whether the vehicle-mounted application program is allowed to be networked or not is dynamically controlled, and the flow control efficiency of the vehicle-mounted terminal is improved.
In another embodiment of the present specification, after determining whether the target number is the vehicle-mounted system application number, if it is determined that the target number is the non-vehicle-mounted system application number, it may further be determined whether the target vehicle-mounted application is in a vehicle-mounted white list of the vehicle-mounted system; if the target vehicle-mounted application is in the vehicle-mounted white list, controlling the target vehicle-mounted application to perform network access; and if the target vehicle-mounted application is not in the vehicle-mounted white list, prohibiting the target vehicle-mounted application from performing network access.
Specifically, after the target number is judged to be the off-board system application number, a vehicle-mounted white list is obtained, whether the target vehicle-mounted application is in the vehicle-mounted white list or not is judged, and if the target vehicle-mounted application is in the vehicle-mounted white list, the target vehicle-mounted application is controlled to carry out network access; and if not, forbidding the target vehicle-mounted application to carry out network access.
Specifically, when the target vehicle-mounted application is prohibited from network access, a prohibition command for prohibiting network access can be generated through the packet filtering firewall; according to the prohibition command, constructing a first output chain rule for prohibiting the target vehicle-mounted application from performing network access; and according to the first output chain rule, forbidding the target network to carry out network access. At this time, the first output chain rule is not created by using the current network interface, so that the target vehicle-mounted application cannot perform network access through the first output chain rule.
Therefore, after the target vehicle-mounted application is judged to be the non-vehicle-mounted system application number, the judgment can be carried out through the vehicle-mounted white list, so that the target vehicle-mounted application is allowed to carry out network access in the vehicle-mounted white list, and otherwise, the network access is forbidden; therefore, whether the target vehicle-mounted application is allowed to be networked or not can be dynamically controlled through whether the target number is the vehicle-mounted system application number or not and whether the target vehicle-mounted application is in the vehicle-mounted white list or not, and the networking can be realized without the configuration of a public interface provided by the system, so that whether the networking is allowed or not is dynamically controlled, and the flow control efficiency of the vehicle-mounted terminal is improved.
In another embodiment of the present description, the control method for network access of the vehicle-mounted system in the present description may further support customized control of an application, where the customized control may be set in a vehicle-mounted white list, and a part of applications of the vehicle-mounted white list may be set to allow packet receiving but not allow packet sending, and at this time, the part of applications may be applications such as information notification, so that a user can know various notification contents in real time, and thus, the limitation of the application access capability may be more flexible through the vehicle-mounted white list, and the matching degree with the user requirement may be higher.
In another embodiment of this specification, after the target number is the application number of the offboard system, before determining whether the target vehicle-mounted application is in the vehicle-mounted white list of the vehicle-mounted system, the vehicle-mounted white list needs to be acquired.
Specifically, when a vehicle-mounted white list is obtained, if the vehicle-mounted system is not connected with the cloud, reading a local white list from the vehicle-mounted system to serve as the vehicle-mounted white list; and if the vehicle-mounted system is connected with the cloud, acquiring a cloud white list from the cloud as a vehicle-mounted white list.
Specifically, after the vehicle-mounted system is connected with the cloud end, the cloud end white list can be obtained from the cloud end, the cloud end white list is used for updating the local white list, and the updated local white list is used as the vehicle-mounted white list; therefore, the vehicle-mounted white list can be updated in real time through the cloud, the probability that networking is still not allowed due to the fact that target vehicle-mounted application is applied to the vehicle-mounted white list due to the fact that the vehicle-mounted white list is not updated is reduced, and the real-time performance of controlling whether networking is allowed by a vehicle-mounted application program is improved.
In the actual application process, the application in the white list can be adjusted in the cloud white list or the local white list, so that the application of the user needing to be networked can be added in the vehicle-mounted white list, and the purpose of providing targeted network service for the user can be achieved.
In addition, the method for controlling network access of the vehicle-mounted system disclosed in the embodiment of the application can also reserve an updating interface for updating the white list, modify the application in the vehicle-mounted white list through the updating interface, add the application which the user needs to be networked to the vehicle-mounted white list, or delete the original application of the vehicle-mounted white list, so that the flexibility and the expansibility of the access capability of the vehicle-mounted application can be improved.
In an actual application process, referring to fig. 2, a specific flow of the method for controlling network access of the vehicle-mounted system disclosed in the embodiment of the present application is as follows:
a1, the system firewall controls the classification of the main body of the network request according to the user application number, the application with the number less than 10000 is the system application, the three-party application can not be counterfeited, the application belongs to the system level security application, and the network is not limited.
A2, the vehicle-mounted system takes a white list of the application list authenticated by the manufacturer from the cloud according to the interface, and the white list can be divided into 2 groups according to the user group, 1) authentication application strongly related to the vehicle owner, and 2) other authentication applications. The system provides an interface from the side to the firewall for initialization and updating of the whitelist.
A3, for the application in the white list, real-time command control is carried out through the rules of iptables, and the current network interface is taken, the output chain rules are constructed to allow the application to access the network, and the network flow is precisely controlled.
A4, for the application out of the white list, the system considers that the application accessing the network can cause information risk (such as application background collection data is sent back to the application developer), real-time command control is carried out through the rules of iptables, the construction rules do not allow the inflow and outflow of the application data, and the application can not carry out network access service.
The rule logic of a5 and Iptables is to consider the current application number and network protocol, and perform rule chain optimization control on the network function of the application number through a flexible firewall policy, to distinguish different working functions and processing modes, for example, to perform network protocol restriction on a special application. The rules may also provide a variety of command combination interfaces to enable network protocol control of the application.
The commands and rules of a6 and Iptables are based on the current network port logic, the current optimization selection for the egress port is added, and the final network routing and firewall realize the restriction and management of the application and the network protocol.
A7, the white list can be updated by an external trigger updating mechanism, and the white list can be updated in real time to realize safety control.
In the step a3, referring to fig. 3, the acquiring and updating of the white list specifically includes the following steps:
b1, reading local configuration initialization, specifically, reading the default white list from the initialization file when the computer is started for the first time, wherein the white list includes the pre-manufactured applications and the commonly used applications
B2, updating the white list from the cloud, specifically, after the cloud is connected, managing the white list through the port, and performing white list configuration on the machine under the expansion scheme. Due to the fact that the function management right of the white list is issued to the cloud, subsequent user grouping and fine customization of the white list can be achieved.
B3, encapsulating the interface, specifically, the encapsulating interface is used for calling of the firewall and updating the policy.
In another embodiment, if an application a exists in the vehicle-mounted white list, after the application a is started, if another application B is started through the application a, it is necessary to determine whether the application B is in the vehicle-mounted white list, and if so, the application B is allowed to access the network; otherwise, application B is prohibited from accessing the network.
The above one or at least one technical solution in the embodiments of the present application has at least the following technical effects:
based on the technical scheme, after receiving the access request of the target vehicle-mounted application, the target number of the target vehicle-mounted application is acquired; if the target serial number is the vehicle-mounted system application serial number, controlling the target vehicle-mounted application to carry out network access; therefore, whether the target serial number is the vehicle-mounted system application serial number to control whether the target vehicle-mounted application performs network access or not is judged, and networking can be performed without configuration of a public interface provided by the system, so that whether networking is allowed by a vehicle-mounted application program is dynamically controlled, and the flow control efficiency of the vehicle-mounted terminal is improved.
In view of the foregoing, a method for controlling network access of a vehicle-mounted system is provided in the foregoing embodiments, and a device for controlling network access of a vehicle-mounted system is also provided in the embodiments of the present application, please refer to fig. 4, where the device includes:
a data obtaining unit 401, configured to obtain a network access request of a target vehicle-mounted application;
a number obtaining unit 402, configured to obtain a target number of the target vehicle-mounted application according to the network access request;
a judging unit 403, configured to judge whether the target number is an in-vehicle system application number;
a network control unit 404, configured to control the target vehicle-mounted application to perform network access if the target number is the vehicle-mounted system application number.
In an optional implementation manner, the determining unit 403 is configured to, after determining whether the target number is an in-vehicle system application number, determine whether the target in-vehicle application is in an in-vehicle white list of the in-vehicle system if the target number is an off-vehicle system application number;
a network control unit 404, configured to control the target vehicle-mounted application to perform network access if the target vehicle-mounted application is in the vehicle-mounted white list.
In an optional implementation manner, the network control unit 404 is configured to, after determining whether the target vehicle-mounted application is in a vehicle-mounted white list of the vehicle-mounted system, prohibit the target vehicle-mounted application from performing network access if the target vehicle-mounted application is not in the vehicle-mounted white list.
In an alternative embodiment, the network control unit 404 is configured to generate a disable command for disabling network access through the packet filtering firewall; constructing a first output chain rule for prohibiting the target vehicle-mounted application from performing network access according to the prohibition command; and forbidding the target network to carry out network access according to the first output chain rule.
In an alternative embodiment, the network control unit 404 is configured to generate a control command for allowing network access through the packet filtering firewall; according to the control command, a second output chain rule allowing the target vehicle-mounted application to carry out network access is constructed; and controlling the target vehicle-mounted application to perform network access through the second output chain rule.
In an optional embodiment, the network control unit 404 is configured to obtain a current network interface; and constructing the second output chain rule by utilizing the current network interface according to the control command.
In an optional embodiment, the method further comprises:
the white list obtaining unit is used for reading a local white list from the vehicle-mounted system as the vehicle-mounted white list if the vehicle-mounted system is not connected with a cloud end after the target number is the non-vehicle-mounted system application number and before the target vehicle-mounted application is judged to be in the vehicle-mounted white list of the vehicle-mounted system; and if the vehicle-mounted system is connected with the cloud end, acquiring a cloud end white list from the cloud end to serve as the vehicle-mounted white list.
In an optional implementation manner, the white list obtaining unit is configured to obtain the cloud white list from the cloud if the vehicle-mounted system is connected to the cloud, update the local white list by using the cloud white list, and use the updated local white list as the vehicle-mounted white list.
Other embodiments of the invention will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of the invention following, in general, the principles of the invention and including such departures from the present disclosure as come within known or customary practice within the art to which the invention pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the invention being indicated by the following claims.
It will be understood that the invention is not limited to the precise arrangements described above and shown in the drawings and that various modifications and changes may be made without departing from the scope thereof. The scope of the invention is only limited by the appended claims
The above description is only for the purpose of illustrating the preferred embodiments of the present invention and should not be taken as limiting the scope of the present invention, which is intended to cover any modifications, equivalents, improvements, etc. within the spirit and scope of the present invention.
Claims (10)
1. A method for controlling network access of an in-vehicle system is characterized by comprising the following steps:
acquiring a network access request of a target vehicle-mounted application;
acquiring a target number of the target vehicle-mounted application according to the network access request;
judging whether the target number is a vehicle-mounted system application number or not;
and if the target number is the application number of the vehicle-mounted system, controlling the target vehicle-mounted application to carry out network access.
2. The control method according to claim 1, wherein after determining whether the target number is an in-vehicle system application number, the method further comprises:
if the target number is an off-board system application number, judging whether the target on-board application is in a vehicle-mounted white list of the vehicle-mounted system;
and if the target vehicle-mounted application is in the vehicle-mounted white list, controlling the target vehicle-mounted application to carry out network access.
3. The control method of claim 2, wherein after determining whether the target in-vehicle application is in an in-vehicle whitelist of the in-vehicle system, the method further comprises:
and if the target vehicle-mounted application is not in the vehicle-mounted white list, forbidding the target vehicle-mounted application to carry out network access.
4. The control method of claim 3, wherein the prohibiting the target in-vehicle application from network access comprises:
generating a prohibition command for prohibiting network access through a packet filtering firewall;
constructing a first output chain rule for prohibiting the target vehicle-mounted application from performing network access according to the prohibition command;
and prohibiting the target network from performing network access according to the first output chain rule.
5. The control method of any one of claims 1-4, wherein said controlling said target in-vehicle application for network access comprises:
generating a control command for allowing network access through the packet filtering firewall;
according to the control command, a second output chain rule allowing the target vehicle-mounted application to carry out network access is constructed;
and controlling the target vehicle-mounted application to perform network access through the second output chain rule.
6. The control method of claim 5, wherein the constructing a second output chain rule for allowing the target in-vehicle application to have network access according to the control command comprises:
acquiring a current network interface;
and constructing the second output chain rule by using the current network interface according to the control command.
7. The control method of claim 2, wherein after the target number is an offboard system application number, before determining whether the target in-vehicle application is on an in-vehicle whitelist of the in-vehicle system, the method further comprises:
if the vehicle-mounted system is not connected with the cloud, reading a local white list from the vehicle-mounted system as the vehicle-mounted white list;
and if the vehicle-mounted system is connected with the cloud end, acquiring a cloud end white list from the cloud end to serve as the vehicle-mounted white list.
8. The control method of claim 7, wherein if the vehicle system is connected to the cloud, the method further comprises:
and acquiring the cloud white list from the cloud, updating the local white list by using the cloud white list, and taking the updated local white list as the vehicle-mounted white list.
9. An apparatus for controlling network access of an in-vehicle system, the apparatus comprising:
the data acquisition unit is used for acquiring a network access request of the target vehicle-mounted application;
the number acquisition unit is used for acquiring a target number of the target vehicle-mounted application according to the network access request;
the judging unit is used for judging whether the target number is the application number of the vehicle-mounted system;
and the network control unit is used for controlling the target vehicle-mounted application to carry out network access if the target number is the vehicle-mounted system application number.
10. The control device according to claim 9, wherein the determination unit is configured to, after determining whether the target number is an in-vehicle system application number, determine whether the target in-vehicle application is in an in-vehicle white list of the in-vehicle system if the target number is an off-vehicle system application number;
and the network control unit is used for controlling the target vehicle-mounted application to carry out network access if the target vehicle-mounted application is in the vehicle-mounted white list.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210479582.0A CN114938294A (en) | 2022-05-05 | 2022-05-05 | Control method and control device for network access of vehicle-mounted system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210479582.0A CN114938294A (en) | 2022-05-05 | 2022-05-05 | Control method and control device for network access of vehicle-mounted system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN114938294A true CN114938294A (en) | 2022-08-23 |
Family
ID=82864259
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210479582.0A Pending CN114938294A (en) | 2022-05-05 | 2022-05-05 | Control method and control device for network access of vehicle-mounted system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114938294A (en) |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105302279A (en) * | 2015-10-27 | 2016-02-03 | 广东欧珀移动通信有限公司 | Method and system for managing access of application to network |
| CN106101077A (en) * | 2016-05-31 | 2016-11-09 | 宇龙计算机通信科技(深圳)有限公司 | A kind of method and device limiting application online |
| CN106295312A (en) * | 2016-08-19 | 2017-01-04 | 硕诺科技(深圳)有限公司 | A kind of mobile terminal limits the method that application program accesses network |
| US20190014152A1 (en) * | 2017-07-08 | 2019-01-10 | Vmware, Inc. | Network access by applications in an enterprise managed device system |
| CN109922030A (en) * | 2017-12-13 | 2019-06-21 | 南京领创信息科技有限公司 | Global network access control system and method based on Android device |
| CN113225738A (en) * | 2021-07-08 | 2021-08-06 | 智道网联科技(北京)有限公司 | Flow control method and device of vehicle-mounted terminal |
-
2022
- 2022-05-05 CN CN202210479582.0A patent/CN114938294A/en active Pending
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105302279A (en) * | 2015-10-27 | 2016-02-03 | 广东欧珀移动通信有限公司 | Method and system for managing access of application to network |
| CN106101077A (en) * | 2016-05-31 | 2016-11-09 | 宇龙计算机通信科技(深圳)有限公司 | A kind of method and device limiting application online |
| CN106295312A (en) * | 2016-08-19 | 2017-01-04 | 硕诺科技(深圳)有限公司 | A kind of mobile terminal limits the method that application program accesses network |
| US20190014152A1 (en) * | 2017-07-08 | 2019-01-10 | Vmware, Inc. | Network access by applications in an enterprise managed device system |
| CN109922030A (en) * | 2017-12-13 | 2019-06-21 | 南京领创信息科技有限公司 | Global network access control system and method based on Android device |
| CN113225738A (en) * | 2021-07-08 | 2021-08-06 | 智道网联科技(北京)有限公司 | Flow control method and device of vehicle-mounted terminal |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10384644B2 (en) | Virtual keyfob for vehicle sharing | |
| CN109102593B (en) | Method and apparatus for managing vehicle control authority | |
| US20140032800A1 (en) | Vehicle message filter | |
| RU2547022C2 (en) | Individual driver-oriented vehicle configuration | |
| CN104955680A (en) | Access limiting device, on-board communication system, and communication limiting method | |
| CN103826322A (en) | Mobile terminating packet connection | |
| WO2022056740A1 (en) | Electronic control unit, and data access method and apparatus thereof | |
| CN110304071A (en) | The method and apparatus that selective driving mode for environment sensitive enables | |
| CN112905981A (en) | Method, electronic device and computer-readable storage medium for information sharing | |
| CN111404993A (en) | Digital key sharing method, device and equipment | |
| CN113837828A (en) | Vehicle-mounted software selling method and device, vehicle and storage medium | |
| WO2012001771A1 (en) | Control device | |
| CN112466013A (en) | Digital key management method, device, system and storage medium | |
| JP2013126802A (en) | Method for downloading application software to on-board device, and the on-board device | |
| US20040005876A1 (en) | Method and apparatus for limiting and controlling capabilities of a mobile device | |
| US11625492B2 (en) | Method and system for securely providing vehicle services data to a vehicle | |
| CN114938294A (en) | Control method and control device for network access of vehicle-mounted system | |
| CN111831985A (en) | Method and apparatus for providing fleet system using identification device | |
| WO2017171749A1 (en) | Vehicle computer update authentication | |
| WO2021145234A1 (en) | Automatic valet parking system | |
| WO2022252226A1 (en) | Data protection method and vehicle | |
| JP2003153341A (en) | In-vehicle communication terminal, server, and method of registering in-vehicle communication terminal in server | |
| US11321072B2 (en) | Vehicle computer update authentication | |
| CN114419770A (en) | Fleet digital key management method and device and computer | |
| JP2017215889A (en) | Control device, program update method, and computer program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |