CN112396712A - ETC electronic tag secondary issuing method, system and storage medium - Google Patents
ETC electronic tag secondary issuing method, system and storage medium Download PDFInfo
- Publication number
- CN112396712A CN112396712A CN202011338968.7A CN202011338968A CN112396712A CN 112396712 A CN112396712 A CN 112396712A CN 202011338968 A CN202011338968 A CN 202011338968A CN 112396712 A CN112396712 A CN 112396712A
- Authority
- CN
- China
- Prior art keywords
- electronic tag
- issuing
- etc electronic
- information
- encryption
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07B—TICKET-ISSUING APPARATUS; FARE-REGISTERING APPARATUS; FRANKING APPARATUS
- G07B15/00—Arrangements or apparatus for collecting fares, tolls or entrance fees at one or more control points
- G07B15/06—Arrangements for road pricing or congestion charging of vehicles or vehicle users, e.g. automatic toll systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K17/00—Methods or arrangements for effecting co-operative working between equipments covered by two or more of main groups G06K1/00 - G06K15/00, e.g. automatic card files incorporating conveying and reading operations
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3263—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/84—Vehicles
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Business, Economics & Management (AREA)
- Finance (AREA)
- Theoretical Computer Science (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a secondary issuing method, a secondary issuing system and a storage medium of an ETC electronic tag, wherein the method comprises the following steps: the server sends a first encryption and decryption certificate to the issuing equipment; the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem; the vehicle-mounted bus subsystem sends pre-stored first encryption information to the ETC electronic tag; the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification; and if the verification is passed, the ETC electronic tag writes the issuing information to complete secondary issuing. In the invention, the issuing equipment sends the encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem, and under the condition that the encryption and decryption certificate passes verification, uniform encryption and decryption certificate management is provided for secondary issuing of the ETC electronic tag, so that the safety of secondary issuing of the ETC electronic tag is ensured; in addition, after the ETC electronic tag is issued for the second time, the ETC electronic tag can be communicated with other terminals in a ciphertext mode by using the encryption and decryption certificate.
Description
Technical Field
The invention belongs to the technical field of intelligent transportation, and particularly relates to a secondary issuing method, a secondary issuing system and a storage medium of an ETC electronic tag.
Background
With the increase of traffic flow, Electronic Toll Collection (ETC) systems have come into use in order to alleviate the problem of traffic congestion.
In the current application field of the ETC, the issuance of the ETC user card (i.e., the ETC electronic tag) needs to go through one issuance and two issions. The ETC user card is mainly issued once by writing the relevant information of the user card and the like; the secondary issuance of the ETC user card is mainly to write or modify the personalized information (including vehicle information) of the card.
However, in the conventional ETC electronic tag, the secondary issuing method cannot provide uniform encryption/decryption certificate management in the secondary issuing process. In the issuing process, the communication mode between the issuing device and the ETC electronic tag is plaintext communication, and after the issuing process, the communication mode between the ETC electronic tag and the vehicle-mounted bus is plaintext communication, so that the secondary issuing of the ETC electronic tag and the communication safety after the issuing process cannot be ensured.
Disclosure of Invention
The embodiment of the invention aims to provide an ETC electronic tag secondary issuing method, a system and a storage medium, which can solve the technical problems that the conventional ETC electronic tag secondary issuing method cannot provide uniform encryption and decryption certificate management and further cannot ensure secondary issuing and communication safety after issuing.
In order to solve the technical problem, the invention is realized as follows:
in a first aspect, an embodiment of the present invention provides an ETC electronic tag secondary issuance method, including:
the server sends a first encryption and decryption certificate to the issuing equipment under the condition that the issuing equipment is in a preset state;
the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem;
the vehicle-mounted bus subsystem sends pre-stored first encryption information to the ETC electronic tag;
the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification;
and under the condition that the verification is passed, the ETC electronic tag writes the issuing information, activates the ETC electronic tag and completes secondary issuing.
Optionally, the verifying, by the ETC electronic tag, using the first encryption information and the first encryption/decryption certificate includes:
the issuing equipment transmits issuing information to the ETC electronic tag under the condition that the ETC electronic tag does not store the issuing information;
the ETC electronic tag encrypts the issuing information by using the first encryption and decryption certificate to obtain second encrypted information;
and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
Optionally, the sending, by the issuing device, the issuing information to the ETC electronic tag includes:
the issuing equipment reads first encryption information pre-stored by the vehicle-mounted bus subsystem;
the issuing equipment decrypts the first encrypted information by using a prestored second encryption and decryption certificate to obtain issuing information;
the issuing device sends the issuing information to the ETC electronic tag.
Optionally, the verifying, by the ETC electronic tag, using the first encryption information and the first encryption/decryption certificate further includes:
when the ETC electronic tag stores release information, the ETC electronic tag decrypts the first encrypted information by using the first encryption and decryption certificate to obtain decrypted first encrypted information;
and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag.
Optionally, the method further includes:
the issuing device sends a verification instruction to the server;
the server reads a second encryption/decryption certificate prestored by the issuing equipment according to the verification instruction;
and under the condition that the second encryption/decryption certificate prestored by the issuing equipment is consistent with the encryption/decryption certificate prestored by the server, the server determines that the issuing equipment is in a preset state.
Optionally, before the server sends the first encryption/decryption certificate to the issuing device, the method further includes:
the issuing apparatus transmits an issuing instruction to the server to cause the server to transmit a first encryption/decryption certificate.
In a second aspect, an embodiment of the present invention provides an ETC electronic tag secondary issuing system, including a server, an issuing device, a vehicle-mounted bus subsystem, and an ETC electronic tag;
the server is used for sending a first encryption and decryption certificate to the issuing equipment under the condition that the issuing equipment is in a preset state;
the issuing equipment is used for sending the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem;
the vehicle-mounted bus subsystem is used for sending pre-stored first encryption information to the ETC electronic tag;
the ETC electronic tag is used for verifying by using the first encryption information and the first encryption and decryption certificate;
and if the verification is passed, writing the issue information to complete the secondary issue.
Optionally, the issuing device is further configured to send the issuing information to the ETC electronic tag when the ETC electronic tag does not store the issuing information;
the ETC electronic tag is further used for encrypting the issuing information by using the first encryption and decryption certificate to obtain second encrypted information;
and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
Optionally, the ETC electronic tag is further configured to decrypt the first encrypted information by using the first encryption/decryption certificate under the condition that the ETC electronic tag stores release information, so as to obtain decrypted first encrypted information;
and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag.
In a third aspect, the present invention provides a readable storage medium, on which a program or instructions are stored, which when executed by a processor implement the steps of the method according to the first aspect.
In the embodiment of the invention, under the condition that the issuing equipment is in a preset state, the server sends a first encryption and decryption certificate to the issuing equipment; the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem; the vehicle-mounted bus subsystem sends pre-stored first encryption information to the ETC electronic tag, wherein the first encryption information is encrypted release information; the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification; and if the verification is passed, the ETC electronic tag writes the issuing information and completes secondary issuing information. According to the invention, the communication between the issuing equipment and the ETC electronic tag is realized by utilizing the vehicle-mounted bus subsystem, the issuing equipment sends the first encryption/decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem, and under the condition that the first encryption/decryption certificate is verified, unified first encryption/decryption certificate management is provided for the secondary issuing of the ETC electronic tag and the communication process after the secondary issuing of the ETC electronic tag, so that the communication safety after the secondary issuing of the ETC electronic tag and the issuing is ensured. In addition, after the ETC electronic tag is issued for the second time, the ETC electronic tag can be ensured to communicate with other terminals of the ETC system in a ciphertext mode by using the first encryption and decryption certificate, and the safety of the interaction process is improved.
Drawings
Fig. 1 is a flowchart of an ETC electronic tag secondary issuance method according to an embodiment of the present invention;
fig. 2 is a structural diagram of the ETC electronic tag secondary issuance system according to the embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
The terms first, second and the like in the description and in the claims of the present invention are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that embodiments of the invention may be practiced otherwise than as specifically illustrated and described herein. In addition, "and/or" in the specification and claims means at least one of connected objects, a character "/" generally means that a preceding and succeeding related objects are in an "or" relationship.
The secondary issuing method of the ETC electronic tag provided by the embodiment of the invention is described in detail by specific embodiments and application scenarios thereof with reference to the accompanying drawings.
Referring to fig. 1, fig. 1 is a flowchart of an ETC electronic tag secondary issuing method according to an embodiment of the present invention. The secondary issuing method of the ETC electronic tag provided by the embodiment comprises the following steps:
and S110, under the condition that the issuing equipment is in a preset state, the server sends a first encryption and decryption certificate to the issuing equipment.
The secondary issuing method of the ETC electronic tag in the embodiment is applied to a secondary issuing system of the ETC electronic tag, the secondary issuing system of the ETC electronic tag comprises a server, issuing equipment and the ETC electronic tag, wherein the issuing equipment can be a mobile terminal, the ETC electronic tag can be an ETC user card, and the issuing equipment and the ETC electronic tag are in communication connection through a vehicle-mounted bus subsystem.
Here, it should be clarified that the existing secondary issuing method of the ETC electronic tag mainly includes 2 ways of implementing communication between the issuing device and the ETC electronic tag.
One is a short-range communication method between the issuing device and the ETC electronic tag. This distribution method requires the user to perform a second distribution operation at a fixed distribution site or an installation service site, and professional service personnel.
In another mode, the issuing equipment and the ETC electronic tag are in Bluetooth communication. This issuing method needs to add a bluetooth function to the ETC electronic tag, increasing the cost of the ETC electronic tag.
And the two modes both need to manually acquire the relevant information of the vehicle, including the vehicle type, the license plate, the vehicle logo and the like, so as to ensure that the personalized data written in by the ETC electronic tag in the secondary issuing process is consistent with the actual vehicle corresponding to the ETC electronic tag.
In the embodiment, the communication between the issuing equipment and the ETC electronic tag can be realized by utilizing the vehicle-mounted bus subsystem, and as an optional mode, the vehicle-mounted bus subsystem is set as an OBD bus. And the ETC electronic tag is connected with the issuing equipment by using the existing vehicle-mounted bus subsystem on the vehicle, so that the cost of the ETC electronic tag is reduced, and the reliability of data transmission in the secondary issuing process is further enhanced.
In a further embodiment, the vehicle-mounted bus subsystem provides a bottom layer data link supporting data transmission, which may be a K line, or a CAN line or an ethernet, and in this embodiment, mainly provides a physical layer communication link and a bottom layer data transmission link.
In this embodiment, the issuing device further stores a second encryption/decryption certificate in advance, specifically, in this embodiment, both the first encryption/decryption certificate and the second encryption/decryption certificate may be security certificates, and the security certificate may encrypt or decrypt related information, and the following explains the technical scheme with the first encryption/decryption certificate and the second encryption/decryption certificate being security certificates. The preset state refers to that the second encryption and decryption certificate of the issuing equipment is verified to be legal through the server and is communicated with the ETC electronic tag through the vehicle-mounted bus subsystem.
It should be understood that the server stores the release information corresponding to the vehicle in which the ETC electronic tag is located after the secondary release, and the release information may be understood as personalized information, vehicle information, and the like of the user corresponding to the ETC electronic tag.
The server sends the security certificate to the issuing device in a case where the issuing device is in a preset state.
And S120, the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem.
In this embodiment, after the issuing equipment receives the security certificate, the issuing equipment sends the security certificate to the on-board bus subsystem, and the on-board bus subsystem sends the security certificate to the ETC electronic tag again, and the ETC installs after receiving the security certificate to guarantee the communication safety of secondary issuing process and secondary issuing back ETC electronic tag through installing the security certificate. The OBD bus is a bus system configured by the vehicle, and does not need to manually acquire relevant information of the vehicle, so that the OBD bus is arranged for communication between the issuing equipment and the ETC electronic tag.
And S130, the vehicle-mounted bus subsystem sends the pre-stored first encryption information to the ETC electronic tag.
In this embodiment, the vehicle-mounted bus subsystem stores first encryption information in advance, where the first encryption information may be encrypted issue information, and an optional implementation manner is that the vehicle-mounted bus subsystem generates the first encryption information to the ETC electronic tag; in another optional implementation mode, the ETC electronic tag obtains first encryption information stored in the vehicle-mounted bus subsystem.
And S140, the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification.
And S150, under the condition that the verification is passed, the ETC electronic tag writes the issuing information, activates the ETC electronic tag and completes secondary issuing.
And after the ETC electronic tag obtains the first encryption information, the ETC electronic tag uses the first encryption information and the security certificate to verify, if the verification is passed, the ETC electronic tag shows that the security certificate is legal and usable, the ETC electronic tag writes in the issuing information, activates the ETC electronic tag, and completes secondary issuing.
After the security certificate passes the verification, the issuing equipment synchronously sends issuing information required by secondary issuing to the server for storage, so that the secondary issuing activation process is completed, and the ETC electronic tag starts to work. In the following embodiments, the issued information is exemplified as the vehicle information. Further, in other embodiments, the issued information may further include personalized information, and specifically, the personalized information may be user information, contract signing information, and the like.
In the embodiment of the invention, under the condition that the issuing equipment is in a preset state, the server sends a first encryption and decryption certificate to the issuing equipment; the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem; the vehicle-mounted bus subsystem sends pre-stored first encryption information to the ETC electronic tag, wherein the first encryption information is encrypted release information; the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification; and when the verification is passed, the ETC electronic tag writes the issuing information, activates the ETC electronic tag and completes secondary issuing information. In this embodiment, under the condition that the first encryption/decryption certificate is verified, unified encryption/decryption certificate management is provided for secondary issuance of the ETC electronic tag, and the security of the secondary issuance of the ETC electronic tag is ensured. In addition, after ETC electronic tags secondary issue, because install the encryption and decryption certificate, guarantee all communicate with the ciphertext among the communication process, the ETC electronic tags of being convenient for can use other terminals of encryption and decryption certificate and ETC system to communicate with the mode of ciphertext, improve interactive process's data security.
Further, the verifying, by the ETC electronic tag, using the first encryption information and the first encryption/decryption certificate includes:
the issuing equipment transmits issuing information to the ETC electronic tag under the condition that the ETC electronic tag does not store the issuing information; the ETC electronic tag encrypts the issuing information by using the first encryption and decryption certificate to obtain second encrypted information; and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
In a specific embodiment, the ETC electronic tag does not store the issuing information, in this case, the ETC electronic tag obtains the issuing information from the issuing device, and encrypts the issuing information using the security certificate issued by the server to obtain the second encrypted information. And verifying whether the first encryption information is consistent with the second encryption information, and determining that the security certificate is legal under the condition that the first encryption information is consistent with the second encryption information.
It should be noted that, if the security certificate is illegal, the second encryption information encrypted using the security certificate is inconsistent with the first encryption information.
In this embodiment, the ETC electronic tag encrypts, using the security certificate, the issuing information sent by the issuing device to obtain the second encrypted information, and by comparing the first encrypted information and the second encrypted information, the legitimacy of the security certificate is ensured, and the legitimacy of the vehicle in one-to-one correspondence with the ETC electronic tag is ensured. And in the subsequent working process of the ETC electronic tag, reading the first encrypted information through the vehicle-mounted bus subsystem at irregular time to perform one-to-one corresponding legitimacy proofreading of the vehicle and the ETC electronic tag. In the embodiment, the security certificate is adopted, and the communication process adopts encryption information communication, so that the issuing, updating and activation of the encryption certificate are realized in and after the secondary issuing process, and the unified management of the security certificate by the vehicle and the enterprise can be facilitated.
Further, the issuing device transmitting the issuing information to the ETC electronic tag includes:
the issuing equipment reads first encryption information pre-stored by the vehicle-mounted bus subsystem; specifically, the issuing device decrypts the first encrypted information by using a second encryption/decryption certificate stored in advance to obtain issuing information required by secondary issuing; the issuing device sends the issuing information to the ETC electronic tag. In other embodiments, the issuing device can also obtain issuing information required by secondary issuing through automatic collection and entry.
In this embodiment, the vehicle-mounted bus subsystem stores first encryption information in advance, and the issuing device acquires the first encryption information from the vehicle-mounted bus subsystem. In this way, the issuing device decrypts the first encrypted information using the pre-stored security certificate to obtain the issued information, and then transmits the issued information to the ETC electronic tag to further perform verification of the security certificate in the ETC electronic tag.
Further, the verifying, by the ETC electronic tag, using the first encryption information and the first encryption/decryption certificate further includes:
when the ETC electronic tag stores release information, the ETC electronic tag decrypts the first encrypted information by using the first encryption and decryption certificate to obtain decrypted first encrypted information; and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag.
In this case, the ETC electronic tag may directly decrypt the first encrypted information acquired from the vehicle-mounted bus subsystem using the security certificate, so as to obtain the decrypted first encrypted information. And verifying whether the decrypted first encrypted information is consistent with the prestored issuing information or not, and determining that the security certificate is legal under the condition that the decrypted first encrypted information is consistent with the prestored issuing information.
If the security certificate is not legitimate, the first encrypted information decrypted by using the security certificate does not match the pre-stored issue information.
In this embodiment, the ETC electronic tag decrypts the first encrypted information sent by the vehicle-mounted bus subsystem using the security certificate to obtain the decrypted first encrypted information, and the validity of the security certificate is ensured by comparing the decrypted first encrypted information with the pre-stored issuing information.
Specifically, in this embodiment, the first encrypted information is first ciphertext vehicle information, the issuing information is plaintext vehicle information, and the second encrypted information is second ciphertext vehicle information.
Under the condition that the ETC electronic tag does not store plaintext vehicle information, the issuing equipment acquires first ciphertext vehicle information through the vehicle-mounted bus subsystem, decrypts the first ciphertext vehicle information through a safety certificate carried by the issuing equipment to obtain plaintext vehicle information, and then sends the plaintext vehicle information to the ETC electronic tag; the ETC electronic tag encrypts the received plaintext vehicle information by using the installed security certificate to obtain second ciphertext vehicle information; and the ETC electronic tag compares the first ciphertext vehicle information with the second ciphertext vehicle information, and when the first ciphertext vehicle information is consistent with the second ciphertext vehicle information, the data are consistent, the verification is confirmed to be passed, the reliable and correct installation of the safety certificate is proved, the plaintext vehicle information is synchronously stored and locked in the ETC electronic tag, meanwhile, the ciphertext vehicle is synchronously stored and locked in the server database through the secondary issuing equipment, the successful activation of the ETC electronic tag is shown, and the secondary issuing is completed.
Under the condition that the ETC electronic tag stores plaintext vehicle information, the ETC electronic tag can directly use the safety certificate to decrypt first ciphertext vehicle information acquired from the vehicle-mounted bus subsystem to obtain the decrypted first ciphertext vehicle information. And verifying whether the decrypted first ciphertext vehicle information is consistent with the prestored plaintext vehicle information, and determining that the safety certificate is legal under the condition that the decrypted first ciphertext vehicle information is consistent with the prestored plaintext vehicle information. It is further explained that the decrypted first ciphertext vehicle information may be understood as the second plaintext vehicle information, that is, the security certificate is determined to be legal in the case that the second plaintext vehicle information is consistent with the prestored plaintext vehicle information.
In this embodiment, the ETC electronic tag ensures the legitimacy of the security certificate by comparing the second plaintext vehicle information with the prestored plaintext vehicle information, and ensures the legitimacy of the vehicle in one-to-one correspondence with the ETC electronic tag. And in the subsequent working process of the ETC electronic tag, reading the first encrypted information through the vehicle-mounted bus subsystem at irregular time to perform one-to-one corresponding legitimacy proofreading of the vehicle and the ETC electronic tag.
In the embodiment, the security certificate is adopted, and the communication process adopts encryption information communication, so that the issuing, updating and activation of the encryption certificate are realized in and after the secondary issuing process, and the unified management of the security certificate by the vehicle and the enterprise can be facilitated.
Further, the method further comprises:
the issuing device sends a verification instruction to the server; the server reads a second encryption/decryption certificate prestored by the issuing equipment according to the verification instruction; and under the condition that the second encryption/decryption certificate prestored by the issuing equipment is consistent with the encryption/decryption certificate prestored by the server, the server determines that the issuing equipment is in a preset state.
Before secondary issuing of the ETC electronic tag is performed, it is necessary to verify whether the issuing device is in a preset state, that is, whether the issuing device is in a legal state. If the issuing equipment is in a legal state, the issuing equipment can participate in the secondary issuing process of the ETC electronic tag.
The specific verification method comprises the following steps:
since the issuing apparatus and the server each store the security certificate in advance, the state of the issuing apparatus can be determined by verifying whether the security certificates of both the issuing apparatus and the server are identical to each other.
Specifically, the issuing device sends a verification instruction to the server, and the server acquires the security certificate stored in the issuing device after receiving the verification instruction, and verifies whether the security certificate stored in the issuing device is consistent with the security certificate stored in the server.
If the electronic tags are consistent with the ETC electronic tags, the issuing equipment is determined to be legal, and secondary issuing of the ETC electronic tags can be performed; if the ETC electronic tag is not consistent with the ETC electronic tag, the issuing equipment is not legal, and the ETC electronic tag is prohibited from participating in secondary issuing.
The safety of the secondary issuing process of the ETC electronic tag is guaranteed by verifying the state of the issuing equipment.
Further, before the server sends the first encryption/decryption certificate to the issuing device, the method further includes:
the issuing apparatus transmits an issuing instruction to the server to cause the server to transmit a first encryption/decryption certificate.
The issuing equipment sends an issuing instruction to the server after communicating with the ETC electronic tag through the OBD bus.
In an optional implementation manner, after receiving the issuing instruction, the server sends the security certificate to the issuing device, and the issuing device sends the security certificate to the ETC electronic tag through the OBD bus.
In another optional embodiment, after receiving the issuing instruction, the server sends a corresponding instruction to the issuing device, so that the issuing device sends the security certificate to the ETC electronic tag through the OBD bus.
Therefore, in the secondary issuing process of the ETC electronic tag, the server issues the safety certificate to the ETC electronic tag, and the safety of the secondary issuing process of the ETC electronic tag is further guaranteed.
As shown in fig. 2, the ETC electronic tag secondary issuance system 200 includes: a server 210, an issuing device 220, a vehicle-mounted bus subsystem 230, and an ETC electronic tag 240;
the server 210 is configured to send a first encryption/decryption certificate to the issuing apparatus when the issuing apparatus 220 is in a preset state; the server 210 is specifically an ETC secondary issuance database, stores user-customized secondary issuance information, and installs a legal security certificate.
The issuing device 220 is configured to send the first encryption/decryption certificate to the ETC electronic tag 240 through the vehicle-mounted bus subsystem 230; specifically, the issuing device 220 is an ETC secondary issuing device, has a network communication function, and can not only communicate with a server to complete data interaction, but also communicate with the ETC electronic tag through a bus through the vehicle-mounted bus subsystem 230. The issuing device 220 may be a vehicle carrier system having the same function or an independent product device, and the issuing device 220 further has a function of authenticating the issue of the security certificate to the server 210.
The vehicle-mounted bus subsystem 230 is configured to send pre-stored first encryption information to the ETC electronic tag 240; the vehicle bus subsystem 230 provides a bottom data link supporting data transmission, which may be a K-wire or a CAN wire or an ethernet, and mainly provides a physical layer communication link and a bottom data transmission link in the system.
The ETC electronic tag 240 is configured to perform authentication using the first encrypted information and the first encryption/decryption certificate; under the condition that the verification is passed, writing the issuing information, activating the ETC electronic tag, and completing secondary issuing; the ETC electronic tag in the embodiment has bus communication capacity.
In the embodiment, the communication between the issuing equipment and the ETC electronic tag can be realized by utilizing the vehicle-mounted bus subsystem, and as an optional mode, the vehicle-mounted bus subsystem is set as an OBD bus; and the secondary issuing activation of the electronic tags is realized by utilizing the vehicle-mounted bus subsystem and the UDS self-defined diagnosis service, the one-to-one correspondence between the vehicles and the electronic tags is realized by utilizing the vehicle VIN identification, the consistency of secondary issuing uploading information and actual loading information is ensured, and the secondary issuing activation process is optimized. Therefore, the OBD bus is arranged to communicate the issuing equipment with the ETC electronic tag, so that the issuing equipment can transmit the issuing information and the first encryption and decryption certificate to the ETC electronic tag through the OBD bus.
Optionally, the issuing device 220 is further configured to send the issuing information to the ETC electronic tag 240 if the ETC electronic tag 240 does not store the issuing information;
the ETC electronic tag 240 is further configured to encrypt the issued information using the first encryption/decryption certificate to obtain second encrypted information;
and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
Optionally, the issuing device 220 reads first encryption information pre-stored by the vehicle bus subsystem 230;
the issuing device 220 decrypts the first encrypted information by using a pre-stored encryption/decryption certificate to obtain issuing information; in other embodiments, the issuing device 220 may also obtain issuing information required for secondary issuing through automatic collection and entry;
the issuing device 220 transmits the issuing information to the ETC electronic tag 240.
Optionally, the ETC electronic tag 240 is further configured to, in a case that the ETC electronic tag 240 stores issuance information, decrypt the first encrypted information by using the first encryption/decryption certificate to obtain decrypted first encrypted information;
and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag 240.
Optionally, the issuing device 220 is further configured to send a verification instruction to the server 210;
the server 210 is further configured to read a first encryption/decryption certificate pre-stored by the issuing device 220 according to the verification instruction;
in the case where the second encryption/decryption certificate pre-stored by the issuing apparatus 220 matches the encryption/decryption certificate pre-stored by the server 210, the server 210 determines that the issuing apparatus is in the preset state.
Optionally, the issuing device 220 is further configured to send an issuing instruction to the server 210, so that the server 210 sends the first encryption/decryption certificate.
According to the invention, the communication between the issuing equipment and the ETC electronic tag is realized by utilizing the vehicle-mounted bus subsystem, the issuing equipment sends the first encryption/decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem, and under the condition that the first encryption/decryption certificate is verified, uniform encryption/decryption certificate management is provided for secondary issuing of the ETC electronic tag, so that the safety of secondary issuing of the ETC electronic tag is ensured. In addition, after the ETC electronic tag is issued for the second time, the ETC electronic tag can use the first encryption and decryption certificate to communicate with other terminals of the ETC system in a ciphertext mode, and the safety of a data interaction process is improved. The ETC electronic tag is connected with the issuing equipment by using the existing vehicle-mounted bus subsystem on the vehicle, so that the cost of the ETC electronic tag is reduced, and the reliability of the secondary issuing process and the data transmission after the secondary issuing is further enhanced.
The ETC electronic tag secondary issuing system in the embodiment of the invention can be an ETC system, and also can be a component, an integrated circuit or a chip in a terminal. The system may be a mobile electronic device or a non-mobile electronic device. By way of example, the mobile electronic device may be a mobile phone, a tablet computer, a notebook computer, a palm top computer, a vehicle-mounted electronic device, a wearable device, an ultra-mobile personal computer (UMPC), a netbook or a Personal Digital Assistant (PDA), and the like, and the non-mobile electronic device may be a server, a Network Attached Storage (NAS), a Personal Computer (PC), a Television (TV), a teller machine or a self-service machine, and the like, and the embodiment of the present invention is not particularly limited.
The ETC electronic tag secondary issuance system in the embodiment of the present invention may be a device having an operating system. The operating system may be an Android (Android) operating system, an ios operating system, or other possible operating systems, and embodiments of the present invention are not limited in particular.
The secondary issuing system of the ETC electronic tag provided by the embodiment of the present invention can implement each process implemented by the secondary issuing method of the ETC electronic tag in the method embodiment of fig. 1, and is not described here again to avoid repetition.
An embodiment of the present invention further provides a readable storage medium, where a program or an instruction is stored on the readable storage medium, and when the program or the instruction is executed by a processor, the program or the instruction implements each process implemented by the secondary issuing method of the ETC electronic tag in the method embodiment of fig. 1, and details are not repeated here in order to avoid repetition.
The processor is the processor in the electronic device described in the above embodiment. The readable storage medium includes a computer readable storage medium, such as a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and the like.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element. Further, it should be noted that the scope of the methods and apparatus of embodiments of the present invention is not limited to performing functions in the order illustrated or discussed, but may include performing functions in a substantially simultaneous manner or in a reverse order based on the functions involved, e.g., the methods described may be performed in an order different than that described, and various steps may be added, omitted, or combined. In addition, features described with reference to certain examples may be combined in other examples.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (such as ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal (such as a mobile phone, a computer, a server, an air conditioner, or a network device) to execute the method according to the embodiments of the present invention.
While the present invention has been described with reference to the embodiments shown in the drawings, the present invention is not limited to the embodiments, which are illustrative and not restrictive, and it will be apparent to those skilled in the art that various changes and modifications can be made therein without departing from the spirit and scope of the invention as defined in the appended claims.
Claims (10)
1. The secondary issuing method of the ETC electronic tag is applied to a secondary issuing system of the ETC electronic tag, the system comprises a server, issuing equipment, a vehicle-mounted bus subsystem and the ETC electronic tag, and the method comprises the following steps:
the server sends a first encryption and decryption certificate to the issuing equipment under the condition that the issuing equipment is in a preset state;
the issuing equipment sends the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem;
the vehicle-mounted bus subsystem sends pre-stored first encryption information to the ETC electronic tag;
the ETC electronic tag uses the first encryption information and the first encryption and decryption certificate to carry out verification;
and under the condition that the verification is passed, the ETC electronic tag writes the issuing information, activates the ETC electronic tag and completes secondary issuing.
2. The ETC electronic tag secondary issuance method according to claim 1, wherein the verifying by the ETC electronic tag using the first encryption information and the first encryption/decryption certificate includes:
the issuing equipment transmits issuing information to the ETC electronic tag under the condition that the ETC electronic tag does not store the issuing information;
the ETC electronic tag encrypts the issuing information by using the first encryption and decryption certificate to obtain second encrypted information;
and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
3. The ETC electronic tag secondary issuance method according to claim 2, wherein the issuing device sending the issuance information to the ETC electronic tag includes:
the issuing equipment reads first encryption information pre-stored by the vehicle-mounted bus subsystem;
the issuing equipment decrypts the first encrypted information by using a prestored second encryption and decryption certificate to obtain issuing information;
the issuing device sends the issuing information to the ETC electronic tag.
4. The ETC electronic tag secondary issuance method according to claim 1, wherein the verifying by the ETC electronic tag using the first encryption information and the first encryption/decryption certificate further includes:
when the ETC electronic tag stores release information, the ETC electronic tag decrypts the first encrypted information by using the first encryption and decryption certificate to obtain decrypted first encrypted information;
and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag.
5. The ETC electronic tag secondary issuance method according to claim 1, further comprising:
the issuing device sends a verification instruction to the server;
the server reads a second encryption/decryption certificate prestored by the issuing equipment according to the verification instruction;
and under the condition that the second encryption/decryption certificate prestored by the issuing equipment is consistent with the encryption/decryption certificate prestored by the server, the server determines that the issuing equipment is in a preset state.
6. The ETC electronic tag secondary issuance method according to claim 1, wherein before the server transmits the first encryption/decryption certificate to the issuing apparatus, the method further includes:
the issuing apparatus transmits an issuing instruction to the server to cause the server to transmit a first encryption/decryption certificate.
7. The ETC electronic tag secondary issuing system is characterized by comprising a server, issuing equipment, a vehicle-mounted bus subsystem and an ETC electronic tag;
the server is used for sending a first encryption and decryption certificate to the issuing equipment under the condition that the issuing equipment is in a preset state;
the issuing equipment is used for sending the first encryption and decryption certificate to the ETC electronic tag through the vehicle-mounted bus subsystem;
the vehicle-mounted bus subsystem is used for sending pre-stored first encryption information to the ETC electronic tag;
the ETC electronic tag is used for verifying by using the first encryption information and the first encryption and decryption certificate, and under the condition that verification is passed, issuing information is written in, the ETC electronic tag is activated, and secondary issuing is completed.
8. The ETC electronic tag secondary issuance system according to claim 7, wherein the issuance apparatus is further configured to transmit the issuance information to the ETC electronic tag if the ETC electronic tag does not store the issuance information;
the ETC electronic tag is further used for encrypting the issuing information by using the first encryption and decryption certificate to obtain second encrypted information;
and determining that the authentication is passed if the first encryption information is consistent with the second encryption information.
9. The ETC electronic tag secondary issuance system according to claim 7, further configured to decrypt the first encrypted information using the first encryption/decryption certificate if the ETC electronic tag stores issuance information, thereby obtaining decrypted first encrypted information;
and determining that the verification is passed when the decrypted first encrypted information is consistent with the release information stored in the ETC electronic tag.
10. A readable storage medium storing thereon a program or instructions which, when executed by a processor, implement the steps of the ETC electronic tag secondary issuance method according to any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011338968.7A CN112396712A (en) | 2020-11-25 | 2020-11-25 | ETC electronic tag secondary issuing method, system and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011338968.7A CN112396712A (en) | 2020-11-25 | 2020-11-25 | ETC electronic tag secondary issuing method, system and storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112396712A true CN112396712A (en) | 2021-02-23 |
Family
ID=74603847
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011338968.7A Pending CN112396712A (en) | 2020-11-25 | 2020-11-25 | ETC electronic tag secondary issuing method, system and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112396712A (en) |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113011207A (en) * | 2021-03-11 | 2021-06-22 | 山东高速信联科技股份有限公司 | Electronic tag anti-serial method and system based on desktop publisher |
| CN113345122A (en) * | 2021-04-25 | 2021-09-03 | 辽宁高速通智慧出行有限责任公司 | ETC vehicle information correction method and system |
| CN114445922A (en) * | 2022-01-11 | 2022-05-06 | 中国第一汽车股份有限公司 | Secondary issuing method, device, equipment and storage medium for charging equipment |
| CN115190455A (en) * | 2022-09-13 | 2022-10-14 | 深圳高灯计算机科技有限公司 | Detection and data processing method, system and equipment for vehicle-mounted electronic label equipment |
| CN116409066A (en) * | 2021-12-31 | 2023-07-11 | 芯电智联(北京)科技有限公司 | NFC label issuing method and device |
-
2020
- 2020-11-25 CN CN202011338968.7A patent/CN112396712A/en active Pending
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113011207A (en) * | 2021-03-11 | 2021-06-22 | 山东高速信联科技股份有限公司 | Electronic tag anti-serial method and system based on desktop publisher |
| CN113345122A (en) * | 2021-04-25 | 2021-09-03 | 辽宁高速通智慧出行有限责任公司 | ETC vehicle information correction method and system |
| CN116409066A (en) * | 2021-12-31 | 2023-07-11 | 芯电智联(北京)科技有限公司 | NFC label issuing method and device |
| CN116409066B (en) * | 2021-12-31 | 2023-09-01 | 芯电智联(北京)科技有限公司 | NFC label issuing method and device |
| CN114445922A (en) * | 2022-01-11 | 2022-05-06 | 中国第一汽车股份有限公司 | Secondary issuing method, device, equipment and storage medium for charging equipment |
| CN114445922B (en) * | 2022-01-11 | 2024-06-14 | 中国第一汽车股份有限公司 | Secondary issuing method, device, equipment and storage medium of charging equipment |
| CN115190455A (en) * | 2022-09-13 | 2022-10-14 | 深圳高灯计算机科技有限公司 | Detection and data processing method, system and equipment for vehicle-mounted electronic label equipment |
| CN115190455B (en) * | 2022-09-13 | 2023-01-13 | 安徽高灯微行科技有限公司 | Detection and data processing method, system and equipment for vehicle-mounted electronic label equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN112396712A (en) | ETC electronic tag secondary issuing method, system and storage medium | |
| US11330432B2 (en) | Maintenance system and maintenance method | |
| CN107743214B (en) | System, method, terminal, application program and background for online activation of vehicle-mounted unit | |
| CN108122311B (en) | Vehicle virtual key implementation method and system | |
| JP6419588B2 (en) | Mobile terminal additional registration system | |
| US20170200324A1 (en) | Device, method and system for collecting user-based insurance data in vehicles | |
| US20080056495A1 (en) | Wireless communication system, vehicle unit, roadside unit and server | |
| CN112883382B (en) | Vehicle writing method, internet of vehicles box, vehicle and storage medium | |
| CN108141444B (en) | Improved authentication method and authentication device | |
| CN105427106B (en) | Authorization processing method and payment processing method of electronic cash data and virtual card | |
| CN110324335A (en) | A kind of automobile method for upgrading software and system based on electronics mobile certificate | |
| CN101771680B (en) | Method for writing data to smart card, system and remote writing-card terminal | |
| CN103390122B (en) | Application program transmitting method, application program operating method, sever and terminal | |
| CN114710521B (en) | Vehicle cloud platform architecture system and method for realizing vehicle-mounted software payment authorization | |
| CN110769410B (en) | Method, application module, system and terminal for activating a vehicle-mounted unit device | |
| CN108460597B (en) | Key management system and method | |
| JP2013258491A (en) | Car sharing system and car sharing provisioning method | |
| CN110417798A (en) | The communication means and device of terminal device and vehicle device | |
| CN112583595B (en) | Vehicle charging safety management method | |
| CN110866412B (en) | System and method for parking authentication based on RFID tag and vehicle-mounted card reader | |
| US20230116566A1 (en) | Method and apparatus for managing application | |
| JP3920871B2 (en) | Authentication system | |
| JP4699853B2 (en) | Insurance authentication apparatus, authority holding apparatus, authority delegation system, authority delegation permission method, and authority delegation permission program | |
| JP3091450B1 (en) | Authentication system and authentication method | |
| JP2005045582A (en) | Radio data communication system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |