JP2014150425A - Control system - Google Patents

Control system Download PDF

Info

Publication number
JP2014150425A
JP2014150425A JP2013018401A JP2013018401A JP2014150425A JP 2014150425 A JP2014150425 A JP 2014150425A JP 2013018401 A JP2013018401 A JP 2013018401A JP 2013018401 A JP2013018401 A JP 2013018401A JP 2014150425 A JP2014150425 A JP 2014150425A
Authority
JP
Japan
Prior art keywords
vehicle
signal
portable device
unit
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
JP2013018401A
Other languages
Japanese (ja)
Inventor
Taichi Yamaguchi
太一 山口
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Denso Corp
Original Assignee
Denso Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Denso Corp filed Critical Denso Corp
Priority to JP2013018401A priority Critical patent/JP2014150425A/en
Priority to PCT/JP2014/000030 priority patent/WO2014119225A1/en
Publication of JP2014150425A publication Critical patent/JP2014150425A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • BPERFORMING OPERATIONS; TRANSPORTING
    • B60VEHICLES IN GENERAL
    • B60RVEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
    • B60R25/00Fittings or systems for preventing or indicating unauthorised use or theft of vehicles
    • B60R25/20Means to switch the anti-theft system on or off
    • B60R25/24Means to switch the anti-theft system on or off using electronic identifiers containing a code not memorised by the user
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C9/00309Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with bidirectional data transmission between data carrier and locks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04QSELECTING
    • H04Q9/00Arrangements in telecontrol or telemetry systems for selectively calling a substation from a main station, in which substation desired apparatus is selected for applying a control signal thereto or for obtaining measured values therefrom
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C9/00309Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with bidirectional data transmission between data carrier and locks
    • G07C2009/00555Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with bidirectional data transmission between data carrier and locks comprising means to detect or avoid relay attacks
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C2009/00753Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys
    • G07C2009/00769Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys with data transmission performed by wireless means
    • G07C2009/00793Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by active electrical keys with data transmission performed by wireless means by Hertzian waves

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Mechanical Engineering (AREA)
  • Lock And Its Accessories (AREA)
  • Selective Calling Equipment (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

PROBLEM TO BE SOLVED: To provide a control system which can prevent damage by a relay attack.SOLUTION: An electronic key 3 comprises a GPS unit 35 for calculating its own location. When the key 3 receives an LF (Long Frequency) signal requesting ID reply, the key 3 transmits the calculated position of the key with an ID 34 as an RF (Radio Frequency) signal. A vehicle 2 can calculate its own position by a navigation ECU 7. When the vehicle 2 receives the RF signal, and if the key 3 locates at an appropriate position from the position of the vehicle (close to the vehicle 2, for example) and collation of the received ID is successful, the vehicle 2 permits unlocking doors, starting its engine, etc..

Description

本発明は、制御システムに関する。   The present invention relates to a control system.

車両のスマートキーシステム(登録商標)が普及している。現状のスマートキーシステムにおいては、例えば周期的に、あるいはユーザがドアハンドル接触やエンジンスタートスイッチの押下といった操作を行うと、電子キーに対してID(識別信号)の返信を要求するLF帯域の信号(以下、LF信号)が送信される。そして、電子キーから送信されたIDが車両側で記憶されたマスターIDと照合がとれたら、ドア開錠やエンジン始動等が許可される。   A smart key system (registered trademark) of a vehicle is widespread. In the current smart key system, for example, a signal in the LF band that requests an electronic key to return an ID (identification signal) periodically or when a user performs an operation such as a door handle contact or an engine start switch depression. (Hereinafter referred to as LF signal) is transmitted. When the ID transmitted from the electronic key is compared with the master ID stored on the vehicle side, door unlocking, engine starting, etc. are permitted.

例えば下記特許文献1には、スマートキーシステムにおいて、乗員に運転継続の意思があるか否かを判定する手段を装備して、携帯機が車両から離間し、携帯機の不所持者に運転継続の意思がある場合には内燃機関の再始動を許可し、車両の盗難をより確実に防止するシステムが開示されている。   For example, in Patent Document 1 below, in the smart key system, a means for determining whether or not the occupant intends to continue driving is equipped, and the portable device is separated from the vehicle, and driving continues for those who do not have the portable device. A system is disclosed that permits the restart of the internal combustion engine when there is an intention to prevent theft of the vehicle more reliably.

特開2007−153190号公報JP 2007-153190 A

スマートキーシステムにはリレーアタックと呼ばれる盗難の手法が知られている。その例が図5に示されている。この手法では、車両から所有者が離れている状況において、車両と所有者との間に犯罪者A、Bが位置する。所有者は車両の正規の電子キーを携帯しているとする。犯罪者A、Bは電波中継器を所持している。   A theft technique called relay attack is known for smart key systems. An example is shown in FIG. In this method, criminals A and B are located between the vehicle and the owner in a situation where the owner is away from the vehicle. Assume that the owner carries the vehicle's authorized electronic key. Criminals A and B have radio wave repeaters.

この状態で、まず車両から発信されたLF信号を犯罪者A、Bが中継して所有者の場所まで伝達する。通常LF信号の到達範囲は車両周辺に限定されているが、犯罪者A、Bの中継により所有者の所までLF信号を届かせることができる。車両の所有者が携帯する電子キーは、LF信号を受信したら、自身が記憶している電子キー固有のIDコードを無線信号(RF信号)として返信する。   In this state, first, criminals A and B relay the LF signal transmitted from the vehicle and transmit it to the owner's place. Usually, the reach range of the LF signal is limited to the vicinity of the vehicle, but the LF signal can reach the owner by relaying the criminals A and B. When the electronic key carried by the owner of the vehicle receives the LF signal, the electronic key unique ID stored in the electronic key is returned as a radio signal (RF signal).

返信されたRF信号が車両まで到達したら、車両は受信したRF信号とマスターIDとの間で照合処理を実行する。RF信号は所有者の持つ電子キーから送信された信号なので、当然照合は成功となる。これにより車両はドアの開錠許可状態となる。こうして犯罪者は車両に侵入することが可能となる。   When the returned RF signal reaches the vehicle, the vehicle executes a verification process between the received RF signal and the master ID. Since the RF signal is a signal transmitted from the electronic key owned by the owner, the verification is naturally successful. As a result, the vehicle is allowed to unlock the door. Thus, the criminal can invade the vehicle.

さらに、犯罪者Aが車両に搭乗した後に、同様の手順を繰り返すと、車室内照合が成功して、車両のエンジン始動が許可される。こうして犯罪者が車両を走行させることが可能となる。以上がリレーアタックの例である(なお犯罪者Cが介在するパターンもあるが後述する)。こうしたリレーアタックに対する効果的な対策が必要である。   Further, when the same procedure is repeated after the criminal A gets on the vehicle, the vehicle interior verification is successful and the engine start of the vehicle is permitted. Thus, the criminal can drive the vehicle. The above is an example of the relay attack (note that there is a pattern in which the criminal C intervenes, which will be described later). Effective measures against such relay attacks are necessary.

そこで本発明が解決しようとする課題は、上記に鑑み、リレーアタックによる被害を防止することができる制御システムを提供することにある。   Therefore, in view of the above, the problem to be solved by the present invention is to provide a control system capable of preventing damage caused by a relay attack.

上記課題を達成するために、本発明に係る制御システムは、使用者が携帯する携帯機の位置情報を取得する第1取得手段(S110)と、携帯機を識別するための情報である識別情報の送信を前記携帯機に対して要求するために車両から送信される信号である要求信号を前記携帯機が受信した場合に、前記識別情報と前記第1取得手段が取得した位置情報とを含む信号である送信信号を前記携帯機から送信する送信手段(S120)と、前記車両の位置情報を取得する第2取得手段(S30)と、前記車両に備えられて、前記送信手段から送信された前記送信信号を受信し、受信した送信信号に含まれる前記位置情報が示す前記携帯機の位置が前記第2取得手段により取得された前記車両の位置を含む所定領域内に入っており、かつ受信した送信信号に含まれる前記識別情報が前記車両に関連付けられた携帯機の識別情報である場合に、前記車両における所定の動作を許可する許可手段(S80)と、を備えたことを特徴とする。この発明によれば、携帯機の識別信号の照合のみでなく、携帯機が車両を含む所定領域内にあることも判別する。したがって所定領域(例えば車両の近く)にキーが存在しない場合には車両における所定動作は許可されないので、リレーアタックによる被害が効果的に防止できる。   In order to achieve the above object, a control system according to the present invention includes first acquisition means (S110) for acquiring position information of a portable device carried by a user, and identification information that is information for identifying the portable device. Including the identification information and the position information acquired by the first acquisition means when the portable device receives a request signal that is a signal transmitted from a vehicle to request the portable device to transmit A transmission means (S120) for transmitting a transmission signal, which is a signal, from the portable device, a second acquisition means (S30) for acquiring position information of the vehicle, and provided in the vehicle and transmitted from the transmission means. Receiving the transmission signal, the position of the portable device indicated by the position information included in the received transmission signal is within a predetermined area including the position of the vehicle acquired by the second acquisition means, and received did If the identification information included in the signal signal is identification information of the portable device associated with the vehicle, characterized by comprising a, a permission means for permitting a predetermined operation (S80) in the vehicle. According to this invention, it is determined not only that the identification signal of the portable device is collated, but also that the portable device is within a predetermined area including the vehicle. Therefore, when there is no key in a predetermined area (for example, close to the vehicle), the predetermined operation in the vehicle is not permitted, so that damage due to the relay attack can be effectively prevented.

本発明の制御システムの一実施形態における第1の構成例を示す図。The figure which shows the 1st structural example in one Embodiment of the control system of this invention. 制御システムにおける処理手順の第1の例を示すフローチャート。The flowchart which shows the 1st example of the process sequence in a control system. 制御システムにおける処理手順の第2の例を示すフローチャート。The flowchart which shows the 2nd example of the process sequence in a control system. 本発明の制御システムの一実施形態における第2の構成例を示す図。The figure which shows the 2nd structural example in one Embodiment of the control system of this invention. リレーアタックの例を示す図。The figure which shows the example of a relay attack.

以下、本発明の実施形態を図面を参照しつつ説明する。まず図1は、本発明に係る車両の制御システム1の装置構成の概略図である。図1に示されたシステム1は、車両2に備えられた照合制御ユニット(ECU:Electronic Control Unit)4、及びユーザが携帯可能な電子キー3(スマートキー、キー、携帯機)を備える。車両2は例えば自動車とすればよい。   Embodiments of the present invention will be described below with reference to the drawings. First, FIG. 1 is a schematic diagram of an apparatus configuration of a vehicle control system 1 according to the present invention. A system 1 shown in FIG. 1 includes a collation control unit (ECU: Electronic Control Unit) 4 provided in a vehicle 2 and an electronic key 3 (smart key, key, portable device) that can be carried by a user. The vehicle 2 may be an automobile, for example.

照合ECU4はLF送信部40、RF受信部41を備える。LF送信部40は、例えば車両2のドアハンドルの部位や車室内に複数装備されて、LF(長波)帯域の信号(LF信号)を送信する。送信されるLF信号は、電子キーに対してIDの返信を要求する信号である。LF信号の形態としては例えば、周期的に送信されるポーリング信号や、ユーザによるドアハンドル接触やエンジンスタートスイッチ操作などに応じて送信されるリクエスト信号がある。RF受信部41は、例えば車室内に装備されて、車外や車室内から送信されたRF信号を受信する。   The verification ECU 4 includes an LF transmitter 40 and an RF receiver 41. For example, a plurality of LF transmitters 40 are installed in the door handle portion or the vehicle interior of the vehicle 2 and transmit a signal (LF signal) in an LF (long wave) band. The transmitted LF signal is a signal for requesting the electronic key to return an ID. Examples of the form of the LF signal include a polling signal that is periodically transmitted and a request signal that is transmitted in response to a door handle contact or an engine start switch operation by a user. The RF receiving unit 41 is installed in, for example, the vehicle interior and receives an RF signal transmitted from the outside of the vehicle or the vehicle interior.

照合ECU4は通常のコンピュータの構造を有するとし、各種演算や情報処理を司るCPU、CPUの作業領域としての一時記憶部であるRAM、各種情報を記憶するための不揮発性のメモリ42を備える。メモリ42には、マスターID43が記憶されているとする。   The verification ECU 4 has a normal computer structure, and includes a CPU that controls various calculations and information processing, a RAM that is a temporary storage unit as a work area of the CPU, and a nonvolatile memory 42 that stores various information. It is assumed that a master ID 43 is stored in the memory 42.

車両2のドア5には、ロック機構50、タッチセンサ51が装備されている。ロック機構50により、ドアが施錠あるいは開錠される。タッチセンサ51は、車両2のアウタ側ドアハンドルに装備されて、ユーザがドアハンドルを把持したことを検出するセンサである。   The door 5 of the vehicle 2 is equipped with a lock mechanism 50 and a touch sensor 51. The door is locked or unlocked by the lock mechanism 50. The touch sensor 51 is a sensor that is mounted on the outer side door handle of the vehicle 2 and detects that the user has gripped the door handle.

また車両2は、車室内にエンジンスタートスイッチ6を備える。エンジンスタートスイッチ6はスマートキーシステムにおけるエンジン(あるいは電気的モータなども含む駆動部)始動のためのスイッチであり、車室内照合が成功の状態でユーザが操作するとエンジンが始動するスイッチである。また車両2はナビゲーションECU7(ナビECU)を備える。ナビECU7は、GPS受信部70によりGPS衛星から発信されるGPS信号を受信して、公知の算出方法により車両2の位置(緯度、経度)を算出する。以上の各部は車内通信(例えばCAN)により接続されて情報の受け渡しが可能となっている。   The vehicle 2 also includes an engine start switch 6 in the passenger compartment. The engine start switch 6 is a switch for starting an engine (or a drive unit including an electric motor) in the smart key system, and is a switch for starting the engine when operated by a user in a state where the vehicle interior verification is successful. The vehicle 2 includes a navigation ECU 7 (navigation ECU). The navigation ECU 7 receives a GPS signal transmitted from a GPS satellite by the GPS receiver 70, and calculates the position (latitude, longitude) of the vehicle 2 by a known calculation method. Each of the above units is connected by in-vehicle communication (for example, CAN) and can exchange information.

キー3はスマートキーシステムに関わる電子キーであり、ユーザが携帯可能で、LF受信部30、RF送信部31、制御部32、メモリ33、GPS部35を備える。メモリ33は不揮発性の記憶部であり、当該キー3に固有の識別信号34(IDコード、ID)が記憶されている。   The key 3 is an electronic key related to the smart key system, which can be carried by the user, and includes an LF receiver 30, an RF transmitter 31, a controller 32, a memory 33, and a GPS unit 35. The memory 33 is a non-volatile storage unit, and an identification signal 34 (ID code, ID) unique to the key 3 is stored.

LF受信部30は、上述のLF信号を受信する。RF送信部31は、LF信号の受信を受けて、当該キー3固有のIDコード34をRF信号として送信する。制御部32は、通常のコンピュータと同様の構造を有するとし、各種情報処理のためのCPUや、CPUの作業領域としての一時記憶部のRAMなどを備えるとする。GPS部35は、GPS信号を受信して、公知の算出方法によりキー3の位置(緯度、経度)を算出する。制御部32によってLF受信部30、RF送信部31、メモリ33、GPS部35などのキー3の装備が制御される。   The LF receiver 30 receives the above-described LF signal. Upon receiving the LF signal, the RF transmitter 31 transmits the ID code 34 unique to the key 3 as an RF signal. The control unit 32 has the same structure as a normal computer, and includes a CPU for various information processing, a RAM of a temporary storage unit as a work area of the CPU, and the like. The GPS unit 35 receives the GPS signal and calculates the position (latitude, longitude) of the key 3 by a known calculation method. The control unit 32 controls the equipment of the key 3 such as the LF reception unit 30, the RF transmission unit 31, the memory 33, and the GPS unit 35.

図1の構成のもとでシステム1は、リレーアタックによる盗難を防止するための処理を含んだ、車両2におけるスマートキーシステムに関する処理を実行する。その処理手順の例が図2に示されている。図2(及び後述の図3)における照合ECU7側の処理手順は予めプログラム化して例えばメモリ42に記憶しておき、照合ECU4が呼び出して自動的に実行するとすればよい。また図2におけるキー3側の処理もプログラム化されてメモリ33に記憶しておき、制御部32が自動的に実行するとすればよい。なお図2における処理例では、右側の処理は車両2の正規のキー3による処理としている。   In the configuration of FIG. 1, the system 1 executes a process related to the smart key system in the vehicle 2 including a process for preventing theft by a relay attack. An example of the processing procedure is shown in FIG. The processing procedure on the verification ECU 7 side in FIG. 2 (and FIG. 3 to be described later) may be programmed in advance and stored in, for example, the memory 42 and called by the verification ECU 4 and automatically executed. Further, the processing on the key 3 side in FIG. 2 is also programmed and stored in the memory 33, and the control unit 32 may automatically execute it. In the processing example in FIG. 2, the processing on the right side is processing by the regular key 3 of the vehicle 2.

図2の処理では、まずS10で照合ECU4は、車両2に対するユーザ操作が検出されたか否かを判定する。ここでユーザ操作とは、例えばユーザが車両2のアウタ側ドアハンドルを把持することによりタッチセンサ51に接触すること、あるいはユーザがエンジンスタートスイッチ6を操作すること等である。ユーザ操作が検出された場合(S10:YES)はS20に進み、ユーザ操作が検出されていない場合(S10:NO)はS10を繰り返してユーザ操作を待つ。S20に進んだら照合ECU4は、LF信号をLF送信部40から送信する。その際、上記ユーザ操作がタッチセンサへの接触の場合は当該ドアのLF送信部から送信し、ユーザ操作がエンジンスタートスイッチ操作の場合は車室内のLF送信部から送信する、等とすればよい。   In the process of FIG. 2, the collation ECU 4 first determines whether or not a user operation on the vehicle 2 has been detected in S10. Here, the user operation is, for example, that the user touches the touch sensor 51 by gripping the outer side door handle of the vehicle 2 or the user operates the engine start switch 6. If a user operation is detected (S10: YES), the process proceeds to S20. If no user operation is detected (S10: NO), S10 is repeated to wait for the user operation. After proceeding to S20, the verification ECU 4 transmits an LF signal from the LF transmitter 40. At that time, if the user operation is a touch sensor contact, the transmission is performed from the LF transmission unit of the door, and if the user operation is an engine start switch operation, the transmission is performed from the LF transmission unit in the passenger compartment. .

キー3は、S20で送信されたLF信号をS100でLF受信部30により受信する。次にキー3はS110で、キー3のその時点での位置(緯度、経度)をGPS部35により算出する。そしてS120でキー3は、キー3固有のID34とS110で算出した位置情報との両方を含むRF信号をRF送信部31から送信する。   The key 3 receives the LF signal transmitted in S20 by the LF receiver 30 in S100. Next, the key 3 is S110, and the GPS unit 35 calculates the position (latitude, longitude) of the key 3 at that time. In S120, the key 3 transmits an RF signal including both the ID 34 unique to the key 3 and the position information calculated in S110 from the RF transmission unit 31.

一方、照合ECU4はS30で、その時点での車両2の位置(緯度、経度)を車内通信を介してナビECU7から取得する。そして照合ECU4はS40でRF信号を受信したか否かを判定する。RF信号を受信した場合(S40:YES)はS50に進み、RF信号を受信していない場合(S40:NO)はS70に進む。   On the other hand, collation ECU4 acquires the position (latitude, longitude) of vehicle 2 at that time from navigation ECU7 via in-vehicle communication at S30. Then, the verification ECU 4 determines whether or not an RF signal has been received in S40. When the RF signal is received (S40: YES), the process proceeds to S50, and when the RF signal is not received (S40: NO), the process proceeds to S70.

S50に進んだら照合ECU4は、S40で受信が確認されたRF信号に含まれたキー3の位置情報から、キー3が適正な位置にあるか否かを判別する。ここで適正な位置とは例えば、車両2の十分近くの位置であり、リレーアタックが行われていないとみなせる位置とすればよい。したがって例えば車両2からLF信号が到達する範囲などとしてもよい。どのような範囲内を適正な位置とするかは予め定めておけばよい。例えば、車両2の位置を中心とする所定半径(例えばLF信号の到達距離)の円の内部を適正位置としてもよい。キー3がそのような適正位置にある場合(S50:YES)はS60に進み、適正位置にない場合(S50:NO)はS70に進む。   After proceeding to S50, the verification ECU 4 determines whether or not the key 3 is in an appropriate position from the position information of the key 3 included in the RF signal confirmed to be received in S40. Here, the appropriate position is, for example, a position sufficiently close to the vehicle 2 and may be a position where it can be considered that no relay attack is performed. Therefore, for example, a range where the LF signal reaches from the vehicle 2 may be used. What range should be determined as an appropriate position may be determined in advance. For example, the inside of a circle having a predetermined radius (for example, the reach distance of the LF signal) centered on the position of the vehicle 2 may be set as the appropriate position. If the key 3 is in such an appropriate position (S50: YES), the process proceeds to S60, and if not (S50: NO), the process proceeds to S70.

S60に進んだら照合ECU4は、S30で受信が確認されたRF信号に含まれたID34とマスターID44との間で照合を行い、照合が成功したか否かを判定する。照合が成功した場合(S60:YES)はS80に進み、照合が不成功であった場合(S60:NO)はS70に進む。   After proceeding to S60, the verification ECU 4 performs verification between the ID 34 and the master ID 44 included in the RF signal confirmed to be received at S30, and determines whether the verification is successful. If the collation is successful (S60: YES), the process proceeds to S80, and if the collation is unsuccessful (S60: NO), the process proceeds to S70.

S70に進んだら照合ECU4は、経過時間が所定時間を超えたか否かを判定する。ここで経過時間とは例えばS20でLF信号を送信してからの経過時間とすればよい。経過時間が所定時間を超えている場合(S70:YES)は図2の処理を終了し、まだ所定時間を超えていない場合(S70:NO)は再びS40に戻ってRF信号の受信を待つ。   After proceeding to S70, the verification ECU 4 determines whether or not the elapsed time has exceeded a predetermined time. Here, the elapsed time may be, for example, the elapsed time after transmitting the LF signal in S20. If the elapsed time exceeds the predetermined time (S70: YES), the processing of FIG. 2 is terminated. If the predetermined time has not been exceeded (S70: NO), the process returns to S40 and waits for reception of the RF signal.

S80に進んだら照合ECU4は、車両2における所定の動作を許可する。ここで所定の動作とは、S10でのユーザ操作がタッチセンサ51への接触の場合はドアの開錠動作とすればよく、S10でのユーザ操作がエンジンスタートスイッチ6の操作の場合はエンジンの始動とすればよい。以上が図2の処理手順例である。   After proceeding to S80, the verification ECU 4 permits a predetermined operation in the vehicle 2. Here, the predetermined operation may be the door unlocking operation when the user operation at S10 is a touch to the touch sensor 51, and the engine operation when the user operation at S10 is the operation of the engine start switch 6. It may be a start. The above is an example of the processing procedure in FIG.

以上のとおり図2の処理では、スマートキーシステムにおいて、IDの識別のみでなく、車両2とキー3の位置情報を用いて、キー3が適正位置にない(例えば車両2から遠すぎる)場合は、ドア開錠やエンジン始動を許可しない。よってリレーアタックによる被害が効果的に防止できる。   As described above, in the process of FIG. 2, in the smart key system, not only the identification of the ID but also the position information of the vehicle 2 and the key 3 is used and the key 3 is not in the proper position (for example, too far from the vehicle 2) Do not allow door unlocking or engine starting. Therefore, damage due to relay attack can be effectively prevented.

図2の処理手順は図3のように変形してもよい。図3の処理手順では図2に対してS45とS115とを付加している。図2と図3とで同符号の処理は、以下で説明がない限り同様の処理なので、重複する説明は省略する。   The processing procedure of FIG. 2 may be modified as shown in FIG. In the processing procedure of FIG. 3, S45 and S115 are added to FIG. The processes with the same reference numerals in FIGS. 2 and 3 are the same unless otherwise described, and thus the duplicate description is omitted.

S115でキー3の制御部32は、キー3固有のID34とS110で算出した位置情報を含むデータの全体を暗号化する。暗号鍵は予め定めておけばよい。そして図3のS120で制御部32は、S115で暗号化されたデータをRF信号としてRF送信部31から送信する。またS45で照合ECU4は、S40で受信が確認されたRF信号に対して、S115での暗号化と同じ暗号鍵で復号処理を行う。   In S115, the control unit 32 of the key 3 encrypts the entire data including the ID 34 unique to the key 3 and the position information calculated in S110. The encryption key may be determined in advance. In step S120 of FIG. 3, the control unit 32 transmits the data encrypted in step S115 from the RF transmission unit 31 as an RF signal. In step S45, the verification ECU 4 performs a decryption process on the RF signal confirmed to be received in step S40 with the same encryption key as that in step S115.

このように図3の処理では図2の処理手順に暗号化の手順を組み込む。図3のように暗号化を組みこむことの利点は、例えば図5で犯罪者Cが介在する形態のリレーアタックにも対応できることである。この形態で犯罪者Cは、S120でキー3から送信されたRF信号を受信して、それに変更を加えて車両2へ送信する役割を担うものとする。具体的に犯罪者Cは、図2の処理によりRF信号内に含まれるキー3の位置情報を車両2近傍の位置情報に変更する。   Thus, in the process of FIG. 3, the encryption procedure is incorporated into the process procedure of FIG. The advantage of incorporating encryption as shown in FIG. 3 is that it can cope with a relay attack in which a criminal C intervenes in FIG. 5, for example. In this form, the criminal C is responsible for receiving the RF signal transmitted from the key 3 in S120, changing it, and transmitting it to the vehicle 2. Specifically, the criminal C changes the position information of the key 3 included in the RF signal to the position information in the vicinity of the vehicle 2 by the process of FIG.

このようなリレーアタックであっても、図3の処理手順を用いれば、RF信号が暗号化されるために犯罪者CがRF信号内の位置情報に変更を加えることができない。したがって、図3の処理手順ならばこのようなリレーアタックにも対処できて、高いセキュリティ性が実現される。   Even with such a relay attack, if the processing procedure of FIG. 3 is used, the criminal C cannot change the position information in the RF signal because the RF signal is encrypted. Therefore, the processing procedure of FIG. 3 can cope with such a relay attack and realize high security.

図1のシステム構成は図4のように変形してもよい。図4のシステム1’では、電子キー3に替わって携帯電話機8が用いられる。図1と図4で同符号の部位は同様、同機能の部位なので、重複する説明は省略する。なお携帯電話機8は、スマートフォンなどを含むとしてよい。   The system configuration of FIG. 1 may be modified as shown in FIG. In the system 1 ′ in FIG. 4, a mobile phone 8 is used instead of the electronic key 3. In FIG. 1 and FIG. 4, the parts with the same reference numerals are the parts with the same function, and thus redundant explanation is omitted. Note that the mobile phone 8 may include a smartphone or the like.

携帯電話機8は、CPU80、メモリ81、GPS部82、回線通信部83、近距離無線通信部84を備える。CPU80は携帯電話機8における情報処理全般を司る。メモリ81はCPU80における情報処理のための記憶部であり、揮発性の記憶部(RAM)や不揮発性の記憶部を含む。特にメモリ81は本発明での携帯電話機8側の処理手順をプログラム化したプログラム810を記憶する。GPS部82はGPS信号を受信して携帯電話機8の位置(緯度、経度)を算出する。回線通信部83は公衆電話回線網(携帯電話回線網を含む)を通じて、通話やデータ通信などの無線通信を行う。近距離無線通信部84は近距離無線通信の規格(例えばBluetooth(登録商標)やWi-fi(登録商標)など)のもとで近距離無線通信を行う。   The cellular phone 8 includes a CPU 80, a memory 81, a GPS unit 82, a line communication unit 83, and a short-range wireless communication unit 84. The CPU 80 governs overall information processing in the mobile phone 8. The memory 81 is a storage unit for information processing in the CPU 80, and includes a volatile storage unit (RAM) and a nonvolatile storage unit. In particular, the memory 81 stores a program 810 obtained by programming the processing procedure on the mobile phone 8 side according to the present invention. The GPS unit 82 receives a GPS signal and calculates the position (latitude, longitude) of the mobile phone 8. The line communication unit 83 performs wireless communication such as a telephone call and data communication through a public telephone line network (including a mobile phone line network). The short-range wireless communication unit 84 performs short-range wireless communication based on a short-range wireless communication standard (for example, Bluetooth (registered trademark) or Wi-fi (registered trademark)).

図4における車両2は、図2の構成からLF送信部40、RF受信部41が省略されて、替わりに回線通信部44、近距離無線通信部45を備える。回線通信部44は公衆電話回線網(携帯電話回線網を含む)を通じて、通話やデータ通信などの無線通信を行う。近距離無線通信部45は近距離無線通信の規格のもとで近距離無線通信を行う。ただし近距離無線通信部84と近距離無線通信部45とは同じ規格に属し、相互に通信が可能である。   The vehicle 2 in FIG. 4 includes the line communication unit 44 and the short-range wireless communication unit 45 instead of the LF transmission unit 40 and the RF reception unit 41 from the configuration of FIG. The line communication unit 44 performs wireless communication such as a telephone call or data communication through a public telephone line network (including a mobile phone line network). The short-range wireless communication unit 45 performs short-range wireless communication based on a short-range wireless communication standard. However, the near field communication unit 84 and the near field communication unit 45 belong to the same standard and can communicate with each other.

図4の構成のもとでも図2又は図3の処理を行えばよい。その際、S20、S40での送信、受信は回線通信部44(又は近距離無線通信部45)を用いて行い、S100、S120での受信、送信は回線通信部83(又は近距離無線通信部84)を用いて行えばよい。またS110での位置算出はGPS部82により行えばよい。そして図2、図3の携帯機側の処理手順は、携帯電話機8がCPU80がプログラム810を実行することにより処理すればよい。このような図4の構成ならば、既存の携帯電話機が備える通信機能やGPS機能を有効に活用、兼用することができるので、新たなシステム構成が低コスト化できる。   The processing of FIG. 2 or 3 may be performed even under the configuration of FIG. At that time, transmission and reception at S20 and S40 are performed using the line communication unit 44 (or near field communication unit 45), and reception and transmission at S100 and S120 are performed at the line communication unit 83 (or near field communication unit). 84). The position calculation in S110 may be performed by the GPS unit 82. The processing procedure on the portable device side in FIGS. 2 and 3 may be processed by the mobile phone 8 by the CPU 80 executing the program 810. With such a configuration of FIG. 4, the communication function and GPS function of the existing mobile phone can be effectively utilized and shared, so that a new system configuration can be reduced in cost.

本発明の実施形態は特許請求の範囲に記載された主旨を逸脱しない範囲で適宜変更してよい。例えば上記の電子キー3や携帯電話機8は、これらに限定されず、例えば無線通信機能付きの(ノート型、タブレット型など)コンピュータのように、使用者により携帯可能なあらゆる無線通信装置を用いてもよい。また図2のS10でのユーザ操作やS80での所定動作は上記例に限定されず、ドアのアウタ側ハンドルに装備されたドアロックボタンの操作とドア施錠なども含んでよく、スマートキーによるあらゆる動作を含んでよい。   Embodiments of the present invention may be modified as appropriate without departing from the spirit and scope of the claims. For example, the electronic key 3 and the mobile phone 8 described above are not limited to these, and any wireless communication device that can be carried by the user, such as a computer with a wireless communication function (such as a notebook computer or a tablet computer), is used. Also good. Further, the user operation in S10 of FIG. 2 and the predetermined operation in S80 are not limited to the above example, and may include the operation of the door lock button and the door locking provided on the outer handle of the door. Operations may be included.

1 制御システム
2 車両
3 電子キー(携帯機)
4 照合ECU 1 Control System 2 Vehicle 3 Electronic Key (Portable Machine)
4 verification ECU

Claims (5)

使用者が携帯する携帯機(3、8)の位置情報を取得する第1取得手段(S110)と、
携帯機を識別するための情報である識別情報の送信を前記携帯機に対して要求するために車両(2)から送信される信号である要求信号を前記携帯機が受信した場合に、前記識別情報と前記第1取得手段が取得した位置情報とを含む信号である送信信号を前記携帯機から送信する送信手段(S120)と、
前記車両の位置情報を取得する第2取得手段(S30)と、
前記車両に備えられて、前記送信手段から送信された前記送信信号を受信し、受信した送信信号に含まれる前記位置情報が示す前記携帯機の位置が前記第2取得手段により取得された前記車両の位置を含む所定領域内に入っており、かつ受信した送信信号に含まれる前記識別情報が前記車両に関連付けられた携帯機の識別情報である場合に、前記車両における所定の動作を許可する許可手段(S80)と、
を備えたことを特徴とする制御システム。 First acquisition means (S110) for acquiring position information of the portable device (3, 8) carried by the user;
When the portable device receives a request signal that is a signal transmitted from the vehicle (2) to request the portable device to transmit identification information that is information for identifying the portable device, the identification is performed. Transmitting means (S120) for transmitting a transmission signal, which is a signal including information and position information acquired by the first acquisition means, from the portable device;
Second acquisition means (S30) for acquiring positional information of the vehicle;
The vehicle, which is provided in the vehicle, receives the transmission signal transmitted from the transmission unit, and the position of the portable device indicated by the position information included in the received transmission signal is acquired by the second acquisition unit Permission to permit a predetermined operation in the vehicle when the identification information included in the predetermined area including the position of the vehicle is the identification information of the portable device associated with the vehicle Means (S80);
A control system characterized by comprising: 前記送信手段は、送信する前に前記送信信号を所定の暗号鍵により暗号化する暗号化手段(S115)を備え、
前記許可手段は、受信した前記送信信号を復号する復号手段(S45)を備えた請求項1に記載の制御システム。 The transmission means includes an encryption means (S115) for encrypting the transmission signal with a predetermined encryption key before transmission,
The control system according to claim 1, wherein the permission unit includes a decoding unit (S45) for decoding the received transmission signal. 前記所定領域は、前記車両の位置から前記要求信号が到達する範囲である請求項1または2に記載の制御システム。   The control system according to claim 1, wherein the predetermined area is a range where the request signal reaches from a position of the vehicle. 前記携帯機は、携帯電話機(8)であり、
前記携帯機は、前記第1取得手段および前記送信手段として前記携帯機を機能させるプログラムを記憶する記憶部(81)を備えた請求項1乃至3のいずれか1項に記載の制御システム。 The portable device is a cellular phone (8);
The control system according to any one of claims 1 to 3, wherein the portable device includes a storage unit (81) that stores a program that causes the portable device to function as the first acquisition unit and the transmission unit. 前記送信手段は、公衆電話回線による無線通信を行う回線通信部(83)、または近距離無線通信を行う近距離無線通信部(84)である請求項4に記載の制御システム。   The control system according to claim 4, wherein the transmission means is a line communication unit (83) that performs wireless communication through a public telephone line or a short-range wireless communication unit (84) that performs short-range wireless communication.
JP2013018401A 2013-02-01 2013-02-01 Control system Pending JP2014150425A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP2013018401A JP2014150425A (en) 2013-02-01 2013-02-01 Control system
PCT/JP2014/000030 WO2014119225A1 (en) 2013-02-01 2014-01-08 Control system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
JP2013018401A JP2014150425A (en) 2013-02-01 2013-02-01 Control system

Publications (1)

Publication Number Publication Date
JP2014150425A true JP2014150425A (en) 2014-08-21

Family

ID=51261945

Family Applications (1)

Application Number Title Priority Date Filing Date
JP2013018401A Pending JP2014150425A (en) 2013-02-01 2013-02-01 Control system

Country Status (2)

Country Link
JP (1) JP2014150425A (en)
WO (1) WO2014119225A1 (en)

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN104276137A (en) * 2014-09-19 2015-01-14 奇瑞汽车股份有限公司 Keyless entry system and keyless entry method for vehicle based on mobile LBS (Location Based Service)
JP2016155526A (en) * 2015-02-26 2016-09-01 株式会社日本自動車部品総合研究所 Vehicle anti-theft device
WO2017017877A1 (en) * 2015-07-29 2017-02-02 株式会社デンソー Vehicle control system
JP2018521891A (en) * 2015-05-19 2018-08-09 ボヨモーティブ,エルエルシー Stand-alone vehicle security method and apparatus
KR20190006808A (en) * 2017-07-11 2019-01-21 (주)디에스멘토링 Method And Apparatus for Opening Vehicle Door Lock by using Smart-Key
US10196038B2 (en) 2014-01-15 2019-02-05 Denso Corporation Vehicular communication control system
WO2019216158A1 (en) * 2018-05-09 2019-11-14 株式会社オートネットワーク技術研究所 Onboard device, distance determination method, and computer program
JP2020041301A (en) * 2018-09-09 2020-03-19 株式会社ネクスティエレクトロニクス Portable device and communication control method applied to portable device
JP2022023633A (en) * 2020-07-27 2022-02-08 本田技研工業株式会社 Vehicle control system, vehicle control method, and vehicle control server
US11521443B2 (en) 2017-03-16 2022-12-06 Samsung Electronics Co., Ltd. Door lock device and control method for door lock device

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR102444390B1 (en) * 2017-10-23 2022-09-19 현대자동차주식회사 Vehicle, vehicle security system and vehicle security method
CN112235718A (en) * 2020-10-28 2021-01-15 纳恩博(北京)科技有限公司 Equipment control method and control device, electronic equipment and storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003148017A (en) * 2001-11-08 2003-05-21 Sharp Corp Lock device, lock control system and method for controlling lock
JP2006118886A (en) * 2004-10-19 2006-05-11 Sanyo Electric Co Ltd Distance calculation system, and distance calculation method for the distance calculation system
JP2011052412A (en) * 2009-08-31 2011-03-17 Tokai Rika Co Ltd Electronic key system of vehicle

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2005163522A (en) * 2003-11-14 2005-06-23 Tokai Rika Co Ltd Vehicle controller, portable unit, remote control system for vehicles, control method for vehicle controller, and control method for portable unit

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003148017A (en) * 2001-11-08 2003-05-21 Sharp Corp Lock device, lock control system and method for controlling lock
JP2006118886A (en) * 2004-10-19 2006-05-11 Sanyo Electric Co Ltd Distance calculation system, and distance calculation method for the distance calculation system
JP2011052412A (en) * 2009-08-31 2011-03-17 Tokai Rika Co Ltd Electronic key system of vehicle

Cited By (17)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US10196038B2 (en) 2014-01-15 2019-02-05 Denso Corporation Vehicular communication control system
CN104276137A (en) * 2014-09-19 2015-01-14 奇瑞汽车股份有限公司 Keyless entry system and keyless entry method for vehicle based on mobile LBS (Location Based Service)
JP2016155526A (en) * 2015-02-26 2016-09-01 株式会社日本自動車部品総合研究所 Vehicle anti-theft device
JP7093635B2 (en) 2015-05-19 2022-06-30 ボヨモーティブ,エルエルシー Stand-alone vehicle security methods and equipment
JP2018521891A (en) * 2015-05-19 2018-08-09 ボヨモーティブ,エルエルシー Stand-alone vehicle security method and apparatus
US11524656B2 (en) 2015-05-19 2022-12-13 Voyomotive, Llc Independent vehicle security method and apparatus
WO2017017877A1 (en) * 2015-07-29 2017-02-02 株式会社デンソー Vehicle control system
JP2017030379A (en) * 2015-07-29 2017-02-09 株式会社デンソー Vehicle controlling system
US11521443B2 (en) 2017-03-16 2022-12-06 Samsung Electronics Co., Ltd. Door lock device and control method for door lock device
KR20190006808A (en) * 2017-07-11 2019-01-21 (주)디에스멘토링 Method And Apparatus for Opening Vehicle Door Lock by using Smart-Key
KR101962914B1 (en) * 2017-07-11 2019-03-27 (주)디에스멘토링 Method And Apparatus for Opening Vehicle Door Lock by using Smart-Key
WO2019216158A1 (en) * 2018-05-09 2019-11-14 株式会社オートネットワーク技術研究所 Onboard device, distance determination method, and computer program
JP2020041301A (en) * 2018-09-09 2020-03-19 株式会社ネクスティエレクトロニクス Portable device and communication control method applied to portable device
JP7262948B2 (en) 2018-09-09 2023-04-24 株式会社ネクスティエレクトロニクス Portable device, communication control method applied to portable device
JP7116761B2 (en) 2020-07-27 2022-08-10 本田技研工業株式会社 Vehicle control system, vehicle control method, and vehicle control server
JP2022023633A (en) * 2020-07-27 2022-02-08 本田技研工業株式会社 Vehicle control system, vehicle control method, and vehicle control server
US11546736B2 (en) 2020-07-27 2023-01-03 Honda Motor Co., Ltd. Vehicle control system, vehicle control method, and vehicle control server

Also Published As

Publication number Publication date
WO2014119225A1 (en) 2014-08-07

Similar Documents

Publication Publication Date Title
WO2014119225A1 (en) Control system
US11351962B2 (en) Electronic key system
US10137859B2 (en) Automotive security apparatus and associated methods
JP6670801B2 (en) Car sharing system and car sharing program
JP6292719B2 (en) Vehicle wireless communication system, vehicle control device, portable device
US20150379793A1 (en) Communication system, in-vehicle device, mobile device, and communication method
WO2015174012A1 (en) Electronic key system
US20190080539A1 (en) Key security device
JP2016171486A (en) Vehicle radio communication system, vehicle controller, and portable apparatus
US10220814B2 (en) Vehicle control system
JP5529783B2 (en) Electronic key system
US20170118023A1 (en) Method for authorizing a software update in a motor vehicle
JP2012060482A (en) Control system
WO2015033527A1 (en) Control device and electronic key system
JP6595551B2 (en) Car sharing system
KR20140052099A (en) Smart key system and method for defensing relay station attack using the system
US20190001927A1 (en) Method for releasing one or more functions in a vehicle
JP6702840B2 (en) Wireless communication correctness determination system
JP6287673B2 (en) Control system
JP2018053489A (en) Smart key system
JP2011111845A (en) Electronic key system
JP2017103719A (en) Security system
JP5696851B2 (en) Control system or storage device
JP6663886B2 (en) Car sharing system
JP5963108B2 (en) Systems and tools

Legal Events

Date Code Title Description
A621 Written request for application examination

Free format text: JAPANESE INTERMEDIATE CODE: A621

Effective date: 20151105

A131 Notification of reasons for refusal

Free format text: JAPANESE INTERMEDIATE CODE: A131

Effective date: 20170110

A521 Request for written amendment filed

Free format text: JAPANESE INTERMEDIATE CODE: A523

Effective date: 20170202

A02 Decision of refusal

Free format text: JAPANESE INTERMEDIATE CODE: A02

Effective date: 20170213