WO2020230934A1 - Procédé et système d'authentification de commande de véhicule d'autopartage basé sur un totp - Google Patents

Procédé et système d'authentification de commande de véhicule d'autopartage basé sur un totp Download PDF

Info

Publication number
WO2020230934A1
WO2020230934A1 PCT/KR2019/005909 KR2019005909W WO2020230934A1 WO 2020230934 A1 WO2020230934 A1 WO 2020230934A1 KR 2019005909 W KR2019005909 W KR 2019005909W WO 2020230934 A1 WO2020230934 A1 WO 2020230934A1
Authority
WO
WIPO (PCT)
Prior art keywords
totp
value
vehicle control
user terminal
time
Prior art date
Application number
PCT/KR2019/005909
Other languages
English (en)
Korean (ko)
Inventor
정성일
우혁준
이상민
Original Assignee
(주)디지파츠
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by (주)디지파츠 filed Critical (주)디지파츠
Publication of WO2020230934A1 publication Critical patent/WO2020230934A1/fr

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q50/00Information and communication technology [ICT] specially adapted for implementation of business processes of specific business sectors, e.g. utilities or tourism
    • G06Q50/40Business processes related to the transportation industry
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Definitions

  • the present invention relates to a car-sharing vehicle control authentication method and system for authenticating a car-sharing user, and in detail, a time-based one-time password generation algorithm (TOTP: Time-Based One-) for authentication of a car-sharing user.
  • TOTP Time-Based One-
  • Time Password Algorithm Time Password Algorithm
  • Car-sharing is a kind of rental car service in which a fixed number of cars are rented for as long as necessary for an unspecified number of cars.
  • the biggest difference from a general rental car from the perspective of users is that they do not face the vehicle owner or car sharing service provider, but use a smartphone app. This means that you can reserve a vehicle to use and use the vehicle by opening the vehicle door with a smartphone and starting the vehicle without a key.
  • the vehicle control device can receive a control message through remote SMS or through a connected Transmission Control Protocol/Internet Protocol (TCP/IP) Channel.
  • TCP/IP Transmission Control Protocol/Internet Protocol
  • Control through the vehicle control device is performed through communication with a designated remote server, which means that it must always be in an area where wireless communication is possible, and there is a problem that control is not normally performed in an area where wireless signals are weak.
  • a radio frequency identification (RFID) card can be issued and used for offline authentication.
  • the existing Connected-oriented or SMS (Short message service) control, RFID method may have the following problems.
  • the present invention has been conceived to solve the above problems, and the technical problem to be solved by the present invention is that the user terminal and the vehicle control device use the same key value to generate TOTP (Time-based One We intend to provide a TOTP-based car sharing vehicle control authentication method that mutually authenticates the value of -time Password).
  • a TOTP-based car sharing vehicle control authentication system comprising a user terminal that generates TOTP and displays it to the user, and a vehicle control device that decodes, compares and authenticates the generated TOTP value, and controls the vehicle.
  • a car sharing vehicle control authentication system based on a Time-based One-time Password (TOTP) includes: a communication unit for communicating with a car sharing service network server; A TOTP generation-only app that reserves a car-sharing vehicle through the communication unit, combines the reservation number Key value received from the network server and a time value corresponding to the time point received, and then hashes to generate a TOTP value; A display unit for displaying the generated TOTP value; And a user terminal configured with a short-range communication unit for transmitting the generated TOTP value to an external device.
  • TOTP Time-based One-time Password
  • a keypad for inputting a TOTP value displayed on the display unit of the user terminal or a short-range communication unit for receiving a TOTP value from the user terminal through short-range communication.
  • a communication unit for receiving a key value of a user's car sharing reservation number by communicating with the car sharing service network server;
  • An internal TOTP generator for generating a TOTP value by combining the received reservation number Key value and a time value corresponding to a time point at which the key value is received, and hashing;
  • a comparison unit comparing a TOTP value input through the keypad or a short-range communication unit with a value generated by the internal TOTP generation unit;
  • a vehicle control device including a controller configured to control the vehicle by authenticating a user of the user terminal as a useful car sharing service user if the comparison result value is within a valid range in the comparison unit.
  • a SHA-1 (Secure Hash Algorithm-1) cryptographic hash function algorithm may be used for hashing in the TOTP generation exclusive app of the user terminal and the internal TOTP generation unit of the vehicle control device.
  • the use of a keypad for inputting the TOTP value or a short-range communication unit for receiving a TOTP value from the user terminal may be selected by the user.
  • the user terminal and the vehicle control device do not separately receive a reservation number key value from a network server, and a unique number assigned to a vehicle such as VID (Vehicle ID) or MDN (Mobile Directory Number) of the reserved vehicle Can be used as a value to generate the TOTP value.
  • VID Vehicle ID
  • MDN Mobile Directory Number
  • a time window size for the time value is set in the comparison unit of the vehicle control device.
  • the effective range of the TOTP value can be adjusted.
  • the communication unit provides a data movement path between a user terminal, a car sharing network server, and a vehicle control device, and through a wired/wireless network such as a wide area network (WAN), a mobile communication network, an LTE network, etc. Can communicate.
  • a wired/wireless network such as a wide area network (WAN), a mobile communication network, an LTE network, etc. Can communicate.
  • the short-range communication unit may communicate through a communication network such as Wi-Fi, Bluetooth, Zig-bee, and wired cable.
  • a communication network such as Wi-Fi, Bluetooth, Zig-bee, and wired cable.
  • a TOTP-based car sharing vehicle control authentication method includes: performing a reservation of a car sharing vehicle through a car sharing service network server in a user terminal; Receiving a reservation number key value from a car sharing service network server as a result of performing the reservation; Transmitting, by the car sharing service network server, the reservation number key value to a vehicle control device at the same time; Generating a TOTP value by hashing a value obtained by combining the received reservation number Key value and a time value corresponding to the received time point in the TOTP generation dedicated app of the user terminal; Displaying the generated TOTP value on a display unit of a user terminal; Inputting the TOTP value displayed on the display unit of the user terminal on the keypad of the vehicle control apparatus on the keypad of the vehicle control apparatus or receiving a TOTP value from the user terminal through a short-range communication unit according to the user's selection; Generating a TOTP value in an internal TOTP generator by hashing a value obtained by combining
  • a SHA-1 (Secure Hash Algorithm-1) cryptographic hash function algorithm may be used for hashing in the TOTP generation exclusive app of the user terminal and the internal TOTP generation unit of the vehicle control device.
  • a time window size for the time value is set in the comparison unit of the vehicle control device.
  • the effective range of the TOTP value can be adjusted.
  • a TOTP-based car sharing vehicle control authentication method includes: performing a car sharing vehicle reservation through a car sharing service network server in a user terminal; Receiving a reservation number key value from a car sharing service network server as a result of performing the reservation; Generating a TOTP value by hashing a value obtained by combining the VID or MDN value of the vehicle and a time value corresponding to the time point at which the value is input in the TOTP generation exclusive app of the user terminal; Displaying the generated TOTP value on a display unit of a user terminal; Inputting the TOTP value displayed on the display unit of the user terminal on the keypad of the vehicle control apparatus on the keypad of the vehicle control apparatus or receiving a TOTP value from the user terminal through a short-range communication unit according to the user's selection; Generating a TOTP value in an internal TOTP generator by hashing a value obtained by combining a VID or MDN value in an internal TOTP generator of the vehicle control device and a
  • the vehicle control device requests time information from a user terminal to receive time information, and It may further include the step of generating a TOTP value in the internal TOTP generator by inputting the VID or MDN to the TOTP generator and hashing a value obtained by combining the time values received from the user terminal.
  • the effect of the present invention is first, since data communication with a separate server is not required to generate the TOTP value for authentication of the present invention, the control speed is fast and power saving is possible.
  • FIG. 1 is a schematic configuration diagram of a TOTP-based car sharing vehicle control authentication system according to an embodiment of the present invention.
  • FIG. 2 is an internal configuration diagram of a user terminal of a TOTP-based car sharing vehicle control authentication system.
  • FIG. 3 is an internal configuration diagram of a vehicle control device of a TOTP-based car sharing vehicle control authentication system.
  • FIG. 1 is a schematic configuration diagram of a TOTP-based car sharing vehicle control authentication system according to an embodiment of the present invention.
  • the TOTP-based car-sharing vehicle control authentication system 1 is a user terminal 10 installed with a dedicated app for car-sharing service application and user authentication, and communication with the user terminal is possible. It may be composed of a car sharing service network server 20 that provides a reservation number and vehicle information for a sharing service application, and a vehicle control device 30 for authentication of a car sharing service user and control of a vehicle internal device.
  • the user terminal 10 can reserve a car sharing service through a communication network with the car sharing service network server 20.
  • the car-sharing service network server 20 may transmit vehicle information for a car-sharing service reservation received through the user terminal and a reservation number key value to the user terminal 20.
  • the vehicle control device 30 may receive a key value for a reservation number for a car sharing service requested by the user terminal 10 through the car sharing service network server 20 and a communication network.
  • the communication network provides a data movement path between the user terminal 10, the car sharing service network server 20, and the vehicle control device 30, and in detail, a wired/wireless network such as a wide area network (WAN), It can be composed of mobile communication network, LTE, etc.
  • WAN wide area network
  • the user terminal 10 and the vehicle control device 30 can communicate with each other through a local area network.
  • the local area network may be composed of Wi-Fi, Bluetooth, Zig-bee, wired cable, and the like.
  • FIG. 2 is a block diagram of a user terminal 10 of a TOTP-based car sharing vehicle control authentication system for a car sharing service.
  • the user terminal 10 includes a communication unit 11 for communicating with the car sharing service network server 20 to reserve a car sharing vehicle.
  • the communication unit may communicate through a wired or wireless network such as a wide area network (WAN), a mobile communication network, or an LTE network.
  • a wired or wireless network such as a wide area network (WAN), a mobile communication network, or an LTE network.
  • the car-sharing service network server 20 may receive a reservation number key value received while making a reservation for a car-sharing vehicle.
  • the user terminal 10 hashes the combined value by combining the received reservation number Key value and the received time value using a cryptographic hash function algorithm such as SHA-1 (Secure Hash Algorithm-1). It includes a dedicated app 13 that generates TOTP values.
  • SHA-1 Secure Hash Algorithm-1
  • the exclusive app 13 of the user terminal 10 generating the TOTP value does not separately receive the reservation number key value from the network server, and the reserved vehicle's VID (Vehicle ID) or MDN (Mobile Directory) Number) can be used as a value to generate a TOTP value by using a unique number assigned to the vehicle.
  • VID Vehicle ID
  • MDN Mobile Directory
  • VID Vehicle ID
  • MDN Mobile Directory Number
  • any one of the reservation number key value, VID, or MDN and the received or input time values are combined.
  • the combined value is hashed using a cryptographic hash function algorithm such as SHA-1 (Secure Hash Algorithm-1) to generate a TOTP value.
  • SHA-1 Secure Hash Algorithm-1
  • the TOTP value is an authentication value used for vehicle control device 30 and carsharing user authentication, and is not separately received from the carsharing service network server 20, but a reservation number key value, VIN or MDN in the user terminal 10. It is to be created by itself in real-time by using etc.
  • the reliability of security may be higher than when user authentication is performed using a simple combination with the existing PIN code method.
  • the finally generated TOTP value may be displayed on the display unit 14 of the user terminal 10.
  • it may be configured with a short-range communication unit 12 for transmitting the generated TOTP value to an external device.
  • the short-range communication unit 12 may communicate through a communication network such as Wi-Fi, Bluetooth, Zig-bee, and a wired cable network.
  • a communication network such as Wi-Fi, Bluetooth, Zig-bee, and a wired cable network.
  • FIG. 3 is a block diagram of a vehicle control device 30 of a TOTP-based car sharing vehicle control authentication system 1 for a car sharing service.
  • the vehicle control device is provided with a keypad 33 to input the TOTP value displayed on the display unit 14 of the user terminal 10.
  • the vehicle control device 30 is provided with a short-range communication unit 32 to receive the generated TOTP value through the short-range communication unit 12 of the user terminal 10.
  • the short-range communication unit 32 may communicate through a communication network such as Wi-Fi, Bluetooth, Zig-bee, and a wired cable network.
  • a communication network such as Wi-Fi, Bluetooth, Zig-bee, and a wired cable network.
  • the method of receiving the TOTP value generated by the user terminal using the keypad 33 or the short-range communication unit 32 can be selected as a user option.
  • the vehicle control device 30 includes a communication unit 31 to communicate with the car sharing service network server 20 to receive a key value of the car sharing vehicle reservation number.
  • the communication unit 31 is capable of communicating through a wired/wireless network such as a wide area network (WAN), a mobile communication network, and an LTE network.
  • a wired/wireless network such as a wide area network (WAN), a mobile communication network, and an LTE network.
  • a reservation number Key value generated while a user makes a reservation for a car sharing vehicle may be received from the car sharing service network server.
  • the vehicle control device 30 includes an internal TOTP generator 34 that combines the received reservation number Key value and the received time value and hash the combined value to generate a TOTP value.
  • the internal TOTP generation unit 34 that generates the TOTP value does not separately receive the reservation number key value from the network server 20, but the VID (Vehicle ID) or MDN (Mobile Directory Number) of the reserved vehicle ), it can be used as a value to generate the TOTP value by using the unique number assigned to the vehicle.
  • VID Vehicle ID
  • MDN Mobile Directory Number
  • VID Vehicle ID
  • MDN Mobile Directory Number
  • the internal TOTP generation unit 24 combines the reservation number key value, VID, or MDN value with the received or input time value.
  • the combined value is hashed using a cryptographic hash function algorithm such as SHA-1 (Secure Hash Algorithm-1) to generate a TOTP value.
  • SHA-1 Secure Hash Algorithm-1
  • the generated TOTP value is an authentication value used for authentication of the vehicle control device 30 and the car sharing user, and is not separately received from the car sharing service network server 20, but a reservation number key value in the vehicle control device 30, It is to be created by itself in real time by using VIN or MDN.
  • the reliability of security may be higher than when user authentication is performed using a simple combination with the existing PIN code method.
  • the comparison unit 35 of the vehicle control device 30 compares the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 24.
  • a difference from the value generated by the TOTP generation unit 34 in the vehicle control device 30 may occur due to a time difference from the time when the user terminal 10 generated the TOTP.
  • the allowable time range can be set. For example, an allowable time range may be set in the comparison unit 35 in units of 10 seconds, units of 1 minute, and units of 10 minutes.
  • a result of comparing the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 34 is If within the useful range, the user of the user terminal can be authenticated as a useful carsharing service user.
  • control unit 36 of the vehicle control device 30 is allowed to control various internal devices of the vehicle.
  • the vehicle control device 30 During the TOTP-based car sharing vehicle control authentication process, if the internal clock of the vehicle control device 30 (RTC: Real Time Clock) is reset, the vehicle control device 30 to the user terminal 10 Time information is requested, the corresponding time information is transmitted, and based on this, the time value and the reservation number key value transmitted from the user terminal 10 to the internal TOTP generation unit 34 of the vehicle control device 30, VID or MDN.
  • RTC Real Time Clock
  • 4(a) is a flowchart of a case of using a key value of a car-sharing service reservation number for TOTP-based car-sharing vehicle control authentication.
  • the user terminal 10 reserves a car sharing vehicle through the car sharing service network server 20 (S40). As a result of performing the reservation, a reservation number key value is received from the car sharing service network server 20 (S41).
  • the car sharing service network server 20 simultaneously transmits the reservation number key value to the vehicle control device 30 (S42).
  • a value obtained by combining the received reservation number Key value and the time value corresponding to the received time is a cryptographic hash function algorithm such as SHA-1 (Secure Hash Algorithm-1).
  • the TOTP value is generated by hashing by using (S43).
  • the generated TOTP value is displayed on the display unit 14 of the user terminal 10 (S44).
  • the TOTP value displayed on the display unit 14 of the user terminal 10 on the keypad of the vehicle control device 30 is input to the keypad 33 of the vehicle control device 30 or the user
  • the TOTP value is inputted from the terminal through the short-range communication unit 32 (S45).
  • the TOTP value is generated by the internal TOTP generator 34 by hashing a value obtained by combining the key value of the reservation information stored and stored from the car sharing service network server and a time value corresponding to the received point in time (S46).
  • the comparison unit 25 of the vehicle control device 20 compares the TOTP value input through the keypad 23 or the short-range communication unit 22 with the value generated by the internal TOTP generation unit 24 ( S47).
  • a difference from the value generated by the TOTP generation unit 24 in the vehicle control device 20 may occur due to a time difference from the time when the user terminal 10 generated the TOTP.
  • the allowable time range can be set. For example, an allowable time range may be set in the comparison unit 25 in units of 10 seconds, units of 1 minute, and units of 10 minutes.
  • a result of comparing the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 34 is If within the valid range, the user of the user terminal is authenticated as a useful carsharing service user.
  • control unit 36 of the vehicle control device is allowed to control various internal devices of the vehicle (S48).
  • 4(b) is a flowchart of a case of using a vehicle VID or MDN for TOTP-based car sharing vehicle control authentication.
  • the user terminal 10 communicates with the car sharing service network server 20 using the communication unit 11 to reserve a car sharing vehicle (S50). As a result of performing the reservation, the reservation number key value is received from the car sharing service network server 20 (S51).
  • a value obtained by combining the VID or MDN of the vehicle and a time value corresponding to the time point at which the VID or MDN is input is a password such as SHA-1 (Secure Hash Algorithm-1).
  • the TOTP value is generated by hashing using the school hash function algorithm (S52).
  • the generated TOTP value is displayed on the display unit 14 of the user terminal 10 (S53).
  • the TOTP value displayed on the display unit 14 of the user terminal 10 on the keypad of the vehicle control device 30 is input to the keypad 33 of the vehicle control device 30 or the user
  • the TOTP value is inputted from the terminal through the short-range communication unit 32 (S54).
  • VID or MDN is input to the internal TOTP generation unit of the vehicle control device, and a value obtained by combining the time value corresponding to the time point at which the value is input is hashed to generate a TOTP value in the internal TOTP generation unit 34 (S55). .
  • the comparison unit 25 of the vehicle control device 20 compares the TOTP value input through the keypad 23 or the short-range communication unit 22 with the value generated by the internal TOTP generator 24 (S56). ).
  • a difference from the value generated by the TOTP generation unit 24 in the vehicle control device 20 may occur due to a time difference from the time when the user terminal 10 generated the TOTP.
  • the allowable time range can be set. For example, an allowable time range may be set in the comparison unit 25 in units of 10 seconds, units of 1 minute, and units of 10 minutes.
  • a result of comparing the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 34 is If it is within the valid range, the user terminal user is authenticated as a useful carsharing user.
  • the controller 36 of the vehicle control device is allowed to control various internal devices of the vehicle (S57).
  • the vehicle control device 30 In order for the vehicle control device 30 to generate a TOTP value for authentication, a separate data communication with the car-sharing service network server 20 is not required, so the control speed is fast and power saving is possible.
  • FIG. 4(c) is a flow chart showing a countermeasure for an abnormal case in which the internal clock (RTC: Real Time Clock) of the vehicle control device 30 is reset in the TOTP-based car sharing vehicle control authentication process. (Example limited to the case of using the vehicle's VID or MDN).
  • RTC Real Time Clock
  • the user terminal 10 uses the communication unit 11 to reserve a car sharing vehicle through communication with the car sharing service network server 20 (S60). As a result of performing the reservation, the reservation number key value is received from the car sharing service network server 20 (S61).
  • a value obtained by combining the VID or MDN of the vehicle and a time value corresponding to the time point at which the VID or MDN is input is a password such as SHA-1 (Secure Hash Algorithm-1).
  • the TOTP value is generated by hashing using the hash function algorithm (S62).
  • the generated TOTP value is displayed on the display unit 14 of the user terminal 10 (S63).
  • the TOTP value displayed on the display unit 14 of the user terminal 10 on the keypad of the vehicle control device 30 is input to the keypad 33 of the vehicle control device 30 or the user
  • the TOTP value is inputted from the terminal through the short-range communication unit 32 (S64).
  • the vehicle control device 30 transmits a time information request message to the user terminal 10 (S65).
  • the comparison unit 35 of the vehicle control device 30 compares the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 34 (S68). ).
  • the allowable time range can be set.
  • an allowable time range may be set in the comparison unit 25 in units of 10 seconds, units of 1 minute, and units of 10 minutes.
  • a result of comparing the TOTP value input through the keypad 33 or the short-range communication unit 32 with the value generated by the internal TOTP generation unit 34 is If within the valid range, the user of the user terminal is authenticated as a useful carsharing service user.
  • control unit 36 of the vehicle control device 30 is allowed to control various internal devices of the vehicle (S69).

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Business, Economics & Management (AREA)
  • Health & Medical Sciences (AREA)
  • Economics (AREA)
  • General Health & Medical Sciences (AREA)
  • Human Resources & Organizations (AREA)
  • Marketing (AREA)
  • Primary Health Care (AREA)
  • Strategic Management (AREA)
  • Tourism & Hospitality (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Telephonic Communication Services (AREA)
  • Lock And Its Accessories (AREA)

Abstract

La présente invention concerne un système d'authentification de commande de véhicule d'autopartage basé sur un TOTP pouvant comprendre : un terminal d'utilisateur comprenant une unité de communication, permettant de communiquer avec un serveur de réseau de service d'autopartage; une application exclusive de production de TOTP, permettant de réserver un véhicule d'autopartage par l'intermédiaire de l'unité de communication, de combiner une valeur de clé de numéro de réservation, reçue en provenance du serveur de réseau et une valeur de temps, correspondant à un instant reçu, puis de hacher le résultat de combinaison, de façon à générer une valeur finale de TOTP; une unité d'affichage, permettant d'afficher la valeur générée de TOTP; et une unité de communication à courte portée, permettant de transmettre la valeur générée de TOTP à un dispositif externe. Le système d'authentification comporte aussi un dispositif de commande de véhicule comprenant un clavier, par lequel peut être entrée la valeur de TOTP affichée sur l'unité d'affichage du terminal d'utilisateur ou une unité de communication à courte portée, susceptible de recevoir l'entrée de la valeur de TOTP en provenance du terminal d'utilisateur par l'intermédiaire d'une communication à courte portée; une unité de communication, permettant de communiquer avec le serveur de réseau de service d'autopartage pour recevoir une valeur de clé de numéro de réservation d'autopartage; une unité de production de TOTP interne, permettant de combiner la valeur reçue de clé de numéro de réservation et une valeur de temps correspondant à un instant où la valeur de clé a été reçue, puis de hacher le résultat de combinaison, de façon à générer une valeur de TOTP; une unité de comparaison, permettant de comparer la valeur de TOTP entrée par l'intermédiaire du clavier ou de l'unité de communication à courte portée à la valeur générée par l'unité de production de TOTP interne; et une unité de commande, permettant de commander un véhicule par authentification de l'utilisateur du terminal d'utilisateur en tant qu'utilisateur disponible de service d'autopartage lorsque la valeur de résultat de comparaison appartient à une plage valide dans l'unité de comparaison.
PCT/KR2019/005909 2019-05-15 2019-05-17 Procédé et système d'authentification de commande de véhicule d'autopartage basé sur un totp WO2020230934A1 (fr)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2019-0057193 2019-05-15
KR20190057193 2019-05-15

Publications (1)

Publication Number Publication Date
WO2020230934A1 true WO2020230934A1 (fr) 2020-11-19

Family

ID=73289200

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2019/005909 WO2020230934A1 (fr) 2019-05-15 2019-05-17 Procédé et système d'authentification de commande de véhicule d'autopartage basé sur un totp

Country Status (1)

Country Link
WO (1) WO2020230934A1 (fr)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002342878A (ja) * 2001-05-11 2002-11-29 Honda Motor Co Ltd カーシェアリング管理システム
KR20140131201A (ko) * 2013-05-03 2014-11-12 주식회사 티비허브 Otp 생성기능을 구비한 스마트카드 및 otp 인증서버
KR20160007153A (ko) * 2014-07-11 2016-01-20 중소기업은행 보안이 강화된 일회용 비밀번호를 이용한 금융거래시스템 및 방법
KR20190032035A (ko) * 2017-09-19 2019-03-27 주식회사 베스티언 Qr 코드와 otp 정보를 이용한 차량 시동 인증 시스템 및 그 방법

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002342878A (ja) * 2001-05-11 2002-11-29 Honda Motor Co Ltd カーシェアリング管理システム
KR20140131201A (ko) * 2013-05-03 2014-11-12 주식회사 티비허브 Otp 생성기능을 구비한 스마트카드 및 otp 인증서버
KR20160007153A (ko) * 2014-07-11 2016-01-20 중소기업은행 보안이 강화된 일회용 비밀번호를 이용한 금융거래시스템 및 방법
KR20190032035A (ko) * 2017-09-19 2019-03-27 주식회사 베스티언 Qr 코드와 otp 정보를 이용한 차량 시동 인증 시스템 및 그 방법

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
MENEZES A J, VAN OORSCHOT P C, VANSTONE S A: "Handbook of Applied Cryptography", 1 October 1996, CRC PRESS, Boca Raton , FL , US, ISBN: 978-0-8493-8523-0, article MENEZES A J, VAN OORSCHOT P C, VANSTONE S A: "Handbook of Applied Cryptography", pages: 1 - 48, XP002494672 *

Similar Documents

Publication Publication Date Title
WO2017222169A1 (fr) Procédé d'approbation de paiement effectué à l'aide d'une carte à puce, serveur de société à carte l'exécutant et carte à puce
US7657248B2 (en) Wireless LAN system, wireless LAN access point, wireless LAN terminal and activation control method for use therewith
WO2015119417A1 (fr) Dispositif de clé électronique pouvant commander sans fil un système de verrouillage et transmettre une authentification de commande du système de verrouillage, système et procédé associés
WO2011090273A2 (fr) Système et procédé de gestion de véhicule par l'intermédiaire du relais de communication sans fil d'une unité de commande à distance de vehicule
WO2011014043A2 (fr) Procédé et appareil de création de contexte de sécurité et de gestion de communication dans un réseau de communication mobile
WO2013005947A2 (fr) Appareil, procédé et système pour créer et mettre à jour une clé de chiffrement de données de multidiffusion dans un système de communication machine-machine
JPWO2005101727A1 (ja) 通信装置、通信システム及び認証方法
WO2015072788A1 (fr) Procédé et appareil de gestion de clé de sécurité dans un système de communication d2d en champ proche
WO2012093900A2 (fr) Procédé et dispositif pour authentifier une entité de réseau personnel
WO2018151480A1 (fr) Procédé et système de gestion d'authentification
WO2019221419A1 (fr) Module de sécurité matérielle
KR101138924B1 (ko) 도어락 제어 방법 및 시스템
WO2024071615A1 (fr) Procédé et appareil d'autorisation d'utilisateur
WO2015030512A1 (fr) Équipement terminal, procédé de protection pour celui-ci et serveur de gestion du terminal
WO2022203328A1 (fr) Dispositif de verrouillage intelligent, système de gestion de verrouillage comprenant ce dispositif et procédé de gestion de verrouillage utilisant ce système
CN101425909B (zh) 一种实现wapi系统终端零干预计费的方法
WO2020230934A1 (fr) Procédé et système d'authentification de commande de véhicule d'autopartage basé sur un totp
CN207909230U (zh) 一种基于物联网公共服务平台的门禁系统及设备
EP4169278A1 (fr) Procédés et systèmes pour identifier une ausf et accéder à des clés associées dans un service prose 5g
CN101540985B (zh) 一种实现wapi系统终端零干预计费的方法
WO2022145966A1 (fr) Système de contrôle d'accès utilisant une infrastructure à clé publique
WO2019017525A1 (fr) Serveur et système d'authentification d'utilisateur
WO2021132914A2 (fr) Système d'authentification de l'utilisateur d'une installation et procédé de commande associé
JP2007102731A (ja) 連携制御装置及びネットワーク管理システム
WO2022059906A1 (fr) Procédé d'authentification mutuelle et dispositif d'authentification de mise en œuvre du procédé

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 19928323

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

32PN Ep: public notification in the ep bulletin as address of the adressee cannot be established

Free format text: NOTING OF LOSS OF RIGHTS PURSUANT TO RULE 112(1) EPC (EPO FORM 1205A DATED 19/04/2022)

122 Ep: pct application non-entry in european phase

Ref document number: 19928323

Country of ref document: EP

Kind code of ref document: A1