CN115346287A - Information configuration method and device - Google Patents
Information configuration method and device Download PDFInfo
- Publication number
- CN115346287A CN115346287A CN202210840583.3A CN202210840583A CN115346287A CN 115346287 A CN115346287 A CN 115346287A CN 202210840583 A CN202210840583 A CN 202210840583A CN 115346287 A CN115346287 A CN 115346287A
- Authority
- CN
- China
- Prior art keywords
- ecu
- configuration
- server
- information
- client
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 66
- 230000004044 response Effects 0.000 claims description 33
- 238000012545 processing Methods 0.000 claims description 8
- 238000010586 diagram Methods 0.000 description 19
- 238000004590 computer program Methods 0.000 description 13
- 238000004891 communication Methods 0.000 description 8
- 230000005540 biological transmission Effects 0.000 description 7
- 230000008569 process Effects 0.000 description 7
- 230000009471 action Effects 0.000 description 6
- 230000006870 function Effects 0.000 description 5
- 101100513046 Neurospora crassa (strain ATCC 24698 / 74-OR23-1A / CBS 708.71 / DSM 1257 / FGSC 987) eth-1 gene Proteins 0.000 description 4
- 230000004048 modification Effects 0.000 description 4
- 238000012986 modification Methods 0.000 description 4
- 230000003287 optical effect Effects 0.000 description 4
- 238000005516 engineering process Methods 0.000 description 3
- 230000002452 interceptive effect Effects 0.000 description 3
- 230000007246 mechanism Effects 0.000 description 3
- 238000011084 recovery Methods 0.000 description 2
- 238000006467 substitution reaction Methods 0.000 description 2
- 230000002159 abnormal effect Effects 0.000 description 1
- 230000005856 abnormality Effects 0.000 description 1
- 238000007792 addition Methods 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 239000000835 fiber Substances 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000005055 memory storage Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C5/00—Registering or indicating the working of vehicles
- G07C5/08—Registering or indicating performance data other than driving, working, idle, or waiting time, with or without registering driving, working, idle or waiting time
- G07C5/0841—Registering performance data
- G07C5/085—Registering performance data using electronic data carriers
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C5/00—Registering or indicating the working of vehicles
- G07C5/008—Registering or indicating the working of vehicles communicating information to a remotely located station
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/2866—Architectures; Arrangements
- H04L67/30—Profiles
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L69/00—Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
- H04L69/16—Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
- H04L69/163—In-band adaptation of TCP data exchange; In-band control procedures
Abstract
The embodiment of the application provides an information configuration method and an information configuration device, wherein the information configuration method is applied to a client and comprises the following steps: the method comprises the steps that running state information of an Electronic Control Unit (ECU) is sent to a server in real time, so that the server sends the running state information of the ECU to a cloud server, and the cloud server sends configuration information to the server based on the running state information of the ECU; receiving configuration information sent by a server, wherein the configuration information comprises configuration parameters of an ECU; the ECU is configured based on configuration parameters of the ECU. According to the embodiment of the application, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU.
Description
Technical Field
The present application belongs to the field of communications technologies, and in particular, to an information configuration method and apparatus.
Background
Currently, most Electronic Control Units (ECUs) inside a vehicle are interconnected via an ethernet, and normally, configurations on the ECUs are already set when the ECUs leave a factory, but in some cases, if an ECU state abnormality is detected or an ECU attack is detected, an original configuration of the ECU needs to be modified.
In the prior art, the modification of the ECU configuration is completed by Over-the-Air Technology (OTA) upgrade, but the OTA upgrade can be completed only in the case of vehicle flameout, and the flexibility of modifying the ECU configuration is not sufficient.
Disclosure of Invention
The embodiment of the application provides an information configuration method and device, and can solve the problems that OTA (over the air) upgrading can be completed only under the condition that a vehicle is flamed out and the flexibility of modifying ECU (electronic control unit) configuration is not enough in the prior art.
In a first aspect, an embodiment of the present application provides an information configuration method, which is applied to a client, and includes:
the method comprises the steps that running state information of an Electronic Control Unit (ECU) is sent to a server in real time, so that the server sends the running state information of the ECU to a cloud server, and the cloud server sends configuration information to the server based on the running state information of the ECU;
receiving configuration information sent by a server, wherein the configuration information comprises configuration parameters of an ECU;
the ECU is configured based on the configuration parameters of the ECU.
In one embodiment, the information configuring method further includes:
and sending configuration response information to the server, wherein the configuration response information comprises the configuration parameters of the ECU, so that the server updates the configuration file stored by the server based on the configuration parameters of the ECU.
In one embodiment, the sending the ECU operation state information to the server in real time includes:
and under the condition that the client and the server successfully establish the TLS connection, the ECU running state information is sent to the server in real time.
In one embodiment, the information configuring method further includes:
sending a handshake message to a server under the condition that a TLS connection is successfully established between a client and the server;
updating the ECU state timestamp under the condition of receiving a response message sent by the server based on the handshake message;
under the condition that the ECU state timestamp exceeds the preset time and is not updated, disconnecting the TLS connection;
and sending a request for establishing the TCP connection and the TLS connection to the server, wherein the request is used for establishing the TCP connection and the TLS connection between the server and the client.
In a second aspect, an embodiment of the present application provides an information configuration method, where the information configuration method is applied to a server, and includes:
receiving ECU running state information sent by a client;
sending ECU running state information to a cloud server, so that the cloud server determines configuration information according to the ECU running state information;
receiving configuration information sent by a cloud server, wherein the configuration information comprises configuration parameters of an ECU (electronic control unit);
and sending configuration information to the client for the client to configure the ECU based on the configuration parameters.
In one embodiment, sending configuration information to the client comprises:
and sending the configuration information to the vehicle-mounted Ethernet switch for sending the configuration information to the client by the vehicle-mounted Ethernet switch.
In a third aspect, an embodiment of the present application provides an information configuration method, where the information configuration method is applied to a cloud server, and the information configuration method includes:
receiving ECU running state information sent by a server, wherein the ECU running state information is sent to the server by a client in real time;
matching the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information comprises configuration parameters of the ECU;
and sending the configuration information to the server for the server to send the configuration information to the client so that the client configures the ECU based on the configuration parameters.
In a fourth aspect, an embodiment of the present application provides an information configuration apparatus, where the information configuration apparatus is applied to a client, and the information configuration apparatus includes:
the sending module is used for sending the ECU running state information of the electronic control unit to the server in real time so that the server sends the ECU running state information to the cloud server, and the cloud server sends configuration information to the server based on the ECU running state information;
the receiving module is used for receiving configuration information sent by the server, and the configuration information comprises configuration parameters of the ECU;
and the configuration module is used for configuring the ECU based on the configuration parameters of the ECU.
In one embodiment, the sending module is further configured to send configuration response information to the server, where the configuration response information includes configuration parameters of the ECU, so that the server updates the configuration file stored in the server based on the configuration parameters of the ECU.
In one embodiment, the sending module is further configured to send the ECU running state information to the server in real time in a case that the client and the server successfully establish a secure transport layer protocol TLS connection.
In one embodiment, the information configuration apparatus further includes an update module and a control module:
the sending module is also used for sending handshake messages to the server under the condition that the TLS connection is successfully established between the client and the server;
the updating module is used for updating the ECU state timestamp under the condition of receiving a response message sent by the server based on the handshake message;
the control module is used for disconnecting the TLS connection under the condition that the ECU state timestamp exceeds the preset time and is not updated;
and the sending module is further used for sending a request for establishing the TCP connection and the TLS connection to the server, wherein the request is used for establishing the TCP connection and the TLS connection between the server and the client.
In a fifth aspect, an embodiment of the present application provides an information configuration apparatus, where the information configuration apparatus is applied to a server, and the information configuration apparatus includes:
the receiving module is used for receiving ECU running state information sent by the client;
the sending module is used for sending the ECU running state information to the cloud server so that the cloud server can determine the configuration information according to the ECU running state information;
the receiving module is further used for receiving configuration information sent by the cloud server, and the configuration information comprises configuration parameters of the ECU;
and the sending module is also used for sending the configuration information to the client so that the client can configure the ECU based on the configuration parameters.
In one embodiment, the sending module is further configured to send the configuration information to the vehicle-mounted ethernet switch, so that the vehicle-mounted ethernet switch sends the configuration information to the client.
In a sixth aspect, an embodiment of the present application provides an information configuration apparatus, where the information configuration apparatus is applied to a cloud server, and the information configuration apparatus includes:
the receiving module is used for receiving ECU running state information sent by the server, and the ECU running state information is sent to the server by the client in real time;
the matching module is used for matching the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information comprises configuration parameters of the ECU;
and the sending module is used for sending the configuration information to the server so that the server sends the configuration information to the client, and the client configures the ECU based on the configuration parameters.
In a seventh aspect, an embodiment of the present application provides an electronic device, where the electronic device includes: a processor and a memory storing computer program instructions;
the processor, when executing the computer program instructions, implements the information configuration method as described in any of the embodiments of the first, second, and third aspects.
In an eighth aspect, the present application provides a computer storage medium, on which computer program instructions are stored, and when executed by a processor, the computer program instructions implement the information configuring method described in any one of the first, second, and third aspects.
In a ninth aspect, the present application provides a computer program product, and when executed by a processor of an electronic device, the instructions of the computer program product cause the electronic device to perform the information configuration method described in any one of the first, second, and third aspects.
According to the information configuration method and device, the electronic control unit ECU running state information is sent to the server through the client in real time, the server is used for sending the ECU running state information to the cloud server, the cloud server is enabled to determine whether the configuration of the ECU needs to be dynamically updated or not based on the ECU running state information, and the configuration information is sent to the server. Then, the client receives the configuration information sent by the server and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings required to be used in the embodiments of the present application will be briefly described below, and for those skilled in the art, other drawings may be obtained according to the drawings without creative efforts.
FIG. 1 is a schematic diagram of an information configuration architecture provided by one embodiment of the present application;
fig. 2 is a schematic flowchart of an information configuration method according to an embodiment of the present application;
fig. 3 is a second schematic flowchart of an information configuring method according to an embodiment of the present application;
FIG. 4 is a schematic diagram of the interaction between a server and a client provided by one embodiment of the present application;
FIG. 5 is a diagram illustrating a keep-alive mechanism for a server and a client according to an embodiment of the present application;
FIG. 6 is a schematic structural diagram of an information configuring apparatus according to an embodiment of the present application;
fig. 7 is a second schematic structural diagram of an information configuring apparatus according to an embodiment of the present application;
fig. 8 is a third schematic structural diagram of an information configuring apparatus according to an embodiment of the present application;
fig. 9 is a schematic structural diagram of an electronic device according to an embodiment of the present application.
Detailed Description
Features and exemplary embodiments of various aspects of the present application will be described in detail below, and in order to make objects, technical solutions and advantages of the present application more apparent, the present application will be further described in detail below with reference to the accompanying drawings and specific embodiments. It should be understood that the specific embodiments described herein are intended to be illustrative only and are not intended to be limiting. It will be apparent to one skilled in the art that the present application may be practiced without some of these specific details. The following description of the embodiments is merely intended to provide a better understanding of the present application by illustrating examples thereof.
It is noted that, herein, relational terms such as first and second, and the like may be used solely to distinguish one entity or action from another entity or action without necessarily requiring or implying any actual such relationship or order between such entities or actions. Also, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrases "comprising 8230; \8230;" comprises 8230; "does not exclude the presence of additional like elements in a process, method, article, or apparatus that comprises the element.
As described in the background art, most of the ECUs in a vehicle are interconnected via ethernet, and in general, the configuration of the ECUs is set when the vehicle leaves the factory, but in some cases, for example, when an ECU state is detected to be abnormal or an ECU is detected to be attacked, the original configuration of the ECU needs to be dynamically modified, and the conventional way of modifying the configuration of the ECU is completed by OTA upgrade. However, OTA upgrade can be completed only in the case where the vehicle is turned off, and there is a problem in that there is insufficient flexibility in modifying the ECU configuration.
In order to solve the above problems, embodiments of the present application provide an information configuration method and an information configuration apparatus, in which the information configuration method may send ECU running state information to a server through a client in real time, so that the server sends the ECU running state information to a cloud server, so that the cloud server determines whether to dynamically update the configuration of an ECU based on the ECU running state information, and sends configuration information to the server. Then, the client receives the configuration information sent by the server, and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU. First, an information configuration architecture provided in the embodiment of the present application is described below.
Fig. 1 is a schematic diagram illustrating an information configuration architecture provided in an embodiment of the present application.
As shown in fig. 1, an information configuration architecture according to an embodiment of the present disclosure may include at least one client 10, a server 11, an in-vehicle ethernet switch 12, and a cloud server 13. At least one client 10 may include ECU1, ECU2, \8230;, ECUn, n is an integer greater than 1. The client 10 runs on each ECU of the vehicle-mounted ethernet, the server 11 runs on a wireless gateway (Telematics BOX, TBOX), the TBOX and each ECU are connected with each other through a vehicle-mounted ethernet switch 12, and the TBOX is externally connected with the cloud server 13 through 4G/5G.
The client 10 is configured to send the ECU operating state information to the server 11 in real time through the in-vehicle ethernet switch 12, and is further configured to receive the configuration information sent by the server 11, and configure the ECU based on the configuration parameters of the ECU in the configuration information, where the configuration information is determined by the cloud server 13 according to the ECU operating state information and sent to the server 11.
The server 11 is configured to send the ECU operating state information to the cloud server 13 when receiving the ECU operating state information sent by the client 10, and is further configured to parse the configuration information and send the configuration information to the client 10 through the in-vehicle ethernet switch 12 when receiving the configuration information sent by the cloud server 13. In addition, the server 11 is further configured to store a configuration file (local configuration file), where the configuration file may be predefined by the factory when the TBOX is shipped, and may include a network topology configuration file and a network layer firewall configuration file of each ECU, where each configuration file adopts a yaml format, and the server 11 parses the configuration file and sends the configuration file to each ECU.
The cloud server 13 is configured to receive the ECU running state information sent by the server 11, match the ECU running state information with a preset configuration rule, obtain configuration information in the configuration rule corresponding to the ECU running state information, and further send the configuration information to the server 11.
Therefore, the ECU running state information is sent to the server through the vehicle-mounted Ethernet switch in real time through the client, so that the server sends the ECU running state information to the cloud server, the cloud server determines whether the configuration of the ECU needs to be dynamically updated or not based on the ECU running state information, and the configuration information is sent to the server. Then, the client receives the configuration information sent by the server through the vehicle-mounted Ethernet switch, and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
According to the above architecture, the information configuration method provided in the embodiment of the present application is described in detail below with reference to fig. 2.
Fig. 2 is a flowchart illustrating an information configuration method according to an embodiment of the present application.
As shown in fig. 2, the information configuration method may specifically include the following steps:
and S101, the client sends the running state information of the ECU to the server in real time.
The client runs on each ECU of the vehicle-mounted Ethernet, the server runs on the TBOX, and the client and the server can be connected with each other through a vehicle-mounted Ethernet switch. The client reports the running state information of the ECUs to the server periodically, and the running state information of the ECUs in the vehicle can represent the running state conditions of the ECUs in the vehicle, for example, the running state information can include information such as CPU utilization rate, memory utilization rate, firewall logs and host security check logs.
And S102, the server sends the ECU running state information to the cloud server.
The server establishes a Transmission Control Protocol (TCP) connection with the cloud server, and when receiving the ECU running state information sent by the client, the server reports the ECU running state information to the cloud server.
And S103, the cloud server matches the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information can comprise configuration parameters of the ECU.
The preset configuration rule can be a configuration rule preset by a user, the cloud server determines which configuration information is issued to the client according to the running state information of the ECU, and the configuration parameters in the configuration information can be parameters for adding, modifying and deleting network layer firewall rules. For example, when the CPU utilization of an ECU in the ECU operating state information is greater than 80%, and the number of network connections from an Internet Protocol (IP) address exceeds a threshold, corresponding configuration information is obtained from a preset configuration rule, where the configuration information includes a control (iptables) command for adding a Discard (DROP) data packet from the IP.
For example, when the cloud server finds that the CPU utilization rate in the running state information of the ECU (AVM 2) is greater than 80%, finds that the number of TCP connections from the ip192.168.8.112 and the destination port 5312 is greater than a threshold according to the number of network connections collected from the AVM2, where the threshold may be set to range from 30 to 50, and the cloud server considers that the ECU is under a certain network attack, and the cloud server may send the following network-layer firewall configuration information to the ECU (AVM 2):
target ECU | AVM2 |
Source IP | 192.168.8.211 |
Source port | any |
Destination port | 5312 |
Protocol | TCP |
Input interface | eth1 |
Movement of | DROP |
And S104, the cloud server sends configuration information to the server.
And after determining the configuration information to be issued, the cloud server sends the configuration information to the server through the TCP connection.
S105, the server sends the configuration information to the client.
And the server analyzes the configuration information sent by the cloud server and sends the configuration information to the client of the ECU corresponding to the ECU running state information.
And S106, the client configures the ECU based on the configuration parameters in the configuration information.
And the client receives the configuration information, and adds, modifies and deletes the network layer firewall rules according to the configuration parameters in the configuration information. For example, in S103, after the ECU (AVM 2) receives the network-layer firewall configuration information sent by the cloud server, the client running on AVM2 may add the following network-layer firewall rules:
iptables-A INPUT-i eth1-s 192.168.8.211-p tcp--dport 5312-j DROP |
according to the embodiment of the application, the ECU running state information is sent to the server in real time through the vehicle-mounted Ethernet switch through the client, so that the server sends the ECU running state information to the cloud server, the cloud server determines whether the configuration of the ECU needs to be dynamically updated or not based on the ECU running state information, and the configuration information is sent to the server. And then, the client receives the configuration information sent by the server through the vehicle-mounted Ethernet switch, and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
Based on this, fig. 3 shows a flowchart of an information configuration method provided in an embodiment of the present application, where the information configuration method is applied to a client.
As shown in fig. 3, the information configuration method may specifically include the following steps:
and S110, sending the ECU running state information to the server in real time, so that the server sends the ECU running state information to the cloud server, and the cloud server sends the configuration information to the server based on the ECU running state information.
And S120, receiving configuration information sent by the server, wherein the configuration information comprises configuration parameters of the ECU.
S130, configuring the ECU based on the configuration parameters of the ECU.
In the embodiment of the application, the electronic control unit ECU running state information is sent to the server in real time through the client, so that the server sends the ECU running state information to the cloud server, the cloud server determines whether the configuration of the ECU needs to be dynamically updated or not based on the ECU running state information, and the configuration information is sent to the server. Then, the client receives the configuration information sent by the server and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
In some embodiments, the information configuration method may further include:
and sending configuration response information to the server, wherein the configuration response information can comprise the configuration parameters of the ECU, and the configuration response information is used for updating the configuration file stored by the server based on the configuration parameters of the ECU.
The client sends configuration response information to the server, wherein the configuration response information may include a processing result of the configuration information and configuration parameters of the ECU, the configuration parameters of the ECU may be updated configuration parameters after processing according to the configuration information, and if the server does not receive the configuration response information within a preset time, the configuration response information is resent to the client.
After receiving the configuration response message, the server updates the configuration file stored in the server according to the configuration parameters of the ECUs in the configuration response message, that is, writes the configuration information into a local configuration file, where the configuration file stored in the server may be a local configuration file predefined by TBOX at factory, and the configuration file stored in the server may include a network topology configuration file and a network-layer firewall configuration file of each ECU.
Specifically, as shown in table 1, the network topology configuration file of the ECU may include network topology configuration information of each ECU in the vehicle, and the network topology configuration information may include a security management role, an authentication role, a hardware address (MAC) of an interface, an authentication mode, a virtual local area network TAG (VLAN TAG) of a sub-interface, and a multicast address that can be currently received by the ECU.
Table 1: network topology configuration information of ECU
The specific description is as follows:
the security management role is server, the ECU is a server for information security configuration management, and only TBOX is set as server at present; the security management role is client c, and the ECU is a client for information security configuration management; the security management role is an empty character none, which means that the ECU does not support the in-vehicle information security configuration management service.
The authentication role is that the authenticator represents an authentication server; the authentication role is that supplicant represents an authentication client; an authentication role of null character none indicates that there is no authentication service role.
The authentication mode may include enabling the authentication function entity and not enabling the authentication function Bypass.
VLAN TAG represents VLAN TAG value, if TAG is 0, it represents not tagging untag.
As shown in table 2, the network layer firewall configuration file may contain network layer firewall rule information of each ECU, and the network layer firewall rule information may include default policy, source ECU name, destination ECU name, service name, five-tuple information of data flow (source IP, destination IP, source port, destination port, protocol), ingress interface, egress interface, and actions to be taken to match these conditions.
Table 2: network layer firewall configuration information
The specific description is as follows:
default policy: policies to be taken for packets that do not match any rules. The default policy may include ACCEPT: allowing the data packet to pass through; DROP: discarding the data packet; ACCEPT/LOG: allowing the data packet to pass through and recording a log; DROP/LOG: the packet is discarded and the log is recorded.
Source ECU name: an issuing ECU that specifies a data flow; the name of the target ECU: a receiving ECU specifying a data flow.
The rules may include the service name: to which class of service the data flow defined by the rule belongs; and (3) source IP: a source IP address of the data stream; and (4) destination IP: a destination IP address of the data stream; source port: a source port for a data stream; destination port: a destination port for the data stream; protocol: a protocol type of the data stream; entering an interface: an input interface for a data stream; and (3) an outlet interface: an output interface for the data stream; the actions are as follows: the action to be taken by the data stream that matches the rule.
For each rule defined in the configuration file, the server sends network layer firewall configuration information to the source ECU and the destination ECU, respectively. The following describes a process of splitting the rules in the network-level firewall configuration file into two network-level firewall configurations for the ECUs.
As an example, for one network layer firewall rule as follows:
source ECU | TBOX |
Target ECU | AVM1 |
Service | OTA |
Source IP | 192.168.8.209 |
Source port | any |
Destination IP | 192.168.8.205 |
Destination port | 7176 |
Protocol | tcp |
Input interface | eth1 |
Outlet interface | eth1 |
Movement of | ACCEPT |
The server will generate the following two rules to be sent to TBOX and AVM1 respectively:
TBOX:
AVM1:
service | OTA |
Source IP | 192.168.8.209 |
Source port | any |
Destination IP | 192.168.8.205 |
Destination port | 7176 |
Protocol | tcp |
Input interface | eth1 |
Movement of | ACCEPT |
The client running on the TBOX receives the configuration message, and invokes the following iptables command to add an iptables rule in the sending direction:
the client running on AVM1 receives the configuration message, invokes the following iptables command to add an iptables rule in the receiving direction:
in the embodiment of the application, by sending the configuration response information to the server, the configuration response information may include the configuration parameters of the ECU, so that the server updates the configuration file stored by the server based on the configuration parameters of the ECU. Therefore, the configuration parameters of the ECU issued by the cloud server can be stored, and data loss is avoided.
In some embodiments, S110: the sending of the ECU operating state information to the server in real time may specifically include:
and under the condition that the client and the server successfully establish the TLS connection, sending ECU running state information to the server in real time.
The method comprises the steps that a TCP connection is established between a client and a server, if ciphertext transmission is needed, a Security Transport Layer Protocol (TLS) connection is established between the client and the server on the basis of the TCP connection, the TLS is used for providing confidentiality and data integrity between two communication application programs, and subsequent control messages and configuration information can be sent in ciphertext on the basis of the TLS or in plaintext on the basis of the TCP. And under the condition that the client successfully establishes TLS connection with the server, sending ECU running state information to the server in real time.
In addition, under the condition that the client and the server successfully establish the TLS connection, other interactive information can be transmitted, and the interactive information can be, for example, configuration information, configuration response message, and information of control messages such as HELLO message and READY message.
In the embodiment of the application, the ECU running state information is sent to the server in real time under the condition that the client and the server successfully establish the TLS connection, so that the information transmitted between the client and the server can be kept secret, and the safety of data transmission is ensured.
In some embodiments, when the server and the client successfully establish a security transport layer protocol TLS connection, the server sends configuration information analyzed by the server to the client through the vehicular ethernet switch, where the configuration information analyzed by the server may be obtained by analyzing a configuration file stored in the server, or may be obtained by analyzing configuration information issued by the cloud server by the server.
If the configuration information analyzed by the server is obtained by analyzing the configuration file stored by the server, as an example, as shown in fig. 4, S0, after the server is started, reading and analyzing the local configuration file; s1, after a client is started, establishing TCP connection with a server; s2, if ciphertext transmission is needed, the client side and the server establish TLS connection; s3, after the TLS connection is successfully established, the server sends an HELLO message to the client; s4, the client receives the HELLO message and sends an HELLO ACK message to the server to confirm that the HELLO message of the server is received; s5, the client sends a HELLO message to the server; s6, the server receives the HELLO message and sends an HELLO ACK message to the client to confirm that the HELLO message sent by the client is received; s7, the client receives the HELLO ACK message and sends a READY message to the server; s8, the server receives the READY message and sends a READY ACK message to the client to inform the client that the READY message sent by the client is received; s9, the server issues configuration information to the client according to the result of the configuration file analysis, wherein the configuration information comprises ECU network topology information, network layer firewall configuration and the like; s10, the client receives the configuration information and adds a network layer firewall rule according to the configuration information; s11, the client sends a configuration response message to the server, and the configuration response message comprises the processing result of the configuration information. If the server does not receive the configuration response message for a while, the configuration information is retransmitted to the client.
Therefore, after the server analyzes the configuration file stored in the server, the server sends the configuration information analyzed by the server to the client through the vehicular Ethernet switch under the condition that the server and the client successfully establish the TLS connection, so that the local configuration file of the server can be encrypted during transmission, and the security of interactive data is ensured.
In some embodiments, the information configuration method may further include:
sending a handshake message to a server under the condition that a TLS connection is successfully established between a client and the server;
updating the ECU state timestamp under the condition of receiving a response message sent by the server based on the handshake message;
under the condition that the ECU state timestamp exceeds the preset time and is not updated, disconnecting the TLS connection;
and sending a request for establishing the TCP connection and the TLS connection to the server, wherein the request is used for establishing the TCP connection and the TLS connection between the server and the client.
After the client and the server successfully establish the TLS connection, the client sends a handshake message to the server, where the handshake message may include a HELLO message, the response message may be a HELLO ACK message, the ECU state timestamp is updated when the response message sent by the server is received, if the preset time is not updated, the TLS connection is disconnected, and the TCP connection and the TLS connection are re-established, where the preset time may be any time preset by a user, and may be, for example, 25s.
As an example, as shown in fig. 5, a keep-alive mechanism is started between a server and a client, S0, and at a time t1, the client sends a HELLO packet to the server; s1, a server receives a HELLO message and sends HELLO ACK to a client; s2, when the client receives the HELLO ACK message sent by the server, refreshing an ECU state timestamp; s3, at the time of t1+ 5S-t 1+20S, the client sends a HELLO message to the server end every 5S, but does not receive the HELLO ACK message sent by the server all the time; s4, at the moment of t1+25S, when the time stamp of the ECU state subtracted from the current time is more than or equal to 25S, the state of the ECU is changed into a LOST (LOST) state; s5, the client disconnects the original TLS connection; and S6, the client and the server reestablish TLS connection.
In the embodiment of the application, the client sends the handshake message to the server under the condition that the client and the server successfully establish the TLS connection, the ECU state timestamp is updated under the condition that the response message sent by the server based on the handshake message is received, the TLS connection is disconnected under the condition that the ECU state timestamp exceeds the preset time and is not updated, and then the request for establishing the TCP connection and the TLS connection is sent to the server again. The keep-alive mechanism can improve the reliability and self-recovery capability of a control channel between the server and the client, and ensure real-time data transmission between the server and the client.
Based on this, another embodiment of the present application provides an information configuration method, where the information configuration method is applied to a server, and specifically includes the following steps:
and S210, receiving the ECU running state information sent by the client.
And S220, sending the ECU running state information to the cloud server, so that the cloud server determines the configuration information according to the ECU running state information.
And S230, receiving configuration information sent by the cloud server, wherein the configuration information comprises configuration parameters of the ECU.
And S240, sending configuration information to the client for the client to configure the ECU based on the configuration parameters.
In the embodiment of the application, the ECU running state information sent by the client is received through the server. And sending the ECU running state information to the cloud server so that the cloud server can determine the configuration information according to the ECU running state information. And then, receiving configuration information sent by the cloud server, and sending the configuration information to the client so that the client can configure the ECU based on the configuration parameters in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
In some embodiments, S240 may specifically include:
and sending the configuration information to the vehicle-mounted Ethernet switch for sending the configuration information to the client by the vehicle-mounted Ethernet switch.
The server is connected with the client through the vehicle-mounted Ethernet switch, the server can transmit the configuration information to the client through the vehicle-mounted Ethernet switch, and in addition, the client can also transmit the ECU running state information and the configuration response message to the server through the vehicle-mounted Ethernet switch.
In the embodiment of the application, the configuration information is sent to the vehicle-mounted Ethernet switch, so that the vehicle-mounted Ethernet switch sends the configuration information to the client, and network interconnection between the server and the client can be achieved.
Based on this, another embodiment of the present application provides an information configuration method, where the information configuration method is applied to a cloud server, and specifically includes the following steps:
receiving ECU running state information sent by a server, wherein the ECU running state information is sent to the server by a client in real time;
matching the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information comprises configuration parameters of the ECU;
and sending the configuration information to the server for the server to send the configuration information to the client so that the client configures the ECU based on the configuration parameters.
In the embodiment of the application, the ECU running state information sent by the server is received through the cloud server, the ECU running state information is matched with the preset configuration rule, the configuration information in the configuration rule corresponding to the ECU running state information is obtained, and the configuration information comprises configuration parameters of the ECU. Then, sending the configuration information to the server for the server to send the configuration information to the client, so that the client configures the ECU based on the configuration parameters. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
Fig. 6 is a schematic diagram illustrating a structure of an information configuring apparatus 600 according to an exemplary embodiment.
As shown in fig. 6, the information configuring apparatus 600 is applied to a client, and may include:
the sending module 601 is configured to send the ECU operating state information of the electronic control unit to the server in real time, so that the server sends the ECU operating state information to the cloud server, and the cloud server sends the configuration information to the server based on the ECU operating state information;
a receiving module 602, configured to receive configuration information sent by a server, where the configuration information includes configuration parameters of an ECU;
a configuration module 603 for configuring the ECU based on configuration parameters of the ECU.
In an embodiment, the sending module 601 is further configured to send configuration response information to the server, where the configuration response information includes configuration parameters of the ECU, so that the server updates the configuration file stored in the server based on the configuration parameters of the ECU.
In an embodiment, the sending module 601 is further configured to send the ECU running state information to the server in real time in a case that the client and the server successfully establish a secure transport layer protocol TLS connection.
In one embodiment, the information configuring apparatus 600 may further include an updating module and a control module:
the sending module 601 is further configured to send a handshake message to the server when the TLS connection is successfully established between the client and the server;
the updating module is used for updating the ECU state timestamp under the condition of receiving a response message sent by the server based on the handshake message;
the control module is used for disconnecting the TLS connection under the condition that the ECU state timestamp exceeds the preset time and is not updated;
the sending module 601 is further configured to send a request for establishing a TCP connection and a TLS connection to the server, where the request is used to establish the TCP connection and the TLS connection between the server and the client.
Fig. 7 is a schematic structural diagram illustrating an information configuring apparatus 700 according to an exemplary embodiment.
As shown in fig. 7, the information configuration apparatus 700, applied to a server, may include:
the receiving module 701 is used for receiving the ECU running state information sent by the client;
a sending module 702, configured to send the ECU running state information to the cloud server, so that the cloud server determines configuration information according to the ECU running state information;
the receiving module 701 is further configured to receive configuration information sent by the cloud server, where the configuration information includes configuration parameters of the ECU;
the sending module 702 is further configured to send configuration information to the client, so that the client configures the ECU based on the configuration parameters.
In an embodiment, the sending module 702 is further configured to send the configuration information to the ethernet in vehicle switch, so that the ethernet in vehicle switch sends the configuration information to the client.
Fig. 8 is a schematic structural diagram illustrating an information configuring apparatus 800 according to an exemplary embodiment.
As shown in fig. 8, the information configuring apparatus 800 is applied to a cloud server, and may include:
the receiving module 801 is configured to receive ECU operating state information sent by a server, where the ECU operating state information is sent to the server by a client in real time;
the matching module 802 is configured to match the ECU operating state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU operating state information, where the configuration information includes configuration parameters of the ECU;
a sending module 803, configured to send the configuration information to the server, so that the server sends the configuration information to the client, so that the client configures the ECU based on the configuration parameters.
Therefore, the ECU running state information is sent to the server through the vehicle-mounted Ethernet switch in real time through the client, so that the server sends the ECU running state information to the cloud server, the cloud server determines whether the configuration of the ECU needs to be dynamically updated or not based on the ECU running state information, and the configuration information is sent to the server. Then, the client receives the configuration information sent by the server through the vehicle-mounted Ethernet switch, and configures the ECU based on the configuration parameters of the ECU in the configuration information. Therefore, the configuration of the ECU can be dynamically added or modified according to the actual running state of the ECU without stopping and flameout or upgrading the version of the ECU.
Fig. 9 shows a hardware schematic diagram of an electronic device provided in an embodiment of the present application.
The electronic device may comprise a processor 901 and a memory 902 in which computer program instructions are stored.
Specifically, the processor 901 may include a Central Processing Unit (CPU), or an Application Specific Integrated Circuit (ASIC), or may be configured to implement one or more Integrated circuits of the embodiments of the present Application.
The memory may include Read Only Memory (ROM), random Access Memory (RAM), magnetic disk storage media devices, optical storage media devices, flash memory devices, electrical, optical, or other physical/tangible memory storage devices. Thus, in general, the memory includes one or more tangible (non-transitory) computer-readable storage media (e.g., memory devices) encoded with software comprising computer-executable instructions and when the software is executed (e.g., by one or more processors), it is operable to perform operations described with reference to the methods according to an aspect of the present disclosure.
The processor 901 realizes any one of the information configuring methods in the above embodiments by reading and executing computer program instructions stored in the memory 902.
In one example, the electronic device can also include a communication interface 903 and a bus 910. As shown in fig. 9, the processor 901, the memory 902, and the communication interface 903 are connected via a bus 910 to complete communication with each other.
The communication interface 903 is mainly used for implementing communication between modules, apparatuses, units and/or devices in this embodiment of the application.
The electronic device can send the running state information of the electronic control unit ECU to the server in real time based on the client to execute the information configuration method in the embodiment of the application, so that the information configuration method described in connection with FIG. 1 is realized.
In addition, in combination with the information configuration method in the foregoing embodiments, the embodiments of the present application may provide a computer storage medium to implement. The computer storage medium having computer program instructions stored thereon; the computer program instructions, when executed by a processor, implement any of the information configuring methods in the above embodiments.
It is to be understood that the present application is not limited to the particular arrangements and instrumentality described above and shown in the attached drawings. A detailed description of known methods is omitted herein for the sake of brevity. In the above embodiments, several specific steps are described and shown as examples. However, the method processes of the present application are not limited to the specific steps described and illustrated, and those skilled in the art can make various changes, modifications, and additions or change the order between the steps after comprehending the spirit of the present application.
The functional blocks shown in the above-described structural block diagrams may be implemented as hardware, software, firmware, or a combination thereof. When implemented in hardware, it may be, for example, an electronic circuit, an Application Specific Integrated Circuit (ASIC), suitable firmware, plug-in, function card, or the like. When implemented in software, the elements of the present application are the programs or code segments used to perform the required tasks. The program or code segments may be stored in a machine-readable medium or transmitted by a data signal carried in a carrier wave over a transmission medium or a communication link. A "machine-readable medium" may include any medium that can store or transfer information. Examples of a machine-readable medium include electronic circuits, semiconductor memory devices, ROM, flash memory, erasable ROM (EROM), floppy disks, CD-ROMs, optical disks, hard disks, fiber optic media, radio Frequency (RF) links, and so forth. The code segments may be downloaded via computer networks such as the internet, intranet, etc.
It should also be noted that the exemplary embodiments mentioned in this application describe some methods or systems based on a series of steps or devices. However, the present application is not limited to the order of the above-described steps, that is, the steps may be performed in the order mentioned in the embodiments, may be performed in an order different from the order in the embodiments, or may be performed simultaneously.
Aspects of the present disclosure are described above with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It will be understood that each block of the flowchart illustrations and/or block diagrams, and combinations of blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, enable the implementation of the functions/acts specified in the flowchart and/or block diagram block or blocks. Such a processor may be, but is not limited to, a general purpose processor, a special purpose processor, an application specific processor, or a field programmable logic circuit. It will also be understood that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based computer instructions which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions.
As described above, only the specific embodiments of the present application are provided, and it can be clearly understood by those skilled in the art that, for convenience and brevity of description, the specific working processes of the system, the module and the unit described above may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again. It should be understood that the scope of the present application is not limited thereto, and any person skilled in the art can easily conceive various equivalent modifications or substitutions within the technical scope of the present application, and these modifications or substitutions should be covered within the scope of the present application.
Claims (10)
1. An information configuration method, applied to a client, includes:
the method comprises the steps that running state information of an Electronic Control Unit (ECU) is sent to a server in real time, so that the server sends the running state information of the ECU to a cloud server, and the cloud server sends configuration information to the server based on the running state information of the ECU;
receiving configuration information sent by the server, wherein the configuration information comprises configuration parameters of the ECU;
configuring an ECU based on the configuration parameters of the ECU.
2. The method of claim 1, further comprising:
sending configuration response information to the server, wherein the configuration response information comprises configuration parameters of the ECU, and the configuration response information is used for updating a configuration file stored by the server based on the configuration parameters of the ECU.
3. The method of claim 1, wherein the sending ECU operating state information to the server in real time comprises:
and under the condition that the client side and the server side successfully establish a security transport layer protocol (TLS) connection, the ECU running state information is sent to the server in real time.
4. The method of claim 3, further comprising:
sending a handshake message to the server under the condition that the client successfully establishes TLS connection with the server;
updating an ECU state timestamp in the case of receiving a response message sent by the server based on the handshake message;
disconnecting the TLS connection if the ECU status timestamp exceeds a preset time and is not updated;
and sending a request for establishing the TCP connection and the TLS connection to the server, wherein the request is used for establishing the TCP connection and the TLS connection between the server and the client.
5. An information configuration method, applied to a server, includes:
receiving ECU running state information sent by a client;
sending the ECU running state information to a cloud server for the cloud server to determine configuration information according to the ECU running state information;
receiving the configuration information sent by the cloud server, wherein the configuration information comprises configuration parameters of an ECU;
sending the configuration information to the client for the client to configure the ECU based on the configuration parameters.
6. The method of claim 5, wherein sending the configuration information to the client comprises:
and sending the configuration information to a vehicle-mounted Ethernet switch for sending the configuration information to the client by the vehicle-mounted Ethernet switch.
7. An information configuration method is applied to a cloud server, and comprises the following steps:
receiving ECU running state information sent by a server, wherein the ECU running state information is sent to the server by a client in real time;
matching the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information comprises configuration parameters of the ECU;
and sending the configuration information to the server for the server to send the configuration information to the client so as to enable the client to configure the ECU based on the configuration parameters.
8. An information configuration device, applied to a client, includes:
the system comprises a sending module, a configuration module and a control module, wherein the sending module is used for sending ECU running state information of an electronic control unit to a server in real time so that the server sends the ECU running state information to a cloud server, and the cloud server sends configuration information to the server based on the ECU running state information;
the receiving module is used for receiving configuration information sent by the server, and the configuration information comprises configuration parameters of the ECU;
and the configuration module is used for configuring the ECU based on the configuration parameters of the ECU.
9. An information configuration device, applied to a server, includes:
the receiving module is used for receiving ECU running state information sent by the client;
the sending module is used for sending the ECU running state information to a cloud server so that the cloud server can determine configuration information according to the ECU running state information;
the receiving module is further configured to receive the configuration information sent by the cloud server, where the configuration information includes configuration parameters of the ECU;
the sending module is further configured to send the configuration information to the client, so that the client configures the ECU based on the configuration parameters.
10. An information configuration device, applied to a cloud server, includes:
the system comprises a receiving module, a processing module and a processing module, wherein the receiving module is used for receiving ECU running state information sent by a server, and the ECU running state information is sent to the server by a client in real time;
the matching module is used for matching the ECU running state information with a preset configuration rule to obtain configuration information in the configuration rule corresponding to the ECU running state information, wherein the configuration information comprises configuration parameters of the ECU;
and the sending module is used for sending the configuration information to the server so that the server sends the configuration information to the client to enable the client to configure the ECU based on the configuration parameters.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202210840583.3A CN115346287A (en) | 2022-07-18 | 2022-07-18 | Information configuration method and device |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN202210840583.3A CN115346287A (en) | 2022-07-18 | 2022-07-18 | Information configuration method and device |
Publications (1)
Publication Number | Publication Date |
---|---|
CN115346287A true CN115346287A (en) | 2022-11-15 |
Family
ID=83949975
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN202210840583.3A Pending CN115346287A (en) | 2022-07-18 | 2022-07-18 | Information configuration method and device |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN115346287A (en) |
Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107528821A (en) * | 2016-06-20 | 2017-12-29 | 福特全球技术公司 | The remote firewall renewal of the teleprocessing system of In-vehicle networking server |
US20180189103A1 (en) * | 2017-01-05 | 2018-07-05 | Guardknox Cyber Technologies Ltd. | Specially programmed computing systems with associated devices configured to implement centralized services ecu based on services oriented architecture and methods of use thereof |
CN110224907A (en) * | 2018-03-01 | 2019-09-10 | 上海汽车集团股份有限公司 | A kind of updating system of vehicle-mounted ECU, method and terminal |
CN111133412A (en) * | 2017-07-25 | 2020-05-08 | 奥罗拉实验室有限公司 | Software incremental update and anomaly detection for building vehicle ECU software based on tool chain |
CN112152989A (en) * | 2019-06-26 | 2020-12-29 | 黑莓有限公司 | Method and system for updating application layers for third party telecommunications providers |
CN112953775A (en) * | 2021-02-25 | 2021-06-11 | 湖北亿咖通科技有限公司 | Vehicle machine upgrading system and method |
CN113452568A (en) * | 2020-03-25 | 2021-09-28 | 上汽通用汽车有限公司 | Vehicle communication method, communication system, vehicle, and storage medium |
WO2021226781A1 (en) * | 2020-05-11 | 2021-11-18 | 深圳市欢太科技有限公司 | Firewall rule updating method and apparatus, server, and storage medium |
CN113885907A (en) * | 2021-09-16 | 2022-01-04 | 北京经纬恒润科技股份有限公司 | Firmware upgrading system and method |
WO2022095896A1 (en) * | 2020-11-09 | 2022-05-12 | 中兴通讯股份有限公司 | Method for managing ecu on vehicle, and ecu and readable storage medium |
CN114666214A (en) * | 2021-12-21 | 2022-06-24 | 北京经纬恒润科技股份有限公司 | System firewall configuration method and device for car in Internet of vehicles and T-BOX |
-
2022
- 2022-07-18 CN CN202210840583.3A patent/CN115346287A/en active Pending
Patent Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN107528821A (en) * | 2016-06-20 | 2017-12-29 | 福特全球技术公司 | The remote firewall renewal of the teleprocessing system of In-vehicle networking server |
US20180189103A1 (en) * | 2017-01-05 | 2018-07-05 | Guardknox Cyber Technologies Ltd. | Specially programmed computing systems with associated devices configured to implement centralized services ecu based on services oriented architecture and methods of use thereof |
CN111133412A (en) * | 2017-07-25 | 2020-05-08 | 奥罗拉实验室有限公司 | Software incremental update and anomaly detection for building vehicle ECU software based on tool chain |
CN110224907A (en) * | 2018-03-01 | 2019-09-10 | 上海汽车集团股份有限公司 | A kind of updating system of vehicle-mounted ECU, method and terminal |
CN112152989A (en) * | 2019-06-26 | 2020-12-29 | 黑莓有限公司 | Method and system for updating application layers for third party telecommunications providers |
CN113452568A (en) * | 2020-03-25 | 2021-09-28 | 上汽通用汽车有限公司 | Vehicle communication method, communication system, vehicle, and storage medium |
WO2021226781A1 (en) * | 2020-05-11 | 2021-11-18 | 深圳市欢太科技有限公司 | Firewall rule updating method and apparatus, server, and storage medium |
WO2022095896A1 (en) * | 2020-11-09 | 2022-05-12 | 中兴通讯股份有限公司 | Method for managing ecu on vehicle, and ecu and readable storage medium |
CN112953775A (en) * | 2021-02-25 | 2021-06-11 | 湖北亿咖通科技有限公司 | Vehicle machine upgrading system and method |
CN113885907A (en) * | 2021-09-16 | 2022-01-04 | 北京经纬恒润科技股份有限公司 | Firmware upgrading system and method |
CN114666214A (en) * | 2021-12-21 | 2022-06-24 | 北京经纬恒润科技股份有限公司 | System firewall configuration method and device for car in Internet of vehicles and T-BOX |
Non-Patent Citations (1)
Title |
---|
徐园;叶桦;陶鹏;徐丽娜;: "基于OBD-Ⅱ和蓝牙的智能车载系统的设计与研究", 工业控制计算机, no. 09, 25 September 2018 (2018-09-25) * |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107682284B (en) | Method and network equipment for sending message | |
US10484401B2 (en) | In-vehicle network attack detection method and apparatus | |
CN110337799B (en) | Motor vehicle having a data network inside the vehicle and method for operating a motor vehicle | |
US10554585B2 (en) | Communication route control system and communication route control method | |
US9246815B2 (en) | Load reducing system and load reducing method | |
CN107819730B (en) | Data transmission method, safety isolation device and vehicle-mounted Ethernet system | |
WO2018061362A1 (en) | Gateway, in-vehicle communication system, communication control method and communication control program | |
US20170359310A1 (en) | Bypassing a firewall for authorized flows using software defined networking | |
CN111212397B (en) | Vehicle-to-outside information interaction (V2X) communication device and method for receiving vehicle-to-outside information interaction (V2X) message | |
CN110278152B (en) | Method and device for establishing fast forwarding table | |
CN111385180B (en) | Communication tunnel construction method, device, equipment and medium | |
CN108810008B (en) | Transmission control protocol flow filtering method, device, server and storage medium | |
US20150030029A1 (en) | Frame Passing Based on Ethertype | |
CN112398741A (en) | Method for learning routing, method, equipment and storage medium for forwarding message | |
KR102293752B1 (en) | Method for communication network, and electronic control unit | |
CN109039947B (en) | Network packet duplication removing method and device, network distribution equipment and storage medium | |
US11516294B2 (en) | Switch device, monitoring method and monitoring program | |
US20230123614A1 (en) | Routing control method and apparatus, system and border gateway protocol peer | |
CN115346287A (en) | Information configuration method and device | |
CN113037691A (en) | Message processing method, device and system | |
US20220355750A1 (en) | Relay device, in-vehicle communication system, in-vehicle communication method, and storage medium | |
CN112930662B (en) | Information processing apparatus and management apparatus | |
CN114978563A (en) | Method and device for blocking IP address | |
CN106067864B (en) | Message processing method and device | |
CN114884706B (en) | Vehicle-mounted message processing method and system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination |