CN213847031U - ETC safety certification equipment and system of high adaptability - Google Patents
ETC safety certification equipment and system of high adaptability Download PDFInfo
- Publication number
- CN213847031U CN213847031U CN202022982242.9U CN202022982242U CN213847031U CN 213847031 U CN213847031 U CN 213847031U CN 202022982242 U CN202022982242 U CN 202022982242U CN 213847031 U CN213847031 U CN 213847031U
- Authority
- CN
- China
- Prior art keywords
- chip
- security authentication
- authentication device
- security
- information transmission
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Mobile Radio Communication Systems (AREA)
Abstract
The utility model provides a ETC safety certification equipment and system of high adaptability, equipment includes: the security chip comprises a security chip, a storage chip, a communication component, a central processing unit and an information transmission component. The security chip stores a root key for decrypting vehicle information and a key for performing external authentication; the memory chip is used for storing application data; and the information transmission component is used for linking with an external RSU antenna controller and carrying out data transmission. The ETC safety certification equipment has high adaptability, can adapt to all ETC use scenes, provides a working mode under the conditions of good network conditions and unstable network conditions, and even solves the problem that no network conditions exist in extreme conditions or special occasions.
Description
Technical Field
The application belongs to the technical field of ETC systems, and particularly relates to high-adaptability ETC safety certification equipment and system.
Background
The Electronic Toll Collection (ETC) system for the expressway can realize non-inductive payment in scenes such as a parking lot, a gas station and the like, firstly, vehicle information including data such as a license plate and a vehicle type can be accurately and quickly acquired, and then payment is carried out through a vehicle owner background associated account. At present, vehicle information is acquired mainly by video snapshot equipment, but the problems of low recognition rate, low processing speed, limitation to vehicle position and angle, license plate shielding and the like exist. In a traffic vehicle investigation application scene, vehicle information needs to be acquired in real time in a large scale, and the conventional snapshot equipment is limited and expensive under the conditions of multipoint high-speed motion capture, complex meteorological conditions, vehicle lane change and the like. In order to solve the defect of video snapshot, the problem can be solved by currently using an ETCRSU antenna to acquire vehicle information. The vehicle-mounted OBU equipment is internally provided with an OBE-SAM security module, wherein vehicle information such as license plates, vehicle types and the like is stored. The vehicle information data can be obtained quickly and accurately as long as the vehicle information file is read out through the ETC RSU antenna. However, in view of security, the related art requirements of OBE-SAM specify that the vehicle information file must be read out in a ciphertext manner. The read data needs to be decrypted for use in business operations. The existing data decryption scheme can be solved in an online or offline mode, wherein online decryption refers to the step of connecting an online key management and service platform of a transportation department through a network and initiating a decryption request to the platform. The main problem of this scheme is that to the network requirement height, under special environment such as underground parking garage, remote area highway, the network exists unstable or unusable condition, can't carry out normal work this moment. The offline mode refers to decrypting data using a local PSAM card. The problem with this scheme is the security of the PSAM card management. The PSAM card occupies an important position in the security system of the electronic toll collection system, is usually arranged in a card slot of an RSU antenna controller, and has a standard SIM card standard. However, the offline and decentralized deployment mode is easy to lose and damage in the transportation, installation and operation processes. The loss of the PSAM card brings a security risk to the whole ETC system.
SUMMERY OF THE UTILITY MODEL
The application provides a high adaptability's ETC safety certificate equipment and system to solve the problem that the PSAM card carried on easily loses or damages in the RSU antenna of current ETC at least, and the ETC safety certificate equipment that this application provided compares traditional PSAM card security higher, adapts to different network environment and the cost is lower to deploy easier.
The application provides ETC safety certification equipment of high adaptability includes: the system comprises a security chip, a storage chip, a communication component, a central processing unit and an information transmission component;
the security chip stores a root key for decrypting vehicle information and a key for performing external authentication;
the memory chip is used for storing application data;
and the information transmission component is used for linking with an external RSU antenna controller and carrying out data transmission.
In one embodiment, the high-adaptability ETC security authentication device further comprises a transaction counter, each pair of vehicle information is decrypted once, the number of times in the transaction counter is subtracted by a certain value, and the initial number of times is preset in the transaction counter.
In one embodiment, the communication component is a 4G communication module.
In one embodiment, the information transmission component is a USB interface, and the USB interface is connectable to an external RSU antenna controller.
In an embodiment, the information transmission component may also be a Type-C interface, and the Type-C interface may be connected with an external RSU antenna controller.
In an embodiment, the information transmission component may also be a wireless transmission module for making a communication connection with an external RSU antenna controller by radio.
In one embodiment, the high-adaptability ETC security authentication device further comprises a battery module capable of receiving external charging, and the battery module is used for providing electric energy for the ETC security authentication device.
In one embodiment, the high-adaptability ETC security authentication device further comprises a housing for housing the memory chip, the communication component, the central processor and the information transmission component inside the housing.
According to another aspect of the present application, there is also provided a highly adaptable ETC security authentication system, including:
the system comprises an online key platform and a certificate server in communication connection, wherein the certificate server is also in communication connection with an RSU antenna controller;
the RSU antenna controller is connected with the ETC safety certification device through an interface or a wireless device.
In one embodiment, the system further comprises an electronic signature for performing authentication and authorization on the ETC security authentication device through the electronic signature and the PIN code when the network signal is poor.
The system and the method provided by the application replace the function of the PSAM card in the existing RSU antenna, and compared with the PSAM card, the system and the method have relatively lower manufacturing and using cost and are suitable for different network environments.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a schematic diagram of an ETC security authentication system provided in the present application.
Fig. 2 is a block diagram of an ETC security authentication device according to the present disclosure.
Fig. 3 is a block diagram of an ETC security authentication device according to an embodiment of the present application.
Detailed Description
The technical solutions in the embodiments of the present invention will be described clearly and completely with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only some embodiments of the present invention, not all embodiments. Based on the embodiments in the present invention, all other embodiments obtained by a person skilled in the art without creative work belong to the protection scope of the present invention.
At present, in an ETC system, an RSU antenna is used for acquiring information of a passing vehicle, an OBE-SAM safety module is arranged in a vehicle-mounted OBU device, information such as a license plate and a vehicle type is stored, and vehicle information data can be quickly and accurately acquired only by reading out the information of a target vehicle through the RSU antenna. However, on the basis of safety consideration, the read target vehicle information needs to be decrypted before being used, the existing data decryption scheme can be solved in an online or offline mode, online decryption means that an online key platform is connected through a network, a decryption request is sent to the platform, and if the network is not smooth, the method cannot be used for normal work; the off-line mode is to decrypt data by using a PSAM card local to the RSU antenna, but the PSAM card is easy to take out of the RSU antenna and is easy to lose and damage, so the application provides a new mode to solve the current problem. As shown in fig. 1, the present application provides a highly adaptable ETC security authentication system, which includes:
the system comprises an online key platform and a certificate server in communication connection, wherein the certificate server is also in communication connection with an RSU antenna controller;
the RSU antenna controller is connected with the ETC safety certification equipment provided by the application through an interface or wireless equipment.
In one embodiment, the high-adaptability ETC security authentication system further comprises an electronic signature for performing authentication and authorization on the ETC security authentication device through the electronic signature and the PIN code when the network signal is poor.
In this system, as shown in fig. 2, the ETC security authentication device provided by the present application includes: the system comprises a safety chip (SE), a storage chip (EEPROM module), a communication part, a central processing unit (MCU) and an information transmission part;
the security chip stores a root key for decrypting vehicle information and a key for performing external authentication;
the memory chip is used for storing application data;
the information transmission component is used for carrying out data transmission with an external RSU antenna controller.
In one embodiment, the high-adaptability ETC security authentication device further comprises a transaction counter, each pair of vehicle information is decrypted once, the number of times in the transaction counter is subtracted by a certain value, and the initial number of times is preset in the transaction counter.
In one embodiment, as shown in fig. 3, the communication component is a 4G communication module.
In one embodiment, as shown in fig. 3, the information transmission component is a USB interface, and the USB interface can be connected to an external RSU antenna controller.
In an embodiment, the information transmission component may also be a Type-C interface, and the Type-C interface may be connected with an external RSU antenna controller.
In an embodiment, the information transmission component may also be a wireless transmission module for making a communication connection with an external RSU antenna controller by radio.
In one embodiment, the high-adaptability ETC security authentication device further comprises a battery module capable of receiving external charging, and the battery module is used for providing electric energy for the ETC security authentication device.
In one embodiment, the high-adaptability ETC security authentication device further comprises a housing for housing the memory chip, the communication component, the central processor and the information transmission component inside the housing.
In one embodiment, the MCU controller is responsible for program and timing control. The SE chip is used to store keys and certificates, including a root key to decrypt vehicle information, an external authentication key to recover a transaction counter, and a digital certificate to communicate with the online key platform. The transaction counter is stored in the SE chip and is endowed with a preset value, and the value of the counter is automatically reduced by 1 every time the vehicle information decryption operation is carried out. Through the authorization operation, namely after the external authentication process is correctly executed, the value of the counter can be restored to the preset value. The storage chip is used for storing application data generated by the ETC security authentication device in activities such as decryption and authorization. The USB interface enables the safety module to be plug and play, and is convenient to deploy, operate and maintain. In extreme conditions such as completely inaccessible network, manual authorization may be provided.
In a specific embodiment, the ETC security authentication device is connected to the RSU antenna controller through the USB interface, and when the connection is made for the first time, the security authentication device needs to be bound to the serial number of the RSU antenna controller. The RSU antenna controller is connected with an online key platform according to a communication module in the security authentication equipment, a counter resetting request is initiated, the security authentication equipment initiates an SSL handshake request to the certificate server, the two parties complete mutual verification of the digital certificate according to an SSL protocol, a session key is negotiated, and a security channel between the security authentication equipment and the certificate server is established. The security authentication device sends the pre-generated random number and the self ID to the online key platform to apply for an authorization process to the online key platform, the online key platform judges the state of the security device according to the ID of the security authentication device, if the state is normal, the online key platform carries out external authentication operation, namely the random number sent by the security authentication device is encrypted by the external authentication key of the online key platform to generate an authorization authentication ciphertext, and the authorization authentication ciphertext is returned to the security authentication device. The safety certification device decrypts the authorization certification ciphertext by using the locally stored key to obtain the random number in the ciphertext, then compares the random number with the previous random number, if the random number is consistent with the previous random number, the online key platform authorizes the safety certification device, and at the moment, the transaction counter in the safety certification device restores the original value.
If the authorization operation fails continuously, the ETC safety certification device is locked. When the network condition is unstable, the connection on-line key platform fails in a period of time, and the RSU antenna can continuously try to connect through the ETC security authentication equipment. At this time, the transaction counter in the security module is not zero, so that the working state can be continuously kept. When special cases occur in which the counter in the security module is zero and the network status is still unavailable, a manual authorization mode of operation may be assumed: the ETC safety authentication equipment is pulled out from a USB interface of the RSU antenna controller, and brought to a service private network, the Internet or a 4G network environment, the safety module is connected to the USB interface of a PC or other operation terminals, and the terminals are required to be deployed with manual authorization operation software.
When the authorization operation is carried out in a manual mode, the ETC security authentication device is pulled out from the USB interface of the RSU antenna controller and is brought to the environment with a service private network, the Internet or a 4G network, the security module is connected to the USB interface of a PC or other operation terminal, and manual authorization operation software is deployed at the terminal. And simultaneously inserting an electronic signature (UKey) into a terminal USB interface, opening manual authorization operation software, inputting a PIN code, applying for authorization operation to an online key platform, and working in an offline mode after successful authorization.
The application provides an ETC safety authentication equipment has high adaptability, can adapt to all ETC use scenes. The method and the device fully consider the diversity and complexity of the deployment environment, provide a working mode under the conditions of good network conditions and unstable network conditions, and even provide a solution under the conditions of extreme conditions or no network in special occasions, for example, the device can ensure that manual authorization is carried out under the conditions of extreme conditions or special requirements. And this ETC safety authentication equipment compares special authorization server several ten thousand yuan's purchase expense, adopts the security module based on the USB interface, will compress the cost by a wide margin, promotes the rapid development of ETC extension application. Finally, due to the portability of the device, the device is more convenient to deploy, the USB interface is used along with plug-in, and the installation cost is lower compared with that of a configuration server. In terms of safety, the safety and the stability of the ETC safety certification device (PSAM module) are enhanced from the aspects of system on Chip (COS), software design, system architecture and the like in multiple dimensions.
The principle and the implementation mode of the present application are explained by applying specific embodiments in the present application, and the description of the above embodiments is only used to help understanding the method and the core idea of the present application; meanwhile, for a person skilled in the art, according to the idea of the present application, there may be variations in the specific embodiments and the application scope, and in summary, the content of the present specification should not be construed as a limitation to the present application.
The embodiments in the present specification are described in a progressive manner, and the same and similar parts among the embodiments are referred to each other, and each embodiment focuses on the differences from the other embodiments. In particular, for the hardware + program class embodiment, since it is substantially similar to the method embodiment, the description is simple, and the relevant points can be referred to the partial description of the method embodiment. Although embodiments of the present description provide method steps as described in embodiments or flowcharts, more or fewer steps may be included based on conventional or non-inventive means. The order of steps recited in the embodiments is merely one manner of performing the steps in a multitude of orders and does not represent the only order of execution. When an actual apparatus or end product executes, it may execute sequentially or in parallel (e.g., parallel processors or multi-threaded environments, or even distributed data processing environments) according to the method shown in the embodiment or the figures.
In this specification, the schematic representations of the terms used above are not necessarily intended to refer to the same embodiment or example. Furthermore, various embodiments or examples and features of different embodiments or examples described in this specification can be combined and combined by one skilled in the art without contradiction. The above description is only an example of the embodiments of the present disclosure, and is not intended to limit the embodiments of the present disclosure. Various modifications and variations to the embodiments described herein will be apparent to those skilled in the art. Any modification, equivalent replacement, improvement, etc. made within the spirit and principle of the embodiments of the present specification should be included in the scope of the claims of the embodiments of the present specification.
Claims (10)
1. A high-adaptability ETC safety certification device is characterized by comprising: the system comprises a security chip, a storage chip, a communication component, a central processing unit and an information transmission component; the safety chip, the storage chip, the communication component and the information transmission component are all in communication connection with the central processing unit;
the security chip stores a system on chip for providing a security protection strategy, a root key for decrypting vehicle information and a key for performing external authentication;
the storage chip stores application data for decrypting the vehicle or performing external authentication;
the information transmission part is linked with an external RSU antenna controller and carries out data transmission;
the communication component and the information transmission component send information to the central processing unit, the central processing unit sends information to the security chip and the storage chip, and the security chip transmits data to the central processing unit.
2. The highly adaptable ETC security authentication device according to claim 1, further comprising a transaction counter for counting the number of times of decryption of the vehicle information.
3. The highly adaptable ETC security authentication device according to claim 1, wherein the communication means is a 4G communication module.
4. The ETC security authentication device with high adaptability according to claim 1, wherein the information transmission component is a USB interface, and the USB interface is connectable with an external RSU antenna controller.
5. The ETC security authentication device with high adaptability according to claim 1, characterized in that the information transmission component can also be a Type-C interface which can be connected with an external RSU antenna controller.
6. The ETC security authentication device with high adaptability according to claim 1, characterized in that the information transmission component can also be a wireless transmission module for performing communication connection with an external RSU antenna controller through radio.
7. The ETC security authentication device according to claim 1, further comprising a battery module adapted to receive external charging, the battery module being adapted to provide power to the ETC security authentication device.
8. The highly adaptable ETC security authentication device according to claim 1, further comprising a housing for housing the security chip, the memory chip, the communication part, the central processor and the information transmission part inside the housing.
9. A high-adaptability ETC security authentication system is characterized by comprising:
the ETC security authentication device of any one of claims 1-8, the RSU antenna controller, an online key platform, and a credential server communicatively coupled to the online key platform, the credential server communicatively coupled to the RSU antenna controller;
the RSU antenna controller is connected with the ETC safety certification equipment through an interface or wireless equipment.
10. The ETC security authentication system according to claim 9, further comprising an electronic signature for authenticating and authorizing the ETC security authentication device via the electronic signature and the PIN code when the network signal is poor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202022982242.9U CN213847031U (en) | 2020-12-11 | 2020-12-11 | ETC safety certification equipment and system of high adaptability |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202022982242.9U CN213847031U (en) | 2020-12-11 | 2020-12-11 | ETC safety certification equipment and system of high adaptability |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN213847031U true CN213847031U (en) | 2021-07-30 |
Family
ID=76997863
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202022982242.9U Active CN213847031U (en) | 2020-12-11 | 2020-12-11 | ETC safety certification equipment and system of high adaptability |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN213847031U (en) |
-
2020
- 2020-12-11 CN CN202022982242.9U patent/CN213847031U/en active Active
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112512040B (en) | High-adaptability ETC security authentication equipment authorization method, device and system | |
| CN101093594B (en) | IC card, service data process system and method based on the IC card | |
| CN105575000A (en) | System and method for supplying power to electromotive vehicle | |
| CN105448101A (en) | Method and system for verifying vehicles and drivers | |
| CN106506496A (en) | A kind of methods, devices and systems that withdraws the money without card | |
| CN102956040B (en) | A kind of high-grade highway Fare Collection System based on NFC | |
| CN105610871B (en) | A kind of vehicle input-output control system and control method based on semi-on-line key | |
| CN112468969A (en) | ETC security authentication equipment authorization method, device and system based on position information | |
| WO2017174200A2 (en) | Method for initiating an authentication process, in particular suitable for authenticating a person during a cashless payment transaction, and data processing terminal for use in said type of method | |
| CN114299667A (en) | Charging payment method and device for electric automobile | |
| CN109951454A (en) | Unmanned plane identity identifying method, system and terminal | |
| CN110659899B (en) | Offline payment method, device and equipment | |
| CN104579659A (en) | Device for safety information interaction | |
| TW202331659A (en) | Vehicle-mounted payment method, terminal, server, system and medium | |
| CN105139197A (en) | Business processing unit and vehicle-mounted unit | |
| CN213847031U (en) | ETC safety certification equipment and system of high adaptability | |
| DE102019103302A1 (en) | Method for operating a charging system | |
| CN109472890A (en) | intelligent lock and intelligent lock control method | |
| CN109246131B (en) | Safety reinforcing method and system for electricity consumption information acquisition terminal | |
| CN105741431A (en) | Off-board conduction type direct-current charging pile card-free login paying system, method and device | |
| WO2023058029A1 (en) | Multi-functional computerized charging station for electric vehicles | |
| CN113077558B (en) | PSAM card two-stage online authorization authentication method, device and system | |
| CN116368771A (en) | System for authenticating a user at a charging device and reporting usage regarding the charging device | |
| CN205486281U (en) | On -vehicle expressway high velocity electron charge system | |
| CN213847026U (en) | ETC safety certification equipment and system based on position information |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| GR01 | Patent grant | ||
| GR01 | Patent grant |