KR102587902B1 - Vehicle data security processing system of electronic control unit - Google Patents

Abstract

The present invention relates to a vehicle data security processing system for an electronic control device that securely processes and transmits large amounts of vehicle data generated in real time from various ECUs in the vehicle to increase communication efficiency and improve security.

Description

{Vehicle data security processing system of electronic control unit}

The present invention relates to a vehicle data security processing system for electronic control devices, and more specifically, to secure data to increase communication efficiency and improve security for large amounts of vehicle data generated in real time from various ECUs in the vehicle. This relates to a vehicle data security processing system for electronic control devices that transmits data.

As the electronicization of vehicle parts progresses rapidly, the types and number of electronic devices mounted on vehicles are greatly increasing.

Electronic devices can be largely used in power train control systems, body control systems, chassis control systems, vehicle networks, and multimedia systems. The powertrain control system may include an engine control system, an automatic transmission control system, etc. The body control system may include a body electronics control system, a convenience device control system, a lamp control system, etc. The chassis control system may include a steering control system, a brake control system, a suspension control system, etc.

Vehicle networks may include CAN (controller area network), FlexRay-based networks, MOST (media oriented system transport)-based networks, etc. The multimedia system may include a navigation system, a telematics system, an infotainment system, etc.

These systems and the electronic devices that make up each of the systems are connected through a vehicle network, and a vehicle network is required to support the functions of each electronic device. CAN can support transmission rates of up to 1Mbps, automatic retransmission of collided frames, and error detection based on CRC (cycle redundancy check).

FlexRay-based networks can support transmission speeds of up to 10Mbps, and can support simultaneous data transmission through two channels and synchronous data transmission. The MOST-based network is a communication network for high-quality multimedia and can support transmission speeds of up to 150Mbps.

Meanwhile, vehicle telematics systems, infotainment systems, and improved safety systems require high transmission speeds and system scalability, and CAN and FlexRay-based networks do not sufficiently support these. MOST-based networks can support higher transmission rates than CAN and FlexRay-based networks, but it costs a lot of money to apply MOST-based networks to all networks in a vehicle. Due to these problems, an Ethernet-based network may be considered as a vehicle network. Ethernet-based networks can support two-way communication over a pair of windings and can support transmission speeds of up to 10 Gbps.

Electronic devices connected through the vehicle network each have an ECU, and the number and amount of data generated by various ECUs in the vehicle are generated exponentially in proportion to the vehicle operation, so technology that must efficiently process this data is required. It is being demanded.

Meanwhile, the above-mentioned background technology is technical information that the inventor possessed for deriving the present invention or acquired in the process of deriving the present invention, and cannot necessarily be said to be known technology disclosed to the general public before filing the application for the present invention. .

Korean Patent Publication No. 10-2022-0028879

One aspect of the present invention provides a vehicle data security processing system of an electronic control device that securely processes and transmits data to increase communication efficiency and improve security for large amounts of vehicle data generated in real time from various ECUs in the vehicle. do.

The technical problem of the present invention is not limited to the technical problem mentioned above, and other technical problems not mentioned will be clearly understood by those skilled in the art from the description below.

The vehicle data security processing system of the electronic control device according to an embodiment of the present invention increases communication efficiency for large amounts of vehicle data generated in real time from various ECUs in the vehicle, and securely processes and transmits the data to improve security. do.

The vehicle data security processing system of the electronic control device is,

A step where an ECU (Electronic Control Unit) provided in the vehicle generates data related to vehicle operation;

determining whether to pre-process the data based on the characteristics of the data;

Encrypting preprocessed data or non-preprocessed data; and

It includes transmitting encrypted data.

Deciding whether to preprocess the data based on the characteristics of the data,

Compare the nth generated data and the n-1th generated data and delete the data if the two data are the same.

By comparing the nth generated data and the n-1th generated data, if the two data are different and it is confirmed that the nth generated data is data consisting of only characters, the preprocessing process is omitted for the nth generated data. Judging that it is,

By comparing the nth generated data and the n-1th generated data, if the two data are different and it is confirmed that the nth generated data is data consisting only of numbers, the nth generated data is preprocessed. It is decided to do so, and a preprocessing process is further performed to calculate the difference between the n-th generated data and the n-1-th generated data.

According to one aspect of the present invention described above, in order to increase communication efficiency and improve security for large-capacity vehicle data generated in real time from various ECUs in the vehicle, the data can be securely processed and transmitted.

1 is a diagram illustrating a schematic configuration of a large-capacity vehicle data collection and secure transmission processing system according to an embodiment of the present invention.
Figure 2 is a diagram illustrating a schematic configuration of a large-capacity vehicle data collection and secure transmission processing method according to an embodiment of the present invention.
Figures 3 and 4 are diagrams showing a specific example of a data encryption process.

The detailed description of the present invention described below refers to the accompanying drawings, which show by way of example specific embodiments in which the present invention may be practiced. These embodiments are described in sufficient detail to enable those skilled in the art to practice the invention. It should be understood that the various embodiments of the invention are different from one another but are not necessarily mutually exclusive. For example, specific shapes, structures and characteristics described herein may be implemented in one embodiment without departing from the spirit and scope of the invention. Additionally, it should be understood that the location or arrangement of individual components within each disclosed embodiment may be changed without departing from the spirit and scope of the invention. Accordingly, the detailed description that follows is not intended to be taken in a limiting sense, and the scope of the invention is limited only by the appended claims, together with all equivalents to what those claims assert, if properly described. Similar reference numbers in the drawings refer to identical or similar functions across various aspects.

Hereinafter, preferred embodiments of the present invention will be described in more detail with reference to the drawings.

1 is a flowchart showing the schematic flow of a large-capacity vehicle data collection and secure transmission processing system according to an embodiment of the present invention.

The vehicle data security processing system of the electronic control device according to the present invention increases communication efficiency for large amounts of vehicle data generated in real time from various ECUs in the vehicle, and securely processes and transmits the data to improve security.

Specifically, the large-capacity vehicle data collection and secure transmission processing system 1 according to an embodiment of the present invention includes a data generation unit 100, a data collection setting unit 200, a data preprocessing unit 300, and a data storage unit ( 400), a data security processing unit 500, and a data transmission unit 600.

Here, a data generation unit 100, a data collection setting unit 200, a data preprocessing unit 300, a data storage unit 400, and a data security processing unit, which constitute the large-capacity vehicle data collection and secure transmission processing system according to the present invention. 500 and the data transmission unit 600 may be implemented by a single device installed in the vehicle, or may be implemented by being distributed across a plurality of different devices.

The data generator 100 may generate data to be provided to the user during vehicle operation. For example, the data generated by the data generator 100 may be in the form of speed, oil amount, temperature, humidity, notification message, GPS coordinate value, etc. In addition, various types of data generated during vehicle operation may be used. More may be included.

The data collection setting unit 200 assigns data collection settings to the generated data.

Specifically, the data collection setting unit 200 assigns different identification values depending on the type of ECU that generates the data and the type and characteristics of the data, and classifies and manages the data according to the assigned identification values.

In this process, the data collection setting unit 200 determines whether to preprocess the data based on the characteristics of the identification value assigned to each data.

Specifically, when the n-th data is generated in a specific ECU, the data collection setting unit 200 compares the n-th generated data and the n-1-th generated data, and if the two data are the same, deletes the data, thereby creating unnecessary data. By preventing data from being transmitted, the energy required for data communication can be saved.

Meanwhile, the data collection setting unit 200 compares the n-th generated data and the n-1-th generated data, and if it is determined that the two data are different and the n-th generated data is data consisting of only characters, the n-th generated data is It is judged that the data generated by omitting the preprocessing process.

On the other hand, the data collection setting unit 200 compares the n-th generated data and the n-1-th generated data, and if it is confirmed that the two data are different and the n-th generated data is data consisting only of numbers, n It is determined that the first generated data is to be subjected to a pre-processing process, and the data requiring a pre-processing process is transmitted to the data pre-processing unit 300.

The data pre-processing unit 300 performs a pre-processing process to calculate the difference between the n-th generated data and the n-1-th generated data.

The data pre-processing unit 300 converts the n-th generated data into a difference value and transmits it to the data storage unit 400. For example, if the n-1th generated data is 19℃ and the nth generated data is 20℃, the data preprocessor 300 sets 20℃, the data value of the nth generated data, as +1. It is converted into a data value and transmitted to the data storage unit 400.

The data storage unit 400 stores preprocessed or non-preprocessed data.

The data security processing unit 500 encrypts data stored in the data storage unit 400. The specific encryption process of the data security processing unit 500 will be described later.

The data transmission unit 600 transmits data encrypted by the data security processing unit 500 to another device in the vehicle.

Figure 2 is a flow chart illustrating a schematic flow of a large-capacity vehicle data collection and secure transmission processing method according to an embodiment of the present invention.

The large-capacity vehicle data collection and secure transmission processing method according to the present invention can be performed by the large-capacity vehicle data collection and secure transmission processing system according to the present invention shown in FIG. 1.

Specifically, the large-capacity vehicle data collection and secure transmission processing method according to the present invention includes the steps of generating data related to vehicle operation by an ECU (Electronic Control Unit) provided in the vehicle; determining whether to pre-process the data based on the characteristics of the data; Encrypting preprocessed data or non-preprocessed data; and transmitting encrypted data. Since detailed descriptions of each of the above-mentioned steps are described in detail in FIG. 1, repeated descriptions will be omitted.

Meanwhile, the data security processing unit according to an embodiment of the present invention calculates the Hash value of the data and the Hash value in the vehicle collection terminal. Symmetric key encryption can be performed using the key by performing key calculation using the data ID, ECU identification ID, collection terminal ID, and data collection settings.

In some other embodiments, the data security processing unit converts preprocessed or non-preprocessed data into a data matrix composed of columns and rows of a predetermined size and sets a two-dimensional coordinate value for each bit listed according to the data matrix.

Afterwards, the data security processing unit images a data matrix composed of columns and rows of a predetermined size, extracts at least one feature point from the image, and encrypts the data by shifting each bit listed according to the data matrix based on the extracted feature point. You can.

Specifically, the data security processing unit may arrange the bit strings constituting the data in a matrix of a predetermined size.

For example, as shown in Figures 3 and 4, the data security processing unit arranges the bit strings constituting the data so that a maximum of 10 bits are arranged horizontally, with the first to tenth bits in column 1 and the eleventh to twentieth bits in the first column. Bits can be arranged in 2 columns according to a matrix consisting of n columns.

At this time, the data security processing unit gives the two-dimensional coordinate value of the first mapped data area (1, 1), and the second listed data gives the two-dimensional coordinate value of (1, 2), and in this way, the most Data arranged later can be assigned two-dimensional coordinate values of (n, m).

Afterwards, the data security processing unit may convert the data matrix information into an image.

The data security processing unit divides the generated (converted) image into at least two areas. In one embodiment, the data security processing unit may divide the image into two areas according to a preset area. In one embodiment, the encryption step generates a first feature point group by extracting at least three feature points from the first area of the generated image, and creates a second feature point group by extracting three feature points from the second region.

The data security processing unit generates a first feature shape connecting at least three feature points constituting the first feature point group, and generates a second feature figure connecting at least three feature points constituting the second feature point group.

Thereafter, the data security processing unit extracts the center of gravity of the first feature shape and sets it as the first center of gravity, and extracts the center of gravity of the second feature figure and sets it as the second center of gravity.

Subsequently, the data security processing unit displays the first center of gravity and the second center of gravity on the image, sets the horizontal axis pixel coordinate value of the first center of gravity to a first random number, and sets the horizontal axis pixel coordinate value of the first center of gravity to a first random number. The vertical axis pixel coordinate value of is set to a second random number, the horizontal axis pixel coordinate value of the second center of gravity is set to a third random number, and the vertical axis pixel coordinate value of the second center of gravity is set to a fourth random number. do.

The data security processing unit generates first transformation matrix data by horizontally shifting each bit constituting the data matrix by a fourth random number and then vertically shifting it by a first random number.

Finally, the data security processing unit generates secondary transformation matrix data by horizontally shifting each bit string constituting the first transformation matrix data by a second random number and then vertically shifting it by a third random number.

In one embodiment, the data security processing unit may implement an encryption and decryption procedure using a lightweight encryption and decryption algorithm such as ARIA (Academy Research Institute Agency), ECC (Elliptic Curve Cryptosystem), etc.

Meanwhile, the data security processing unit transmits four random number information generated by the encryption step to the ECU in the process of shifting the data matrix and transmitting the encrypted firmware.

Accordingly, the ECU can receive data by demodulating the transformed matrix data into the original matrix based on the received random number information.

In some other embodiments, when the data security processing unit determines that the capacity of the generated data exceeds a preset standard capacity, it encrypts the large amount of data using an encryption method different from the method described above.

For this purpose, the data security processing unit includes a region of interest setting unit and a conversion unit.

The area of interest setting unit sets the area to be encrypted among the entire area of the captured image as the area of interest.

In other words, the region of interest setting unit analyzes large amounts of data in the form of images and detects characteristic parts that require encryption among the entire area of the original image, and the conversion unit, which will be described later, partially encrypts only the set area, thereby requiring data processing. The amount of computation and time required can be reduced.

To this end, in one embodiment, the region of interest setting unit extracts a plurality of objects constituting the original image, sets an object corresponding to a previously learned object among the extracted plurality of objects as a feature object, and sets the feature object. The region of interest is set to be included.

In one embodiment, the region of interest setting unit extracts a feature vector from the captured image, inputs the extracted feature vector as an input value of an artificial neural network that has previously learned, and selects a plurality of objects included in the captured image based on the output value. can be distinguished. Since this object detection method using an artificial neural network is a widely used technology in the image processing field, detailed description will be omitted.

In one embodiment, the region of interest setting unit may set the region of interest using a histogram for image data.

A histogram is information representing the distribution of brightness values for pixels of an image.

The region of interest setting unit may generate an overall histogram for pixels constituting the captured image and a partial histogram for a predetermined area of the captured image.

The region of interest setting unit separates the original image into R, G, and B channels, and for each separated channel, the horizontal axis represents the contrast value of the 256 gray level image with a brightness deviation of 256, and the vertical axis represents the frequency of each contrast value. You can create a histogram representing . Since the specific method for generating a histogram is a known technology, further detailed description will be omitted.

The region of interest setting unit can select a convolution filter to extract the region of interest using the full histogram and partial histogram of the original image.

A convolution filter is a matrix composed of arbitrary pixel sizes used to process a reference image, which is an image corresponding to the area of interest of the reference frame, with various effects, and is also called an image kernel or convolution kernel. The region of interest setting unit stores various types of convolutional filters and may include, for example, blurring, sharpening, outlining, and embossing convolutional filters. In addition, the image processing device 100 may further include various types of convolution filters set by the user or collected from an external device.

The region of interest setting unit may generate an output image by applying a convolutional filter to the captured image. Specifically, the region of interest setting unit may store convolutional filters composed of a 3X3 matrix, and each convolutional filter may have a numerical value set for each matrix element. For example, the convolution filter may be set to values of 1, 0, 1, 0, 1, 0, 1, 0, 1 sequentially from the top left.

The region of interest setting unit calculates an output value of a pixel by performing a convolution operation on a pixel constituting the reference image, surrounding pixels of the pixel, and a convolution filter, and can set the region of interest using the calculated output value.

For example, the region of interest setting unit may compare a pre-stored reference value with an output value calculated for each pixel, select a pixel with an output value most similar to the reference value, and set an area within a predetermined radius based on the selected pixel as the region of interest.

The conversion unit rearranges all pixels included in the area of interest set in the area of interest setting unit, and encrypts the original and changed positions of the relocated pixels using blockchain.

The conversion unit may move pixels within the region of interest to a location different from the original location using a predetermined puzzle pattern. Alternatively, the converter may rearrange each pixel to a random position rather than a predetermined pattern.

Thereafter, the conversion unit generates a private key based on the pixel size of the region of interest, generates a public key based on the generated private key, and transaction information indicating the location changed from the original location of the pixel included in the region of interest. is converted to a hash value using a hash function, and the hash value is encrypted using the private key to generate an electronic signature for the transaction information. The specific functions of this conversion unit will be described later.

In one embodiment, the converter generates a third variable by counting the number of pixels on the horizontal axis of the region of interest, and generates a fourth variable by counting the number of pixels on the vertical axis of the region of interest.

The conversion unit sets the prime number closest to the third variable as the third prime number, sets the prime number closest to the fourth variable as the fourth prime number, and uses the set third prime number and the fourth prime number to key the private key. and generating the public key.

That is, the conversion unit can encrypt the region of interest in which the positions of the pixels are rearranged through an asymmetric encryption method.

This private key-public key generation method uses the RSA encryption algorithm. Since the RSA encryption algorithm is a widely disclosed technology, the specific public key generation process will be omitted.

In this case, the converter transmits the generated public key to other IoT devices through a secure channel, and when the IoT devices receive the encrypted data, they can decrypt it using the public key received from the converter.

In another embodiment, the conversion unit generates a first histogram for the captured image and a second histogram for the region of interest, analyzes the first histogram, sets the brightness value with the highest frequency as the first variable, and sets the brightness value with the highest frequency as the first variable. 2 The histogram is analyzed, the brightness value with the highest frequency is set as the second variable, and the private key and the public key are generated using the set first prime number and the second prime number.

At this time, if the first variable and the second variable have the same brightness value, the converter 300 resets the brightness value with the next highest frequency in the second histogram as the second variable.

In particular, the conversion unit according to the present invention suspends the data transmission process until the number of encrypted image data is accumulated and stored as a predetermined number, and then confirms that the number of encrypted image data is accumulated and stored as a predetermined number. When this is done, variable data representing the characteristics of the cumulatively stored data group is set, and the image data is encrypted based on the set variable data.

For this purpose, the conversion unit extracts data groups to be transmitted by grouping accumulated collected data into data groups, sets variable data according to the characteristics of the extracted data groups, and generates transformed data linking the set variable data to each collected data. The generated modified data is converted into a hash value through a hash function and registered in the blockchain network.

At this time, the conversion unit according to the present invention generates variable data based on the reference value received from the manager terminal, and converts the image data into a hash value based on this, thereby improving the security of the image data.

In other words, even if a third party other than the user obtains the image data in the middle, it is difficult to verify the original data because the pixels in the region of interest, which accounts for the core characteristics of the image data, are rearranged, and the private key and public key are used in the region of interest. Because it is created anew each time due to its characteristics, it has the advantage of making it difficult to find out the private key and public key from the outside.

As such, the technology according to the present invention may be implemented as an application or in the form of program instructions that can be executed through various computer components and recorded on a computer-readable recording medium. The computer-readable recording medium may include program instructions, data files, data structures, etc., singly or in combination.

The program instructions recorded on the computer-readable recording medium may be those specifically designed and configured for the present invention, or may be known and usable by those skilled in the computer software field.

Examples of computer-readable recording media include magnetic media such as hard disks, floppy disks and magnetic tapes, optical recording media such as CD-ROMs and DVDs, and magneto-optical media such as floptical disks. media), and hardware devices specifically configured to store and perform program instructions, such as ROM, RAM, flash memory, etc.

Examples of program instructions include not only machine language code such as that created by a compiler, but also high-level language code that can be executed by a computer using an interpreter or the like. The hardware device may be configured to operate as one or more software modules to perform processing according to the invention and vice versa.

Although the above has been described with reference to embodiments, those skilled in the art will understand that various modifications and changes can be made to the present invention without departing from the spirit and space of the present invention as set forth in the following patent claims. You will be able to.

100: data generation unit
200: Data collection setting unit
300: Data preprocessing unit
400: data storage unit
500: Data security processing department
600: data transmission unit

Claims (2)

Data collection settings are assigned to the data generated by the electronic control device installed in the vehicle to distinguish the type of data generating device, the characteristics of the data, and the characteristics of the data, and data is collected based on the characteristics of the identification value assigned to each data. A data collection setting unit that determines whether to pre-process;
a data preprocessing unit that performs preprocessing of data requiring a data preprocessing process determined by the data collection setting unit; and
In the vehicle data security processing system of the electronic control device, including a data security processing unit that encrypts preprocessed data or non-preprocessed data,
The data collection setting unit,
Compare the nth generated data and the n-1th generated data and delete the data if the two data are the same.
By comparing the nth generated data and the n-1th generated data, if the two data are different and it is confirmed that the nth generated data is data consisting of only characters, the preprocessing process is omitted for the nth generated data. Judging that it is,
By comparing the nth generated data and the n-1th generated data, if the two data are different and it is confirmed that the nth generated data is data consisting only of numbers, the nth generated data is preprocessed. It is judged that
The preprocessor,
Characterized by performing a preprocessing process of calculating the difference value between the nth generated data and the n-1th generated data and converting the data value of the nth generated data into a difference value,
The data security processing department,
After converting preprocessed data or non-preprocessed data into a data matrix composed of columns and rows of a predetermined size, the converted data matrix is converted into an image,
The converted image is divided into two regions, at least three feature points are extracted from the first region of the two divided regions, a first feature figure is created by connecting the three extracted feature points, and the second region of the two divided regions is created. At least three feature points are extracted from and a second feature figure is created by connecting the three extracted feature points,
The center of gravity of the first feature shape is extracted and set as the first center of gravity, the center of gravity of the second feature figure is extracted and set as the second center of gravity,
The first center of gravity and the second center of gravity are displayed on the image, the horizontal axis pixel coordinate value of the first center of gravity is set to a first random number, and the vertical axis pixel coordinate value of the first center of gravity is set to a first random number. 2 is set to a random number, the horizontal axis pixel coordinate value of the second center of gravity is set to a third random number, and the vertical axis pixel coordinate value of the second center of gravity is set to a fourth random number,
Each bit constituting the data matrix is horizontally shifted by a fourth random number and then vertically shifted by a first random number to generate first transformation matrix data,
An electronic control device that encrypts data by horizontally shifting each bit string constituting the first transformation matrix data by a second random number and then generating secondary transformation matrix data that is vertically shifted by a third random number. Vehicle data security processing system. delete