WO2018010474A1 - 一种车联网终端之间安全通信的方法及装置 - Google Patents
一种车联网终端之间安全通信的方法及装置 Download PDFInfo
- Publication number
- WO2018010474A1 WO2018010474A1 PCT/CN2017/083471 CN2017083471W WO2018010474A1 WO 2018010474 A1 WO2018010474 A1 WO 2018010474A1 CN 2017083471 W CN2017083471 W CN 2017083471W WO 2018010474 A1 WO2018010474 A1 WO 2018010474A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- terminal
- vehicle networking
- identifier
- communication
- network terminal
- Prior art date
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/06—Network architectures or network communication protocols for network security for supporting key management in a packet data network
- H04L63/065—Network architectures or network communication protocols for network security for supporting key management in a packet data network for group communications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/04—Key management, e.g. using generic bootstrapping architecture [GBA]
- H04W12/043—Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
- H04W12/0433—Key management protocols
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
- H04W12/033—Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/60—Context-dependent security
- H04W12/69—Identity-dependent
Definitions
- the present application relates to, but is not limited to, the field of communications, and in particular, to a method and apparatus for secure communication between vehicle networking terminals.
- the vehicle networking terminals, the vehicle networking terminals and other terminals can communicate through the vehicle networking service.
- the vehicle networking communication system may include a vehicle networking terminal (including a vehicle terminal, a terminal for installing a vehicle networking application), a vehicle roadside unit, a vehicle networking application server, a vehicle networking control function entity, and the like.
- the vehicle networking business includes communication (V2I, vehicle to infrastructure) between the vehicle terminal and the road side unit (V2I, vehicle to infrastructure), and communication between the vehicle terminal and the application server (such as a traffic safety server) (V2N, vehicle to network) Communication between the vehicle terminal and the user terminal (V2P, vehicle to Pedestrian), communication between the vehicle terminal (V2V, vehicle to vehicle).
- Vehicle networking communications can be collectively referred to as V2X (Vehicle-to-Everything) communications.
- Vehicle networking terminals that participate in communications in V2X communications are often dynamically changing. For example, when a car networking terminal broadcasts information, other car network terminals that receive broadcast information will constantly change. Since information on the speed, position, and the like of the broadcast information is critical to the control of the vehicle, it is necessary to ensure the safety and continuity of the V2X communication.
- an embodiment of the present invention provides a method and apparatus for secure communication between vehicle networking terminals.
- an embodiment of the present invention provides a method for secure communication between vehicle networking terminals, including:
- the second car network terminal receives the first message from the first car network terminal, and the first message is encrypted by the V2X communication key of the first car network terminal;
- the second vehicular network terminal parses the terminal identifier and the service identifier of the first vehicular network terminal from the first message, and acquires the V2X communication key of the first vehicular network terminal from the V2X service platform;
- the second vehicular network terminal decrypts and parses the first message by using a V2X communication key of the first vehicular network terminal to obtain content of the first message;
- the V2X communication key is generated by the V2X service platform and stored corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and is used for communication between the first vehicular network terminal and other vehicle networking terminals.
- an embodiment of the present invention further provides a method for secure communication between vehicle networking terminals, including:
- the V2X service platform receives a registration request from the first Internet of Vehicles terminal, the registration request including a terminal identifier and a service identifier of the first vehicle networking terminal;
- the V2X service platform generates a V2X communication key for the first vehicle networking terminal, and saves the V2X communication key with a terminal identifier and a service identifier of the first vehicle networking terminal;
- the V2X communication key is used for communication between the first vehicle networking terminal and other vehicle networking terminals.
- an embodiment of the present invention further provides a method for secure communication between vehicle networking terminals, including:
- the first vehicle networking terminal sends a registration request to the V2X service platform, where the registration request includes a terminal identifier and a service identifier of the first vehicle networking terminal;
- V2X communication key received by the first vehicle networking terminal, a V2X communication key returned by the V2X service platform, and The V2X communication key is stored locally;
- the V2X communication key is used for communication between the first vehicle networking terminal and other vehicle networking terminals.
- an embodiment of the present invention further provides a method for secure communication between vehicle networking terminals, including:
- the V2X service platform receives a registration request from the first Internet of Vehicles terminal, the registration request including a terminal identifier and a service identifier of the first vehicle networking terminal, generating a V2X communication key for the first vehicle networking terminal, and the V2X communication
- the key is saved corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and the V2X communication key is returned to the first vehicular network terminal;
- the first vehicular network terminal sends a first message, and the first message is encrypted using the V2X communication key;
- the second vehicular network terminal Receiving, by the second vehicular network terminal, the first message, parsing the terminal identifier and the service identifier of the first vehicular network terminal from the first message, and sending a key request to the V2X service platform, where the key
- the request includes a terminal identifier and a service identifier of the first vehicle networking terminal, and a terminal identifier and a service identifier of the second vehicle networking terminal;
- the V2X service platform Receiving, by the V2X service platform, the key request, verifying whether the second vehicle networking terminal is registered according to the terminal identifier and/or the service identifier of the second vehicle networking terminal, and verifying the second vehicle networking
- the terminal searching for the V2X communication key of the first car network terminal and returning the V2X communication key of the first car network terminal according to the terminal identifier and/or service identifier of the first car network terminal Giving the second vehicle networking terminal;
- the embodiment of the present invention further provides a second device configured for secure communication between the vehicle networking terminals, deployed in the second vehicle networking terminal, including: a second receiving module, a parsing module, and a Take the module; among them,
- a second receiving module configured to receive a first message from the first car network terminal, the first message being encrypted by a V2X communication key of the first car network terminal;
- a parsing module configured to parse the terminal identifier and/or the service identifier of the first vehicular network terminal from the first message; and the V2X communication key of the first vehicular network terminal obtained by using the acquiring module Decrypting and parsing the first message to obtain content of the first message;
- An acquiring module configured to acquire, according to the terminal identifier and/or the service identifier obtained by the parsing module, a V2X communication key of the first vehicle networking terminal to the V2X service platform;
- the V2X communication key is generated by the V2X service platform and stored corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and is used for communication between the first vehicular network terminal and other vehicle networking terminals.
- the embodiment of the present invention further provides a third device that is configured to be securely communicated between the vehicle networking terminals, and is deployed on the V2X service platform, and includes:
- a third receiving module configured to receive a registration request from the first car network terminal, where the registration request includes a terminal identifier and a service identifier of the first car network terminal;
- Generating a module configured to generate a V2X communication key for the first vehicle networking terminal
- a third storage module configured to save the V2X communication key generated by the generating module and the terminal identifier and the service identifier of the first vehicle network terminal;
- a third sending module configured to return the V2X communication key to the first car network terminal
- the V2X communication key is used for communication between the first vehicle networking terminal and other vehicle networking terminals.
- the embodiment of the present invention further provides a first device, which is configured as a secure communication between the vehicle networking terminals, and is deployed on the first vehicle networking terminal, and includes:
- a first sending module configured to send a registration request to the V2X service platform, where the registration request includes a terminal identifier and a service identifier of the first vehicle networking terminal;
- a first receiving module configured to receive a V2X communication key returned by the V2X service platform
- a first storage module configured to save the V2X communication key
- the V2X communication key is used for communication between the first vehicle networking terminal and other vehicle networking terminals.
- an embodiment of the present invention further provides a computer readable storage medium storing computer executable instructions, when the computer executable instructions are executed by a processor, implementing the secure communication between the vehicle networking terminals described above. method.
- an embodiment of the present invention further provides a computer readable storage medium storing computer executable instructions, which are implemented by a processor to implement secure communication between another type of vehicle networking terminal.
- an embodiment of the present invention further provides a computer readable storage medium storing computer executable instructions, wherein the computer executable instructions are executed by a processor to implement another secure communication between the vehicle networking terminals.
- an embodiment of the present invention further provides a computer readable storage medium storing computer executable instructions, and when the computer executable instructions are executed by a processor, implementing another secure communication between the vehicle networking terminals The method of a method.
- each second vehicle networking terminal that receives the message separately obtains the V2X communication key of the first vehicle networking terminal from the V2X service platform.
- the second car network terminal can decrypt and parse the message of the first car network terminal according to the V2X communication key of the first car network terminal to obtain the content of the message.
- each car network terminal receiving the message can obtain the V2X communication key used to encrypt the message from the V2X service platform, successfully decrypt the message and obtain the content thereof.
- the safe and effective communication between the vehicle networking terminals is realized.
- FIG. 1 is a schematic flowchart of a method for secure communication between vehicle networking terminals according to an embodiment of the present invention
- FIG. 2 is a schematic flowchart of registering a vehicle networking terminal with a V2X service platform according to an embodiment of the present invention
- FIG. 3 is a schematic flowchart of deregistering a vehicle networking terminal to a V2X service platform according to an embodiment of the present invention
- FIG. 4 is a schematic flowchart of communication between vehicle networking terminals according to an embodiment of the present invention.
- FIG. 5 is a schematic diagram of a scenario of the process shown in FIG. 4;
- FIG. 6 is a schematic flowchart of communication between vehicle networking terminals in a dynamic change scenario according to an embodiment of the present invention
- FIG. 7 is a schematic diagram of a scenario of the process shown in FIG. 6;
- FIG. 8 is a schematic structural diagram of a first device configured as a secure communication between vehicle networking terminals according to an embodiment of the present invention
- FIG. 9 is a schematic structural diagram of a second apparatus configured for secure communication between vehicle networking terminals according to an embodiment of the present invention.
- FIG. 10 is a schematic structural diagram of a third device configured to secure communication between vehicle networking terminals according to an embodiment of the present invention.
- FIG. 11 is a schematic structural diagram of a system configured as a secure communication between vehicle networking terminals according to an embodiment of the present invention.
- the present application provides a method for secure communication between vehicle networking terminals, and the method may include:
- Step 101 The second car network terminal receives the first message from the first car network terminal, and the first message is encrypted by the V2X communication key of the first car network terminal.
- Step 102 The second vehicular network terminal parses the terminal identifier and the service identifier of the first vehicular network terminal from the first message, and acquires the first vehicular network terminal from the V2X service platform. End V2X communication key;
- Step 103 The second car network terminal decrypts and parses the first message by using a V2X communication key of the first car network terminal to obtain content of the first message.
- the V2X communication key is generated by the V2X service platform and is saved corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and is used for communication between the first vehicular network terminal and other vehicle networking terminals. .
- the V2X communication key of the first car network terminal is used to encrypt and decrypt the message sent by the first car network terminal. That is, the first car-networking terminal encrypts using the V2X communication key before issuing the message, and the other car-networking terminal decrypts the V2X communication key after receiving the message.
- Each car networking terminal can register its own V2X communication key through the V2X service platform, and different car network terminals use different V2X communication key communication.
- the method further includes: the second vehicle networking terminal saving the V2X communication key of the first vehicle networking terminal locally.
- the method further includes: when the communication between the second vehicle networking terminal and the first vehicle networking terminal ends or the communication cannot continue, the second vehicle networking terminal sets the first vehicle The V2X communication key of the networked terminal is deleted locally.
- the step of obtaining the V2X communication key of the first vehicle networking terminal from the V2X service platform in step 102 specifically: acquiring the first information from the V2X service platform according to the terminal identifier and/or the service identifier of the first vehicle networking terminal.
- V2X communication key of a car networked terminal Specifically, the second car network terminal sends a key request to the V2X service platform, where the key request includes a terminal identifier and a service identifier of the first car network terminal, and the second car a terminal identifier and a service identifier of the networked terminal; the second vehicle network terminal receives a V2X communication key of the first vehicle network terminal returned by the V2X service platform.
- the present application further provides another method for secure communication between the Internet of Vehicles terminals, the method may include: first, the V2X service platform receives a registration request from the first Internet of Vehicles terminal, the registration request including the first vehicle a terminal identifier and a service identifier of the networked terminal; secondly, the V2X service platform generates a V2X communication key for the first vehicle networking terminal, and the terminal identifier of the V2X communication key and the first vehicle networking terminal, The service identifier is correspondingly saved; finally, the V2X service platform returns the V2X communication key to the first vehicle network terminal; the V2X communication key Used for communication between the first vehicle networking terminal and other vehicle networking terminals.
- the method further includes: the V2X service platform receiving a key request from the second car network terminal, the key request And including a terminal identifier and a service identifier of the first vehicular network terminal, and a terminal identifier and a service identifier of the second vehicular network terminal; and verifying according to the terminal identifier and/or the service identifier of the second vehicular network terminal Whether the second Internet of Vehicles terminal has been registered; when verifying that the second Internet of Vehicles terminal has been registered, the V2X service platform searches for the first vehicle according to the terminal identifier and/or the service identifier of the first Internet of Vehicles terminal The V2X communication key of the networked terminal is returned to the second Internet of Vehicles terminal.
- the V2X service platform rejects the key request of the second Internet of Vehicles terminal.
- the method further includes: the V2X service platform receiving a logout request from the first car network terminal, the logout request including the a terminal identifier and a service identifier of the first vehicle networking terminal; the V2X service platform queries the registration information of the first vehicle networking terminal according to the terminal identifier and/or the service identifier of the first vehicle networking terminal, and the The registration information is deleted; the V2X service platform returns a logout completion message to the first car network terminal; the registration information includes a terminal identifier, a service identifier, and a V2X communication key of the first car network terminal.
- the present application further provides a method for secure communication between the third type of vehicle networking terminals, which may include: first, the first vehicle networking terminal sends a registration request to the V2X service platform, where the registration request includes the first vehicle networking terminal. a terminal identifier and a service identifier; secondly, the first vehicle networking terminal receives the V2X communication key returned by the V2X service platform, and saves the V2X communication key locally; wherein the V2X communication key is used for the The first vehicle networking terminal communicates with other vehicle networking terminals.
- the method further includes: the first vehicle networking terminal sends a first message, and the first message uses the V2X communication key Key encryption.
- the method further includes: the first vehicle networking terminal sending a logout request to the V2X service platform, where the logout request includes a terminal identifier of the first car network terminal And a service identifier; the first vehicle networking terminal receives the V2X service platform The logout completion message is returned, and the V2X communication key is deleted locally.
- the present application further provides a method for secure communication between the fourth type of vehicle networking terminals, which may include:
- the V2X service platform receives a registration request from the first Internet of Vehicles terminal, the registration request includes a terminal identifier and a service identifier of the first vehicle networking terminal, and generates a V2X communication key for the first vehicle networking terminal, The V2X communication key is saved corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and the V2X communication key is returned to the first vehicular network terminal;
- the first car network terminal receives the V2X communication key returned by the V2X service platform, and saves the V2X communication key locally;
- the first car network terminal sends a first message, and the first message is encrypted by using the V2X communication key;
- the second car network terminal receives the first message, parses the terminal identifier and the service identifier of the first car network terminal from the first message, and sends a key request to the V2X service platform.
- the key request includes a terminal identifier and a service identifier of the first vehicle networking terminal, and a terminal identifier and a service identifier of the second vehicle networking terminal;
- the V2X service platform receives the key request, and verifies whether the second car network terminal is registered according to the terminal identifier and/or the service identifier of the second car network terminal, in verifying the When the two-vehicle networking terminal is registered, searching for the V2X communication key of the first vehicle networking terminal and V2X communication of the first vehicle networking terminal according to the terminal identifier and/or the service identifier of the first vehicle networking terminal Returning the key to the second car network terminal;
- the second vehicle networking terminal receives the V2X communication key of the first vehicle networking terminal returned by the V2X service platform, and decrypts and parses the first using the V2X communication key of the first vehicle networking terminal Message, obtaining the content of the first message.
- the method may further include: the second car network terminal
- the V2X communication key of the first Internet of Vehicles terminal is stored locally; and when the communication between the second vehicle networking terminal and the first vehicle networking terminal ends or the communication cannot continue, the second vehicle networking terminal is further included
- the V2X communication key of the first Internet of Vehicles terminal is deleted locally. Need to explain The "first car network terminal" mentioned in this article is specifically a car network terminal that issues a message, and the "second car network terminal” is specifically any car network terminal that receives the message.
- a car network terminal broadcasts a message, and all the car network terminals within the communication range of the car network terminal will receive the message broadcast by the car network terminal.
- the first message is the first car network terminal
- the second message is the second car network terminal.
- the "first message” mentioned herein refers to any type of message sent by the first car network terminal, such as a broadcast message.
- the second car networking terminal can be multiple.
- the V2X service platform can actually be a network entity in a car network.
- each of the second vehicle networking terminals that receive the broadcast message respectively sends a key request to the V2X service platform, and the key request includes the second vehicle networking terminal.
- the terminal identifier and the service identifier further include a terminal identifier and a service identifier of the first vehicle networking terminal.
- the V2X service platform separately verifies whether to register for each second vehicle networking terminal, and returns the V2X communication key of the first vehicle networking terminal to the registered second vehicle networking terminal, and the registered second vehicle networking terminal can be based on
- the V2X communication key of the first car network terminal decrypts and parses the broadcast message of the first car network terminal to obtain the content of the broadcast message.
- the second Internet of Vehicles terminal will delete the V2X communication key of the first Internet of Vehicles terminal.
- the present application can enable the vehicle networking terminal to implement secure communication in a communication scenario in which the vehicle networking terminal participating in the communication is constantly changing dynamically.
- the vehicle networking terminal authorized by the vehicle networking service first needs to register on the V2X service platform in order to carry out the vehicle networking communication.
- a car network terminal that is not registered with the V2X service platform cannot be used for communication related to the car networking service.
- the V2X service platform creates a V2X communication key for the vehicle networking terminal.
- the V2X service platform saves and manages registration information of the car networking terminal, and the registration information may include a V2X communication key.
- the car networking terminal participating in the communication must use the V2X communication key obtained by the V2X service platform to securely transmit the information when transmitting the information.
- the vehicle networking terminal participating in the communication must use the V2X key of the sender to request the V2X service platform to decrypt the received information and perform secure communication with the sender.
- Different car networking terminals use different V2X communication keys.
- the car network terminal transmitting the message uses the V2X communication key obtained by the car to secure the communication, and the car network terminal receiving the message needs to request the V2X communication key of the car network terminal that sends the message to the V2X service platform.
- the message can be decrypted. So, realized
- the vehicle networking terminal communicates securely with any other one or more vehicle networking terminals.
- FIG. 2 is a flowchart of the registration of the vehicle network terminal, and the process of registering the vehicle network terminal may include:
- Step 201 The vehicle networking terminal and the V2X control function entity perform a V2X service authorization process, and after the V2X service authorization process is completed, the vehicle networking terminal obtains the authorized service identifier and saves;
- Step 202 The vehicle networking terminal sends a registration request to the V2X service platform, where the registration request includes the terminal identifier of the vehicle networking terminal and the service identifier.
- Step 203 The V2X service platform receives the registration request, generates a V2X communication key for the vehicle networking terminal, and saves the terminal identifier, the service identifier, and the V2X communication key of the vehicle networking terminal.
- Step 204 The V2X service platform returns the V2X communication key to the car network terminal.
- Step 205 The vehicle networking terminal receives and saves the V2X communication key, and the registration process ends.
- the V2X communication key is used for secure communication between the vehicle networking terminal and other vehicle networking terminals.
- the V2X communication key is encrypted in the broadcast message sent by the car network terminal, and the other car network terminal receiving the broadcast message needs to be decrypted based on the V2X communication key to further parse the content of the broadcast message.
- the car network terminal can cancel the information registered in the V2X service platform.
- FIG. 3 shows a flow chart of the deregistration of the car network terminal, and the process of deregistering the car network terminal may include:
- Step 301 The vehicle networking terminal sends a V2X logout request to the V2X service platform, where the V2X logout registration request includes a terminal identifier and a service identifier of the car network terminal, and the service identifier is authorized.
- Step 302 The V2X service platform receives the V2X logout request, parses the terminal identifier and the service identifier of the car network terminal, and queries the registration information of the car network terminal according to the terminal identifier and the service identifier of the car network terminal. And delete the registration information;
- the registration information of the car network terminal may include: a terminal identifier of the car network terminal, and a service Service ID and its corresponding V2X communication key.
- the V2X communication key is stored in a database or a memory corresponding to the terminal identifier and the service identifier of the vehicle networking terminal.
- the V2X service platform clears the terminal identifier, the service identifier, and the V2X communication key of the vehicle networking terminal from the database or the memory.
- the V2X service platform can write the terminal identifier, the service identifier and the V2X communication key of a car networking terminal as a record into a data table of a database in the V2X service platform, wherein one record in the data table represents a registration information, and one registration The information corresponds to one car network terminal, and when the car network terminal requests to log off, the corresponding record is cleared from the data table, that is, the registration information of the car network terminal is deleted.
- the V2X service platform may further establish a data table for each of the vehicle networking terminals in a database or a memory, where the terminal table identifies the terminal identifier, the service identifier, and the V2X communication key of the vehicle networking terminal, and the like.
- the data table corresponds to one registration information
- one registration information corresponds to one vehicle network terminal.
- Step 303 The V2X service platform feeds back a logout completion message to the car network terminal, where the logout completion message indicates that the registration information of the car network terminal has been deleted.
- Step 304 The vehicle networking terminal receives the logout completion message, deletes the local V2X communication key, and the logout process ends.
- the registered car network terminal will save the V2X communication key used by its own communication locally.
- the car networking terminal will delete the V2X communication key from the local after receiving the logout completion message returned by the V2X service platform.
- the car network terminal can write the V2X communication key used by the communication to the local database or the memory as a record, and delete the record corresponding to the V2X communication key from the local database or the memory or the memory when the logout is deleted, that is, delete.
- the V2X communication key used by the communication to the local database or the memory as a record, and delete the record corresponding to the V2X communication key from the local database or the memory or the memory when the logout is deleted, that is, delete.
- the process of one-to-many secure communication of the vehicle networking terminal in this embodiment may include:
- Step 401 The vehicle network terminal A broadcasts a message to other vehicle networking terminals (the vehicle network terminal B, the vehicle network terminal C, and the vehicle network terminal D), and the broadcast information is registered by the vehicle network terminal A on the V2X service platform. encryption;
- Step 402 The car network terminal B, the car network terminal C, and the car network terminal D respectively receive the broadcast message, parse the head information of the broadcast message, obtain the terminal identifier and service identifier of the car network terminal A, and respectively obtain V2X
- the service platform sends a key request, where the key request includes a terminal identifier and a service identifier of the vehicle network terminal A, and a terminal identifier and a service identifier of the vehicle network terminal B/the vehicle network terminal C/the vehicle network terminal D;
- the key request of the car network terminal B includes a terminal identifier and a service identifier of the car network terminal A, and a terminal identifier and a service identifier of the car network terminal B.
- the key request of the car network terminal C includes the terminal identification and service identification of the car network terminal A, and the terminal identification and service identification of the car network terminal D.
- the key request of the car network terminal D includes the terminal identification and service identification of the car network terminal A, and the terminal identification and service identification of the car network terminal D.
- Step 403 The V2X service platform receives the key request sent by the vehicle network terminal B, the vehicle network terminal C, and the vehicle network terminal D, and verifies the vehicle according to the terminal identifier and the service identifier of the vehicle network terminal B/the vehicle network terminal C/the vehicle network terminal D. Whether the networked terminal B/vehicle network terminal C/vehicle network terminal D has been registered, and after verification, it is found that the vehicle network terminal B and the vehicle network terminal C have been registered, but the vehicle network terminal D is not registered;
- Step 404 The V2X service platform sends the V2X communication key A to the car network terminal B and the car network terminal C, and rejects the key request of the car network terminal D.
- the V2X service platform sends the V2X communication key A only to the registered vehicle networking terminal. For example, if the car network terminal B is registered, and the car network terminal C and the car network terminal D are not registered, the V2X communication key A is issued only to the car network terminal B.
- Step 405 The car network terminal B/the car network terminal C/the car network terminal D receives the V2X communication key A, and parses the broadcast message of the car network terminal A according to the V2X communication key A to obtain the content of the broadcast message.
- Step 406 when the communication ends or the communication cannot continue, the car network terminal B/the car network terminal C/the car network terminal D deletes the V2X communication key A of the car network terminal A.
- the method flow of this embodiment is also applicable to a scenario in which one car network terminal sends a broadcast message to another car network terminal, that is, a method for one-to-one secure communication of the car network terminal and FIG. 4 The process is the same.
- the vehicle carrying the vehicle network terminal a4 enters the communication range of the vehicle network terminal a1, and at this time, the vehicle
- the specific process of secure communication between networked terminals may include:
- Step 601 the car network terminal a1 is transmitting a first broadcast message including speed information, and the first broadcast message is encrypted by the V2X communication key a1;
- Step 602 the car network terminal a2 and the car network terminal a3 receive the first broadcast message, parse the first broadcast message based on the V2X communication key a1, and obtain speed information of the car network terminal a1;
- Step 603 the vehicle carrying the car network terminal a4 enters the communication range of the car network terminal a1, the car network terminal a4 receives the first broadcast message, and parses the head of the first broadcast message to obtain the terminal of the car network terminal a1.
- Step 604 the vehicle networking terminal a4 sends a first key request to the V2X service platform, where the first key request includes the terminal identifier and the service identifier of the vehicle network terminal a1, and the terminal identifier and the service identifier of the vehicle network terminal a4;
- Step 605 The V2X service platform receives the first key request, parses the key request to obtain a terminal identifier and a service identifier of the car network terminal a4, and verifies the car network terminal according to the terminal identifier and the service identifier of the car network terminal a4. Whether a4 has been registered;
- the registration information may be a record of a terminal identifier of the car network terminal, a car network service identifier, and a V2X communication key.
- the content of the registration information may include a V2X communication key, a terminal identification, and a car network service identification of the Internet of Vehicles terminal.
- the registration information can also contain other content, such as other information on the car network terminal.
- the V2X service platform verifies whether it is registered, if there is registration information of the car network terminal (ratio For example, if there is a record, it means that the car network terminal has been registered. If there is no registration information of the car network terminal (for example, no record), the car network terminal is not registered.
- Step 606 the V2X service platform confirms that the car network terminal a4 has been registered, then transmits the V2X communication key a1 of the car network terminal a1 to the car network terminal a4;
- Step 607 the car network terminal a4 parses the first broadcast message according to the V2X communication key a1, and obtains speed information of the car network terminal a1;
- Step 608 the vehicle network terminal a2 drives out the communication range of the vehicle network terminal a1, and when the vehicle network terminal a2 does not receive the first broadcast message, deletes the V2X communication key a1, and the vehicle network terminal a2 and the vehicle network Terminal a1 communication ends.
- Step 609 the car network terminal a3 starts broadcasting its own location information, and issues a second broadcast message, which is encrypted by the V2X communication key a3, and includes location information of the car network terminal a3;
- Step 610 the car network terminal a4 and the car network terminal a1 are currently located in the communication coverage area of the car network terminal a3, receive the second broadcast message, parse the header of the second broadcast message, and obtain the terminal identifier of the car network terminal a3.
- Service identifier
- Step 611 the vehicle networking terminal a4 sends a second key request to the V2X service platform, where the second key request includes the terminal identifier and service identifier of the vehicle network terminal a4, and the terminal identifier and service identifier of the vehicle network terminal a3;
- the terminal a1 sends a third key request to the V2X service platform, where the third key request includes the terminal identifier and the service identifier of the car network terminal a1, and the terminal identifier and the service identifier of the car network terminal a3;
- Step 612 The V2X service platform receives the second key request and the third key request, and verifies that the car network terminal a4 is registered according to the terminal identifier and the service identifier of the car network terminal a4, according to the car network terminal a1.
- step 605 the verification process in this step is the same as step 605, and details are not described herein.
- Step 613 the V2X service platform sends the V2X communication key a3 of the car network terminal a3 to the car network terminal a4 and the car network terminal a1, respectively;
- Step 614 The car network terminal a4 and the car network terminal a1 respectively parse the second broadcast message according to the V2X communication key a3 to obtain location information of the car network terminal a3.
- Step 615 the communication range of the vehicle carrying the vehicle network terminal a4 exiting the vehicle network terminal a1 and the vehicle network terminal a3, and the vehicle network terminal a4 receiving the message sent by the vehicle network terminal a1 and the vehicle network terminal a3,
- the V2X communication key a1 and the V2X communication key a3 are deleted, and the Internet of Vehicles terminal a4 ends communication with the Internet of Vehicles terminal a1 and the Internet of Vehicles terminal a3.
- step 607 and step 603 to step 606 there is no necessary sequence of execution in the process of step 607 and step 603 to step 606.
- the process of steps 603 to 606 and the process of steps 608 to 613 do not have a sequential sequence of execution, step 607 and step 614.
- execution order depends on whether the vehicle networking terminals in the actual application scenario are in the communication range of each other, and also depends on whether there is communication between the vehicle networking terminals. For example, vehicles carrying vehicle-to-network terminals are far apart from each other, and there is no need to inform each other of the position and speed of each other, and communication between the vehicle-network terminals is not necessary. If the vehicles carrying the vehicle-networked terminals are close together, it is necessary to intervene in position and speed in time to avoid collisions. At this time, timely and safe communication is required between the vehicle-networked terminals.
- the present application further provides a first device, which is configured as a secure communication between the vehicle networking terminals, and is deployed on the first vehicle networking terminal, and includes:
- the first sending module 81 is configured to send a registration request to the V2X service platform, where the registration request includes a terminal identifier and a service identifier of the first vehicle networking terminal;
- the first receiving module 82 is configured to receive a V2X communication key returned by the V2X service platform;
- the first storage module 83 is configured to save the V2X communication key
- the V2X communication key is set to communicate between the first vehicle networking terminal and other vehicle networking terminals.
- the first sending module 81 is further configured to send a first message, where the first message is encrypted using the V2X communication key.
- the first device may further include: a first deleting module 84; specifically, the first sending module 81 may be further configured to send a logout request to the V2X service platform, where the logout request includes the first The terminal identifier and the service identifier of the car network terminal; the first receiving module 82 is further configured to receive the logout completion message returned by the V2X service platform, and notify the first deleting module 84; the first deleting module 84, The V2X communication key may be deleted from the storage module upon receipt of the notification by the first receiving module 82.
- a first deleting module 84 specifically, the first sending module 81 may be further configured to send a logout request to the V2X service platform, where the logout request includes the first The terminal identifier and the service identifier of the car network terminal; the first receiving module 82 is further configured to receive the logout completion message returned by the V2X service platform, and notify the first deleting module 84; the first deleting module 84, The V2X communication key may be deleted from the storage
- the present application further provides a second device configured for secure communication between the vehicle networking terminals, the device being deployed in the second vehicle networking terminal, and comprising: a second receiving module 91, a parsing module 92, and Obtaining module 93; wherein
- the second receiving module 91 is configured to receive a first message from the first car network terminal, where the first message is encrypted by a V2X communication key of the first car network terminal;
- the parsing module 92 is configured to parse the terminal identifier and/or the service identifier of the first car network terminal from the first message; and obtain the V2X communication secret of the first car network terminal obtained by using the acquiring module. Decrypting and parsing the first message to obtain content of the first message;
- the obtaining module 93 is configured to acquire, according to the terminal identifier and/or the service identifier obtained by the parsing module, the V2X communication key of the first vehicle network terminal from the V2X service platform;
- the V2X communication key is generated by the V2X service platform and is saved corresponding to the terminal identifier and the service identifier of the first vehicular network terminal, and is configured to communicate between the first vehicular network terminal and other vehicle networking terminals. .
- the second device may further include: a second storage module 94 configured to save the V2X communication key of the first Internet of Vehicles terminal obtained by the acquisition module; and/or a second deletion module 95, And configured to delete the V2X communication key of the first vehicle networking terminal when the communication ends between the second vehicle networking terminal and the first vehicle networking terminal or the communication cannot continue.
- a second storage module 94 configured to save the V2X communication key of the first Internet of Vehicles terminal obtained by the acquisition module
- a second deletion module 95 And configured to delete the V2X communication key of the first vehicle networking terminal when the communication ends between the second vehicle networking terminal and the first vehicle networking terminal or the communication cannot continue.
- the obtaining module 93 may be configured to send a key request to the V2X service platform, where the key request includes a terminal identifier and a service identifier of the first vehicle networking terminal, and the second vehicle networking terminal Terminal identification and service identification; and receiving a V2X communication key of the first Internet of Vehicles terminal returned by the V2X service platform.
- the present application further provides a third device configured for secure communication between the vehicle networking terminals, deployed on the V2X service platform, including:
- the third receiving module 11 is configured to receive a registration request from the first car network terminal, where the registration request includes a terminal identifier and a service identifier of the first car network terminal;
- a generating module 12 configured to generate a V2X communication key for the first vehicle networking terminal
- the third storage module 13 is configured to save the V2X communication key generated by the generating module and the terminal identifier and the service identifier of the first vehicle network terminal;
- the third sending module 14 is configured to return the V2X communication key to the first car network terminal;
- the V2X communication key is set to communicate between the first vehicle networking terminal and other vehicle networking terminals.
- the third device may further include: a verification module 15 and a lookup module 16; specifically, the third receiving module 11 may be further configured to receive a key request from the second Internet of Vehicles terminal, the secret
- the key request includes a terminal identifier and a service identifier of the first vehicular network terminal, and a terminal identifier and a service identifier of the second vehicular network terminal; and the searching module 16 is configured to receive according to the third receiving module 11 a terminal identifier and/or a service identifier of the second car network terminal in the key request, verifying whether the second car network terminal is registered, and verifying that the second car network terminal has registered to notify the search module
- the searching module 16 may be configured to: after receiving the notification of the verification module, according to the key identifier of the first vehicle networking terminal, the terminal identifier and/or service identifier in the key request received by the third receiving module And searching for the V2X communication key of the first car network terminal and returning to the second car network terminal; the third sending module 14 may further be
- the third device may further include: a third deletion module 17; specifically, the third receiving module 11 may be further configured to receive a logout request from the first car network terminal, where the logout request includes The terminal identifier and the service identifier of the first car network terminal; the searching module 16 may be further configured to: according to the logout request received by the third receiving module, the terminal identifier and/or service of the first car network terminal And identifying, by the identifier, the registration information of the first vehicular network terminal, where the registration information includes a terminal identifier, a service identifier, and a V2X communication key of the first vehicular network terminal, and a third deletion module 17
- the third receiving module 14 is further configured to delete the registration information that is received by the searching module
- the third sending module 14 is further configured to: in the third deleting module, the first vehicle networking terminal After the registration information is deleted, the logout completion message is returned to the first car network terminal.
- the third receiving module 11, the generating module 12, the third storing module 13, the third sending module 14, the verifying module 15, the searching module 16, and the third deleting module 17 in the third device may be located on the network entity.
- DSP digital signal Device implementations such as a processor (DSP) or a field programmable gate array (FPGA).
- Each of the modules in the first device and each of the second devices may be implemented by a device such as a CPU, an MPU, a DSP, or an FPGA located on the Internet of Things terminal device.
- FIG. 11 is a schematic structural diagram of a system configured for secure communication between vehicle network terminals according to an embodiment of the present invention.
- the system may include: a V2X service platform 10, an Internet of Vehicles terminal 20, and a V2X control function entity 30.
- the V2X service platform 10 can be implemented by a network entity.
- the V2X control function entity 30 is arranged to perform a V2X service authorization process for the vehicle network terminal 20.
- the V2X service platform 10 includes the third device described above, at least two of the car networking terminals 20, one car networking terminal 20 including the first device described above, and another car networking terminal 20 including the above described Two devices.
- each of the vehicle networking terminals 20 includes the first device and the second device described above.
- the first device, the second device, the third device, and the system configured for secure communication between the Internet of Vehicles terminals may be configured to perform the foregoing method embodiments, and the implementation principles and technical effects thereof are similar, and are not described herein again. .
- the present application also provides a computer readable storage medium storing computer executable instructions that, when executed by a processor, implement any of the methods described above.
- embodiments of the present application can be provided as a method, system, or computer program product. Accordingly, the application can take the form of a hardware embodiment, a software embodiment, or an embodiment in combination with software and hardware. Moreover, the application can take the form of a computer program product embodied on one or more computer-usable storage media (including but not limited to disk storage and optical storage, etc.) including computer usable program code.
- These computer program instructions can also be stored in a bootable computer or other programmable data processing device.
- a computer readable memory that operates in a particular manner, causing instructions stored in the computer readable memory to produce an article of manufacture comprising an instruction device implemented in one or more flows and/or block diagrams of the flowchart The function specified in the box or in multiple boxes.
- These computer program instructions can also be loaded onto a computer or other programmable data processing device such that a series of operational steps are performed on a computer or other programmable device to produce computer-implemented processing for execution on a computer or other programmable device.
- the instructions provide steps that are set to implement the functions specified in one or more of the flow or in a block or blocks of the flowchart.
- Embodiments of the present invention provide a method and apparatus for secure communication between vehicle networking terminals.
- a first vehicle networking terminal sends a message to another vehicle networking terminal
- each second vehicle networking terminal that receives the message separately provides a V2X service platform.
- Obtaining a V2X communication key of the first vehicle networking terminal and the second vehicle networking terminal can decrypt and parse the message of the first vehicle networking terminal according to the V2X communication key of the first vehicle networking terminal to obtain the content of the message.
- each car network terminal receiving the message can obtain the V2X communication key used to encrypt the message from the V2X service platform, successfully decrypt the message and obtain the content thereof.
- the safe and effective communication between the vehicle networking terminals is realized.
- a method for secure communication between a vehicle networking terminal may include: receiving, by the second vehicle networking terminal, a first message from the first vehicle networking terminal, the first message passing through the first vehicle networking terminal V2X communication key encryption; the second vehicle networking terminal parses the terminal identifier and the service identifier of the first vehicle network terminal from the first message, and acquires the first vehicle network terminal from the V2X service platform a V2X communication key; the second car network terminal decrypts and parses the first message using the V2X communication key of the first car network terminal to obtain content of the first message;
- the V2X service platform generates and stores the terminal identifier and the service identifier of the first vehicle networking terminal, and is configured to communicate between the first vehicle networking terminal and other vehicle networking terminals.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
本文公布了车联网终端之间安全通信的方法及装置,该方法可包括:第二车联网终端接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;所述第二车联网终端从所述第一消息中解析得到所述第一车联网终端的终端标识和/或服务标识,根据所述第一车联网终端的终端标识和/或服务标识向V2X服务平台获取所述第一车联网终端的V2X通信密钥;所述第二车联网终端使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。本文公布的方法及装置,实现了车联网终端之间安全有效的通信。
Description
本申请涉及但不限于通信领域,具体涉及一种车联网终端之间安全通信的方法及装置。
目前,在车联网通信系统中,车联网终端之间、车联网终端与其他终端之间可通过车联网业务通信。车联网通信系统可包括车联网终端(包括车载终端、安装车联网应用的终端)、车载路侧单元、车联网应用服务器、车联网控制功能实体等。车联网业务包括车载终端与车载路侧单元(Road Side Unit)之间的通信(V2I,vehicle to infrastructure),车载终端与应用服务器(如交通安全服务器)之间的通信(V2N,vehicle to Network),车载终端与用户终端之间的通信(V2P,vehicle to Pedestrian),车载终端之间的通信(V2V,vehicle to vehicle)。车联网通信可统称为V2X(Vehicle-to-Everything)通信。
V2X通信中参与通信的车联网终端常常是动态变化的。比如,一个车联网终端广播信息时,接收广播信息的其他车联网终端会不断变化。由于广播信息中关于车辆速度、位置等的信息对于车辆的控制至关重要,因此需要确保V2X通信的安全且连续。
在参与通信的实体动态变化的情况下,如何解决V2X通信中车联网终端之间一对多通信的安全性问题,保障车联网终端间通信的安全性,相关技术没有提供有效的解决方案。
发明概述
以下是对本文详细描述的主题的概述。本概述并非是为了限制权利要求的保围。
为了解决上述技术问题,本发明实施例提供了一种车联网终端之间安全通信的方法及装置。
一方面,本发明实施例提供了一种车联网终端之间安全通信的方法,包括:
第二车联网终端接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;
所述第二车联网终端从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,并向V2X服务平台获取所述第一车联网终端的V2X通信密钥;
所述第二车联网终端使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;
所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种车联网终端之间安全通信的方法,包括:
V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;
所述V2X服务平台为所述第一车联网终端生成V2X通信密钥,并将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;
所述V2X服务平台将所述V2X通信密钥返回给所述第一车联网终端;
所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种车联网终端之间安全通信的方法,包括:
第一车联网终端向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;
第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所
述V2X通信密钥保存在本地;
所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种车联网终端之间安全通信的方法,包括:
V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识,为所述第一车联网终端生成V2X通信密钥,将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存,并将所述V2X通信密钥返回给所述第一车联网终端;
第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所述V2X通信密钥保存在本地;
所述第一车联网终端发出第一消息,所述第一消息使用所述V2X通信密钥加密;
第二车联网终端接收所述第一消息,从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,向所述V2X服务平台发送密钥请求,所述密钥请求包括所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;
所述V2X服务平台接收来自所述密钥请求,根据所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册,在验证所述第二车联网终端已注册时,根据所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并将所述第一车联网终端的V2X通信密钥返回给所述第二车联网终端;
所述第二车联网终端接收所述V2X服务平台返回的第一车联网终端的V2X通信密钥,并使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容。
另一方面,本发明实施例还提供了一种设置为车联网终端之间安全通信的第二装置,部署在第二车联网终端,包括:第二接收模块、解析模块和获
取模块;其中,
第二接收模块,设置为接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;
解析模块,设置为从所述第一消息中解析得到所述第一车联网终端的终端标识和/或服务标识;以及,使用所述获取模块得到的、第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;
获取模块,设置为根据所述解析模块得到的终端标识和/或服务标识,向V2X服务平台获取所述第一车联网终端的V2X通信密钥;
所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种设置为车联网终端之间安全通信的第三装置,部署在V2X服务平台上,包括:
第三接收模块,设置为接收来自第一车联网终端的注册请求,所述注册请求包括所述第一车联网终端的终端标识和服务标识;
生成模块,设置为为所述第一车联网终端生成V2X通信密钥;
第三存储模块,设置为将所述生成模块生成的V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;
第三发送模块,设置为将所述V2X通信密钥返回给所述第一车联网终端;
所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种设置为车联网终端之间安全通信的第一装置,部署在第一车联网终端上,包括:
第一发送模块,设置为向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;
第一接收模块,设置为接收所述V2X服务平台返回的V2X通信密钥;
第一存储模块,设置为将所述V2X通信密钥保存;
所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
另一方面,本发明实施例还提供了一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现上述的一种车联网终端之间安全通信的方法。
另一方面,本发明实施例还提供了一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现上述的另一种车联网终端之间安全通信的方法。
另一方面,本发明实施例还提供了一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现上述的又一种车联网终端之间安全通信的方法。
另一方面,本发明实施例还提供了一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现上述的再一种车联网终端之间安全通信的方法一种的方法。本发明实施例中,当第一车联网终端向其他车联网终端发出消息时,接收所述消息的每个第二车联网终端分别向V2X服务平台获取第一车联网终端的V2X通信密钥,第二车联网终端可根据第一车联网终端的V2X通信密钥解密和解析第一车联网终端的消息,获得该消息的内容。如此,在参与通信的车联网终端不断变化的场景中,每个接收到消息的车联网终端都可从V2X服务平台获取加密该消息所使用的V2X通信密钥,成功解密该消息并获得其内容,从而及时获知消息中的位置或速度信息,实现了车联网终端之间安全有效的通信。
在阅读并理解了附图和详细描述后,可以明白其他方面。
附图概述
设置为
图1为本发明实施例车联网终端之间安全通信方法的流程示意图;
图2为本发明实施例车联网终端向V2X服务平台注册的流程示意图;
图3为本发明实施例车联网终端向V2X服务平台注销的流程示意图;
图4为本发明实施例车联网终端之间通信的流程示意图;
图5为图4所示流程的场景示意图;
图6为本发明实施例在动态变化场景中车联网终端之间通信的流程示意图;
图7为图6所示流程的场景示意图;
图8为本发明实施例设置为车联网终端之间安全通信的第一装置的组成结构示意图;
图9为本发明实施例设置为车联网终端之间安全通信的第二装置的组成结构示意图;
图10为本发明实施例设置为车联网终端之间安全通信的第三装置的组成结构示意图;
图11为本发明实施例设置为车联网终端之间安全通信的系统的组成结构示意图。
详述
为使本发明的目的、技术方案和优点更加清楚明白,下文中将结合附图对本发明的实施例进行详细说明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互任意组合。
在附图的流程图示出的步骤可以在诸如一组计算机可执行指令的计算机系统中执行。并且,虽然在流程图中示出了逻辑顺序,但是在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤。
如图1所示,本申请提供一种车联网终端之间安全通信的方法,该方法可包括:
步骤101,第二车联网终端接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;
步骤102,所述第二车联网终端从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,并向V2X服务平台获取所述第一车联网终
端的V2X通信密钥;
步骤103,所述第二车联网终端使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;
其中,所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。具体来说,第一车联网终端的V2X通信密钥用于加解密第一车联网终端发出的消息。也就是说,第一车联网终端在发出消息之前使用该V2X通信密钥加密,其他车联网终端在接收到该消息之后使用该V2X通信密钥解密。每个车联网终端都可通过V2X服务平台注册自己的V2X通信密钥,不同的车联网终端使用不同的V2X通信密钥通信。
优选的,步骤102中获取所述第一车联网终端的V2X通信密钥之后,还可包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥保存在本地。
优选的,步骤103之后,还可包括:在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,所述第二车联网终端将所述第一车联网终端的V2X通信密钥从本地删除。
其中,步骤102中向V2X服务平台获取所述第一车联网终端的V2X通信密钥,具体为:根据所述第一车联网终端的终端标识和/或服务标识从V2X服务平台获取所述第一车联网终端的V2X通信密钥。具体的,可包括:所述第二车联网终端向所述V2X服务平台发送密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;所述第二车联网终端接收所述V2X服务平台返回的所述第一车联网终端的V2X通信密钥。
相应的,本申请还提供了另一种车联网终端之间安全通信的方法,该方法可包括:首先,V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;其次,所述V2X服务平台为所述第一车联网终端生成V2X通信密钥,并将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;最后,所述V2X服务平台将所述V2X通信密钥返回给所述第一车联网终端;所述V2X通信密钥
用于所述第一车联网终端与其他车联网终端之间通信。
优选的,所述V2X服务平台将所述V2X通信密钥返回给所述第一车联网终端之后,还可包括:V2X服务平台接收来自第二车联网终端的密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;根据所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册;在验证所述第二车联网终端已注册时,所述V2X服务平台根据所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并返回给所述第二车联网终端。这里,在验证所述第二车联网终端未注册时,所述V2X服务平台拒绝所述第二车联网终端的密钥请求。
优选的,将所述V2X通信密钥返回给所述第一车联网终端之后,还可包括:所述V2X服务平台接收来自所述第一车联网终端的注销请求,所述注销请求包括所述第一车联网终端的终端标识和服务标识;所述V2X服务平台根据所述第一车联网终端的终端标识和/或服务标识,查询所述第一车联网终端的注册信息,并将所述注册信息删除;所述V2X服务平台向所述第一车联网终端返回注销完成消息;所述注册信息包括所述第一车联网终端的终端标识、服务标识和V2X通信密钥。
相应的,本申请还提供了第三种车联网终端之间安全通信的方法,可包括:首先,第一车联网终端向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;其次,第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所述V2X通信密钥保存在本地;其中,所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
优选的,所述第一车联网终端接收所述V2X服务平台返回的V2X通信密钥后,还包括:所述第一车联网终端发出第一消息,所述第一消息使用所述V2X通信密钥加密。
优选的,所述将所述V2X通信密钥保存在本地后,还包括:所述第一车联网终端向所述V2X服务平台发送注销请求,所述注销请求包括第一车联网终端的终端标识和服务标识;所述第一车联网终端接收所述V2X服务平台返
回的注销完成消息,将所述V2X通信密钥从本地删除。
相应的,本申请还提供了第四种车联网终端之间安全通信的方法,可包括:
首先,V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识,为所述第一车联网终端生成V2X通信密钥,将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存,并将所述V2X通信密钥返回给所述第一车联网终端;
其次,第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所述V2X通信密钥保存在本地;
第三,所述第一车联网终端发出第一消息,所述第一消息使用所述V2X通信密钥加密;
第四,第二车联网终端接收所述第一消息,从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,向所述V2X服务平台发送密钥请求,所述密钥请求包括所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;
第五,所述V2X服务平台接收来自所述密钥请求,根据所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册,在验证所述第二车联网终端已注册时,根据所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并将所述第一车联网终端的V2X通信密钥返回给所述第二车联网终端;
第六,所述第二车联网终端接收所述V2X服务平台返回的第一车联网终端的V2X通信密钥,并使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容。
优选的,上述第四种方法中所述第二车联网终端接收所述V2X服务平台返回的第一车联网终端的V2X通信密钥之后,还可包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥保存在本地;在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,还包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥从本地删除。需要说明
的是,本文提到的“第一车联网终端”具体为发出消息的车联网终端,“第二车联网终端”具体为接收该消息的任意一个车联网终端。一般来说,车联网终端之间通信时,由一个车联网终端广播消息,在该车联网终端的通信范围内的所有车联网终端都将会收到该车联网终端广播的消息。此场景下,广播消息的是第一车联网终端,接收消息的是第二车联网终端。实际应用中,本文中提到的“第一消息”是指第一车联网终端发出的任何类型的消息,例如可以是广播消息等。第二车联网终端可以是多个。V2X服务平台实际可以为一个车联网中的网络实体。
本申请中,当第一车联网终端向其他车联网终端广播消息时,接收广播消息的每个第二车联网终端分别向V2X服务平台发送密钥请求,密钥请求包括该第二车联网终端的终端标识和服务标识,还包括第一车联网终端的终端标识和服务标识。V2X服务平台对每个第二车联网终端分别验证是否注册,并将第一车联网终端的V2X通信密钥返回给已注册的第二车联网终端,已注册的第二车联网终端都可以根据第一车联网终端的V2X通信密钥解密和解析第一车联网终端的广播消息,获得该广播消息的内容。当通信结束时或通信不能继续时,第二车联网终端将会删除第一车联网终端的V2X通信密钥。如此,本申请可使得车联网终端可以在参与通信的车联网终端不断动态变化的通信场景中实现安全通信。
本申请中,获得车联网服务授权的车联网终端首先需要在V2X服务平台注册,才能进行车联网通信。未在V2X服务平台注册的车联网终端不能用于车联网服务相关的通信。V2X服务平台为车联网终端创建V2X通信密钥。V2X服务平台保存并管理车联网终端的注册信息,该注册信息可包括V2X通信密钥。参与通信的车联网终端发送信息时必须使用自己在V2X服务平台注册时获得的V2X通信密钥对发送信息进行安全保护。参与通信的车联网终端接收信息时必须使用向V2X服务平台请求发送方的V2X密钥,才能解密收到的信息,与发送方进行安全通信。不同的车联网终端使用不同的V2X通信密钥。车联网终端通信时,发送消息的车联网终端使用其获得的V2X通信密钥对通信进行安全保护,接收消息的车联网终端需要向V2X服务平台请求发送消息的车联网终端的V2X通信密钥才可对消息进行解密。如此,实现了
车联网终端与其他任意一个或多个车联网终端之间安全通信。
实施例一
本实施例中,车联网终端可以在V2X服务平台注册。具体的,图2所示为车联网终端注册的流程图,车联网终端注册的过程可包括:
步骤201,车联网终端与V2X控制功能实体进行V2X服务授权过程,所述V2X服务授权过程完成后,所述车联网终端获得授权的服务标识并保存;
步骤202,车联网终端向V2X服务平台发送注册请求,该注册请求包含车联网终端的终端标识和所述服务标识;
步骤203,V2X服务平台接收所述注册请求,为所述车联网终端生成V2X通信密钥,将所述车联网终端的终端标识、服务标识以及V2X通信密钥对应保存;
步骤204,V2X服务平台将所述V2X通信密钥返回给所述车联网终端;
步骤205,所述车联网终端接收并保存所述V2X通信密钥,注册流程结束。
需要说明的是,所述V2X通信密钥用于所述车联网终端与其他车联网终端之间安全通信。例如,在所述车联网终端发出的广播消息中采用该V2X通信密钥加密,接收所述广播消息的其他车联网终端需要基于该V2X通信密钥解密才能进一步解析得到所述广播消息的内容。
实施例二
本实施例中,车联网终端可以注销在V2X服务平台注册的信息,具体的,图3所示为车联网终端注销的流程图,车联网终端注销的过程可包括:
步骤301,车联网终端向V2X服务平台发送V2X注销请求,所述V2X注销注册请求包括车联网终端的终端标识和服务标识,该服务标识已授权。
步骤302,V2X服务平台接收所述V2X注销请求,解析得到所述车联网终端的终端标识和服务标识,根据所述车联网终端的终端标识和服务标识查询到所述车联网终端的注册信息,并删除该注册信息;
这里,所述车联网终端的注册信息可包括:车联网终端的终端标识、服
务标识及其对应的V2X通信密钥。
实际应用中,V2X服务平台为车联网终端生成V2X通信密钥后,将该V2X通信密钥与车联网终端的终端标识、服务标识对应存储在数据库或存储器中。某个车联网终端请求注销时,V2X服务平台将该车联网终端的终端标识、服务标识及V2X通信密钥从数据库或存储器中清除。
例如,V2X服务平台可以将一个车联网终端的终端标识、服务标识和V2X通信密钥作为一条记录写入V2X服务平台中数据库的数据表中,该数据表中一条记录表示一条注册信息,一条注册信息对应一个车联网终端,在车联网终端请求注销时将其对应的记录从数据表中清除,即为删除了该车联网终端的注册信息。
再例如,V2X服务平台还可以在数据库或存储器中为每个车联网终端对应建立一个数据表,该数据表中记录有该车联网终端的终端标识、服务标识和V2X通信密钥等信息,一个数据表对应一条注册信息,一条注册信息对应一个车联网终端。在车联网终端请求注销时将其对应的数据表从数据库或存储器中清除,即为删除了该车联网终端的注册信息。
步骤303,V2X服务平台向车联网终端反馈注销完成消息,该注销完成消息表示所述车联网终端的注册信息已删除;
步骤304,车联网终端接收所述注销完成消息,删除本地的V2X通信密钥,注销流程结束。
实际应用中,注册后车联网终端会将自身通信使用的V2X通信密钥保存在本地。需要注销时,车联网终端会在收到V2X服务平台返回的注销完成消息后,将该V2X通信密钥从本地删除。
例如,车联网终端可以将自身通信使用的V2X通信密钥作为一条记录写入本地数据库或存储器中,注销时将该V2X通信密钥对应的记录从本地数据库或存储器或内存中清除,即为删除了该V2X通信密钥。
实施例三
如图4、图5所示,本实施例中车联网终端一对多安全通信的过程,可以包括:
步骤401,车联网终端A向其他车联网终端(车联网终端B、车联网终端C和车联网终端D)广播消息,该广播信息通过车联网终端A在V2X服务平台注册的V2X通信密钥A加密;
步骤402,车联网终端B、车联网终端C和车联网终端D分别接收所述广播消息,解析所述广播消息的头部信息,获得车联网终端A的终端标识和服务标识,并分别向V2X服务平台发送密钥请求,所述密钥请求包含所述车联网终端A的终端标识和服务标识、以及车联网终端B/车联网终端C/车联网终端D的终端标识和服务标识;
其中,车联网终端B的密钥请求包括车联网终端A的终端标识和服务标识、以及车联网终端B的终端标识和服务标识。车联网终端C的密钥请求包括车联网终端A的终端标识和服务标识、以及车联网终端D的终端标识和服务标识。车联网终端D的密钥请求包括车联网终端A的终端标识和服务标识、以及车联网终端D的终端标识和服务标识。
步骤403,V2X服务平台接收车联网终端B、车联网终端C和车联网终端D发送的密钥请求,根据车联网终端B/车联网终端C/车联网终端D的终端标识和服务标识验证车联网终端B/车联网终端C/车联网终端D分别是否已注册,验证后,发现车联网终端B和车联网终端C已注册,但车联网终端D未注册;
步骤404,V2X服务平台下发V2X通信密钥A给车联网终端B和车联网终端C,拒绝响应车联网终端D的密钥请求;
具体的,本步骤中,V2X服务平台仅向已注册的车联网终端下发V2X通信密钥A。例如,车联网终端B已注册,车联网终端C和车联网终端D未注册,则仅向车联网终端B下发V2X通信密钥A。
步骤405,车联网终端B/车联网终端C/车联网终端D接收所述V2X通信密钥A,根据V2X通信密钥A解析车联网终端A的广播消息,获得所述广播消息的内容。
步骤406,通信结束时或通信不能继续时,车联网终端B/车联网终端C/车联网终端D删除所述车联网终端A的V2X通信密钥A。
需要说明的是,本实施例的方法流程同样适用于一个车联网终端向另一个车联网终端发送广播消息的场景,也就是说,车联网终端一对一的安全通信的方法流程与图4所示流程相同。
实施例四
本实施例,针对动态变化的通信场景中车联网终端之间安全通信进行说明。
如图6、图7所示,车联网终端a1、车联网终端a2、车联网终端a3正在通信过程中,载有车联网终端a4的车辆驶入车联网终端a1的通信范围,此时,车联网终端之间安全通信的具体流程可包括:
步骤601,车联网终端a1正在发送包含速度信息的第一广播消息,该第一广播消息通过V2X通信密钥a1加密;
步骤602,车联网终端a2和车联网终端a3接收所述第一广播消息,基于所述V2X通信密钥a1解析所述第一广播消息,获得车联网终端a1的速度信息;
步骤603,载有车联网终端a4的车辆驶入车联网终端a1的通信范围,车联网终端a4接收所述第一广播消息,解析所述第一广播消息的头部获取车联网终端a1的终端标识和服务标识;
步骤604,车联网终端a4向V2X服务平台发送第一密钥请求,该第一密钥请求包含车联网终端a1的终端标识和服务标识、以及车联网终端a4的终端标识和服务标识;
步骤605,V2X服务平台接收所述第一密钥请求,解析所述密钥请求得到车联网终端a4的终端标识和服务标识,根据所述车联网终端a4的终端标识和服务标识验证车联网终端a4是否已注册;
其中,注册信息可以是对车联网终端的终端标识、车联网服务标识、V2X通信密钥的记录。注册信息的内容可以包含车联网终端的V2X通信密钥、终端标识和车联网服务标识等。除此之外,注册信息还可以包含其他内容,比如车联网终端的其他信息等。
在V2X服务平台验证是否注册时,如果存在车联网终端的注册信息(比
如,有记录),则说明该车联网终端已经注册,如果不存在车联网终端的注册信息(比如,无记录)说明该车联网终端没有注册。
步骤606,V2X服务平台确认车联网终端a4已注册,则将车联网终端a1的V2X通信密钥a1发送给所述车联网终端a4;
步骤607,车联网终端a4根据所述V2X通信密钥a1解析所述第一广播消息,获得所述车联网终端a1的速度信息;
步骤608,车联网终端a2驶出车联网终端a1的通信范围,车联网终端a2接收不到所述第一广播消息时,则将所述V2X通信密钥a1删除,车联网终端a2与车联网终端a1通信结束。
步骤609,车联网终端a3开始广播自身的位置信息,发出第二广播消息,该第二广播消息通过V2X通信密钥a3加密,并包含车联网终端a3的位置信息;
步骤610,车联网终端a4和车联网终端a1当前位于车联网终端a3的通信覆盖范围,接收所述第二广播消息,解析所述第二广播消息的头部获取车联网终端a3的终端标识和服务标识;
步骤611,车联网终端a4向V2X服务平台发送第二密钥请求,该第二密钥请求包含车联网终端a4的终端标识和服务标识、以及车联网终端a3的终端标识和服务标识;车联网终端a1向V2X服务平台发送第三密钥请求,该第三密钥请求包含车联网终端a1的终端标识和服务标识、以及车联网终端a3的终端标识和服务标识;
步骤612,V2X服务平台接收所述第二密钥请求和第三密钥请求,根据所述车联网终端a4的终端标识和服务标识验证车联网终端a4已注册,根据所述车联网终端a1的终端标识和服务标识验证车联网终端a1已注册;
具体的,本步骤的验证过程与步骤605相同,不再赘述。
步骤613,V2X服务平台分别向车联网终端a4和车联网终端a1发送车联网终端a3的V2X通信密钥a3;
步骤614,车联网终端a4和车联网终端a1分别根据所述V2X通信密钥a3解析所述第二广播消息,获得所述车联网终端a3的位置信息。
步骤615,载有车联网终端a4的车辆驶出车联网终端a1和车联网终端a3的通信范围,车联网终端a4接收不到所述车联网终端a1和车联网终端a3发出的消息时,则将所述V2X通信密钥a1和V2X通信密钥a3删除,车联网终端a4与车联网终端a1、车联网终端a3通信结束。
需要说明的是,步骤607与步骤603至步骤606的过程不存在必然的先后执行顺序,步骤603至步骤606的过程与步骤608至613的过程不存在必然的先后执行顺序,步骤607和步骤614也不存在必然的先后执行顺序,其执行顺序依赖于实际应用场景中车联网终端是否在彼此的通信范围,也依赖于车联网终端之间是否有通信的必要。例如,载有车联网终端的车辆彼此相距较远,不存在相互告知彼此位置和速度的必要,则其车联网终端之间可不必通信。如果载有车联网终端的车辆相距较近,有必要及时互通位置和速度以避免相撞,此时,其车联网终端之间则需要及时并安全的通信。
如图8所示,本申请还提供了一种设置为车联网终端之间安全通信的第一装置,部署在第一车联网终端上,包括:
第一发送模块81,设置为向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;
第一接收模块82,设置为接收所述V2X服务平台返回的V2X通信密钥;
第一存储模块83,设置为将所述V2X通信密钥保存;
其中,所述V2X通信密钥设置为所述第一车联网终端与其他车联网终端之间通信。
优选的,所述第一发送模块81,还可设置为发出第一消息,所述第一消息使用所述V2X通信密钥加密。
优选的,所述第一装置还可包括:第一删除模块84;具体的,所述第一发送模块81,还可设置为向所述V2X服务平台发送注销请求,所述注销请求包括第一车联网终端的终端标识和服务标识;所述第一接收模块82,还可设置为接收所述V2X服务平台返回的注销完成消息,并通知所述第一删除模块84;第一删除模块84,可设置为在收到所述第一接收模块82的通知后,将所述V2X通信密钥从所述存储模块中删除。
如图9所示,本申请还提供了一种设置为车联网终端之间安全通信的第二装置,该装置部署在第二车联网终端,可包括:第二接收模块91、解析模块92和获取模块93;其中,
第二接收模块91,设置为接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;
解析模块92,设置为从所述第一消息中解析得到所述第一车联网终端的终端标识和/或服务标识;以及,使用所述获取模块得到的、第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;
获取模块93,设置为根据所述解析模块得到的终端标识和/或服务标识,向V2X服务平台获取所述第一车联网终端的V2X通信密钥;
其中,所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,设置为所述第一车联网终端与其他车联网终端之间通信。
优选的,第二装置还可包括:第二存储模块94,设置为将所述获取模块获得的、所述第一车联网终端的V2X通信密钥保存;和/或,第二删除模块95,设置为在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,将所述第一车联网终端的V2X通信密钥删除。
具体的,所述获取模块93可设置为向所述V2X服务平台发送密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;以及,接收所述V2X服务平台返回的所述第一车联网终端的V2X通信密钥。
如图10所示,本申请还提供了一种设置为车联网终端之间安全通信的第三装置,部署在V2X服务平台上,包括:
第三接收模块11,设置为接收来自第一车联网终端的注册请求,所述注册请求包括所述第一车联网终端的终端标识和服务标识;
生成模块12,设置为为所述第一车联网终端生成V2X通信密钥;
第三存储模块13,设置为将所述生成模块生成的V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;
第三发送模块14,设置为将所述V2X通信密钥返回给所述第一车联网终端;
其中,所述V2X通信密钥设置为所述第一车联网终端与其他车联网终端之间通信。
优选的,所述第三装置还可包括:验证模块15和查找模块16;具体的,所述第三接收模块11,还可设置为接收来自第二车联网终端的密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;所述查找模块16,可设置为根据所述第三接收模块11接收的密钥请求中所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册,并在验证所述第二车联网终端已注册通知所述查找模块16;所述查找模块16,可设置为在收到所述验证模块的通知后,根据所述第三接收模块接收的密钥请求中所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并返回给所述第二车联网终端;所述第三发送模块14,还可设置为将所述查找模块查找到的、所述第一车联网终端的V2X通信密钥返回给所述第二车联网终端。
其中,所述第三装置还可包括:第三删除模块17;具体的,所述第三接收模块11,还可设置为接收来自所述第一车联网终端的注销请求,所述注销请求包括所述第一车联网终端的终端标识和服务标识;所述查找模块16,还可设置为根据所述第三接收模块接收的注销请求中所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的注册信息,所述注册信息包括所述第一车联网终端的终端标识、服务标识和V2X通信密钥;第三删除模块17,可设置为根据所述第三接收模块11接收的注销请求,将所述查找模块查找到的注册信息删除;所述第三发送模块14,还可设置为在所述第三删除模块将所述第一车联网终端的注册信息删除后,向所述第一车联网终端返回注销完成消息。
在实际应用中,第三装置中的第三接收模块11、生成模块12、第三存储模块13、第三发送模块14、验证模块15、查找模块16和第三删除模块17可由位于网络实体上的中央处理器(CPU)、微处理器(MPU)、数字信号
处理器(DSP)或现场可编程门阵列(FPGA)等器件实现。第一装置中的各个模块和第二装置中的各个模块均可由位于物联网终端设备上的CPU、MPU、DSP或FPGA等器件实现。
图11为本发明实施例提供的设置为车联网终端之间安全通信的系统结构示意图。其中,该系统可包括:V2X服务平台10、车联网终端20和V2X控制功能实体30。其中,V2X服务平台10实际可由一个网络实体实现。V2X控制功能实体30设置为对车联网终端20进行V2X服务授权过程。V2X服务平台10包括上文所述第三装置,车联网终端20至少为两个,一个车联网终端20包括上文所述的第一装置,另一个车联网终端20包括上文所述的第二装置。或者,每个车联网终端20都包括上文所述的第一装置和第二装置。
本申请中,第一装置、第二装置、第三装置以及设置为车联网终端之间安全通信的系统,可设置为执行上述方法实施例,其实现原理和技术效果类似,此处不再赘述。
此外,本申请还提供一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现上述任意一种方法。
本领域内的技术人员应明白,本申请的实施例可提供为方法、系统、或计算机程序产品。因此,本申请可采用硬件实施例、软件实施例、或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器和光学存储器等)上实施的计算机程序产品的形式。
本申请是参照根据本申请实施例的方法、设备(系统)、和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生设置为实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。
这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设
备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。
这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供设置为实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。
本领域普通技术人员可以理解上述方法中的全部或部分步骤可通过程序来指令相关硬件完成,所述程序可以存储于计算机可读存储介质中,如只读存储器、磁盘或光盘等。可选地,上述实施例的全部或部分步骤也可以使用一个或多个集成电路来实现。相应地,上述实施例中的各模块/单元可以采用硬件的形式实现,也可以采用软件功能模块的形式实现。本申请不限制于任何特定形式的硬件和软件的结合。
虽然本申请所揭露的实施方式如上,但所述的内容仅为便于理解本申请而采用的实施方式,并非用以限定本申请。任何本申请所属领域内的技术人员,在不脱离本申请所揭露的精神和范围的前提下,可以在实施的形式及细节上进行任何的修改与变化,但本申请的专利保护范围,仍须以所附的权利要求书所界定的范围为准。
本发明实施例提供了车联网终端之间安全通信的方法及装置,当第一车联网终端向其他车联网终端发出消息时,接收所述消息的每个第二车联网终端分别向V2X服务平台获取第一车联网终端的V2X通信密钥,第二车联网终端可根据第一车联网终端的V2X通信密钥解密和解析第一车联网终端的消息,获得该消息的内容。如此,在参与通信的车联网终端不断变化的场景中,每个接收到消息的车联网终端都可从V2X服务平台获取加密该消息所使用的V2X通信密钥,成功解密该消息并获得其内容,从而及时获知消息中的位置或速度信息,实现了车联网终端之间安全有效的通信。
本申请中,一种车联网终端之间安全通信的方法,可以包括:第二车联网终端接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;所述第二车联网终端从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,并向V2X服务平台获取所述第一车联网终端的V2X通信密钥;所述第二车联网终端使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,设置为所述第一车联网终端与其他车联网终端之间通信。
Claims (25)
- 一种车联网终端之间安全通信的方法,包括:第二车联网终端接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;所述第二车联网终端从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,并向V2X服务平台获取所述第一车联网终端的V2X通信密钥;所述第二车联网终端使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求1所述的方法,其中,所述获取所述第一车联网终端的V2X通信密钥之后,还包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥保存在本地;在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,还包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥从本地删除。
- 根据权利要求1或2所述的方法,其中,所述向V2X服务平台获取所述第一车联网终端的V2X通信密钥,包括:所述第二车联网终端向所述V2X服务平台发送密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;所述第二车联网终端接收所述V2X服务平台返回的所述第一车联网终端的V2X通信密钥。
- 一种车联网终端之间安全通信的方法,包括:V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括 第一车联网终端的终端标识和服务标识;所述V2X服务平台为所述第一车联网终端生成V2X通信密钥,并将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;所述V2X服务平台将所述V2X通信密钥返回给所述第一车联网终端;所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求4所述的方法,其中,还包括:V2X服务平台接收来自第二车联网终端的密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;V2X服务平台根据所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册;在验证所述第二车联网终端已注册时,所述V2X服务平台根据所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并返回给所述第二车联网终端。
- 根据权利要求4所述的方法,其中,还包括:所述V2X服务平台接收来自所述第一车联网终端的注销请求,所述注销请求包括所述第一车联网终端的终端标识和服务标识;所述V2X服务平台根据所述第一车联网终端的终端标识和/或服务标识,查询所述第一车联网终端的注册信息,并将所述注册信息删除;所述V2X服务平台向所述第一车联网终端返回注销完成消息;所述注册信息包括所述第一车联网终端的终端标识、服务标识和V2X通信密钥。
- 一种车联网终端之间安全通信的方法,包括:第一车联网终端向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所 述V2X通信密钥保存在本地;所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求7所述的方法,其中,所述第一车联网终端接收所述V2X服务平台返回的V2X通信密钥后,还包括:所述第一车联网终端发出第一消息,所述第一消息使用所述V2X通信密钥加密。
- 根据权利要求7所述的方法,其中,所述将所述V2X通信密钥保存在本地后,还包括:所述第一车联网终端向所述V2X服务平台发送注销请求,所述注销请求包括第一车联网终端的终端标识和服务标识;所述第一车联网终端接收所述V2X服务平台返回的注销完成消息,将所述V2X通信密钥从本地删除。
- 一种车联网终端之间安全通信的方法,包括:V2X服务平台接收来自第一车联网终端的注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识,为所述第一车联网终端生成V2X通信密钥,将所述V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存,并将所述V2X通信密钥返回给所述第一车联网终端;第一车联网终端接收所述V2X服务平台返回的V2X通信密钥,并将所述V2X通信密钥保存在本地;所述第一车联网终端发出第一消息,所述第一消息使用所述V2X通信密钥加密;第二车联网终端接收所述第一消息,从所述第一消息中解析得到所述第一车联网终端的终端标识和服务标识,向所述V2X服务平台发送密钥请求,所述密钥请求包括所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;所述V2X服务平台接收来自所述密钥请求,根据所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册,在验证所述 第二车联网终端已注册时,根据所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并将所述第一车联网终端的V2X通信密钥返回给所述第二车联网终端;所述第二车联网终端接收所述V2X服务平台返回的第一车联网终端的V2X通信密钥,并使用所述第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容。
- 根据权利要求10所述的方法,其中,所述第二车联网终端接收所述V2X服务平台返回的第一车联网终端的V2X通信密钥之后,还包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥保存在本地;在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,还包括:所述第二车联网终端将所述第一车联网终端的V2X通信密钥从本地删除。
- 根据权利要求10所述的方法,其中,还包括:所述第一车联网终端向所述V2X服务平台发送注销请求,所述注销请求包括第一车联网终端的终端标识和服务标识;所述V2X服务平台接收来自所述注销请求,根据所述第一车联网终端的终端标识和/或服务标识,查询所述第一车联网终端的注册信息,并将所述注册信息删除,所述注册信息包括所述第一车联网终端的终端标识、服务标识和V2X通信密钥;所述V2X服务平台向所述第一车联网终端返回注销完成消息;所述第一车联网终端接收所述注销完成消息,将所述V2X通信密钥从本地删除。
- 一种设置为车联网终端之间安全通信的第二装置,部署在第二车联网终端,包括:第二接收模块、解析模块和获取模块;其中,第二接收模块,设置为接收来自第一车联网终端的第一消息,所述第一消息通过所述第一车联网终端的V2X通信密钥加密;解析模块,设置为从所述第一消息中解析得到所述第一车联网终端的终 端标识和/或服务标识;以及,使用所述获取模块得到的、第一车联网终端的V2X通信密钥解密并解析所述第一消息,获得所述第一消息的内容;获取模块,设置为根据所述解析模块得到的终端标识和/或服务标识,向V2X服务平台获取所述第一车联网终端的V2X通信密钥;所述V2X通信密钥由所述V2X服务平台生成并与所述第一车联网终端的终端标识和服务标识对应保存,用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求13所述的第二装置,其中,还包括:第二存储模块,设置为将所述获取模块获得的、所述第一车联网终端的V2X通信密钥保存;和/或,第二删除模块,设置为在所述第二车联网终端与所述第一车联网终端之间通信结束或通信不能继续时,将所述第一车联网终端的V2X通信密钥删除。
- 根据权利要求13所述的第二装置,其中,所述获取模块,具体设置为向所述V2X服务平台发送密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;以及,接收所述V2X服务平台返回的所述第一车联网终端的V2X通信密钥。
- 一种设置为车联网终端之间安全通信的第三装置,其中,部署在V2X服务平台上,包括:第三接收模块,设置为接收来自第一车联网终端的注册请求,所述注册请求包括所述第一车联网终端的终端标识和服务标识;生成模块,设置为为所述第一车联网终端生成V2X通信密钥;第三存储模块,设置为将所述生成模块生成的V2X通信密钥与所述第一车联网终端的终端标识、服务标识对应保存;第三发送模块,设置为将所述V2X通信密钥返回给所述第一车联网终端;所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求16所述的第三装置,其中,所述第三装置,还包括:验证模块和查找模块;所述第三接收模块,还设置为接收来自第二车联网终端的密钥请求,所述密钥请求包含所述第一车联网终端的终端标识和服务标识、以及所述第二车联网终端的终端标识和服务标识;所述查找模块,设置为根据所述第三接收模块接收的密钥请求中所述第二车联网终端的终端标识和/或服务标识,验证所述第二车联网终端是否已注册,并在验证所述第二车联网终端已注册通知所述查找模块;所述查找模块,设置为在收到所述验证模块的通知后,根据所述第三接收模块接收的密钥请求中所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的V2X通信密钥并返回给所述第二车联网终端;所述第三发送模块,还设置为将所述查找模块查找到的、所述第一车联网终端的V2X通信密钥返回给所述第二车联网终端。
- 根据权利要求17所述的第三装置,其中,还包括:第三删除模块;所述第三接收模块,还设置为接收来自所述第一车联网终端的注销请求,所述注销请求包括所述第一车联网终端的终端标识和服务标识;所述查找模块,还设置为根据所述第三接收模块接收的注销请求中所述第一车联网终端的终端标识和/或服务标识,查找所述第一车联网终端的注册信息,所述注册信息包括所述第一车联网终端的终端标识、服务标识和V2X通信密钥;第三删除模块,设置为根据所述第三接收模块接收的注销请求,将所述查找模块查找到的注册信息删除;所述第三发送模块,还设置为在所述第三删除模块将所述第一车联网终端的注册信息删除后,向所述第一车联网终端返回注销完成消息。
- 一种设置为车联网终端之间安全通信的第一装置,部署在第一车联网终端上,包括:第一发送模块,设置为向V2X服务平台发送注册请求,所述注册请求包括第一车联网终端的终端标识和服务标识;第一接收模块,设置为接收所述V2X服务平台返回的V2X通信密钥;第一存储模块,设置为将所述V2X通信密钥保存;所述V2X通信密钥用于所述第一车联网终端与其他车联网终端之间通信。
- 根据权利要求19所述的第一装置,其中,所述第一发送模块,还设置为发出第一消息,所述第一消息使用所述V2X通信密钥加密。
- 根据权利要求19所述的第一装置,其中,还包括:第一删除模块;所述第一发送模块,还设置为向所述V2X服务平台发送注销请求,所述注销请求包括第一车联网终端的终端标识和服务标识;所述第一接收模块,还设置为接收所述V2X服务平台返回的注销完成消息,并通知所述第一删除模块;第一删除模块,设置为在收到所述第一接收模块的通知后,将所述V2X通信密钥从所述存储模块中删除。
- 一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现权利要求1至3任一项所述车联网终端之间安全通信的方法。
- 一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现权利要求4至6任一项所述车联网终端之间安全通信的方法。
- 一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现权利要求7至9任一项所述车联网终端之间安全通信的方法。
- 一种计算机可读存储介质,存储有计算机可执行指令,所述计算机可执行指令被处理器执行时实现权利要求10至12任一项所述车联网终端之间安全通信的方法。
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
EP17826813.2A EP3487197B1 (en) | 2016-07-15 | 2017-05-08 | Method and apparatus for secure communication between vehicle-to-everything terminals |
Applications Claiming Priority (2)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610560474.0A CN107623912B (zh) | 2016-07-15 | 2016-07-15 | 一种车联网终端之间安全通信的方法及装置 |
CN201610560474.0 | 2016-07-15 |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2018010474A1 true WO2018010474A1 (zh) | 2018-01-18 |
Family
ID=60951918
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/CN2017/083471 WO2018010474A1 (zh) | 2016-07-15 | 2017-05-08 | 一种车联网终端之间安全通信的方法及装置 |
Country Status (3)
Country | Link |
---|---|
EP (1) | EP3487197B1 (zh) |
CN (1) | CN107623912B (zh) |
WO (1) | WO2018010474A1 (zh) |
Families Citing this family (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN108881176A (zh) * | 2018-05-28 | 2018-11-23 | 惠州市德赛西威汽车电子股份有限公司 | 一种车联网终端之间安全通信的方法 |
CN110545252B (zh) * | 2018-05-29 | 2021-10-22 | 华为技术有限公司 | 一种认证和信息保护的方法、终端、控制功能实体及应用服务器 |
CN108924794A (zh) * | 2018-07-20 | 2018-11-30 | 重庆得润汽车电子研究院有限公司 | 一种车联网终端安全通信的方法及装置 |
CN108961768A (zh) * | 2018-07-30 | 2018-12-07 | 鄂尔多斯市普渡科技有限公司 | 一种无人驾驶警用巡逻车以及巡逻方法 |
DE102018215141A1 (de) * | 2018-09-06 | 2020-03-12 | Continental Teves Ag & Co. Ohg | Verfahren zur Verbesserung des Nutzungsgrades einer Fahrzeug-zu-X Kommunikationsvorrichtung sowie Fahrzeug-zu-X Kommunikationsvorrichtung |
CN110958288A (zh) * | 2018-09-27 | 2020-04-03 | 北京奇虎科技有限公司 | 防闯红灯控制系统及方法 |
DE102019207753A1 (de) * | 2019-05-27 | 2020-12-03 | Robert Bosch Gmbh | Verfahren zum Ansteuern eines Fahrzeugs |
CN113079013B (zh) * | 2019-12-18 | 2023-04-18 | 华为技术有限公司 | 通信方法、终端设备、路侧单元、服务器、系统及介质 |
CN112640502B (zh) * | 2020-03-13 | 2022-03-29 | 华为技术有限公司 | 一种通信方法、装置以及系统 |
WO2022161623A1 (de) * | 2021-01-29 | 2022-08-04 | Asvin Gmbh | Verfahren zur kommunikation zwischen elektronischen geräten und system zur kommunikation zwischen elektronischen geräten |
CN114125764B (zh) * | 2021-04-23 | 2022-07-26 | 大唐移动通信设备有限公司 | 一种车联网设备管理系统、方法及装置 |
CN114125765B (zh) * | 2021-04-23 | 2022-07-29 | 大唐移动通信设备有限公司 | 一种车联网设备管理系统、方法及装置 |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101848425A (zh) * | 2010-04-23 | 2010-09-29 | 深圳市戴文科技有限公司 | Ptt数据处理方法、终端、ptt服务器及ptt系统 |
CN104537313A (zh) * | 2014-12-04 | 2015-04-22 | 苏州阔地网络科技有限公司 | 一种数据保护方法、终端和服务器 |
CN104683304A (zh) * | 2013-11-29 | 2015-06-03 | 中国移动通信集团公司 | 一种保密通信业务的处理方法、设备和系统 |
Family Cites Families (2)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
KR20160038091A (ko) * | 2014-09-24 | 2016-04-07 | 현대자동차주식회사 | V2x 통신을 위한 csr 인증서 발급 방법 및 시스템 |
CN104363586B (zh) * | 2014-11-14 | 2017-11-17 | 安徽大学 | 一种车联网中轻量级的漫游接入认证方法 |
-
2016
- 2016-07-15 CN CN201610560474.0A patent/CN107623912B/zh active Active
-
2017
- 2017-05-08 WO PCT/CN2017/083471 patent/WO2018010474A1/zh unknown
- 2017-05-08 EP EP17826813.2A patent/EP3487197B1/en active Active
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101848425A (zh) * | 2010-04-23 | 2010-09-29 | 深圳市戴文科技有限公司 | Ptt数据处理方法、终端、ptt服务器及ptt系统 |
CN104683304A (zh) * | 2013-11-29 | 2015-06-03 | 中国移动通信集团公司 | 一种保密通信业务的处理方法、设备和系统 |
CN104537313A (zh) * | 2014-12-04 | 2015-04-22 | 苏州阔地网络科技有限公司 | 一种数据保护方法、终端和服务器 |
Also Published As
Publication number | Publication date |
---|---|
EP3487197B1 (en) | 2023-10-04 |
CN107623912B (zh) | 2020-12-11 |
EP3487197A1 (en) | 2019-05-22 |
EP3487197A4 (en) | 2019-06-26 |
CN107623912A (zh) | 2018-01-23 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2018010474A1 (zh) | 一种车联网终端之间安全通信的方法及装置 | |
CN111684760B (zh) | 用于管理数字证书的密码方法和系统 | |
CN111149324B (zh) | 用于管理具有链接值的数字证书的密码学方法和系统 | |
CN111684764B (zh) | 使用盲激活码进行数字证书撤销的密码方法和系统 | |
WO2017101310A1 (zh) | 一种车辆远程控制方法、装置及系统 | |
US11895250B2 (en) | Cryptographic methods and systems using activation codes for digital certificate revocation | |
JP5435513B2 (ja) | 暗号通信システム、鍵配布装置、暗号通信方法 | |
JP5587239B2 (ja) | 車車/路車間通信システム | |
US20110191581A1 (en) | Method and system for use in managing vehicle digital certificates | |
US10326743B2 (en) | Secured data transmission using identity-based cryptography | |
KR101829304B1 (ko) | 차량 클라우드에서의 통신 보안 기법 | |
JP2018509850A5 (zh) | ||
JP3920583B2 (ja) | 通信セキュリティ保持方法及びその実施装置並びにその処理プログラム | |
CN109756336B (zh) | 一种认证方法、v2x计算系统及v2x计算节点 | |
JP2017091360A (ja) | データ配布装置、通信システム、移動体およびデータ配布方法 | |
CN108076016B (zh) | 车载设备之间的认证方法及装置 | |
JPWO2019038800A1 (ja) | 鍵管理装置および通信機器 | |
CN114095919A (zh) | 一种基于车联网的证书授权处理方法及相关设备 | |
CN112640504B (zh) | 一种安全通信的方法及装置 | |
CN116828451A (zh) | 基于区块链的网联车队身份认证方法、装置和介质 | |
Liu et al. | A Fast VANET‐Assisted Scheme for Event Data Recorders | |
Tao et al. | Security certificate management system for V2V communication in China | |
CN110858835B (zh) | 通信方法、系统和相关设备以及计算机可读存储介质 | |
CN115706929A (zh) | 一种车路信息交互方法、系统及相关设备 | |
JP4540681B2 (ja) | 通信セキュリティ保持方法及びその実施装置並びにその処理プログラム |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
121 | Ep: the epo has been informed by wipo that ep was designated in this application |
Ref document number: 17826813 Country of ref document: EP Kind code of ref document: A1 |
|
NENP | Non-entry into the national phase |
Ref country code: DE |
|
ENP | Entry into the national phase |
Ref document number: 2017826813 Country of ref document: EP Effective date: 20190215 |