KR101580568B1 - Vehicle of diagnosis communication apparatus and method - Google Patents
Vehicle of diagnosis communication apparatus and method Download PDFInfo
- Publication number
- KR101580568B1 KR101580568B1 KR1020140157021A KR20140157021A KR101580568B1 KR 101580568 B1 KR101580568 B1 KR 101580568B1 KR 1020140157021 A KR1020140157021 A KR 1020140157021A KR 20140157021 A KR20140157021 A KR 20140157021A KR 101580568 B1 KR101580568 B1 KR 101580568B1
- Authority
- KR
- South Korea
- Prior art keywords
- external device
- authentication
- communication
- diagnostic
- communication channel
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L43/00—Arrangements for monitoring or testing data switching networks
- H04L43/06—Generation of reports
Abstract
Description
The present invention relates to a diagnostic communication apparatus and method for a vehicle, and more particularly, to a diagnostic communication apparatus and method for a vehicle, which enables a diagnostic communication bus to be directly connected to an internal bus to maintain security and improve communication speed.
In general, a message gateway is used for message and signal transmission between different communication networks. In the gateway, signal routing, which is a method of disassembling and re-transmitting the current communication message, and message routing method, .
In the conventional diagnostic communication apparatus for a vehicle, in the case of a message or signal routing in a network using a gateway, a function of transferring input contents to a necessary network without performing an authentication process for security check or content confirmation at a gateway . Such a conventional vehicle diagnostic communication apparatus will be described with reference to the accompanying drawings.
1 is a configuration diagram of a conventional diagnostic communication apparatus for a vehicle.
1 (A) and 1 (B), FIG. 1 (A) shows a case where normal routing can be performed at the time of connecting a diagnostic device to which access permission is granted, and FIG. 1 And normal routing is not possible when the equipment is connected. In FIG. 1, (A) and (B),
1 (A) shows a case in which the
Next, Fig. 1 (B) shows that, when the CAN
As a result, there is no communication network between the unauthorized
Even if the
Therefore, unless all the information related to the diagnosis is stored in the routing table in advance, the message having the new ID value or the data information of the development temporary CAN ID for development can not be transmitted through the gateway.
Further, in the conventional diagnostic communication apparatus for a vehicle, it is difficult to confirm whether the content to be rewritten is correct or not, and the security is poor when the encryption key is not used.
In order to enhance the security, the gateway makes it impossible to access the internal network immediately, and there is a primary security effect, but the communication speed is relatively lower than the conventional one.
In addition, diagnostic communication messages are routed in the same way, but development information that is not in the routing database can not be transmitted, and there is a problem that diagnosis delay due to routing occurs.
SUMMARY OF THE INVENTION The present invention has been made in view of the above problems, and it is an object of the present invention to provide a diagnostic communication apparatus and method for a vehicle that can directly connect a diagnostic communication bus to an internal bus, It has its purpose.
Another object of the present invention is to implement a direct coupling circuit which can directly connect diagnostic units or development equipment with units in a vehicle and to perform authentication of a diagnostic or development device when a diagnostic or development device is connected, The present invention provides a diagnostic communication apparatus and method for a vehicle that can directly communicate with units in a vehicle through a direct connection circuit.
The objects of the present invention are not limited to the above-mentioned objects, and other objects not mentioned can be clearly understood by those skilled in the art from the following description.
According to another aspect of the present invention, there is provided a diagnostic communication device for a vehicle, the diagnostic communication device being connected to an external device and performing a diagnosis, A control unit for confirming information of a diagnostic communication controller requiring access from the device and outputting a bus direct connection circuit control signal in accordance with the confirmation result; A gateway direct connection circuit portion for forming a vehicle communication channel between the external device and the diagnostic communication controller so that the communication channel can be physically connected directly by the bus direct connection circuit control signal; And a diagnostic communication controller that performs direct routing with the external device by the bus direct circuit portion.
The bus direct connection circuit unit may include: a multiplexer unit including at least one multiplexer so that a communication channel can be physically connected directly by the bus direct connection circuit control signal; And a communication transceiver portion directly connected by the at least one multiplexer and comprising at least one or more communication transceivers directly connected to the diagnostic communication controller and a communication channel.
Also, the communication transceiver may be based on CAN communication.
It is preferable that the multiplexer receives the bus direct connection circuit control signal from one of the four channels so that at least one of the three communication transceivers can be directly connected to the communication channel.
Also, the gateway can check the connection status of the external device that has succeeded in authentication, and can immediately disconnect the network when the connection is lost.
In addition, the gateway preferably prevents other messages from being activated during the reprogramming.
The control unit may include: a security authentication interface unit connected to the external device; And a security authentication unit for transmitting an arbitrary number generated on the side of the external device, receiving the encrypted key encryption using the random number, decrypting the received key encryption, and performing security authentication to determine whether to perform access authentication .
According to another aspect of the present invention, there is provided a diagnostic communication method for a vehicle that is connected to an external device and performs diagnosis, the method comprising: Confirming information of a diagnostic communication controller that requires access from an external device that succeeded in the authentication; And performing a direct routing with the external device by forming a vehicle communication channel between the external device and the diagnostic communication controller so that the communication channel is physically directly connected according to the result of the checking.
The step of verifying the information of the diagnostic communication controller may include the steps of: transmitting a random number to the external device and receiving the encrypted key encryption from the external device using the random number; And decrypting the received key encryption to perform security authentication to determine whether to perform access authentication.
The step of performing the direct routing may include directing at least one multiplexer and at least one multiplexer so that a communication channel can be physically connected directly by a bus direct connection circuit control signal, And forming a direct-connect network with at least one or more communication transceivers directly connected thereto.
In addition, the diagnostic communication method for a vehicle may further include confirming a connection state of an external device that has succeeded in authentication, and immediately disconnecting the network when the connection is lost.
Further, the diagnostic communication method for a vehicle may further include stopping the routing function at the time of accepting the authentication.
According to the above-mentioned problem solving means, the present invention can be implemented by a hardware implementation of a diagnostic circuit or a direct connection circuit capable of directly connecting development units and units in a vehicle, and when a diagnostic or development device is connected, By enabling the diagnostic or development equipment to communicate directly with in-vehicle units (eg, diagnostic communication controllers) through a direct connection circuit, the diagnostic communication bus can be directly connected to the internal bus to maintain security and improve communication speed. There is an effect that can be.
1 is a configuration diagram of a conventional diagnostic communication apparatus for a vehicle.
2 is a configuration diagram of a diagnostic communication apparatus for a vehicle according to an embodiment of the present invention;
3 is an internal configuration diagram of the gateway of Fig.
FIG. 4A is an exemplary diagram for explaining the operation of the multiplexer in FIG. 3; FIG.
FIG. 4B is an example of the control logic of the multiplexer in FIG. 3; FIG.
5 is a flowchart showing a communication method between an external device and a gateway according to an embodiment of the present invention.
6 is a flowchart illustrating a diagnostic communication method for a vehicle according to an embodiment of the present invention.
It should be understood that the specific details of the invention are set forth in the following description to provide a more thorough understanding of the present invention and that the present invention may be readily practiced without these specific details, It will be clear to those who have knowledge.
Hereinafter, preferred embodiments according to the present invention will be described in detail with reference to the accompanying drawings, with reference to the parts necessary for understanding the operation and operation according to the present invention.
In the present invention, a direct connection circuit that directly connects a diagnostic unit and units in a vehicle (for example, a diagnostic communication controller) is implemented in the gateway, and authentication of the diagnostic unit is performed when the diagnostic unit is connected, So as to enable communication with units in the vehicle directly.
2 is a configuration diagram of a diagnostic communication apparatus for a vehicle according to an embodiment of the present invention.
2 (A) and 2 (B), FIG. 2 (A) shows a case in which internal access is possible after authentication at the time of connection of a diagnosis device to which access permission is granted, and FIG. 2 The internal access is possible after the authentication when the developed development equipment is connected.
2 (A), the
2 (B), when the CAN
Accordingly, a communication network between the unauthorized
The
The internal configuration of the diagnostic communication apparatus for a vehicle according to the present invention will be described in detail as follows.
3 is an internal configuration diagram of the gateway of FIG.
3, the
The
The
The bus direct
The bus
The operations and actions of the first to
FIG. 4A is an exemplary diagram for explaining the operation of the multiplexer in FIG. 3, and FIG. 4B is an exemplary diagram showing the control logic of the multiplexer in FIG. Here, the operation of the present invention will be described through the first and
4A and 4B, the
The
That is, if the A channel input of the
Accordingly, there are 16 cases depending on whether the
5 is a flowchart illustrating a communication method between an external device and a gateway according to an embodiment of the present invention.
Referring to FIG. 5, the
Then, the
The
The
That is, the authentication process for confirming whether the
Thereafter, when the
The
Then, the
The
The
6 is a flowchart illustrating a diagnostic communication method for a vehicle according to an embodiment of the present invention.
Referring to FIG. 6, the
Thereafter, the
If the authentication is unsuccessful as a result of the determination, the
By setting the authentication retry limit, a denial of service (DoS) through authentication retry can be prevented.
However, if it is determined in step 603 that the authentication is successful, the
That is, the
The
The
Thereafter, the
While the invention has been shown and described with reference to certain preferred embodiments thereof, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention. Therefore, the scope of the present invention should not be limited by the illustrated embodiments, but should be determined by the scope of the appended claims and equivalents thereof.
11, 51:
20, 60:
30b:
30d: Powertrain controller 50: External device
61:
61b: Authentication processing unit 61c:
61d: Multiplexer control unit 63: Bus direct circuit unit
65:
67: Communication Transceiver Unit
67a to 67c: First to fourth communication transceivers
Claims (12)
A control unit for confirming information of a diagnostic communication controller requiring access from an external device that performs security authentication when the external device is connected and outputting a bus direct connection circuit control signal according to a result of the authentication,
A gateway direct connection circuit portion for forming a vehicle communication channel between the external device and the diagnostic communication controller so that the communication channel can be physically connected directly by the bus direct connection circuit control signal; And
And a diagnostic communication controller that performs direct routing with the external device by the bus direct circuit portion,
Wherein,
A security authentication interface unit connected to the external device; And
And a security authentication unit for transmitting an arbitrary number generated on the side of the external device, receiving the encrypted key encryption using the random number, and decrypting the received key encryption to perform security authentication to determine access authentication,
The gateway comprises:
The re-authentication is attempted within the predefined authentication retry overrun for the external device that has not succeeded in authentication, and if the number of authentication failure times exceeds the authentication retry excess range, the connection of the external device is blocked ,
The external device that has succeeded in authentication is continuously checked to check the connection state to disconnect the network immediately by controlling the bus direct connection circuit portion in case of connection loss and to send another message while the reprogramming is in progress during the diagnostic communication control period with the external device So as not to be activated.
A multiplexer unit consisting of at least one multiplexer so that a communication channel can be physically connected directly by the bus direct connection circuit control signal; And
And at least one communication transceiver directly connected by said at least one multiplexer and having a communication channel directly connected to said diagnostic communication controller.
CAN communication is performed based on the received signal.
Wherein the bus direct connection circuit control signal is input from one of the four channels so that at least one of the three communication transceivers can be directly connected to the communication channel.
(a1) transmitting a random number to the external device when the external device is connected, and receiving encrypted key encryption from the external device using the random number; And
(a2) decrypting the received key encryption to perform security authentication to determine success or failure of access authentication, and confirming information of a diagnostic communication controller requiring access;
(a3) Repeating the steps (a1) and (a2) for an external device that has not succeeded in authentication within the predefined authentication retry excess range, and attempts to re-authenticate, Blocking the connection of the external device when the retry overrange is exceeded;
(a4) stopping the routing function so that another message is not activated during the reprogramming in the diagnostic communication control period with the external device upon successful authentication;
(b) performing a direct routing with the external device by forming a vehicle communication channel between the external device and the diagnostic communication controller so that the communication channel is physically directly connected according to the result of the checking; And
(c) continuously checking the connection status of the external device that has succeeded in authentication, and disconnecting the network physically directly connected to the diagnostic communication controller immediately upon connection loss.
And at least one communication transceiver directly coupled to the diagnostic communication controller and directly connected to the communication channel, the at least one multiplexer being physically connected to the communication channel by a bus direct connection control signal, The method comprising the steps of:
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020140157021A KR101580568B1 (en) | 2014-11-12 | 2014-11-12 | Vehicle of diagnosis communication apparatus and method |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
KR1020140157021A KR101580568B1 (en) | 2014-11-12 | 2014-11-12 | Vehicle of diagnosis communication apparatus and method |
Publications (1)
Publication Number | Publication Date |
---|---|
KR101580568B1 true KR101580568B1 (en) | 2015-12-28 |
Family
ID=55085095
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
KR1020140157021A KR101580568B1 (en) | 2014-11-12 | 2014-11-12 | Vehicle of diagnosis communication apparatus and method |
Country Status (1)
Country | Link |
---|---|
KR (1) | KR101580568B1 (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20190081958A (en) | 2017-12-29 | 2019-07-09 | 주식회사 유라코퍼레이션 | System and method for controlling load factor of internal communication bus of car, and a recording medium having computer readable program for executing the method |
KR20190119514A (en) | 2018-04-05 | 2019-10-22 | 한국전자통신연구원 | On-board cybersecurity diagnostic system for vehicle, electronic control unit, and operating method thereof |
US10546436B2 (en) | 2017-06-23 | 2020-01-28 | Hyundai Motor Company | Vehicle test system having a gateway for determining whether an electronic device is testable, vehicle and vehicle test method |
US20200226852A1 (en) * | 2017-09-25 | 2020-07-16 | Autel Intelligent Technology Corp., Ltd. | Remote automobile diagnostic method and apparatus, mobile terminal,electronic device and server |
CN115333977A (en) * | 2022-08-11 | 2022-11-11 | 南京国电南自电网自动化有限公司 | System diagnosis channel realization method and device based on network interface |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2012104049A (en) * | 2010-11-12 | 2012-05-31 | Hitachi Automotive Systems Ltd | In-vehicle network system |
KR20140048591A (en) * | 2012-10-16 | 2014-04-24 | 콘티넨탈 오토모티브 시스템 주식회사 | Communication device of vehicle by a asynchronous communication port |
KR20140128660A (en) * | 2013-04-29 | 2014-11-06 | 현대자동차주식회사 | Accessing system for vehicle network and method of the same |
-
2014
- 2014-11-12 KR KR1020140157021A patent/KR101580568B1/en active IP Right Grant
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2012104049A (en) * | 2010-11-12 | 2012-05-31 | Hitachi Automotive Systems Ltd | In-vehicle network system |
KR20140048591A (en) * | 2012-10-16 | 2014-04-24 | 콘티넨탈 오토모티브 시스템 주식회사 | Communication device of vehicle by a asynchronous communication port |
KR20140128660A (en) * | 2013-04-29 | 2014-11-06 | 현대자동차주식회사 | Accessing system for vehicle network and method of the same |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US10546436B2 (en) | 2017-06-23 | 2020-01-28 | Hyundai Motor Company | Vehicle test system having a gateway for determining whether an electronic device is testable, vehicle and vehicle test method |
US20200226852A1 (en) * | 2017-09-25 | 2020-07-16 | Autel Intelligent Technology Corp., Ltd. | Remote automobile diagnostic method and apparatus, mobile terminal,electronic device and server |
US11615651B2 (en) * | 2017-09-25 | 2023-03-28 | Autel Intelligent Technology Corp., Ltd. | Remote automobile diagnostic method and apparatus, mobile terminal, electronic device and server |
KR20190081958A (en) | 2017-12-29 | 2019-07-09 | 주식회사 유라코퍼레이션 | System and method for controlling load factor of internal communication bus of car, and a recording medium having computer readable program for executing the method |
KR20190119514A (en) | 2018-04-05 | 2019-10-22 | 한국전자통신연구원 | On-board cybersecurity diagnostic system for vehicle, electronic control unit, and operating method thereof |
CN115333977A (en) * | 2022-08-11 | 2022-11-11 | 南京国电南自电网自动化有限公司 | System diagnosis channel realization method and device based on network interface |
CN115333977B (en) * | 2022-08-11 | 2023-08-15 | 南京国电南自电网自动化有限公司 | Method and device for realizing system diagnosis channel based on network interface |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
KR101580568B1 (en) | Vehicle of diagnosis communication apparatus and method | |
US9489544B2 (en) | Data communication authentication system for vehicle gateway apparatus for vehicle data communication system for vehicle and data communication apparatus for vehicle | |
EP3386163A1 (en) | Apparatus for use in a can system | |
US10673621B2 (en) | Management device, vehicle, management method, and computer program | |
US20180270052A1 (en) | Cryptographic key distribution | |
CN112544052B (en) | Key agreement method and device | |
EP3565212B1 (en) | Method for providing an authenticated update in a distributed network | |
US11418328B2 (en) | System for key control for in-vehicle network | |
CN113016201B (en) | Key provisioning method and related product | |
GB2541000A (en) | Security Device | |
CN106295373B (en) | A kind of data transmission encryption device realized based on M-PHY interface | |
CN112019340A (en) | Authentication system | |
GB2432436A (en) | Programmable logic controller peripheral device | |
CN109495885B (en) | Authentication method, mobile terminal, management system and Bluetooth IC card | |
US10395458B2 (en) | Secure vehicle access method and system | |
US20130074162A1 (en) | Method for dynamically authorizing a mobile communications device | |
WO2020133085A1 (en) | Information transmission method, storage medium, information transmission system and unmanned aerial vehicle | |
CN110915250B (en) | Method for providing secure operation of a subsystem within a safety critical system | |
WO2019187204A1 (en) | Control device, in-vehicle communication system, communication control method, and program | |
RU2719094C1 (en) | Device with security system and method for protected operation of said device through remote request | |
US11159492B2 (en) | Apparatus and method for adapting authorization information for a terminal | |
CN113098830B (en) | Communication method and related product | |
US11218309B2 (en) | Vehicle communication system and vehicle communication method | |
KR102436138B1 (en) | Method and system for replacing vehicle parts using in-vehicle network based on vehicle ethernet | |
KR20160117731A (en) | Watchdog, security system and method for watchdog |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
E701 | Decision to grant or registration of patent right | ||
GRNT | Written decision to grant |