WO2007020157A1 - Dispositif d'echange de donnees - Google Patents

Dispositif d'echange de donnees Download PDF

Info

Publication number
WO2007020157A1
WO2007020157A1 PCT/EP2006/064639 EP2006064639W WO2007020157A1 WO 2007020157 A1 WO2007020157 A1 WO 2007020157A1 EP 2006064639 W EP2006064639 W EP 2006064639W WO 2007020157 A1 WO2007020157 A1 WO 2007020157A1
Authority
WO
WIPO (PCT)
Prior art keywords
data exchange
card
exchange device
data
logic unit
Prior art date
Application number
PCT/EP2006/064639
Other languages
German (de)
English (en)
Inventor
Horst NÄTHER
Original Assignee
Siemens Vdo Automotive Ag
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Siemens Vdo Automotive Ag filed Critical Siemens Vdo Automotive Ag
Priority to JP2008526469A priority Critical patent/JP2009505257A/ja
Priority to EP06777963.7A priority patent/EP1915741B1/fr
Priority to US12/063,816 priority patent/US20090013412A1/en
Priority to BRPI0614793-3A priority patent/BRPI0614793A2/pt
Publication of WO2007020157A1 publication Critical patent/WO2007020157A1/fr

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C5/00Registering or indicating the working of vehicles
    • G07C5/08Registering or indicating performance data other than driving, working, idle, or waiting time, with or without registering driving, working, idle or waiting time
    • G07C5/0841Registering performance data
    • G07C5/085Registering performance data using electronic data carriers
    • G07C5/0858Registering performance data using electronic data carriers wherein the data carrier is removable

Definitions

  • the invention relates to a data exchange device, in particular a data exchange device of a tachograph, for the tamper-proof exchange of data between a card and the data exchange device, which card has a data memory, wherein the data exchange device comprises a logic unit which monitors the data exchange between the card and the data exchange device.
  • each driver is assigned a data card that can be associated with the tachograph for the purpose of data exchange with the latter. It is provided here that the tachograph completely picks up the card so that manipulation attempts during data transmission between the tachograph and the data memory of the card remain unsuccessful.
  • a tachograph of this kind is already in the European patent
  • the invention has set itself the task, in particular the legally sensitive data of the records of a tachograph to secure during the exchange of data against manipulation and to reliably detect or register manipulation attempts, so that a manipulation as an event can be tracked in time can.
  • the invention proposes a data exchange device of the type mentioned above with the features of claim 1.
  • the respective dependent claims contain advantageous developments of the invention.
  • the data exchange device is preferably part of a tachograph and expediently arranged in a common housing with other components of a tachograph, for example a display unit, a mass memory for recording the operating data, a printer for outputting results of various evaluations of the operating data or an automated card receiving device having a inserted card automatically transported into the interior of the tachograph or outputs when requested.
  • the data card used expediently has, in addition to a data memory, also a processor and an encryption unit, which encryption unit at least makes it possible to secure write operations in the data memory of the card.
  • a manipulation event according to the invention or a corresponding memory entry is to be understood as the assignment of a time to the registered manipulation process.
  • Physical presence is understood to mean the arrangement of the card at a specific location of the data exchange device, which has a Data exchange possible.
  • the logical presence of the card here means the occurrence of a data exchange.
  • a decisive advantage of the invention lies in the combination of the two criteria which give rise to the entry of a manipulation event in the memory of the
  • a convenient way to detect the physical presence of the card is that at least one sensor is provided which detects whether the card is located in an area of the data exchange device that is suitable for data exchange, the sensor with the logic unit in combination and the logic unit recognizes the card as physically present when the sensor reports the presence of the card.
  • an undisturbed data exchange between the data exchange device and the logic unit is expedient, in particular if the content of the memory of the card can be completely read out by the data exchange device.
  • the card has connection contacts
  • the data exchange device has a connection set having data transmission interface, which is designed such that by means of the data exchange device and the data memory can enter into a data-transmitting connection that in a first position of the card the connection contacts abut against contacts of the terminal contact set, wherein the data exchange device has at least one second sensor which detects whether the card is in the first Position is located, the logic unit is designed such that it detects the card as physically not present when the second sensor reports that the card is not in the first position.
  • the physical connection set having data transmission interface which is designed such that by means of the data exchange device and the data memory can enter into a data-transmitting connection that in a first position of the card the connection contacts abut against contacts of the terminal contact set
  • the data exchange device has at least one second sensor which detects whether the card is in the first Position is located
  • the logic unit is designed such that it detects the card as physically not present when the second sensor reports that the card is not in the first position.
  • the data exchange device which can form a data transmitting connection by contact with the card, has a locking unit which, when in a first position, fixes the physically present card in a first position there is a data transfer device enabling the data transfer to the card, wherein at least one first sensor is provided, which detects whether the locking unit is in the first position and the logic unit is designed such that a tamper event in a memory of the data exchange device and / or the card is recorded when the second sensor reports that the locking unit is not in the first position.
  • Manipulation event works as it were preventive, since an intervention in the locking mechanism of a data exchange device or a tachograph is regularly necessary to perform a manipulation although no influence on the data flow must be done.
  • Particularly effective for detecting a manipulation attempt on the software is a design of the data exchange device such that the same after reading a data transferring connection between the data exchange device and the data storage first read the data memory completely. In this way, the entire memory contents of the data memory is checked at the beginning.
  • the logic unit cyclically checks by means of the first sensor and / or the second sensor, whether the locking unit is in the first position or the card is in the first position.
  • the data exchange device or a tachograph is susceptible to manipulation after selection of an operating voltage due to the omission of various voltage-linked monitoring mechanisms, it is expedient if, following the switching on of the operating voltage, the data exchange device checks whether the card is physically present.
  • Figure 1 is a schematic representation of the
  • Figure 2 is a schematic representation of the
  • Data exchange device 1 as part of a tachograph DTCO in cooperation with a one
  • Data memory 2 having map 3 shown schematically.
  • Essential components of the data exchange device 1 are a logic unit 4, a memory 5, a
  • Data exchange device 1 of the tachograph DTCO reaches the card a first position 10 in the
  • the Terminal contact set 6 with connection contacts 11 comes to rest, so that an electrical connection between the data exchange device 1 and the card 3 is established.
  • the terminal contact set 6 is in the data exchange device 1 with the logic unit 4 and the memory 5 in connection.
  • the connection contacts 11 also have a connection to the data memory 2 and a processor 12 and an encryption unit 13 of the card 3. Accordingly, upon entry of the card 3 into the first position 10, a data transferring connection is established between the data memory 2 of the card 3 and the memory 5 of the data exchange apparatus 1 or the tachograph DTCO and recording data can be read from the data memory 2.
  • the data memory 2 allows only "read-only" access without corresponding authentication.
  • the locking unit 9 closes the insertion opening, not shown, of the data exchange device 1 or of the tachograph DTCO, so that the card 3 is fixed in the first position 10.
  • a first sensor 7 detects the physical presence of the card 3 in the first position and reports this to the logic unit 4.
  • a second sensor 8 reports reaching a first position 14 of the locking unit 9, which the card fixed in the first position 10, to the
  • the logic unit 4 cyclically monitors by means of the sensors 7, 8, the physical presence of the card 3 and causes for different message of the sensors 7, 8, the memory entry of a manipulation attempt first in the memory 5 and then in the data memory 2. In addition monitors the logic unit 4 also shows the logical presence of the card 3, in which the presence of a disturbance of the data exchange at the data transmission interface 15 comprising the connection contact set 6 and the connection contacts 11 also recognizes as a cause for the entry of a manipulation event in the memory 5 or the data memory 2.
  • the data exchange device 1 or the tachograph DTCO is operated by means of an operating voltage U, wherein FIG. 2 shows a sequence after the operating voltage U is switched on. In a first step 1, the data exchange unit 1 checks whether the card 3 is present.
  • card 3 is not present logically or physically (2.) card ejection (3.) occurs. If the data exchange device 1 detects that the card 3 is physically present (4.), an automatic feed (5.) and the attempt to read it out (6.) take place. If the attempt to read (6.) results in an error message, the ejection (3.) of the card 3 occurs. If the logic unit 4 recognizes that the card 3 is present both logically and physically (7.), an examination sequence (8. ), which in the event of an erroneous output leads to the ejection (3) of the card 3 and, with an error-free output, results in the normal operation (9) of the data exchange device 1 or of the tachograph DTCO. Recognize the
  • Logic unit 4 a mere logical presence (10) of the card 3, this causes the registration of a tamper event (12) and initiates the already mentioned examination sequence (8.).

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Time Recorders, Dirve Recorders, Access Control (AREA)
  • Storage Device Security (AREA)
  • Traffic Control Systems (AREA)
  • Navigation (AREA)
  • Techniques For Improving Reliability Of Storages (AREA)

Abstract

Dispositif d'échange de données (1), en particulier tachygraphe (DTCO), pour l'échange à l'épreuve des manipulations de données entre une carte (3) et le dispositif d'échange de données (1), ledit dispositif d'échange de données (1) comportant une unité logique (4) qui surveille l'échange de données entre la carte (3) et le dispositif d'échange de données (1). L'objet de la présente invention est de protéger en particulier les données juridiquement sensibles des enregistrements d'un tachygraphe contre les manipulations pendant l'échange desdites données et de détecter et d'enregistrer de manière fiable les tentatives de manipulation. A cet effet, l'unité logique (4) est conçue de manière telle qu'un épisode de manipulation est enregistré dans une mémoire (5) du dispositif d'échange de données (1) et / ou de la carte (3) lorsque la carte (3) n'est pas présente physiquement ou n'est pas présente logiquement.
PCT/EP2006/064639 2005-08-17 2006-07-25 Dispositif d'echange de donnees WO2007020157A1 (fr)

Priority Applications (4)

Application Number Priority Date Filing Date Title
JP2008526469A JP2009505257A (ja) 2005-08-17 2006-07-25 データ交換装置
EP06777963.7A EP1915741B1 (fr) 2005-08-17 2006-07-25 Dispositif d'echange de donnees
US12/063,816 US20090013412A1 (en) 2005-08-17 2006-07-25 Data Exchanging Device
BRPI0614793-3A BRPI0614793A2 (pt) 2005-08-17 2006-07-25 dispositivo de troca de dados

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
DE102005038872A DE102005038872A1 (de) 2005-08-17 2005-08-17 Datenaustauschvorrichtung
DE102005038872.8 2005-08-17

Publications (1)

Publication Number Publication Date
WO2007020157A1 true WO2007020157A1 (fr) 2007-02-22

Family

ID=37067515

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/EP2006/064639 WO2007020157A1 (fr) 2005-08-17 2006-07-25 Dispositif d'echange de donnees

Country Status (7)

Country Link
EP (1) EP1915741B1 (fr)
JP (1) JP2009505257A (fr)
CN (1) CN101243476A (fr)
BR (1) BRPI0614793A2 (fr)
DE (1) DE102005038872A1 (fr)
RU (1) RU2419883C2 (fr)
WO (1) WO2007020157A1 (fr)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8838026B2 (en) * 2011-09-30 2014-09-16 Qualcomm Incorporated Methods and apparatus for improving NFC data exchange configuration parameter update mechanisms
DE102018221441A1 (de) * 2018-12-11 2020-06-18 Robert Bosch Gmbh Verfahren zum Erkennen eines manipulierten Betriebs einer Komponente eines Fahrzeugs

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0363871A2 (fr) * 1988-10-11 1990-04-18 Oki Electric Industry Company, Limited Circuit de lecture et d'écriture pour carte IC ayant la capacité de détection de court-circuit
FR2659770A1 (fr) * 1990-03-14 1991-09-20 Sextant Avionique Dispositif de detection de carte a circuit integre frauduleuse.
EP0713197A1 (fr) * 1994-11-15 1996-05-22 Landis & Gyr Technology Innovation AG Porteur d'informations et lecteur/enregistreur correspondant
EP1388825A2 (fr) * 2002-08-02 2004-02-11 Wincor Nixdorf International GmbH Dispositif pour effectuer des transaction sécurisees à une machine bancaire
US20050006465A1 (en) * 2003-06-03 2005-01-13 Ghisani Rolando Roberto Electronic security device for automated teller machines and card reader driver including such device

Family Cites Families (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE3505068C1 (de) * 1985-02-14 1986-06-19 Mannesmann Kienzle GmbH, 7730 Villingen-Schwenningen Fahrtschreiber fuer Kraftfahrzeuge
JPS6368994A (ja) * 1986-09-10 1988-03-28 株式会社東芝 運行管理装置
JP2836099B2 (ja) * 1989-05-18 1998-12-14 株式会社デンソー デジタル計器
JP3194460B2 (ja) * 1995-08-24 2001-07-30 矢崎総業株式会社 運行情報収集装置及びそれを用いた車両運行管理システム
JP3660825B2 (ja) * 1999-04-16 2005-06-15 矢崎総業株式会社 車両運行情報収集装置及び車両運行情報解析システム

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP0363871A2 (fr) * 1988-10-11 1990-04-18 Oki Electric Industry Company, Limited Circuit de lecture et d'écriture pour carte IC ayant la capacité de détection de court-circuit
FR2659770A1 (fr) * 1990-03-14 1991-09-20 Sextant Avionique Dispositif de detection de carte a circuit integre frauduleuse.
EP0713197A1 (fr) * 1994-11-15 1996-05-22 Landis & Gyr Technology Innovation AG Porteur d'informations et lecteur/enregistreur correspondant
EP1388825A2 (fr) * 2002-08-02 2004-02-11 Wincor Nixdorf International GmbH Dispositif pour effectuer des transaction sécurisees à une machine bancaire
US20050006465A1 (en) * 2003-06-03 2005-01-13 Ghisani Rolando Roberto Electronic security device for automated teller machines and card reader driver including such device

Also Published As

Publication number Publication date
DE102005038872A1 (de) 2007-02-22
RU2008110054A (ru) 2009-09-27
EP1915741B1 (fr) 2013-08-28
BRPI0614793A2 (pt) 2011-04-12
CN101243476A (zh) 2008-08-13
EP1915741A1 (fr) 2008-04-30
JP2009505257A (ja) 2009-02-05
RU2419883C2 (ru) 2011-05-27

Similar Documents

Publication Publication Date Title
EP2104075B1 (fr) Procédé d'enregistrement de données et système d'enregistrement de données
EP1742135B1 (fr) Système de protection pour un système de traitement des données
EP1053518B1 (fr) Circuit de protection pour circuit integre
DE10326287A1 (de) Fahrzeug-Kommunikationssystem, welches eine anormale Steuereinheit initialisiert
EP1089219A2 (fr) Méthode de proteger une mémoire de donnée
DE102004004572B4 (de) Fehlerdiagnoseverfahren für ein Fahrzeugkommunikationsnetz
DE19944991A1 (de) Verfahren zur Sicherung eines Programmablaufs
EP3517398B1 (fr) Procédé de surveillance d'état de l'espace intérieur ainsi que véhicule doté d'un dispositif de surveillance d'état de l'espace intérieur
DE2225841B2 (de) Verfahren und Anordnung zur systematischen Fehlerprüfung eines monolithischen Halbleiterspeichers
DE2749888A1 (de) Einrichtung zur fehlermeldung
EP1915741B1 (fr) Dispositif d'echange de donnees
EP3557598B1 (fr) Commutateur de sécurité
DE102018121445B4 (de) Zugangskontrollverfahren
DE202006003273U1 (de) Diagnosevorrichtung in einem Fahrzeug für eine funktionsorientierte Diagnose
EP1623360B1 (fr) Dispositif de reception de carte et procede
EP0182134B1 (fr) Méthode de mise en oeuvre d'un système multicalculateurs à sécurité intrinsèque comportant plusieur circuits inprimés d'entrées/sorties à sécurité non intrinsèque
DE69317352T2 (de) Ein Gerät mit einer Anordnung zur Identifizierung des Types einer Bandkassette
DE4429633C2 (de) Verfahren und Vorrichtung zur Überwachung von Speicherzellen eines Speichers
DE102006048146B4 (de) Sensoranordnung, Verwendung einer Sensoranordnung und Verfahren zur Sicherheitsüberwachung einer Maschine
DE102009012919A1 (de) Verfahren und Vorrichtung zur Fehlerdiagnose bei einem Schienenfahrzeug
DE19937515A1 (de) Verfahren und Anordnung zur selektiven Aufzeichnung von Meldungen
EP2078289A1 (fr) Agencement de boîte noire et procédé pour la mise en place d'une identification dans un adaptateur pour l'agencement de boîte noire
EP2002446B1 (fr) Procédé pour faire fonctionner un dispositif de mémoire comprenant le marquage de blocs de mémoire identifiées comme défectueux
EP1703473B1 (fr) Système de serrures
DE102022116032B3 (de) Lesevorrichtung zum berührungslosen Auslesen von Informationen auf Objekten und Verfahren zur Absicherung einer solchen Lesevorrichtung

Legal Events

Date Code Title Description
DPE2 Request for preliminary examination filed before expiration of 19th month from priority date (pct application filed from 20040101)
121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2006777963

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 593/KOLNP/2008

Country of ref document: IN

WWE Wipo information: entry into national phase

Ref document number: 12063816

Country of ref document: US

WWE Wipo information: entry into national phase

Ref document number: 200680029902.1

Country of ref document: CN

WWE Wipo information: entry into national phase

Ref document number: 2008526469

Country of ref document: JP

NENP Non-entry into the national phase

Ref country code: DE

WWE Wipo information: entry into national phase

Ref document number: 2008110054

Country of ref document: RU

WWP Wipo information: published in national office

Ref document number: 2006777963

Country of ref document: EP

ENP Entry into the national phase

Ref document number: PI0614793

Country of ref document: BR

Kind code of ref document: A2

Effective date: 20080218