CN115514497A - Certificate issuing method and device - Google Patents

Certificate issuing method and device Download PDF

Info

Publication number
CN115514497A
CN115514497A CN202211154062.9A CN202211154062A CN115514497A CN 115514497 A CN115514497 A CN 115514497A CN 202211154062 A CN202211154062 A CN 202211154062A CN 115514497 A CN115514497 A CN 115514497A
Authority
CN
China
Prior art keywords
vehicle
information
certificate
cloud service
configuration information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211154062.9A
Other languages
Chinese (zh)
Inventor
邹本奇
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Ningbo Joynext Technology Corp
Original Assignee
Ningbo Joynext Technology Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Ningbo Joynext Technology Corp filed Critical Ningbo Joynext Technology Corp
Priority to CN202211154062.9A priority Critical patent/CN115514497A/en
Publication of CN115514497A publication Critical patent/CN115514497A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • H04W12/069Authentication using certificates or pre-shared keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/30Services specially adapted for particular environments, situations or purposes
    • H04W4/40Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P]
    • H04W4/44Services specially adapted for particular environments, situations or purposes for vehicles, e.g. vehicle-to-pedestrians [V2P] for communication between vehicles and infrastructures, e.g. vehicle-to-cloud [V2C] or vehicle-to-home [V2H]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The application relates to a certificate issuing method and device. The main technical scheme comprises: after a vehicle is started, sending vehicle information to cloud service equipment, receiving feedback information generated by the cloud service equipment according to the vehicle information, and generating certificate request information when the feedback information comprises positive confirmation information, wherein the positive confirmation information is used for indicating that the vehicle needs a certificate, and sending a certificate issuing request to the cloud service equipment in response to the fact that the main account of the vehicle is detected to log in, so that the cloud service equipment issues the certificate according to the certificate issuing request. According to the method and the device, whether the vehicle needs the certificate is judged through the vehicle configuration information, then the certificate is issued when the primary account number of the vehicle needs to be applied again in login, unnecessary certificate issuing can be avoided, waste of communication resources is reduced, background certificate management capacity is improved, information safety of a user is guaranteed as far as possible, and network safety is enhanced.

Description

Certificate issuing method and device
Technical Field
The present application relates to the field of automotive technologies, and in particular, to a certificate issuing method and apparatus.
Background
With the progress of wireless technology, automotive electronics technology and automatic control technology, the integration level of electronic equipment is higher and higher, and various functions integrated on a vehicle machine are more and more. In order to ensure the safety of the functions on the vehicle during application, when the vehicle communicates with the cloud service device, the identity of the vehicle needs to be verified based on the corresponding certificate.
At present, the certificate is generally filled into a vehicle machine in a production line, and the vehicle machine is mounted on a vehicle after the vehicle machine is produced. It can be seen that in the process, the certificate is separated from the vehicle within a period of time, and a great safety hazard exists.
Disclosure of Invention
Based on the above, the application provides a certificate issuing method and device, so that the certificate is issued when necessary, background certificate management pressure is reduced, and risk of information leakage is reduced.
In a first aspect, a certificate issuing method is provided, and the method is applied to a vehicle terminal, and includes:
after the vehicle is started, sending vehicle information to the cloud service equipment;
receiving feedback information generated by the cloud service equipment according to the vehicle information;
generating certificate request information when the feedback information includes positive confirmation information, the positive confirmation information being used to indicate that the vehicle requires a certificate;
and responding to the detection of the login of the primary account of the vehicle, and sending a certificate issuing request to the cloud service equipment, wherein the certificate issuing request comprises certificate request information and account information of the primary account, and the certificate issuing request is used for requesting the cloud service equipment to issue a certificate according to the certificate request information and the account information.
According to one implementation manner of the embodiment of the application, the vehicle information comprises vehicle identification information and/or vehicle configuration information;
after the vehicle starts, send vehicle information to high in the clouds service equipment, include: after the vehicle is started, vehicle identification information is sent to cloud service equipment; and receiving feedback information generated by the cloud service equipment according to the vehicle information, wherein the feedback information comprises: receiving feedback information generated based on the vehicle configuration information after the cloud service equipment inquires the vehicle configuration information of the matched vehicle according to the vehicle identification information;
or,
after the vehicle starts, send vehicle information to high in the clouds service equipment, include: after the vehicle is started, sending vehicle configuration information to the cloud service equipment; and receiving feedback information generated by the cloud service equipment according to the vehicle information, wherein the feedback information comprises: and receiving feedback information generated by the cloud service equipment according to the vehicle configuration information.
According to one implementable manner of an embodiment of the present application, the vehicle configuration information includes high level configuration information or medium level configuration information; receiving feedback information generated by the cloud service equipment according to the vehicle information, wherein the feedback information comprises:
when the vehicle configuration information is high configuration information or medium configuration information, receiving positive confirmation information generated by the cloud service equipment;
according to one implementation of the embodiment of the present application, the vehicle configuration information includes standard configuration information, and the feedback information includes negative acknowledgement information; the method further comprises the following steps:
when the vehicle configuration information is standard configuration information, negative confirmation information generated by the cloud service equipment is received, and the negative confirmation information is used for indicating that the vehicle does not need the certificate.
According to one implementation manner in the embodiment of the present application, when the feedback information includes positive confirmation information, generating the certificate request information includes:
when the feedback information comprises positive confirmation information, acquiring a pre-stored certificate;
generating a public key and a private key in a preset mode, and storing the private key;
and generating certificate request information according to the certificate and the public key.
According to an implementation manner in the embodiment of the present application, in response to detecting that a primary account of a vehicle logs in, sending a certificate issue request to a cloud service device, includes:
in response to the fact that the primary account of the vehicle is detected to log in, account information of the primary account and historical account information stored in the vehicle are obtained;
and when the historical account information does not include the account information of the primary account, sending a certificate issuing request to the cloud service equipment.
According to an implementation manner in the embodiment of the present application, before sending the vehicle information to the cloud service device, the method further includes:
detecting whether a certificate exists in the vehicle terminal;
sending vehicle information to the cloud service device, including:
and when the certificate does not exist in the vehicle terminal, sending vehicle information to the cloud service equipment.
In a second aspect, a method for issuing a certificate is provided, where the method is applied to a cloud service device, and includes:
receiving vehicle information sent by a vehicle terminal;
generating feedback information according to the vehicle configuration information, and sending the feedback information to the vehicle terminal;
receiving a certificate issuing request sent by a vehicle terminal when a primary account of a vehicle logs in according to feedback information, wherein the certificate issuing request comprises certificate request information and account information of the primary account;
and issuing the certificate to the vehicle terminal in response to the certificate issuing request.
According to one implementation manner of the embodiment of the application, the vehicle information comprises vehicle identification information and/or vehicle configuration information;
receiving vehicle information sent by a vehicle terminal, comprising: receiving vehicle identification information sent by a vehicle terminal; generating feedback information according to the vehicle information, including: inquiring vehicle configuration information of the matched vehicle according to the vehicle identification information, and generating feedback information according to the vehicle configuration information;
or,
the method for receiving the vehicle information sent by the vehicle terminal comprises the following steps: receiving vehicle configuration information sent by a vehicle terminal; generating feedback information according to the vehicle information, including: and generating feedback information according to the vehicle configuration information.
According to one implementable aspect of an embodiment of the present application, the vehicle configuration information includes high level configuration information and medium level configuration information; generating feedback information according to the vehicle information, including:
and generating positive confirmation information according to the high configuration information or the medium configuration information, wherein the positive confirmation information is used for indicating that the vehicle needs the certificate.
According to one implementation of the embodiment of the present application, the vehicle configuration information includes standard configuration information, and the feedback information includes negative acknowledgement information; generating feedback information according to the vehicle information, including:
negative acknowledgement information is generated based on the standard configuration information, the negative acknowledgement information indicating that the vehicle does not require a certificate.
According to one implementation manner in the embodiment of the present application, the certificate request information includes a certificate credential and a public key of the vehicle, where the certificate credential includes a vehicle identification code and a vehicle device identifier; issuing a certificate to a vehicle terminal in response to a certificate issuing request, including:
verifying whether the vehicle identification code and the vehicle equipment identification are legal or not;
and if the verification is passed, issuing a certificate to the vehicle terminal based on the public key.
According to one implementation manner in the embodiment of the present application, before receiving the vehicle information sent by the vehicle terminal, the method further includes:
receiving certificate application information sent by production line equipment, wherein the certificate application information comprises a vehicle identification code and a vehicle equipment identifier;
generating a certificate according to the vehicle identification code and the vehicle equipment identifier;
and sending the certificate to a production line device so as to store the certificate to the vehicle terminal through the production line device.
In a third aspect, an apparatus for issuing a certificate is provided, where the apparatus includes:
the sending module is used for sending vehicle information to the cloud service equipment after the vehicle is started;
the receiving module is used for receiving feedback information generated by the cloud service equipment according to the vehicle information;
a generating module for generating certificate request information when the feedback information includes positive confirmation information, the positive confirmation information being used for indicating that the vehicle needs the certificate;
the sending module is further used for responding to the detection of the login of the primary account of the vehicle and sending a certificate issuing request to the cloud service equipment, wherein the certificate issuing request comprises certificate request information and account information of the primary account, and the certificate issuing request is used for requesting the cloud service equipment to issue a certificate according to the certificate request information and the account information of the primary account.
In a fourth aspect, a certificate issuing apparatus is provided, which includes:
the receiving module is used for receiving vehicle configuration information sent by a vehicle terminal;
the generating module is used for generating feedback information according to the vehicle configuration information and sending the feedback information to the vehicle terminal;
the receiving module is also used for receiving a certificate issuing request sent by the vehicle terminal when the vehicle terminal logs in through the primary account of the vehicle according to the feedback information, wherein the certificate issuing request comprises certificate request information and account information of the primary account;
and issuing the certificate to the vehicle terminal in response to the certificate issuing request.
In a fifth aspect, there is provided a computer device comprising:
at least one processor; and
a memory communicatively coupled to the at least one processor; wherein,
the memory stores computer instructions executable by the at least one processor to cause the at least one processor to perform the method of the first or second aspect.
In a sixth aspect, a computer-readable storage medium is provided, on which computer instructions are stored, wherein the computer instructions are configured to cause a computer to perform the method of the first aspect or the second aspect.
According to the technical content provided by the embodiment of the application, after a vehicle is started, vehicle information is sent to cloud service equipment, feedback information generated by the cloud service equipment according to the vehicle information is received, when the feedback information comprises positive confirmation information, certificate request information is generated, the positive confirmation information is used for indicating that the vehicle needs a certificate, and in response to the fact that the primary account of the vehicle is detected to log in, a certificate issuing request is sent to the cloud service equipment so that the cloud service equipment can issue the certificate according to the certificate issuing request. According to the embodiment of the application, whether the vehicle needs the certificate is judged through the vehicle configuration information, and then the certificate is issued when the primary account number of the vehicle needs to be applied again in login, so that unnecessary certificate issuing is avoided, waste of communication resources is reduced, background certificate management capacity is improved, and information safety of a user is guaranteed as much as possible.
Drawings
FIG. 1 is a flowchart illustrating a certificate issuing method according to an embodiment;
FIG. 2 is a flowchart illustrating a certificate issuing method in another embodiment;
FIG. 3 is a flowchart illustrating a preferred certificate issuing method according to an embodiment;
FIG. 4 is a flowchart illustrating a preferred certificate issuing method in yet another embodiment;
FIG. 5 is a block diagram showing the structure of a certificate issuing apparatus in one embodiment;
fig. 6 is a block diagram of a certificate issuing apparatus in another embodiment;
FIG. 7 is a schematic block diagram of a computer apparatus in one embodiment.
Detailed Description
The present application will be described in further detail below with reference to the accompanying drawings and examples. It should be understood that the specific embodiments described herein are merely illustrative of the present application and are not intended to limit the present application.
Fig. 1 is a flowchart illustrating a certificate issuing method according to an embodiment of the present application, where the method may be executed by a vehicle terminal. As shown in fig. 1, the method may include the steps of:
and S110, after the vehicle is started, sending vehicle information to the cloud service equipment.
The vehicle information includes vehicle identification information and/or vehicle configuration information. The vehicle configuration information comprises hardware type configuration information and software type configuration information, and the configuration information can be divided into high-level configuration information, medium-level configuration information and standard configuration information by combining different types of configuration information. The functions that can be realized by the vehicles corresponding to the configuration information of different levels are limited, for example, the vehicles corresponding to the standard configuration information may not have an online access function, and thus it is not necessary to acquire a certificate from the cloud service device to access online function data. The certificate is a digital certificate for certifying the identity of the vehicle or indicating that the vehicle terminal has authority to access the online service.
After the vehicle is started, vehicle information is sent to the cloud service equipment, and the cloud service equipment can judge whether the vehicle needs a certificate or not according to the vehicle information so as to avoid issuing the certificate to unnecessary vehicles.
And S120, receiving feedback information generated by the cloud service equipment according to the vehicle information.
The feedback information includes positive acknowledgement information and negative acknowledgement information. When the cloud judges that the vehicle needs the certificate when using the online function according to the vehicle information, the feedback information sent to the vehicle terminal is the positive confirmation information. And when the cloud judges that the vehicle does not need the certificate when using the online function according to the vehicle information, the feedback information sent to the vehicle terminal is negative confirmation information.
The vehicle terminal receives feedback information sent by the cloud service equipment to determine whether to execute the operation of applying for the certificate.
And S130, when the feedback information comprises the positive confirmation information, generating certificate request information.
The positive acknowledgement information is used to indicate that the vehicle requires a certificate. When the feedback information received by the vehicle terminal is positive confirmation information, the certificate is required when the vehicle uses the online function, and the certificate request information is generated. The certificate request information may include information such as certificate credentials, a vehicle public key, and a signature.
The vehicle does not necessarily need to use an online function after being started, and the certificate request information is not sent to the cloud service equipment to apply for a certificate. And when the primary account number of the vehicle is determined to need to apply for the certificate after logging in, sending certificate request information to the cloud service equipment.
S140, in response to the fact that the primary account of the vehicle is detected to log in, a certificate issuing request is sent to the cloud service equipment.
The certificate issuing request comprises certificate request information and account information of a primary account, and the certificate issuing request is used for requesting the cloud service equipment to issue a certificate according to the certificate request information and the account information.
The primary account number of the vehicle may be registered when the vehicle is sold for the first time, may be registered when the vehicle is sold for the second time, or may be registered when the primary account number is changed. Before selling for the second time, the user can delete the own primary account number so as to ensure the information safety. When the primary account number is deleted or changed, the certificate corresponding to the original primary account number is also deleted.
Therefore, when a primary account of a vehicle logs in, a certificate needs to be applied to the cloud service device, a certificate issuing request is sent to the cloud service device, and the cloud service device issues the certificate according to certificate request information in the certificate issuing request and account information of the primary account.
It can be seen that, in the embodiment of the application, after the vehicle is started, the vehicle information is sent to the cloud service device, the feedback information generated by the cloud service device according to the vehicle information is received, when the feedback information includes the positive confirmation information, the certificate request information is generated, the positive confirmation information is used for indicating that the vehicle needs to apply for the certificate, and in response to the fact that the primary account of the vehicle is detected to log in, the certificate issuing request is sent to the cloud service device so that the cloud service device issues the certificate according to the certificate issuing request. According to the embodiment of the application, whether the vehicle needs to apply for the certificate or not is judged through the vehicle information, then the certificate is issued when the primary account number of the vehicle needs to be applied again in login, unnecessary certificate issuing is avoided, waste of communication resources is reduced, background certificate management capacity is improved, and information safety of a user is guaranteed as far as possible.
The steps in the above-described process flow are described in detail below. First, the above S110, that is, "send vehicle information to the cloud service device" will be described in detail with reference to the embodiment.
The vehicle information includes vehicle identification information and/or vehicle configuration information. As an implementation manner, after the vehicle is started, the vehicle identification information is sent to the cloud service device.
The vehicle identification information includes a vehicle identification code including information of a manufacturer, a year, a vehicle type, a vehicle body type and a code, an engine code, an assembly site, and the like. The vehicle type can be accurately identified through the vehicle identification code.
After the vehicle is started, vehicle identification information is sent to the cloud service equipment, and the cloud service equipment can inquire vehicle configuration information of the matched vehicle according to the vehicle identification information and generate feedback information.
As another implementation manner, after the vehicle is started, the vehicle configuration information may also be directly sent to the cloud service device.
No matter which kind of vehicle information can be obtained by the vehicle terminal, the cloud service equipment can judge whether the vehicle needs to apply for the certificate, and the condition that the certificate cannot be obtained in time due to single information is avoided.
The above S120, that is, "receiving feedback information generated by the cloud service device according to the vehicle information," will be described in detail with reference to the embodiment.
As an implementation mode, after the cloud service equipment inquires and matches the vehicle configuration information of the vehicle according to the vehicle identification information, feedback information generated based on the vehicle configuration information is received;
after receiving the vehicle identification information sent by the vehicle terminal, the cloud service equipment inquires the vehicle configuration information of the matched vehicle, generates feedback information based on the vehicle configuration information, and sends the feedback information to the vehicle terminal. The vehicle terminal receives the feedback information to determine whether a certificate is needed.
As another implementation manner, if the vehicle terminal directly sends the vehicle configuration information to the cloud service device, the cloud service device directly generates the feedback information according to the vehicle configuration information, and sends the feedback information to the vehicle terminal.
The feedback information includes positive acknowledgement information and negative acknowledgement information. Wherein the negative acknowledgement information indicates that the vehicle does not require a certificate.
As one of the realizable manners, when the vehicle configuration information is the high configuration information or the medium configuration information, the positive confirmation information generated by the cloud service device is received.
The high-level configuration information is configuration information in which the vehicle terminal uses more advanced functions, and the medium-level configuration information is configuration information in which the vehicle terminal uses less advanced functions.
The high level configuration information and the medium level configuration information are relative, mainly the number of the high level functions is used as a distinguishing standard, the high level configuration information includes configuration information of the high level functions which does not exist in the medium level configuration information, and the medium level configuration information may also include configuration information of the low level functions which does not exist in the high level configuration information. High-level functions and low-level functions are also relative and can be distinguished according to their degree of intelligence. When the vehicle configuration information is high configuration information or medium configuration information, the cloud service equipment judges that the vehicle supports online service, needs a certificate to use an online function, and generates positive confirmation information. And after the vehicle terminal receives the positive confirmation information, the vehicle terminal starts to execute the operation of applying for the certificate.
When the vehicle configuration information is standard configuration information, negative confirmation information generated by the cloud service equipment is received, and the negative confirmation information is used for indicating that the vehicle does not need the certificate.
The standard configuration information is configuration information in which the vehicle terminal cannot use advanced functions. When the vehicle configuration information is standard configuration information, the cloud service equipment judges that the vehicle does not support the online services corresponding to the advanced functions, does not need certificates to use the online services, and generates negative confirmation information. After the vehicle terminal receives the negative confirmation information fed back by the cloud service equipment, no operation is needed. Therefore, unnecessary information transmission can be reduced, the risk of information leakage in the information transmission process is further reduced, and the safety of user information is ensured as much as possible.
The above-described S130, i.e., "when the feedback information includes the positive confirmation information, the certificate request information is generated", is described in detail below with reference to the embodiment.
As one implementable way, when the feedback information includes positive acknowledgement information, obtaining a pre-stored certificate credential;
generating a public key and a private key in a preset mode, and storing the private key;
and generating certificate request information according to the certificate and the public key.
The certificate is obtained by applying to the cloud service equipment in advance through the production line equipment and is stored in the vehicle terminal, and the certificate comprises a vehicle identification code and a vehicle equipment identifier. When the vehicle needs to apply for the certificate, the certificate can be used as the basis for the authentication of the vehicle.
Through prestoring the certificate voucher at the vehicle terminal, the certificate is applied when the vehicle needs the certificate, so that the condition that the vehicle data are lost due to the fact that the certificate is leaked when the production line is filled is avoided, and the privacy and the safety of the vehicle data are guaranteed. The preset mode may be any mode for generating a public-private key pair, for example, openssl command. And generating a public key and a private key according to the vehicle identification code and the vehicle equipment identification through an Openssl command, wherein the public key is disclosed by the vehicle terminal, shared by the cloud service equipment and used for encryption and signature verification. The private key is stored in the vehicle terminal and used for decryption and signature.
And packaging the certificate and the vehicle public key according to a standard data format to obtain the certificate request information. The standard data format of the certificate request information may be PKCS #10.
When the cloud service device sends the certificate to the vehicle terminal, the cloud service device can encrypt the certificate by using the public key, safely transmit the certificate to the vehicle terminal, and then decrypt the certificate by using the private key stored in the vehicle terminal. Because the private key is always stored in the security chip and never leaves the vehicle, the possibility of information leakage is eliminated.
The above S140, that is, "sending a certificate issue request to the cloud service device in response to detecting that the primary account of the vehicle logs in," will be described in detail below with reference to the embodiment.
As an implementation manner, in response to detecting that a primary account of a vehicle logs in, account information of the primary account and historical account information stored by the vehicle are acquired;
and when the historical account information does not include the account information of the primary account, sending a certificate issuing request to the cloud service equipment.
The primary account number login for the vehicle may also be caused by the expiration of a previous primary account number login, which results in a login whose corresponding primary account number is unchanged. Under the condition that the primary account number is unchanged, the certificate applied before can be continuously used without applying again.
When a primary account number of a vehicle logs in, whether the primary account number logs in the vehicle for the first time needs to be verified, and account number information and historical account number information of the primary account number are obtained. The account information comprises information such as account user identity, account data and login time, and the historical account information comprises information such as historical account user identity, historical account data and historical login time.
When the historical account information does not include account information, it is indicated that the primary account does not log in the vehicle, the vehicle does not have a certificate corresponding to the primary account, and a certificate needs to be applied. At this time, a certificate issuing request is sent to the cloud service equipment.
By the method, whether the certificate needs to be applied or not is judged again when the primary account of the vehicle logs in, repeated application of the certificate by the vehicle terminal is avoided, background certificate management pressure is further reduced, and certificate issuing efficiency is improved.
As one implementation, before sending the vehicle information to the cloud service device, the method further includes:
detecting whether a certificate exists in the vehicle terminal;
sending vehicle information to the cloud device, including:
and when the certificate does not exist in the vehicle terminal, sending the vehicle information to the cloud service equipment.
When the vehicle is started, a process for detecting whether the certificate exists in the vehicle terminal can be started. When the vehicle terminal has the certificate, the certificate is normally used to access the cloud service equipment to use the online function. And when the certificate does not exist in the vehicle terminal, sending vehicle configuration information to the cloud service equipment to acquire the certificate.
Before vehicle information is sent to the cloud service equipment, unnecessary certificate application can be reduced by detecting whether a certificate exists in the vehicle terminal, waiting time of the vehicle terminal for using an online function is saved, and access efficiency of the vehicle terminal is improved.
Fig. 2 is a schematic flowchart of a certificate issuing method according to an embodiment of the present application, where the method may be executed by a cloud service device. As shown in fig. 2, the method may include the steps of:
and S210, receiving the vehicle information sent by the vehicle terminal.
The vehicle information includes vehicle identification information and/or vehicle configuration information. The vehicle configuration information comprises hardware type configuration information and software type configuration information, and the configuration information can be divided into high-level configuration information, medium-level configuration information and standard configuration information by combining different types of configuration information.
The cloud service equipment can receive vehicle configuration information sent by the vehicle terminal, and can judge whether the vehicle needs a certificate according to the vehicle configuration information so as to avoid issuing the certificate to unnecessary vehicles.
And S220, generating feedback information according to the vehicle configuration information, and sending the feedback information to the vehicle terminal.
When the cloud judges that the vehicle needs the certificate when using the online function according to the vehicle configuration information, the generated feedback information is positive confirmation information. When the cloud judges that the vehicle does not need the certificate when using the online function according to the vehicle configuration information, the generated feedback information is negative confirmation information.
And sending feedback information to the vehicle terminal so that the vehicle terminal can determine whether to execute the operation of applying for the certificate.
And S230, receiving a certificate issuing request sent by the vehicle terminal when the primary account of the vehicle logs in according to the feedback information.
When the feedback information received by the vehicle terminal is positive confirmation information, the certificate is required when the vehicle uses the online function, and the certificate request information is generated. Because the online function is not necessarily required after the vehicle is started, when the primary account number of the vehicle is logged in and then the certificate is determined to be required to be applied, the certificate request information is sent to the cloud service equipment.
And the cloud service equipment receives the certificate request information sent by the vehicle terminal and judges whether to issue the certificate or not.
And S240, issuing the certificate to the vehicle terminal in response to the certificate issuing request.
The cloud service equipment responds to the certificate request information, firstly carries out identity verification on the vehicle, and issues the certificate to the vehicle terminal when the identity verification of the vehicle passes, so that the data of the vehicle terminal are prevented from being leaked.
According to the embodiment of the application, the vehicle information sent by the vehicle terminal is received, the feedback information is generated according to the vehicle information, the feedback information is sent to the vehicle terminal, the certificate issuing request generated by the vehicle terminal when the primary account of the vehicle logs in according to the feedback information is received, the certificate is issued to the vehicle terminal in response to the certificate issuing request, unnecessary certificate issuing can be avoided, waste of communication resources is reduced, the certificate management capability of the background of the cloud service equipment is improved, and the information safety of a user is guaranteed as much as possible.
The steps in the above-described process flow are described in detail below. First, the above-described S210, i.e., "receiving vehicle information transmitted by a vehicle terminal", will be described in detail with reference to the embodiment.
The vehicle information includes vehicle identification information and/or vehicle configuration information. As one way of accomplishing this, vehicle identification information transmitted by a vehicle terminal is received. The vehicle identification information may be used to find vehicle configuration information that matches the vehicle.
As another implementable manner, vehicle configuration information transmitted by the vehicle terminal is received.
The cloud service equipment can judge whether the vehicle needs to apply for the certificate no matter which kind of vehicle information is received, so that the requirement for the vehicle terminal to send the vehicle information is reduced, and better compatibility is achieved.
The above-described S220, i.e., "generating feedback information according to vehicle configuration information", will be described in detail with reference to the embodiments.
As an implementation manner, the cloud service device queries vehicle configuration information of a matching vehicle according to the vehicle identification information, and generates feedback information according to the vehicle configuration information.
As another implementation manner, the cloud service device may also generate feedback information directly according to the vehicle configuration information.
The feedback information includes positive acknowledgement information and negative acknowledgement information. Wherein the positive acknowledgement information is used to indicate that the vehicle requires the certificate and the negative acknowledgement information is used to indicate that the vehicle does not require the certificate.
The vehicle configuration information includes high level configuration information and medium level configuration information. The high-level configuration information is configuration information in which the vehicle terminal uses more advanced functions, and the medium-level configuration information is configuration information in which the vehicle terminal uses less advanced functions.
As one of the realizable ways, the positive acknowledgement information is generated from the high level configuration information or the medium level configuration information.
The high-level configuration information and the medium-level configuration information each contain configuration information using a high-level function. And when the cloud service equipment determines that the vehicle can use the high-level functions according to the received high-level configuration information or the medium configuration information, generating positive confirmation information.
As one of the realizable manners, the vehicle configuration information includes standard configuration information, and the negative confirmation information is generated according to the standard configuration information.
The standard configuration information is configuration information in which the vehicle terminal cannot use advanced functions. And when the cloud service equipment determines that the vehicle cannot use the advanced function according to the received standard configuration information, generating positive confirmation information.
By judging whether the vehicle needs the certificate or not according to the vehicle configuration information, the redundant information processed by the cloud service equipment can be reduced, and the necessary request information can be responded more quickly.
The above-described S240, i.e., "issue a certificate to a vehicle terminal in response to certificate request information", is described in detail below with reference to the embodiments.
The certificate request information includes a certificate credential of the vehicle and a public key, the certificate credential including a vehicle identification code and a vehicle device identification.
As an implementable way, verifying whether the vehicle identification code and the vehicle equipment identification are legal;
and if the verification is passed, issuing a certificate to the vehicle terminal based on the public key.
In order to ensure the safety of the vehicle terminal data, the vehicle identity is verified according to the vehicle identification code and the vehicle equipment representation, and if the vehicle identification code and the vehicle equipment identification are legal, the vehicle identification code and the vehicle equipment identification are verified. At the moment, the cloud service equipment encrypts the certificate by using the public key, and issues the encrypted certificate to the vehicle terminal.
As one implementation, before receiving the vehicle information transmitted by the vehicle terminal, the method further includes:
receiving certificate application information sent by production line equipment, wherein the certificate application information comprises a vehicle identification code and a vehicle equipment identifier;
generating a certificate according to the vehicle identification code and the vehicle equipment identifier;
and sending the certificate to production line equipment so as to store the certificate to the vehicle through the production line equipment.
Before receiving vehicle configuration information sent by a vehicle terminal, a production line worker sends a request to a cloud service device through production line equipment to apply for a certificate of a vehicle. The cloud service equipment generates a certificate matched with the vehicle according to the vehicle identification code and the vehicle equipment identification, and the certificate can be used as an identity basis for obtaining the certificate from the cloud service equipment. Cloud service equipment sends the certificate voucher to production line equipment, and production line equipment writes the certificate voucher into the safety chip of vehicle, avoids being erased.
After the production line equipment acquires the certificate, the certificate is filled into the vehicle terminal instead of directly filling the certificate into the vehicle terminal, so that the certificate is never separated from the vehicle, the risk of certificate leakage is reduced, the illegal tampering and remote control of the certificate on the production line are avoided, and the safety of vehicle data is improved. Meanwhile, the certificate voucher is filled into the vehicle terminal through the production line equipment, compared with the certificate voucher filled into the vehicle terminal, the operation process of production line workers can be simplified, and the influence of certificate writing errors caused by operation errors of the production line workers is reduced as much as possible.
The certificate issuing method adopts a mode of combining vehicle configuration information and primary account login to determine whether to issue the certificate, and can also determine whether to issue the certificate only according to the vehicle configuration information or the primary account login.
As one implementation manner, the method for determining whether to issue the certificate according to the vehicle configuration information includes: after the vehicle is started, whether the certificate exists in the vehicle terminal is detected, and if the certificate exists in the vehicle terminal, the existing certificate is used for accessing the cloud service equipment to use the online function.
And if the vehicle terminal does not have the certificate, sending vehicle configuration information to the cloud service equipment, and generating feedback information by the cloud service equipment according to the vehicle configuration information and sending the feedback information to the vehicle terminal. And when the feedback information is the positive confirmation information, generating certificate request information, sending a certificate issuing request to the cloud service equipment, and issuing the certificate according to the certificate issuing request by the cloud service equipment.
When the feedback information is negative confirmation information, the vehicle terminal does not need to perform any operation.
As an implementation mode, the method for determining whether to issue the certificate according to the login of the primary account number comprises the following steps: after the vehicle is started, whether the certificate exists in the vehicle terminal is detected, and if the certificate exists in the vehicle terminal, the existing certificate is used for accessing the cloud service equipment to use the online function. If the vehicle terminal does not have the certificate, when the primary account of the vehicle logs in, a certificate issuing request is sent to the cloud service equipment, and the cloud service equipment issues the certificate according to the certificate issuing request.
If the primary account number of the vehicle is always logged in, the vehicle terminal does not need to perform any operation.
The method for determining whether to issue the certificate according to the vehicle configuration information and the method for determining whether to issue the certificate according to the login of the primary account number have similar technical effects to the certificate issuing method shown in fig. 1 and 2, and are not described herein again.
With reference to the implementation manner in the foregoing embodiment, a preferred method flow provided by the embodiment of the present application is described below with reference to fig. 3 by way of example. As shown in fig. 3, the method is applied to a vehicle terminal and may include the following steps:
s301, after the vehicle is started, detecting whether the certificate exists in the vehicle terminal.
If yes, S302 is executed, and if no, S303 is executed.
S302, the existing certificate of the vehicle terminal is used for accessing the cloud service equipment.
And S303, sending vehicle configuration information to the cloud service equipment.
The vehicle configuration information includes high configuration information, medium configuration information and standard configuration information.
Executing S304 when the vehicle configuration information is high configuration information or medium configuration information; when the vehicle configuration information is the standard configuration information, S305 is executed.
S304, receiving the positive confirmation information generated by the cloud service equipment.
When the feedback information is positive acknowledgement information, S306 is performed.
S305, negative confirmation information generated by the cloud service equipment is received.
When the feedback information is negative confirmation information, the vehicle terminal does not need to perform any operation.
S306, obtaining the pre-stored certificate voucher.
And S307, generating a public key and a private key through an Openssl command, and storing the private key.
S308, generating certificate request information according to the certificate and the public key.
When the primary account number of the vehicle logs in, executing S309; if the primary account number of the vehicle is not logged in, no operation needs to be performed.
S309, account information of the primary account and historical account information stored in the vehicle are acquired.
And S310, when the historical account information does not include the account information of the primary account, sending a certificate issuing request to the cloud service equipment.
With reference to the implementation manner in the foregoing embodiment, a further preferred method flow provided by the embodiment of the present application is described below with reference to fig. 4 by way of example. As shown in fig. 4, the method applied to the cloud service device may include the following steps:
s401, receiving certificate application information sent by the production line equipment.
The certificate credential application information includes a vehicle identification code and a vehicle device identification.
S402, generating a certificate according to the vehicle identification code and the vehicle equipment identification.
And S403, sending the certificate to the production line equipment.
S404, vehicle information sent by the vehicle terminal is received.
The vehicle configuration information includes high level configuration information, medium level configuration information, and standard configuration information.
Executing S405 when the vehicle configuration information is high configuration information or medium configuration information; when the vehicle configuration information is the standard configuration information, S406 is executed.
And S405, generating positive confirmation information according to the high-level configuration information or the medium-level configuration information, and transmitting the positive confirmation information to the vehicle terminal.
After the positive confirmation information is transmitted to the vehicle terminal, S407 is executed.
And S406, generating negative confirmation information according to the standard configuration information, and transmitting the negative confirmation information to the vehicle terminal.
And S407, receiving a certificate issuing request generated by the vehicle terminal when the primary account of the vehicle logs in according to the feedback information.
The certificate issuing request comprises a certificate and a vehicle public key of the vehicle, and the certificate comprises a vehicle identification code and a vehicle device identification.
And S408, verifying whether the vehicle identification code and the vehicle equipment identification are legal.
If the verification is passed, executing S409; if the verification is not passed, the certificate is not issued.
And S409, issuing the certificate to the vehicle terminal based on the public key.
It should be understood that although the various steps in the flow charts of fig. 1-4 are shown in order as indicated by the arrows, the steps are not necessarily performed in order as indicated by the arrows. The steps are not performed in a strict order unless explicitly stated in the application, and may be performed in other orders. Moreover, at least some of the steps in fig. 1-4 may include multiple sub-steps or multiple stages that are not necessarily performed at the same time, but may be performed at different times, and the order of performance of the sub-steps or stages is not necessarily sequential, but may be performed in turn or alternating with other steps or at least some of the sub-steps or stages of other steps.
Fig. 5 is a schematic structural diagram of a certificate issuing apparatus according to an embodiment of the present application, configured to execute the method shown in fig. 1. As shown in fig. 5, the apparatus may include: the sending module 510, the receiving module 520, and the generating module 530 may further include: and a detection module. The main functions of each component module are as follows:
the sending module 510 is configured to send vehicle information to the cloud service device after the vehicle is started;
the receiving module 520 is configured to receive feedback information generated by the cloud service device according to the vehicle information;
a generating module 530, configured to generate the certificate request information when the feedback information includes positive confirmation information, where the positive confirmation information is used to indicate that the vehicle needs the certificate;
the sending module 510 is further configured to send, in response to detecting that the primary account of the vehicle logs in, a certificate issuing request to the cloud service device, where the certificate issuing request includes certificate request information and account information of the primary account, and the certificate issuing request is used to request the cloud service device to issue a certificate according to the certificate request information and the account information.
As one implementable manner, the vehicle information includes vehicle identification information and/or vehicle configuration information; the sending module 510 is specifically configured to send vehicle identification information to the cloud service device after the vehicle is started; the receiving module 520 is specifically configured to receive feedback information generated based on the vehicle configuration information after the cloud service device queries the vehicle configuration information of the matched vehicle according to the vehicle identification information.
Or, the sending module 510 is specifically configured to send the vehicle configuration information to the cloud service device after the vehicle is started; the receiving module 520 is specifically configured to receive feedback information generated by the cloud service device according to the vehicle configuration information.
As one way of accomplishing this, the vehicle configuration information includes high level configuration information and medium level configuration information; the receiving module 520 is specifically configured to receive the positive confirmation information generated by the cloud service device when the vehicle configuration information is the high configuration information or the medium configuration information.
As one implementable way, the vehicle configuration information includes standard configuration information, and the feedback information includes negative acknowledgement information; the receiving module 520 is specifically configured to receive negative acknowledgement information generated by the cloud service device when the vehicle configuration information is standard configuration information, where the negative acknowledgement information is used to indicate that the vehicle does not need the certificate.
As an implementable manner, the generating module 530 is specifically configured to obtain the pre-stored certificate credential when the feedback information includes the positive confirmation information;
generating a public key and a private key in a preset mode, and storing the private key;
and generating certificate request information according to the certificate and the vehicle public key.
As an implementation manner, the sending module 510 is specifically configured to, in response to detecting that a primary account of a vehicle logs in, obtain account information of the primary account and historical account information stored in the vehicle;
and when the historical account information does not include the account information of the primary account, sending a certificate issuing request to the cloud service equipment.
As an implementation manner, the apparatus further includes a detection module, configured to detect whether the certificate exists in the vehicle terminal before sending the vehicle information to the cloud service device;
and when the certificate does not exist in the vehicle terminal, sending the vehicle information to the cloud service equipment.
Fig. 6 is a schematic structural diagram of a certificate issuing apparatus according to an embodiment of the present application, configured to execute the method flow shown in fig. 2. As shown in fig. 6, the apparatus may include: a receiving module 610, a generating module 620 and a issuing module 630. The main functions of each component module are as follows:
the receiving module 610 is used for receiving vehicle information sent by a vehicle terminal;
the generating module 620 is configured to generate feedback information according to the vehicle configuration information, and send the feedback information to the vehicle terminal;
the receiving module 610 is further configured to receive a certificate issuing request sent by the vehicle terminal when the primary account of the vehicle logs in according to the feedback information, where the certificate issuing request includes certificate request information and account information of the primary account;
and the issuing module 630 is configured to issue the certificate to the vehicle terminal in response to the certificate issuing request.
As one implementable manner, the vehicle information includes vehicle identification information and/or vehicle configuration information;
the receiving module 610 is specifically configured to receive vehicle identification information sent by a vehicle terminal; the generating module 620 is specifically configured to query vehicle configuration information of the matched vehicle according to the vehicle identification information, and generate feedback information according to the vehicle configuration information;
or, the receiving module 610 is specifically configured to receive vehicle configuration information sent by a vehicle terminal; the generating module 620 is specifically configured to generate the feedback information according to the vehicle configuration information. As one way of accomplishing this, the vehicle configuration information includes high level configuration information and medium level configuration information; the generating module 620 is specifically configured to generate positive confirmation information according to the high configuration information or the medium configuration information, where the positive confirmation information is used to indicate that the vehicle needs the certificate.
As one way of accomplishing this, the vehicle configuration information includes standard configuration information, and the feedback information includes negative acknowledgement information; a generating module 620, configured to generate negative acknowledgement information according to the standard configuration information, the negative acknowledgement information indicating that the vehicle does not require the certificate.
As one implementable manner, the certificate request information includes a certificate credential and a public key of the vehicle, the certificate credential including a vehicle identification code and a vehicle device identification; the issuing module 630 is specifically configured to verify whether the vehicle identification code and the vehicle device identifier are legal;
and if the verification is passed, issuing a certificate to the vehicle terminal based on the public key.
As an implementation manner, before receiving the vehicle information sent by the vehicle terminal, the generating module 620 is further configured to receive certificate credential application information sent by the production line device, where the certificate credential application information includes a vehicle identification code and a vehicle device identifier;
generating a certificate according to the vehicle identification code and the vehicle equipment identifier;
and sending the certificate voucher to a production line device so as to store the certificate voucher to the vehicle terminal through the production line device.
The same and similar parts among the various embodiments described above can be referred to each other, and each embodiment is described with emphasis on differences from other embodiments. In particular, as for the apparatus embodiment, since it is substantially similar to the method embodiment, the description is relatively simple, and for the relevant points, reference may be made to the partial description of the method embodiment.
According to an embodiment of the present application, a computer device and a computer-readable storage medium are also provided.
Fig. 7 is a block diagram of a computer device according to an embodiment of the present application. Computer apparatus is intended to represent various forms of digital computers or mobile devices. Which may include desktop computers, laptop computers, workstations, personal digital assistants, servers, mainframe computers, and other suitable computers. The mobile device may include a tablet, smartphone, wearable device, and the like.
As shown in fig. 7, the apparatus 700 includes a calculation unit 701, a ROM 702, a RAM 703, a bus 704, and an input/output (I/O) interface 705, and the calculation unit 701, the ROM 702, and the RAM 703 are connected to each other via the bus 704. An input/output (I/O) interface 705 is also connected to bus 704.
The calculation unit 701 may perform various processes in the method embodiments of the present application according to computer instructions stored in a Read Only Memory (ROM) 702 or computer instructions loaded from a storage unit 708 into a Random Access Memory (RAM) 703. Computing unit 701 may be a variety of general purpose and/or special purpose processing components with processing and computing capabilities. The computing unit 701 may include, but is not limited to, a Central Processing Unit (CPU), a Graphics Processing Unit (GPU), various dedicated Artificial Intelligence (AI) computing chips, various computing units running machine learning model algorithms, a Digital Signal Processor (DSP), and any suitable processor, controller, microcontroller, and so forth. In some embodiments, the methods provided by embodiments of the present application may be implemented as a computer software program tangibly embodied in a computer-readable storage medium, such as storage unit 708.
The RAM 703 may also store various programs and data required for the operation of the device 700. Part or all of the computer program may be loaded and/or installed onto the device 700 via the ROM 802 and/or the communication unit 709.
An input unit 706, an output unit 707, a storage unit 708, and a communication unit 709 in the device 700 may be connected to the I/O interface 705. Among them, the input unit 706 may be, for example, a keyboard, a mouse, a touch screen, a microphone, or the like; the output unit 707 may be, for example, a display, a speaker, an indicator light, or the like. The device 700 can exchange information, data, and the like with other devices through the communication unit 709.
It should be noted that the device may also include other components necessary to achieve proper operation. It may also contain only the components necessary to implement the solution of the present application and not necessarily all of the components shown in the figures.
Various implementations of the systems and techniques described here can be realized in digital electronic circuitry, integrated circuitry, field Programmable Gate Arrays (FPGAs), application Specific Integrated Circuits (ASICs), application Specific Standard Products (ASSPs), system on a chip (SOCs), load programmable logic devices (CPLDs), computer hardware, firmware, software, and/or combinations thereof.
Computer instructions for implementing the methods of the present application may be written in any combination of one or more programming languages. These computer instructions may be provided to the computing unit 701 such that the computer instructions, when executed by the computing unit 701 such as a processor, cause the steps involved in the method embodiments of the present application to be performed.
The computer-readable storage media provided herein may be tangible media that may contain, or store, computer instructions for performing various steps involved in method embodiments of the present application. The computer readable storage medium may include, but is not limited to, storage media in the form of electronic, magnetic, optical, electromagnetic, and the like.
The above-described embodiments are not intended to limit the scope of the present disclosure. It should be understood by those skilled in the art that various modifications, combinations, sub-combinations and substitutions may be made, depending on design requirements and other factors. Any modification, equivalent replacement, and improvement made within the spirit and principle of the present application shall be included in the protection scope of the present application.

Claims (10)

1. A certificate issuing method is characterized in that the method is applied to a vehicle terminal and comprises the following steps:
after the vehicle is started, vehicle information is sent to the cloud service equipment;
receiving feedback information generated by the cloud service equipment according to the vehicle information;
generating certificate request information when the feedback information includes positive confirmation information indicating that the vehicle requires a certificate;
in response to the fact that the primary account of the vehicle is detected to log in, sending a certificate issuing request to the cloud service equipment, wherein the certificate issuing request comprises the certificate request information and the account information of the primary account, and the certificate issuing request is used for requesting the cloud service equipment to issue the certificate according to the certificate request information and the account information.
2. The method of claim 1, wherein the vehicle information comprises vehicle identification information and/or vehicle configuration information;
after the vehicle starts, send vehicle information to high in the clouds service equipment, include: after a vehicle is started, the vehicle identification information is sent to the cloud service equipment; and the receiving of the feedback information generated by the cloud service device according to the vehicle information comprises: receiving feedback information generated based on the vehicle configuration information after the cloud service equipment queries and matches the vehicle configuration information of the vehicle according to the vehicle identification information;
or,
after the vehicle starts, send vehicle information to high in the clouds service equipment, include: after a vehicle is started, the vehicle configuration information is sent to the cloud service equipment; and the receiving of the feedback information generated by the cloud service device according to the vehicle information comprises: and receiving feedback information generated by the cloud service equipment according to the vehicle configuration information.
3. The method of claim 2, wherein the vehicle configuration information includes high or medium configuration information; the receiving feedback information generated by the cloud service device according to the vehicle information includes:
and when the vehicle configuration information is the high-level configuration information or the medium-level configuration information, receiving positive confirmation information generated by the cloud service equipment.
4. The method of claim 2, wherein the vehicle configuration information includes standard configuration information and the feedback information includes negative acknowledgement information; the method further comprises the following steps:
when the vehicle configuration information is the standard configuration information, negative confirmation information generated by the cloud service equipment is received, and the negative confirmation information is used for indicating that the vehicle does not need a certificate.
5. The method according to any one of claims 1 to 4, wherein when the feedback information includes positive acknowledgement information, generating credential request information comprises:
when the feedback information comprises positive confirmation information, acquiring a pre-stored certificate;
generating a public key and a private key in a preset mode, and storing the private key;
and generating the certificate request information according to the certificate and the public key.
6. The method according to any one of claims 1 to 4, wherein the sending a certificate issuing request to the cloud service device in response to detecting that the primary account number of the vehicle is logged in comprises:
in response to the fact that the primary account of the vehicle is detected to log in, account information of the primary account and historical account information stored in the vehicle are obtained;
and when the historical account information does not include the account information of the primary account, sending the certificate issuing request to the cloud service equipment.
7. The method of any one of claims 1 to 4, wherein prior to sending vehicle information to a cloud service device, the method further comprises:
detecting whether the vehicle terminal has a certificate;
the sending of vehicle information to the cloud device includes:
and when the vehicle terminal does not have the certificate, sending the vehicle information to the cloud service equipment.
8. A certificate issuing method is applied to cloud service equipment and comprises the following steps:
receiving vehicle information sent by a vehicle terminal;
generating feedback information according to the vehicle information, and sending the feedback information to the vehicle terminal;
receiving a certificate issuing request sent by the vehicle terminal when the vehicle logs in by a primary account number according to the feedback information, wherein the certificate issuing request comprises the certificate request information and account number information of the primary account number;
and issuing a certificate to the vehicle terminal in response to the certificate issuing request.
9. The method of claim 8, prior to receiving vehicle information transmitted by a vehicle terminal, the method further comprising:
receiving certificate application information sent by production line equipment, wherein the certificate application information comprises a vehicle identification code and a vehicle equipment identifier;
generating a certificate according to the vehicle identification code and the vehicle equipment identification;
and sending the certificate voucher to the production line equipment, so that the certificate voucher is stored to the vehicle terminal through the production line equipment.
10. An apparatus for issuing a certificate, the apparatus comprising:
the sending module is used for sending vehicle information to the cloud service equipment after the vehicle is started;
the receiving module is used for receiving feedback information generated by the cloud service equipment according to the vehicle information;
a generating module configured to generate certificate request information when the feedback information includes positive acknowledgement information indicating that the vehicle requires a certificate;
the sending module is further configured to send a certificate issuing request to the cloud service device in response to detection of login of a primary account of the vehicle, where the certificate issuing request includes the certificate request information and account information of the primary account, and the certificate issuing request is used to request the cloud service device to issue the certificate according to the certificate request information and the account information of the primary account.
CN202211154062.9A 2022-09-21 2022-09-21 Certificate issuing method and device Pending CN115514497A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211154062.9A CN115514497A (en) 2022-09-21 2022-09-21 Certificate issuing method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211154062.9A CN115514497A (en) 2022-09-21 2022-09-21 Certificate issuing method and device

Publications (1)

Publication Number Publication Date
CN115514497A true CN115514497A (en) 2022-12-23

Family

ID=84506356

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211154062.9A Pending CN115514497A (en) 2022-09-21 2022-09-21 Certificate issuing method and device

Country Status (1)

Country Link
CN (1) CN115514497A (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103973760A (en) * 2013-02-06 2014-08-06 电信科学技术研究院 Message certificate applying method, equipment and system
CN105991643A (en) * 2015-03-20 2016-10-05 现代自动车美国技术研究所 Method and apparatus for performing secure Bluetooth communication
KR20180086934A (en) * 2017-01-24 2018-08-01 건국대학교 산학협력단 Method and apparatus for generating certificate of a vehicle
CN113114699A (en) * 2021-04-26 2021-07-13 中国第一汽车股份有限公司 Vehicle terminal identity certificate application method
US20210226802A1 (en) * 2019-05-07 2021-07-22 Huawei Technologies Co., Ltd. Digital Certificate Application Method
CN113765668A (en) * 2020-06-03 2021-12-07 广州汽车集团股份有限公司 Vehicle digital certificate on-line installation method and vehicle digital certificate management device

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103973760A (en) * 2013-02-06 2014-08-06 电信科学技术研究院 Message certificate applying method, equipment and system
CN105991643A (en) * 2015-03-20 2016-10-05 现代自动车美国技术研究所 Method and apparatus for performing secure Bluetooth communication
KR20180086934A (en) * 2017-01-24 2018-08-01 건국대학교 산학협력단 Method and apparatus for generating certificate of a vehicle
US20210226802A1 (en) * 2019-05-07 2021-07-22 Huawei Technologies Co., Ltd. Digital Certificate Application Method
CN113765668A (en) * 2020-06-03 2021-12-07 广州汽车集团股份有限公司 Vehicle digital certificate on-line installation method and vehicle digital certificate management device
CN113114699A (en) * 2021-04-26 2021-07-13 中国第一汽车股份有限公司 Vehicle terminal identity certificate application method

Similar Documents

Publication Publication Date Title
US11637707B2 (en) System and method for managing installation of an application package requiring high-risk permission access
CN111708991B (en) Service authorization method, device, computer equipment and storage medium
CN110138562B (en) Certificate issuing method, device and system of intelligent equipment
US9998476B2 (en) Data distribution apparatus, communication system, moving object, and data distribution method
KR102534209B1 (en) Vehicle update system and control method
WO2021147100A1 (en) Message transmission method and apparatus
CN111565182B (en) Vehicle diagnosis method and device and storage medium
CN110190958A (en) A kind of auth method of vehicle, device, electronic equipment and storage medium
CN112073433B (en) SSL certificate updating method and device, electronic equipment and storage medium
CN112883382A (en) Vehicle flashing method, vehicle networking box, vehicle and storage medium
CN106712959B (en) method and system for realizing communication security
CN112261002B (en) Data interface docking method and device
CN113505353A (en) Authentication method, device, equipment and storage medium
CN115514497A (en) Certificate issuing method and device
EP3664362A1 (en) Key generation method, acquisition method, private key update method, chip and server
CN114039771B (en) Data processing method, device and system, electronic equipment and storage medium
CN112749408A (en) Data acquisition method, data acquisition device, electronic equipment, storage medium and program product
US10177918B2 (en) User permission check system
CN112242989A (en) Information processing apparatus and recording medium
CN117850846B (en) Upgrading method, device, equipment and storage medium of target electronic control unit
EP3701414B1 (en) Systems and methods for confirming a cryptographic key
CN118450376A (en) Vehicle-ground communication method, device, equipment and storage medium
CN117375846A (en) Resource access method, device, equipment and storage medium
CN115150154A (en) User login authentication method and related device
JP2020024503A (en) Electronic device and data transmission/reception method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination