CN117149521A - Network-connected automobile data backup method and system - Google Patents
Network-connected automobile data backup method and system Download PDFInfo
- Publication number
- CN117149521A CN117149521A CN202311135457.9A CN202311135457A CN117149521A CN 117149521 A CN117149521 A CN 117149521A CN 202311135457 A CN202311135457 A CN 202311135457A CN 117149521 A CN117149521 A CN 117149521A
- Authority
- CN
- China
- Prior art keywords
- data
- automobile
- storage
- encrypted
- automobile data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Withdrawn
Links
- 238000000034 method Methods 0.000 title claims abstract description 111
- 206010039203 Road traffic accident Diseases 0.000 claims abstract description 18
- 238000013500 data storage Methods 0.000 claims description 76
- 238000004590 computer program Methods 0.000 claims description 36
- 238000012795 verification Methods 0.000 claims description 32
- 230000001133 acceleration Effects 0.000 claims description 31
- 238000005516 engineering process Methods 0.000 description 15
- 238000004422 calculation algorithm Methods 0.000 description 13
- 238000012545 processing Methods 0.000 description 13
- 230000006870 function Effects 0.000 description 11
- 230000008569 process Effects 0.000 description 11
- 238000010586 diagram Methods 0.000 description 10
- 238000004458 analytical method Methods 0.000 description 7
- 239000000446 fuel Substances 0.000 description 7
- 230000005540 biological transmission Effects 0.000 description 5
- 238000013473 artificial intelligence Methods 0.000 description 4
- 230000004044 response Effects 0.000 description 4
- XLYOFNOQVPJJNP-UHFFFAOYSA-N water Substances O XLYOFNOQVPJJNP-UHFFFAOYSA-N 0.000 description 4
- 238000004891 communication Methods 0.000 description 3
- 230000008878 coupling Effects 0.000 description 3
- 238000010168 coupling process Methods 0.000 description 3
- 238000005859 coupling reaction Methods 0.000 description 3
- 238000001514 detection method Methods 0.000 description 3
- 238000004364 calculation method Methods 0.000 description 2
- 238000005242 forging Methods 0.000 description 2
- 238000011835 investigation Methods 0.000 description 2
- 238000012544 monitoring process Methods 0.000 description 2
- 230000006855 networking Effects 0.000 description 2
- 238000003491 array Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000013523 data management Methods 0.000 description 1
- 230000007423 decrease Effects 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 238000003672 processing method Methods 0.000 description 1
- 238000006467 substitution reaction Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F11/00—Error detection; Error correction; Monitoring
- G06F11/07—Responding to the occurrence of a fault, e.g. fault tolerance
- G06F11/14—Error detection or correction of the data by redundancy in operation
- G06F11/1402—Saving, restoring, recovering or retrying
- G06F11/1446—Point-in-time backing up or restoration of persistent data
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
- G06F21/6245—Protecting personal data, e.g. for financial or medical purposes
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Quality & Reliability (AREA)
- Medical Informatics (AREA)
- Databases & Information Systems (AREA)
- Storage Device Security (AREA)
Abstract
The application provides a network-connected automobile data backup method and system, comprising the following steps: acquiring automobile data to be backed up and generating time of the automobile data; determining the storage level of the automobile data according to the automobile data and the generation time thereof; encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; and storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method. The storage level corresponding to the acquired automobile data is calculated, the automobile data is encrypted to obtain encrypted data so as to ensure the privacy of the automobile data, the encrypted data is hashed to ensure the integrity of the automobile data, and finally the automobile data is stored according to the storage level, so that the safety of the automobile data is improved, and the authenticity and reliability of automobile accident scene restoration are further improved.
Description
Technical Field
The application belongs to the technical field of automobile data safety protection, and particularly relates to a network-connected automobile data backup method and system.
Background
Advances in artificial intelligence technology, networking technology, and sensor technology have made autopilot technology one of the key technologies in the automotive field. The automatic driving technology liberates hands of people, brings convenience to people and has huge potential safety hazard. Particularly in complex and variable driving environments, automatic driving technologies relying on artificial intelligence may also face driving environments that are not effectively trained, and face corresponding safety risks. Investigation and analysis of the cause of the accident becomes particularly critical when the car encounters a safety accident, and division of responsibility of the relevant personnel.
In the prior art, key data in the driving process of the automobile are backed up, and the key driving data stored through backup can restore the driving state of the automobile within a certain time before the emergency, so that effective basis is provided for the reason of the emergency and the responsibility division in driving accidents. However, due to the importance and irreproducibility of key driving data, the data backup method in the prior art has lower safety, so that the authenticity of vehicle accident scene restoration is reduced.
Disclosure of Invention
The embodiment of the application provides a network-connected automobile data backup method and system, which can solve the problems that the data backup method in the prior art is low in safety and further reduces the authenticity of vehicle accident scene restoration.
In a first aspect, an embodiment of the present application provides a method for backing up internet-connected automobile data, including:
in one possible implementation manner of the first aspect,
acquiring automobile data to be backed up and generating time of the automobile data;
determining a storage level of the automobile data according to the automobile data and the generation time of the automobile data; encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data; and storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
It should be understood that, in this embodiment, the acquired vehicle data is calculated to a corresponding storage level, and the vehicle data is encrypted to obtain encrypted data so as to ensure the privacy of the vehicle data, then the encrypted data is hashed to ensure the integrity of the vehicle data, and finally the vehicle data is stored according to the storage level, so that the safety of the vehicle data is improved, and further the authenticity and reliability of vehicle accident scene restoration are improved.
In a second aspect, an embodiment of the present application provides an internet-connected vehicle data backup system, where a computer program that can run on the processor is stored in the memory, and the method is characterized in that when the processor executes the computer program, the following steps are implemented:
acquiring automobile data to be backed up and generating time of the automobile data;
determining a storage level of the automobile data according to the automobile data and the generation time of the automobile data;
encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data;
and storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
In a third aspect, an embodiment of the present application provides an internet-connected automobile data backup system, including:
the device comprises an acquisition unit, a storage unit and a storage unit, wherein the acquisition unit is used for acquiring automobile data to be backed up and the generation time of the automobile data;
the determining unit is used for determining the storage level of the automobile data according to the automobile data and the generation time of the automobile data;
The encryption unit is used for encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data;
and the storage unit is used for storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
In a fourth aspect, embodiments of the present application provide a computer readable storage medium storing a computer program comprising program instructions which, when executed by a processor, cause the processor to perform the method of the first aspect described above.
In a fifth aspect, an embodiment of the present application provides a computer program product, which when run on a terminal device, causes the terminal device to perform the network-connected automotive data backup method according to any one of the first aspects above.
It will be appreciated that the advantages of the second to fifth aspects may be found in the relevant description of the first aspect, and are not described here again.
In a sixth aspect, an embodiment of the present application provides a method for backing up internet-connected automobile data, including:
in a possible implementation manner of the sixth aspect, identity information of the data storage device is verified; the data storage device is a device for storing encrypted data of automobile data; if the identity information of the data storage device passes the verification, the encrypted data of the automobile data are read from the data storage device; verifying the integrity of the encrypted data according to a pre-stored data abstract; after the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data.
It should be understood that by performing identity information verification on the data storage device storing the automobile data in advance, reading the encrypted data of the automobile data after the identity information is verified, and decrypting the encrypted data after the integrity of the encrypted data is verified to obtain the automobile data, the running state of the inside of the automobile and the road running condition in the driving map when the automobile accident happens are restored according to the automobile data, the safety of the automobile data is improved, and the authenticity and the reliability of the automobile accident scene restoration are further improved.
In a seventh aspect, an embodiment of the present application provides an internet-connected vehicle data backup system, where a computer program that can run on the processor is stored in the memory, and the method is characterized in that when the processor executes the computer program, the following steps are implemented:
verifying identity information of the data storage device; the data storage device is a device for storing encrypted data of automobile data; the automobile data are automobile data in the network-connected automobile data backup method of the first aspect;
if the identity information of the data storage device passes the verification, the encrypted data of the automobile data are read from the data storage device;
verifying the integrity of the encrypted data according to a pre-stored data abstract;
after the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data.
In an eighth aspect, an embodiment of the present application provides an internet-connected automobile data backup system, including:
the identity unit is used for verifying the identity information of the data storage device; the data storage device is a device for storing encrypted data of automobile data; the automobile data are automobile data in the network-connected automobile data backup method of the first aspect;
The reading unit is used for reading the encrypted data of the automobile data from the data storage equipment if the identity information of the data storage equipment passes verification;
the verification unit is used for verifying the integrity of the encrypted data according to the pre-stored data abstract;
and the decryption unit is used for decrypting the encrypted data according to a decryption method corresponding to a preset encryption method after the integrity verification is passed to obtain the automobile data.
In a ninth aspect, embodiments of the present application provide a computer readable storage medium storing a computer program comprising program instructions which, when executed by a processor, cause the processor to perform the method of the first aspect described above.
In a tenth aspect, an embodiment of the present application provides a computer program product, which when run on a terminal device, causes the terminal device to perform the networked automotive data backup method according to any one of the first aspects above.
It will be appreciated that the advantages of the seventh to tenth aspects may be found in the related description of the sixth aspect, and are not described here again.
Compared with the prior art, the embodiment of the application has the beneficial effects that: acquiring automobile data to be backed up and generating time of the automobile data; determining the storage level of the automobile data according to the automobile data and the generation time thereof; encrypting the automobile data according to a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; and storing the encrypted data of the automobile data into a preset storage space according to the storage level and the corresponding storage method. The storage level corresponding to the acquired automobile data is calculated, the automobile data is encrypted to obtain encrypted data so as to ensure the privacy of the automobile data, the encrypted data is hashed to ensure the integrity of the automobile data, and finally the automobile data is stored according to the storage level, so that the safety of the automobile data is improved, and the authenticity and reliability of automobile accident scene restoration are further improved.
Drawings
In order to more clearly illustrate the technical solutions of the embodiments of the present application, the drawings that are needed in the embodiments or the description of the prior art will be briefly described below, it being obvious that the drawings in the following description are only some embodiments of the present application, and that other drawings may be obtained according to these drawings without inventive effort for a person skilled in the art.
FIG. 1 is a flowchart of a method for backing up network-connected vehicle data according to an embodiment of the present application;
FIG. 2 is a flowchart of a network-connected vehicle data backup method according to a second embodiment of the present application;
FIG. 3 is a schematic diagram of a data storage device according to a second embodiment of the present application;
fig. 4 is a schematic diagram of an internet-connected vehicle data backup system according to a third embodiment of the present application;
FIG. 5 is a schematic diagram of an Internet-connected vehicle data backup system according to a fourth embodiment of the present application;
FIG. 6 is a schematic diagram of an Internet-connected vehicle data backup system according to a fifth embodiment of the present application;
fig. 7 is a schematic diagram of an internet-connected vehicle data backup system according to a sixth embodiment of the present application.
Detailed Description
In the following description, for purposes of explanation and not limitation, specific details are set forth such as the particular system architecture, techniques, etc., in order to provide a thorough understanding of the embodiments of the present application. It will be apparent, however, to one skilled in the art that the present application may be practiced in other embodiments that depart from these specific details. In other instances, detailed descriptions of well-known systems, devices, circuits, and methods are omitted so as not to obscure the description of the present application with unnecessary detail.
It should be understood that the terms "comprises" and/or "comprising," when used in this specification and the appended claims, specify the presence of stated features, integers, steps, operations, elements, and/or components, but do not preclude the presence or addition of one or more other features, integers, steps, operations, elements, components, and/or groups thereof.
It should also be understood that the term "and/or" as used in the present specification and the appended claims refers to any and all possible combinations of one or more of the associated listed items, and includes such combinations.
As used in the present description and the appended claims, the term "if" may be interpreted as "when..once" or "in response to a determination" or "in response to detection" depending on the context. Similarly, the phrase "if a determination" or "if a [ described condition or event ] is detected" may be interpreted in the context of meaning "upon determination" or "in response to determination" or "upon detection of a [ described condition or event ]" or "in response to detection of a [ described condition or event ]".
Furthermore, the terms "first," "second," "third," and the like in the description of the present specification and in the appended claims, are used for distinguishing between descriptions and not necessarily for indicating or implying a relative importance.
Reference in the specification to "one embodiment" or "some embodiments" or the like means that a particular feature, structure, or characteristic described in connection with the embodiment is included in one or more embodiments of the application. Thus, appearances of the phrases "in one embodiment," "in some embodiments," "in other embodiments," and the like in the specification are not necessarily all referring to the same embodiment, but mean "one or more but not all embodiments" unless expressly specified otherwise. The terms "comprising," "including," "having," and variations thereof mean "including but not limited to," unless expressly specified otherwise.
Referring to fig. 1, fig. 1 is a flowchart of a network-connected automobile data backup method according to an embodiment of the present application. The execution main body of the internet-connected vehicle data backup method in this embodiment is a device with a vehicle data processing function, including but not limited to a computer, a server, a tablet computer, a terminal, etc. The network-connected automobile data backup method as shown in the figure can comprise the following steps:
S101: and acquiring the automobile data to be backed up and the generation time of the automobile data.
Advances in artificial intelligence technology, networking technology, and sensor technology have made autopilot technology one of the key technologies in the automotive field. The automatic driving technology liberates hands of people, brings convenience to people and has huge potential safety hazard. Particularly in complex and variable driving environments, automatic driving technologies relying on artificial intelligence may also face driving environments that are not effectively trained, and face corresponding safety risks. Investigation and analysis of accident causes and responsibility division of related personnel become particularly critical when the automobile encounters a safety accident, and backup of automobile data in the driving process of the automobile provides an effective solution for related work. The key driving data stored by backup can restore the driving state of the automobile within a certain time before the emergency, and an effective basis is provided for the reasons of the emergency and the responsibility division in the driving accident.
Due to the importance of the key driving data, it is extremely important to ensure the real and effective driving data and safe storage of the table. The driving data is stored on the storage medium, the confidentiality of the key driving data is guaranteed by encrypting the data on the storage medium through a corresponding secure encryption technology, meanwhile, the integrity of the data on the storage medium is checked, the falsification of the backup data by malicious attackers is prevented, and the reality and effectiveness of the backup data are guaranteed. The embodiment relates to an automobile data backup system of a network-connected automobile. The method and the device for backing up the network-connected automobile data in the running process of the network-connected automobile provide important basis for restoring the running state of the automobile and provide original reference data for accident cause analysis and responsibility division. On the basis, the embodiment carries out safety protection on the backed-up data so as to resist the attack of a malicious attacker, prevents the malicious attacker from falsifying and forging the key backup data, ensures the authenticity and effectiveness of the backup data, and simultaneously avoids the leakage of the key privacy data so as not to cause serious safety consequences.
The execution subject of the embodiment may be a storage device loaded with an automobile system, where the automobile system collects automobile data in an automobile driving state through a CAN bus, and the data to be backed up and protected in this step includes, but is not limited to, a geographic position where the automobile is located, a vehicle speed, a braking system condition, an engine speed, a water temperature, an oil pressure, a fuel amount, a fuel consumption, a battery voltage, a video image, map data, and the like.
Furthermore, the vehicle data in this embodiment is encrypted and hashed by the internet-connected vehicle, that is, the vehicle object, by applying a suitable encryption algorithm before being transmitted to the storage device. The encryption processing is used for guaranteeing the safety and privacy of the automobile data, and the hash processing is used for guaranteeing the integrity of the automobile data.
S102: and determining the storage level of the automobile data according to the automobile data and the generation time of the automobile data.
After the car data is acquired, the collected data is identified and ranked, and if the data to be stored is generated within a certain time before the accelerometer detects a collision, the data is higher in priority and is not covered after storage. If the data to be stored is conventional data and not generated within a certain time before the collision, the data will be covered again after the storage, the storage device only stores the data within a certain time period, and the new data will cover the data to ensure that the excessive storage space is not consumed.
Further, step S102 may specifically include steps S1021 to S1023:
s1021: and identifying the collision time when the automobile collides according to the acceleration data in the automobile data and the generation time of the acceleration data.
The vehicle data in this embodiment may include acceleration data and a generation time of the acceleration data, and the collision time when the vehicle collides may be identified from the acceleration data and the generation time thereof in the vehicle data. Specifically, in the event of a collision of the vehicle, the acceleration increases or decreases sharply, that is, the acceleration value at the time of the collision is the maximum acceleration value in the travel time period. Therefore, when the maximum value occurs in the acceleration data in the vehicle data, the generation time corresponding to the data can be identified as the collision time when the vehicle collides.
S1022: and determining the automobile data in a preset period before the collision time as collision data according to the generation time of the automobile data and the collision time.
In this embodiment, a time period is preset, and after a collision time when a collision of an automobile is determined, according to the collision time and a generation time of each piece of automobile data, the automobile data in the preset time period before the collision time is determined to be collision data.
Specifically, when determining collision data, determining a collision time according to acceleration data, determining a preset time period before the collision time as a target time period, and determining the vehicle data within the target time period at the generation time as the collision data according to the vehicle data and the generation time thereof.
The collision data in this embodiment is used to determine or restore the original environment of the accident according to the collision data after the automobile accident occurs, and further determine the responsible party, etc.
S1023: and identifying the storage level of the collision data as the highest level, and identifying the storage level of the rest data except the collision data in the automobile data as the next highest level.
In this embodiment, collision data is determined, and the importance of the data is determined, so as to determine different storage levels for different automobile data. The automobile system classifies the acquired data into at least two different security levels according to the time of data acquisition, and each security level corresponds to a storage level.
Collision data before a car collision is more important for accident analysis and responsibility division, and has a higher security level, and the data under the security level cannot be covered and rewritten after being stored in the data storage device. If the collected data is not the data before the car collision, the safety level is lower, the collected data does not need to be stored all the time, and in order to effectively utilize the limited storage space, new data or data with higher storage level can cover old data and data with lower storage level under the safety level. All data that needs to be saved is only car data generated within a preset period of time before the current time, which may be, for example, 5 minutes, such as a period of 5 minutes before the current time.
S103: encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used to verify the integrity of the encrypted data.
The car data that needs backup storage under the driving state include, but are not limited to, the geographical position where the car is located, the speed of the car, the state of a braking system, the rotation speed of an engine, the water temperature, the oil pressure, the fuel quantity, the fuel consumption, the voltage of a storage battery, video images, map data and the like. The automobile data record the driving state of the automobile in a period of time, are closely related to the safety of the automobile, and are important assets needing important protection. In order to prevent a malicious attacker from attacking the data storage device by using an illegal means or monitoring the data transmission link to achieve the purpose of illegally acquiring the automobile data, all the automobile data needing to be backed up and recorded need to use excellent calculation performance of an automobile system before being transmitted to the special storage device for storage.
In this embodiment, a proper cryptographic encryption algorithm is adopted to encrypt, and optionally, the automobile system encrypts the collected data by using an advanced encryption standard encryption algorithm, and adopts a 128-bit encryption key, and the encryption mode adopts a cipher block linking mode. The cipher block chaining mode is to mix the content of the previous cipher text block and the current plain text block for encryption, so that the weakness of the electric codebook mode can be avoided. In the cipher block chaining mode, firstly, the plaintext block and the previous ciphertext block are subjected to exclusive or operation, then encryption is carried out, if the encryption process of one block is separated, the distinction between the electric codebook mode and the cipher block chaining mode can be easily compared, the electric codebook mode is only encrypted, the cipher block chaining mode is subjected to exclusive or operation before encryption, when the first plaintext block is encrypted, a bit sequence with one block length needs to be prepared in advance to replace the previous ciphertext block because the previous ciphertext block does not exist, and the bit sequence is called an initialization vector. The cipher block link mode in this embodiment has the advantages of being not easy to actively attack, having better security than the code book, and being suitable for transmitting messages with long length.
The method comprises the steps of obtaining encrypted data after the automobile data are encrypted according to a preset encryption method, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data so as to verify the integrity of the encrypted data. The automobile system carries out hash operation on the encrypted data to generate a data abstract so as to carry out integrity check. Optionally, in this embodiment, the hash value generation algorithm uses a secure hash algorithm, and the generated hash value is 256 bits.
S104: and storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
The car data that needs backup storage under the driving state include, but are not limited to, the geographical position where the car is located, the speed of the car, the state of a braking system, the rotation speed of an engine, the water temperature, the oil pressure, the fuel quantity, the fuel consumption, the voltage of a storage battery, video images, map data and the like. The automobile data record the driving state of the automobile in a period of time, are closely related to the safety of the automobile, and are important assets needing important protection. In order to prevent a malicious attacker from attacking the data storage device by using an illegal means or monitoring the data transmission link to achieve the purpose of illegally acquiring the automobile data, all the automobile data needing to be backed up and recorded need to use excellent calculation performance of an automobile system before being transmitted to the special storage device for storage.
Collision data before a car collision is more important for accident analysis and responsibility division, and has a higher security level, and the data under the security level cannot be covered and rewritten after being stored in the data storage device. If the collected data is not the data before the car collision, the security level is lower, the collected data does not need to be stored all the time, and in order to effectively utilize the limited storage space, a storage method corresponding to the collected data according to the storage level is set under the security level, that is, the new data or the data with higher storage level can cover the old data and the data with lower storage level. All data to be saved are only the automobile data generated in a preset period before the current moment. After the encrypted data of the automobile data is obtained, the encrypted data is stored in a preset storage space, the automobile data is stored in real time in the mode, the data in storage control is kept in the latest state, and the data can be fetched at the first time when an accident occurs, so that scene restoration is carried out.
Further, step S104 may specifically include: and acquiring the generation time of the historical data in the storage space, and determining the storage level of the historical data according to the generation time of the historical data. And if the storage level of the automobile data is higher than that of the historical data, the historical data in the storage space is covered by the automobile data.
Specifically, the automobile system identifies and ranks the data to be stored according to the source of the data. The purpose of the data backup is to restore the driving state of the automobile when the automobile is in emergency, analyze the reasons of the emergency and divide the accident responsibility. Based on this, the data at the time of collision detected by the car accelerometer has the highest priority, and the data at this priority cannot be changed once it is stored in backup. Therefore, in this embodiment, if the storage level of the vehicle data is higher than the storage level of the history data, the history data in the storage space is overwritten with the vehicle data.
For example, when the automobile is not crashed, the storage device will backup the data in a certain time, so as to ensure that the backup data does not occupy excessive storage resources, and the backup data of the newly generated crashed data will cover the old data.
Further, during storage, integrity check is performed on the received data according to the data abstract to determine whether the data is tampered. The security and integrity of the data to be stored can be verified before the data is stored, and after the data passes the verification, the security storage device performs classified storage processing on the data according to the security level of the data.
Further, the automobile data further comprises position data; the storing the encrypted data of the automobile data into a preset storage space according to the storage level and the corresponding storage method comprises the following steps:
identifying encrypted data of the location data among the encrypted data;
storing the encrypted data of the location data to a location data storage area in the storage space; the location data storage area is independent of the remaining storage areas in the storage space for preventing an attacker from attacking the location data.
Further, the automobile data comprises time-return data; the storing the encrypted data of the automobile data into a preset storage space according to the storage level and the corresponding storage method comprises the following steps:
identifying encrypted data of the time data among the encrypted data;
storing the encrypted data of the time data to a time data storage area in the storage space; the time data storage area is independent of the rest of the storage areas in the storage space and is used for preventing an attacker from attacking the time data.
Specifically, the vehicle data in this embodiment includes position data and time data, so that the encrypted data to be stored correspondingly includes encrypted data of the position data and encrypted data of the time data. Meanwhile, because the two types of data are important, the safety storage device needs to have an independent global positioning system module and can provide independent position data, therefore, in the embodiment, an independent position data storage area is set in the storage space and is independent of other storage areas in the storage space, and the position data storage area is specially used for storing encrypted data of the data so as to prevent an attacker from tampering important automobile position information in the backup data through the automobile system after the automobile system is hijacked. Meanwhile, in this embodiment, an independent time data storage area is set in the storage space, and the time data storage area is independent of the rest storage areas in the storage space, and is specially used for storing encrypted data of data, so as to prevent an attacker from attacking the time data, and prevent the attacker from tampering important automobile time information in the backup data through the automobile system after the automobile system is hijacked.
According to the scheme, the automobile data to be backed up and the generation time of the automobile data are obtained; determining a storage level of the automobile data according to the automobile data and the generation time of the automobile data; according to a preset encryption method, encrypting the automobile data to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data; and storing the encrypted data of the automobile data into a preset storage space according to the storage level and the corresponding storage method. The storage level corresponding to the acquired automobile data is calculated, the automobile data is encrypted to obtain encrypted data so as to ensure the privacy of the automobile data, the encrypted data is hashed to ensure the integrity of the automobile data, and finally the automobile data is stored according to the storage level, so that the safety of the automobile data is improved, and the authenticity and reliability of automobile accident scene restoration are further improved.
Referring to fig. 2, fig. 2 is a flowchart of a network-connected automobile data backup method according to a second embodiment of the present application. The execution main body of the internet-connected vehicle data backup method in this embodiment is a device with a vehicle data processing function, including but not limited to a computer, a server, a tablet computer, a terminal, etc. The network-connected automobile data backup method as shown in the figure can comprise the following steps:
S201: verifying identity information of the data storage device; the data storage device is a device that stores encrypted data of the vehicle data.
Before the data processing method of the embodiment is performed, relevant automobile data is backed up, so that an important basis is provided for analyzing and searching the reasons generated by the emergency when the automobile encounters the emergency. Meanwhile, in order to prevent malicious attackers from eavesdropping and tampering on key backup data through the automobile system, all the automobile data needing to be backed up are required to be subjected to corresponding safety protection. The method and the device for backing up the network-connected automobile data in the running process of the network-connected automobile provide important basis for restoring the running state of the automobile and provide original reference data for accident cause analysis and responsibility division. On the basis, the embodiment carries out safety protection on the backed-up data to resist the attack of malicious attackers, prevents the malicious attackers from falsifying and forging the key backup data, ensures the authenticity and effectiveness of the backup data, and simultaneously avoids the leakage of the key privacy data so as not to cause serious safety consequences
The encrypted data after encrypting the automobile data is stored on a storage medium of the safety storage device, when the stored automobile data is used, the identity of the data storage device is verified, and after the device verification is passed, the data stored in the storage device is read, and the read data is still in an encrypted state. Before data reading, the identity of the data storage device needs to be verified, so that a malicious attacker is prevented from providing illegal data by using the forged data storage device. The data storage device has its own certificate for authentication of the identity when communicating data. The data reading device performs identity authentication on the data storage device, and reads and decrypts the data after confirming that the identity is correct.
Specifically, when verifying the identity information of the data storage device, the identity information of the data storage device can be verified according to the identity verification code of the data storage device, specifically, the identity information of the data storage device, namely, the identity verification code, is obtained first, the identity information of the data storage device is compared with the pre-stored identity verification code, and if the identity information of the data storage device is consistent with the pre-stored identity verification code, the verification is passed.
S202: and if the identity information of the data storage device passes the verification, reading the encrypted data of the automobile data from the data storage device.
After the identity information of the data storage device is verified, the encrypted data of the vehicle data is read from the data storage device. In addition, if the identity information of the data storage device is not verified, the verification can be performed again, or the data storage device can be replaced to verify the rest of the data storage devices.
Specifically, when the encrypted data of the automobile data is read from the data storage device, the data identifier of the encrypted data of the automobile data or the storage position of the encrypted data may be determined first, and then operations such as reading or copying the automobile data are performed according to the data identifier or the storage position.
S203: and verifying the integrity of the encrypted data according to the pre-stored data digest.
In this embodiment, a data digest of encrypted data is pre-stored, and the data digest is generated in the same manner as in step S103 in the first embodiment, that is, the data digest of encrypted data of the vehicle data is generated by means of hash processing, and the data digest is stored. In this embodiment, after the encrypted data is acquired, the integrity of the encrypted data is verified according to the pre-stored data digest.
The specific verification method is that the data digest of the obtained encrypted data is generated according to the same method as in step S103, the calculated data digest is compared with the stored data digest, and if the calculated data digest and the stored data digest are the same, the encrypted data is complete and is not modified or deleted.
The read device performs integrity check on the read data, judges whether the data is possibly tampered, and once the data is monitored to be tampered, the data is in an illegal state and has no real effectiveness. Integrity checking may also be accomplished by checking the data physical address MAC value.
S204: after the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data.
The reading device reads data from the data storage device, and the data is in an encryption protection state, so that the data leakage is prevented. Encryption of the data is accomplished by the vehicle related module prior to transmission of the data to the dedicated storage device. In this embodiment, the data reading device is an automobile system. Before data is read, the automobile system first verifies the identity certificate of the data security storage device and verifies the identity of the data security storage device. The data can be read and decrypted only after the identity is determined to be correct.
After integrity checking of the data to ensure that the encrypted data of the vehicle data has not been tampered with illegally, a key for decrypting the data is obtained to decrypt the read encrypted data. The automobile system decrypts the data and restores the running state of the automobile. The decryption process corresponds to the encryption process in step S103, and the decryption algorithm is an advanced encryption standard algorithm in the cipher block chaining mode, and the key length is 128 bits.
Further, step S204 may further include:
judging whether an accident occurs to the automobile according to acceleration data in the automobile data; if the automobile has an accident, acquiring the generation moment of the acceleration data, and determining the occurrence moment of the automobile accident according to the acceleration data; extracting target data in a preset period before the occurrence time from the acceleration data according to the occurrence time; and restoring the scene of the automobile accident according to the target data.
Specifically, in the first embodiment, the purpose of storing the vehicle data in the storage device is to perform accident restoration when an accident occurs, so that in step S204, the vehicle data is decrypted to obtain the vehicle data, that is, after the vehicle data, whether the vehicle occurs the accident is determined according to the acceleration data in the vehicle data, and when the accident occurs, the generation time of the acceleration data is obtained, so as to determine the occurrence time of the vehicle accident according to the acceleration data and the generation time thereof, and the target data in a preset period before the occurrence time is extracted from the vehicle data according to the occurrence time, and the scene when the vehicle accident occurs is restored according to the target data. If no accident occurs, the automobile data is processed according to the control information of the user.
It should be noted that, in this embodiment, the automobile accident scene is different from the existing automobile data recorder in that, the automobile data in this embodiment may include not only the driving road video collected by the travel recorder, but also the data of all vehicles such as the position, speed, acceleration and direction information of the vehicles in the driving process, so as to ensure the comprehensiveness of the driving data, and more objectively and comprehensively restore the running state of the vehicle and the road condition outside the vehicle when the accident occurs.
Further, referring to fig. 3, fig. 3 is a schematic diagram of a data storage device according to a second embodiment of the present invention. The system comprises an automobile system for collecting data and processing the data, and a safety storage device for receiving the automobile data collected by the automobile system. The automobile system in this embodiment is used for implementing the functions included in steps 1.1 to 1.5 and steps 2.1 to 2.6, and specifically includes the following steps:
step 1.1, an automobile system collects automobile data in an automobile driving state through a CAN bus, wherein the data to be backed up and protected in the step include, but are not limited to, geographic positions of the automobile, speed of the automobile, braking system conditions, engine rotating speed, water temperature, oil pressure, fuel quantity, oil consumption, storage battery voltage, video images, map data and the like;
Step 1.2, the automobile system encrypts the collected data by using an advanced encryption standard encryption algorithm, adopts an encryption key with 128 bit length, and adopts a cipher block linking mode in an encryption mode;
step 1.3, the automobile system carries out hash operation on the encrypted data to generate a data abstract for carrying out integrity check, a hash value generation algorithm adopts a secure hash algorithm, and the generated hash value is 256 bits;
and 1.4, grading the acquired data according to the data acquisition time by the automobile system, and dividing the acquired data into two different security levels. The data before the car collision is more important for accident analysis and responsibility division, and has a higher security level, and the data under the security level cannot be covered and rewritten after being stored in the data storage device. If the collected data is not the data before the car collision, the safety level is lower, the collected data does not need to be stored all the time, and in order to effectively utilize the limited storage space, the new data can cover the old data under the safety level. All the data to be saved are only the automobile data generated within 5 minutes before the current moment;
and 1.5, transmitting the data which needs to be backed up and saved by the automobile system to the safe storage device through the safe transmission channel.
In this embodiment, the data reading device is an automobile system, the data security storage device is a computer-based storage medium, and a corresponding computer software program is run for data management and processing. In this embodiment, the data security storage device includes, but is not limited to, the following features:
(1) The secure storage device runs a Linux operating system and is responsible for carrying out basic operation on data and managing the data;
(2) The security storage device is provided with an independent global positioning system module, provides independent global positioning system position data, and prevents malicious attackers from tampering with the global positioning system position information of the backup data by using an automobile system;
(3) The safe storage device is provided with an independent clock module, provides independent time data and prevents a malicious attacker from tampering with the time information of the backup data by utilizing the automobile system;
(4) The secure storage device also provides a computer readable storage medium having stored therein a computer software program for implementing the above method;
(5) The secure storage device provides a communication interface for data access to facilitate data access operations by the automotive system.
In this embodiment, the automobile system is further configured to implement:
in step 2.1, in this embodiment, the data reading device is an automobile system. Before data is read, the automobile system first verifies the identity certificate of the data security storage device and verifies the identity of the data security storage device. Only after the identity is determined to be correct, the data can be read and decrypted;
step 2.2, the automobile system reads the data through a data reading interface reserved by the safety storage equipment;
step 2.3, the automobile system receives the data transmitted by the safety storage device through a safety shell protocol transmission protocol;
step 2.4, the automobile system acquires the decryption key;
step 2.5, the automobile system performs integrity check on the data to ensure that the data is not tampered;
and 2.6, decrypting the data by the automobile system and restoring the running state of the automobile. The decryption algorithm is an advanced encryption standard algorithm in a cipher block chaining mode, and the key length is 128 bits.
By the scheme, the identity information of the data storage device is verified; the data storage device is a device for storing encrypted data of automobile data; if the identity information of the data storage device passes the verification, the encrypted data of the automobile data are read from the data storage device; verifying the integrity of the encrypted data according to a pre-stored data abstract; after the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data. The identity information verification is carried out on the data storage equipment for pre-storing the automobile data, the encrypted data of the automobile data are read after the identity information verification is passed, and the encrypted data are decrypted after the integrity of the encrypted data is verified to obtain the automobile data, so that the running state of the inside of the automobile and the road running condition in the driving map are restored according to the automobile data when the automobile accident happens, the safety of the automobile data is improved, and the authenticity and the reliability of the automobile accident scene restoration are further improved.
Referring to fig. 4, fig. 4 is a schematic diagram of an internet-connected vehicle data backup system according to a third embodiment of the present application. The network-connected automobile data backup system comprises various units for executing the steps in the corresponding embodiment of fig. 1. Refer specifically to the description of the corresponding embodiment in fig. 1. For convenience of explanation, only the portions related to the present embodiment are shown. The network-connected vehicle data backup system 400 of the present embodiment includes:
an obtaining unit 401, configured to obtain vehicle data to be backed up and a generation time of the vehicle data;
a determining unit 402, configured to determine a storage level of the vehicle data according to the vehicle data and the generation time of the vehicle data;
an encryption unit 403, configured to encrypt the vehicle data by using a preset encryption method to obtain encrypted data of the vehicle data, and perform a hash operation on the encrypted data to obtain a data digest of the encrypted data; the data digest is used for verifying the integrity of the encrypted data;
and the storage unit 404 is used for storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
Further, the determining unit 402 includes:
a collision time unit for identifying a collision time when the automobile collides according to acceleration data in the automobile data and generation time of the acceleration data;
a collision data unit, configured to determine, according to the generation time, that the vehicle data in a preset period before the collision time is collision data;
and a level determination unit configured to identify a storage level of the collision data as a highest level and identify a storage level of the remaining data other than the collision data in the vehicle data as a next highest level.
Further, the storage unit 404 includes:
a history level unit, configured to obtain a generation time of the history data in the storage space, and determine a storage level of the history data according to the generation time of the history data;
and the coverage storage unit is used for covering the historical data in the storage space with the automobile data if the storage level of the automobile data is higher than that of the historical data.
Further, the vehicle data includes location data; the storage unit 404 includes:
A first identifying unit configured to identify encrypted data of the position data among the encrypted data;
a first storage unit configured to store encrypted data of the position data to a position data storage area in the storage space; the location data storage area is independent of the remaining storage areas in the storage space for preventing an attacker from attacking the location data.
Further, the vehicle data includes time data; the storage unit 404 includes:
a second identifying unit configured to identify encrypted data of the time data among the encrypted data;
a third storage unit configured to store the encrypted data of the time data to a time data storage area in the storage space; the time data storage area is independent of the rest of the storage areas in the storage space and is used for preventing an attacker from attacking the time data.
According to the scheme, the automobile data to be backed up and the generation time of the automobile data are obtained; determining a storage level of the automobile data according to the automobile data and the generation time of the automobile data; according to a preset encryption method, encrypting the automobile data to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data; and storing the encrypted data of the automobile data into a preset storage space according to the storage level and the corresponding storage method. The storage level corresponding to the acquired automobile data is calculated, the automobile data is encrypted to obtain encrypted data so as to ensure the privacy of the automobile data, the encrypted data is hashed to ensure the integrity of the automobile data, and finally the automobile data is stored according to the storage level, so that the safety of the automobile data is improved, and the authenticity and reliability of automobile accident scene restoration are further improved.
Fig. 5 is a schematic diagram of an internet-connected vehicle data backup system according to a fourth embodiment of the present application. As shown in fig. 5, the networked car data backup system 5 of this embodiment includes: a processor 50, a memory 51 and a computer program 52 stored in said memory 51 and executable on said processor 50. The processor 50, when executing the computer program 52, implements the steps of the various networked automotive data backup method embodiments described above, such as steps 101 through 104 shown in fig. 1. Alternatively, the processor 50, when executing the computer program 52, performs the functions of the units in the above-described device embodiments, for example, the functions of the units 401 to 404 shown in fig. 4.
By way of example, the computer program 52 may be partitioned into one or more units that are stored in the memory 51 and executed by the processor 50 to complete the present application. The one or more elements may be a series of computer program instruction segments capable of performing a specific function describing the execution of the computer program 52 in the networked automotive data backup system 5.
The internet-connected automobile data backup system 5 can be a desktop computer, a notebook computer, a palm computer, a cloud server and other computing devices. The networked automotive data backup system may include, but is not limited to, a processor 50, a memory 51. It will be appreciated by those skilled in the art that fig. 5 is merely an example of the networked automotive data backup system 5 and is not limiting of the networked automotive data backup system 5, and may include more or fewer components than shown, or may combine certain components, or different components, e.g., the networked automotive data backup system may further include input and output devices, network access devices, buses, etc.
The processor 50 may be a central processing unit (Central Processing Unit, CPU), other general purpose processors, digital signal processors (Digital Signal Processor, DSP), application specific integrated circuits (Application Specific Integrated Circuit, ASIC), off-the-shelf programmable gate arrays (Field-Programmable Gate Array, FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, or the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
The memory 51 may be an internal storage unit of the network-connected vehicle data backup system 5, for example, a hard disk or a memory of the network-connected vehicle data backup system 5. The memory 51 may also be an external storage device of the network-connected vehicle data backup system 5, for example, a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash Card (FC) or the like, which are provided on the network-connected vehicle data backup system 5. Further, the memory 51 may also include both an internal storage unit and an external storage device of the networked automobile data backup system 5. The memory 51 is used for storing the computer program and other programs and data required by the networked automotive data backup system. The memory 51 may also be used to temporarily store data that has been output or is to be output.
Referring to fig. 6, fig. 6 is a schematic diagram of an internet-connected vehicle data backup system according to a fifth embodiment of the present application. The network-connected automobile data backup system comprises various units for executing the steps in the corresponding embodiment of fig. 2. Refer specifically to the description of the corresponding embodiment in fig. 2. For convenience of explanation, only the portions related to the present embodiment are shown. The network-connected automobile data backup system 600 of the present embodiment includes:
an identity unit 601, configured to verify identity information of the data storage device; the data storage device is a device for storing encrypted data of automobile data;
a reading unit 602, configured to read the encrypted data of the vehicle data from the data storage device if the identity information of the data storage device passes verification;
a verification unit 603, configured to verify the integrity of the encrypted data according to a pre-stored data digest;
and the decryption unit 604 is configured to decrypt the encrypted data according to a decryption method corresponding to a preset encryption method after the integrity verification is passed, so as to obtain the vehicle data.
Further, the network-connected automobile data backup system 600 may further include:
judging whether an accident occurs to the automobile according to acceleration data in the automobile data;
If the automobile has an accident, acquiring the generation moment of the acceleration data, and determining the occurrence moment of the automobile accident according to the acceleration data;
extracting target data in a preset period before the occurrence time from the automobile data according to the occurrence time;
and restoring the scene of the automobile accident according to the target data.
By the scheme, the identity information of the data storage device is verified; the data storage device is a device for storing encrypted data of automobile data; if the identity information of the data storage device passes the verification, the encrypted data of the automobile data are read from the data storage device; verifying the integrity of the encrypted data according to a pre-stored data abstract; after the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data. The identity information verification is carried out on the data storage equipment for pre-storing the automobile data, the encrypted data of the automobile data are read after the identity information verification is passed, and the encrypted data are decrypted after the integrity of the encrypted data is verified to obtain the automobile data, so that the running state of the inside of the automobile and the road running condition in the driving map are restored according to the automobile data when the automobile accident happens, the safety of the automobile data is improved, and the authenticity and the reliability of the automobile accident scene restoration are further improved.
Fig. 7 is a schematic diagram of an internet-connected vehicle data backup system according to a sixth embodiment of the present application. As shown in fig. 7, the networked car data backup system 7 of this embodiment includes: a processor 70, a memory 71, and a computer program 72 stored in the memory 71 and executable on the processor 70. The processor 70, when executing the computer program 72, implements the steps of the various networked automotive data backup method embodiments described above, such as steps 201 through 204 shown in fig. 2. Alternatively, the processor 70, when executing the computer program 72, performs the functions of the units in the system embodiments described above, for example, the functions of the units 701 to 704 shown in fig. 7.
By way of example, the computer program 72 may be divided into one or more units, which are stored in the memory 71 and executed by the processor 70 to accomplish the present application. The one or more elements may be a series of computer program instruction segments capable of performing a specific function for describing the execution of the computer program 72 in the networked automotive data backup system 7.
The internet-connected automobile data backup system 7 can be a desktop computer, a notebook computer, a palm computer, a cloud server and other computing devices. The networked automotive data backup system may include, but is not limited to, a processor 70, a memory 71. It will be appreciated by those skilled in the art that fig. 7 is merely an example of the networked automobile data backup system 7 and is not limiting of the networked automobile data backup system 7, and may include more or fewer components than shown, or may combine certain components, or different components, e.g., the networked automobile data backup system may further include input and output devices, network access devices, buses, etc.
The processor 70 may be a central processing unit (Central Processing Unit, CPU), or may be another general purpose processor, a digital signal processor (Digital Signal Processor, DSP), an application specific integrated circuit (Application Specific Integrated Circuit, ASIC), an off-the-shelf programmable gate array (Field-Programmable Gate Array, FPGA) or other programmable logic device, discrete gate or transistor logic device, discrete hardware components, or the like. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
The memory 71 may be an internal storage unit of the network-connected vehicle data backup system 7, for example, a hard disk or a memory of the network-connected vehicle data backup system 7. The memory 71 may also be an external storage device of the network-connected vehicle data backup system 7, for example, a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash Card (FC) or the like, which are provided on the network-connected vehicle data backup system 7. Further, the memory 71 may also include both an internal storage unit and an external storage device of the networked automobile data backup system 7. The memory 71 is used for storing the computer program and other programs and data required by the networked automotive data backup system. The memory 71 may also be used for temporarily storing data that has been output or is to be output.
It should be noted that, because the content of information interaction and execution process between the above units is based on the same concept as the method embodiment of the present application, specific functions and technical effects thereof may be referred to in the method embodiment section, and will not be described herein.
It will be apparent to those skilled in the art that, for convenience and brevity of description, only the above-described division of the functional units and modules is illustrated, and in practical application, the above-described functional distribution may be performed by different functional units and modules according to needs, i.e. the internal structure of the system is divided into different functional units or modules to perform all or part of the above-described functions. The functional units and modules in the embodiment may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit, where the integrated units may be implemented in a form of hardware or a form of a software functional unit. In addition, the specific names of the functional units and modules are only for distinguishing from each other, and are not used for limiting the protection scope of the present application. The specific working process of the units and modules in the above system may refer to the corresponding process in the foregoing method embodiment, which is not described herein again.
The embodiment of the application also provides a network device, which comprises: at least one processor, a memory, and a computer program stored in the memory and executable on the at least one processor, which when executed by the processor performs the steps of any of the various method embodiments described above.
Embodiments of the present application also provide a computer readable storage medium storing a computer program which, when executed by a processor, implements steps for implementing the various method embodiments described above.
Embodiments of the present application provide a computer program product which, when run on a mobile terminal, causes the mobile terminal to perform steps that enable the implementation of the method embodiments described above.
The integrated units, if implemented in the form of software functional units and sold or used as stand-alone products, may be stored in a computer readable storage medium. Based on such understanding, the present application may implement all or part of the flow of the method of the above embodiments, and may be implemented by a computer program to instruct related hardware, where the computer program may be stored in a computer readable storage medium, and when the computer program is executed by a processor, the computer program may implement the steps of each of the method embodiments described above. Wherein the computer program comprises computer program code which may be in source code form, object code form, executable file or some intermediate form etc. The computer readable medium may include at least: any entity or device capable of carrying computer program code to a photographing device/terminal apparatus, recording medium, computer Memory, read-Only Memory (ROM), random access Memory (RAM, random Access Memory), electrical carrier signals, telecommunications signals, and software distribution media. Such as a U-disk, removable hard disk, magnetic or optical disk, etc. In some jurisdictions, computer readable media may not be electrical carrier signals and telecommunications signals in accordance with legislation and patent practice.
In the foregoing embodiments, the descriptions of the embodiments are emphasized, and in part, not described or illustrated in any particular embodiment, reference is made to the related descriptions of other embodiments.
Those of ordinary skill in the art will appreciate that the various illustrative elements and algorithm steps described in connection with the embodiments disclosed herein may be implemented as electronic hardware, or combinations of computer software and electronic hardware. Whether such functionality is implemented as hardware or software depends upon the particular application and design constraints imposed on the solution. Skilled artisans may implement the described functionality in varying ways for each particular application, but such implementation decisions should not be interpreted as causing a departure from the scope of the present application.
In the embodiments provided in the present application, it should be understood that the disclosed apparatus/network device and method may be implemented in other manners. For example, the apparatus/network device embodiments described above are merely illustrative, e.g., the division of the modules or units is merely a logical functional division, and there may be additional divisions in actual implementation, e.g., multiple units or components may be combined or integrated into another system, or some features may be omitted, or not performed. Alternatively, the coupling or direct coupling or communication connection shown or discussed may be an indirect coupling or communication connection via interfaces, devices or units, which may be in electrical, mechanical or other forms.
The units described as separate units may or may not be physically separate, and units shown as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
The above embodiments are only for illustrating the technical solution of the present application, and not for limiting the same; although the application has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present application, and are intended to be included in the scope of the present application.
Claims (10)
1. The network-connected automobile data backup method is characterized by comprising the following steps of:
acquiring automobile data to be backed up and generating time of the automobile data;
determining a storage level of the automobile data according to the automobile data and the generation time of the automobile data;
Encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data;
and storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
2. The networked automobile data backup method of claim 1, wherein the automobile data includes acceleration data; the determining the storage level of the car data according to the car data and the generation time of the car data includes:
identifying the collision time when the automobile collides according to the acceleration data in the automobile data and the generation time of the acceleration data;
according to the generation time of the automobile data and the collision time, determining the automobile data in a preset period before the collision time as collision data;
and identifying the storage level of the collision data as the highest level, and identifying the storage level of the rest data except the collision data in the automobile data as the next highest level.
3. The network-connected vehicle data backup method according to claim 1, wherein storing the encrypted data of the vehicle data in the storage space corresponding to the storage level of the vehicle data according to the corresponding storage method comprises:
acquiring generation time of the historical data in the storage space, and determining the storage level of the historical data according to the generation time of the historical data;
and if the storage level of the automobile data is higher than that of the historical data, the historical data in the storage space is covered by the automobile data.
4. A networked car data backup method as claimed in any one of claims 1 to 3, wherein said car data further comprises location data;
the storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method comprises the following steps:
identifying encrypted data of the location data among the encrypted data;
storing the encrypted data of the location data to a location data storage area in the storage space; the location data storage area is independent of the remaining storage areas in the storage space for preventing an attacker from attacking the location data.
5. A networked car data backup method as claimed in any one of claims 1 to 3, wherein said car data further comprises time data; the storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method comprises the following steps:
identifying encrypted data of the time data among the encrypted data;
storing the encrypted data of the time data to a time data storage area in the storage space; the time data storage area is independent of the rest of the storage areas in the storage space and is used for preventing an attacker from attacking the time data.
6. The network-connected automobile data backup method is characterized by comprising the following steps of:
verifying identity information of the data storage device; the data storage device is a device for storing encrypted data of automobile data; the automobile data is the automobile data in the network-connected automobile data backup method according to any one of claims 1 to 5;
if the identity information of the data storage device passes the verification, the encrypted data of the automobile data are read from the data storage device;
verifying the integrity of the encrypted data according to a pre-stored data abstract;
After the integrity verification is passed, the encrypted data is decrypted according to a decryption method corresponding to a preset encryption method to obtain the automobile data.
7. The networked automobile data backup method of claim 6, wherein the automobile data includes acceleration data; after decrypting the encrypted data to obtain the car data, the internet-connected car data backup method further comprises the following steps:
judging whether an accident occurs to the automobile according to the acceleration data;
if the automobile has an accident, acquiring the generation moment of the acceleration data, and determining the occurrence moment of the automobile accident according to the acceleration data;
extracting target data in a preset period before the occurrence time from the acceleration data according to the occurrence time;
and restoring the scene of the automobile accident according to the target data.
8. A networked automotive data backup system, comprising:
the device comprises an acquisition unit, a storage unit and a storage unit, wherein the acquisition unit is used for acquiring automobile data to be backed up and the generation time of the automobile data;
the determining unit is used for determining the storage level of the automobile data according to the automobile data and the generation time of the automobile data;
The encryption unit is used for encrypting the automobile data by using a preset encryption method to obtain encrypted data of the automobile data, and carrying out hash operation on the encrypted data to obtain a data abstract of the encrypted data; the data digest is used for verifying the integrity of the encrypted data;
and the storage unit is used for storing the encrypted data of the automobile data into a storage space corresponding to the storage level of the automobile data according to a corresponding storage method.
9. A terminal device comprising a memory, a processor and a computer program stored in the memory and executable on the processor, characterized in that the processor implements the method according to any of claims 1 to 5 when executing the computer program.
10. A computer readable storage medium storing a computer program, characterized in that the computer program when executed by a processor implements the method according to any one of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311135457.9A CN117149521A (en) | 2023-09-04 | 2023-09-04 | Network-connected automobile data backup method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202311135457.9A CN117149521A (en) | 2023-09-04 | 2023-09-04 | Network-connected automobile data backup method and system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN117149521A true CN117149521A (en) | 2023-12-01 |
Family
ID=88900330
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202311135457.9A Withdrawn CN117149521A (en) | 2023-09-04 | 2023-09-04 | Network-connected automobile data backup method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN117149521A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117939474A (en) * | 2024-03-21 | 2024-04-26 | 江苏海平面数据科技有限公司 | Communication terminal detection system and method based on Internet of vehicles big data |
-
2023
- 2023-09-04 CN CN202311135457.9A patent/CN117149521A/en not_active Withdrawn
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117939474A (en) * | 2024-03-21 | 2024-04-26 | 江苏海平面数据科技有限公司 | Communication terminal detection system and method based on Internet of vehicles big data |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10229547B2 (en) | In-vehicle gateway device, storage control method, and computer program product | |
| US11281811B2 (en) | Method, apparatus and device for storing vehicular data | |
| CN110225063B (en) | Upgrading method and system of automobile-mounted system, server and vehicle-mounted terminal | |
| CN107770159B (en) | Vehicle accident data recording method and related device and readable storage medium | |
| CN109218010B (en) | Data encryption method and device and data decryption method and device | |
| CN106790045B (en) | distributed virtual machine agent device based on cloud environment and data integrity guarantee method | |
| CN110727546A (en) | Automobile data backup method and device | |
| CN109714171B (en) | Safety protection method, device, equipment and medium | |
| US10893057B2 (en) | Hardware security module systems and methods | |
| CN111565182B (en) | Vehicle diagnosis method and device and storage medium | |
| CN117149521A (en) | Network-connected automobile data backup method and system | |
| CN112685786A (en) | Financial data encryption and decryption method, system, equipment and storage medium | |
| Lee et al. | T-box: A forensics-enabled trusted automotive data recording method | |
| KR101953908B1 (en) | Security System and Method of Embeded software in Vehicle electric device | |
| CN105827388A (en) | Method for cryptographically processing data | |
| CN113542187A (en) | File uploading and downloading method and device, computer device and medium | |
| US20240275581A1 (en) | Data storage system, mobile object, and non-transitory computer readable storage medium | |
| CN118278044B (en) | Data security management method for land informatization government affair management | |
| EP3522063B1 (en) | System and method for detecting compromised data | |
| CN117473324B (en) | Model training method, system and storage medium based on SGX and XGBoost | |
| CN109245895B (en) | System and method for detecting corrupted data | |
| CN115361140B (en) | Method and device for verifying security chip key | |
| CN117744105A (en) | Data encryption and decryption method and device and vehicle diagnosis method based on data encryption and decryption | |
| CN118427893A (en) | Safety protection unit, automatic driving calculation architecture, data processing method and vehicle | |
| Rahman | Transportation Systems |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| WW01 | Invention patent application withdrawn after publication |
Application publication date: 20231201 |
|
| WW01 | Invention patent application withdrawn after publication |