CN115884175A - Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium - Google Patents

Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium Download PDF

Info

Publication number
CN115884175A
CN115884175A CN202211556623.8A CN202211556623A CN115884175A CN 115884175 A CN115884175 A CN 115884175A CN 202211556623 A CN202211556623 A CN 202211556623A CN 115884175 A CN115884175 A CN 115884175A
Authority
CN
China
Prior art keywords
networking terminal
terminal
car networking
session key
session
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211556623.8A
Other languages
Chinese (zh)
Inventor
王蕴实
张曼君
徐雷
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China United Network Communications Group Co Ltd
Original Assignee
China United Network Communications Group Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China United Network Communications Group Co Ltd filed Critical China United Network Communications Group Co Ltd
Priority to CN202211556623.8A priority Critical patent/CN115884175A/en
Publication of CN115884175A publication Critical patent/CN115884175A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The invention provides a communication method and device of a vehicle networking terminal, electronic equipment and a storage medium, and belongs to the technical field of communication. The method comprises the following steps: receiving and analyzing a service request sent by a first vehicle networking terminal; positioning a second car networking terminal needing communication of the first car networking terminal according to the service request; generating corresponding encrypted session keys for the first car networking terminal and the second car networking terminal respectively; and directionally sending the encrypted session key to the corresponding first car networking terminal and the second car networking terminal so that the first car networking terminal and the second car networking terminal decrypt the encrypted session key respectively to obtain a session key pair for mutual communication, wherein the session key is used for encrypting or decrypting session content. The method and the system at least solve the problem that communication between the Internet of vehicles terminals in the related technology has no safety guarantee, and are suitable for scenes of Internet of vehicles communication and automatic driving.

Description

Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium
Technical Field
The present invention relates to the field of communications technologies, and in particular, to a communication method and apparatus for an internet of vehicles terminal, an electronic device, and a storage medium.
Background
According to different communication modes, a C-V2X (Cellular-Vehicle to evolution) system comprises two scenes of Cellular network communication and direct connection communication. The V2X communication of the Internet of vehicles relates to OBU (On Board Unit), pedestrian and RSU (Road)
Side Unit, roadside Unit) and cloud service platform, the terminals communicate with the vehicle through Uu interface or PC5/V5 direct connection communication interface. Basic information such as the position, the speed, the course and road condition events of the vehicle can be dynamically interacted between the vehicles, the roadside facilities and the pedestrians through a direct communication mode. And information can be interacted with other vehicle networking terminals or network side service platforms through the Uu interface uplink/downlink, so that long-distance and large-range reliable communication is realized.
Currently, for the session content of communication between terminals in the internet of vehicles, a sender uses a Certificate issued by a CA (Certificate Authority) to provide protection for digital signature and encryption of transmission data. Vehicle networking terminal is based on PKI (Public Key)
Infrastructure, network public key Infrastructure) as follows:
(1) And the vehicle networking terminal (OBU or RSU) at the sending end digitally signs the message containing the vehicle networking session content by using a private key corresponding to the certificate, and broadcasts the signed message together with the certificate.
(2) And the surrounding vehicle networking terminals receiving the message verify whether the signature certificate in the message is valid by using the certificate of the CA issuing the certificate.
(3) And after the verification is valid, verifying whether the signature in the signature message is correct by using the public key in the certificate passing the verification.
(4) And the received Internet of vehicles terminal determines that the content in the verified signature message is legal information, and obtains the Internet of vehicles conversation content.
In the communication mode, any receiving party (including a malicious third party and a hacker) can crack the conversation content of the communication through the public key, so that the communication between the terminals of the Internet of vehicles has no safety guarantee.
Disclosure of Invention
The present invention provides a communication method, apparatus, electronic device and storage medium for a car networking terminal, so as to solve at least the problem that there is no security guarantee in communication between car networking terminals in the related art.
In a first aspect, the present invention provides a communication method for a terminal in a vehicle networking, which is applied to a network device, and the method includes: receiving and analyzing a service request sent by a first car networking terminal; positioning a second car networking terminal needing communication of the first car networking terminal according to the service request; (ii) a
Encrypting the session key f i (K, K) directionally sending to the corresponding first car networking terminal and the second car networking terminal so that the first car networking terminal and the second car networking terminal respectively encrypt the session key f i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m and m are the total number of the vehicle networking terminals consisting of the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
Preferably, the service request includes a service type and a first vehicle networking terminal identifier, and the service type is used for determining a communication object and a communication range of the first vehicle networking terminal. After the second car networking terminal needing communication is located according to the service request, and the session key f to be encrypted i Before the directional transmission to the corresponding first car networking terminal and the second car networking terminal, (K, K) further include: respectively generating corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal i (K, K). The positioning of the second car networking terminal, which needs to communicate with the first car networking terminal according to the service request, specifically includes: determining the position of a first vehicle networking terminal according to the first vehicle networking terminal identifier in the service request; positioning a first vehicle combination according to the position and the service type of a first vehicle network terminalThe network terminal needs a second car networking terminal for communication.
Preferably, the encryption session keys f corresponding to the first car networking terminal and the second car networking terminal are respectively generated i (K, K), specifically including: encrypting a key f using a session key i Encrypting the session key pairs (K, K) respectively to obtain an encrypted session key f i (K, K) and periodically updating the session key pair (K, K), wherein one car networking terminal encrypts the key f corresponding to one session key i
Preferably, the car networking terminal comprises at least one of: vehicle-mounted unit, road side unit. After the receiving and analyzing the service request sent by the first car networking terminal, and before the locating a second car networking terminal, which needs to communicate with the first car networking terminal according to the service request, the communication method further includes: and authenticating the identity validity of the first vehicle networking terminal. The second vehicle networking terminal which needs to communicate with the first vehicle networking terminal is located according to the service request, and the communication method further comprises the following steps: and authenticating the identity validity of the second vehicle networking terminal.
Preferably, the identity legitimacy of the vehicle networking terminal is authenticated, and the method specifically comprises the following steps: the network identity validity of the Internet of vehicles terminal is authenticated according to the Internet of vehicles terminal identification, wherein the Internet of vehicles terminal identification is a combination of an encrypted character string of a mobile communication user identification and an encrypted character string of an equipment identification; responding to the legality of the network identity of the Internet of vehicles terminal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center authenticates the legality of the equipment identity of the Internet of vehicles terminal; and determining that the identity of the Internet of vehicles terminal is legal in response to the fact that the network identity of the Internet of vehicles terminal is legal and the equipment identity is legal.
In a second aspect, the present invention further provides a communication method for a car networking terminal, which is applied to a first car networking terminal, and includes: sending a service request to network equipment so that the network equipment positions a second car networking terminal which needs to communicate with the first car networking terminal according to the service request; receiving an encrypted session key f sent by the network equipment in a directional manner i (K, K) whereinI =1,2,3, \ 8230, m, m is the total number of the car networking terminals formed by the first car networking terminal and the second car networking terminal; decrypting the key F using its own session key i For encryption session key f i Decrypting the (K, K) to obtain a session key pair (K, K); the second networked terminal is in communication with a session key pair (K, K), where K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used to encrypt or decrypt session content.
Preferably, the service request includes a service type and a first vehicle networking terminal identifier, and the service type is used for determining a communication object and a communication range of the first vehicle networking terminal. Decrypting the key F by using the own session key i For encrypted session key f i (K, K) decrypting, specifically comprising: decrypting the key F using the self-stored session key i For encryption session key f i And (K, K) decrypting.
Preferably, the car networking terminal comprises at least one of: vehicle-mounted unit, road side unit. Before the sending the service request to the network device, the communication method further includes: and sending an identity authentication request to the network equipment so that the network equipment authenticates the legality of the identity of the Internet of vehicles terminal.
In a third aspect, the present invention further provides a communication device of a car networking terminal, applied to a network device, including: the first receiving module is used for receiving and analyzing the service request sent by the first vehicle networking terminal. And the positioning module is connected with the first receiving module and used for positioning a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the service request. A first sending module connected with the positioning module and used for encrypting the session key f i (K, K) directionally sending to the corresponding first car networking terminal and the second car networking terminal so that the first car networking terminal and the second car networking terminal respectively encrypt the session key f i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m and m are the total number of the vehicle networking terminals consisting of the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting the sessionThe content of the speech.
In a fourth aspect, the present invention further provides a communication device of a car networking terminal, which is applied to a first car networking terminal, and includes: and the second sending module is used for sending the service request to the network equipment so that the network equipment positions a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the service request. A second receiving module, configured to receive an encrypted session key f sent by the network device in a directional manner i (K, K), wherein i =1,2,3, \8230;, m, m is the total number of the first and second car networking terminals. A decryption module connected with the second receiving module for decrypting the secret key F by using the own session secret key i For encrypted session key f i And (K, K) decrypting to obtain the session key pair (K, K). And the communication module is connected with the decryption module and is used for communicating with the second vehicle networking terminal by using a session key pair (K, K), wherein the K is a session encryption key, the K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
In a fifth aspect, the present invention further provides an electronic device, including a memory and a processor, where the memory stores a computer program, and the processor is configured to execute the computer program to implement the communication method of the vehicle networking terminal according to the first aspect or the communication method of the vehicle networking terminal according to the second aspect.
In a sixth aspect, the present invention also provides a computer-readable storage medium, on which a computer program is stored, which, when executed by a processor, implements the communication method of the vehicle networking terminal or the communication method of the vehicle networking terminal according to the first aspect.
The invention provides a communication method, a communication device, electronic equipment and a storage medium of an internet of vehicles terminal, wherein an encrypted session key f is used i And (K, K) directionally transmitting to a first vehicle networking terminal and a second vehicle networking terminal which need to communicate with each other, so that the corresponding vehicle networking terminals decrypt session key pairs needed by the communication with each other respectively. The session key pairs required by communication between the terminals of the Internet of vehicles are respectively encrypted and protected, so that the Internet of vehiclesThe encryption of the terminal session key pair realizes one-user-one secret, the security of subsequent communication can be obviously improved, the encryption session key corresponding to the Internet of vehicles terminal is directionally transmitted to the Internet of vehicles terminal, the session key of the Internet of vehicles terminal is prevented from being stolen and replaced when an empty port is transmitted, and therefore the secure communication between the Internet of vehicles terminals is further realized.
Drawings
Fig. 1 is a schematic view of an application scenario in embodiment 1 of the present invention;
fig. 2 is a schematic flowchart of a communication method of a terminal in the internet of vehicles according to embodiment 1 of the present invention;
fig. 3 is a schematic flowchart of a communication method of a terminal in the internet of vehicles according to embodiment 3 of the present invention;
fig. 4 is a schematic structural diagram of a communication device of an internet of vehicles terminal according to embodiment 4 of the present invention;
fig. 5 is a schematic structural diagram of a communication device of an internet of vehicles terminal according to embodiment 5 of the present invention;
fig. 6 is a schematic structural diagram of an electronic device according to embodiment 6 of the present invention.
Detailed Description
In order to make those skilled in the art better understand the technical solution of the present invention, the following detailed description will be made with reference to the accompanying drawings.
It is to be understood that the specific embodiments and figures described herein are merely illustrative of the invention and are not to be considered as limiting.
It is to be understood that the various embodiments and features of the embodiments may be combined with each other without conflict.
It is to be understood that, for the convenience of description, only parts related to the present invention are shown in the drawings of the present invention, and parts not related to the present invention are not shown in the drawings.
It should be understood that each unit and module related in the embodiments of the present invention may correspond to only one physical structure, may also be composed of multiple physical structures, or multiple units and modules may also be integrated into one physical structure.
It will be understood that, without conflict, the functions, steps, etc. noted in the flowchart and block diagrams of the present invention may occur in an order different from that noted in the figures.
It is to be understood that the flowchart and block diagrams of the present invention illustrate the architecture, functionality, and operation of possible implementations of systems, apparatus, devices and methods according to various embodiments of the present invention. Each block in the flowchart or block diagrams may represent a unit, module, segment, code, which comprises executable instructions for implementing the specified function(s). Furthermore, each block or combination of blocks in the block diagrams and flowchart illustrations can be implemented by hardware-based systems that perform the specified functions or by a combination of hardware and computer instructions.
It should be understood that the units and modules referred to in the embodiments of the present invention may be implemented by software, or may be implemented by hardware, for example, the units and modules may be located in a processor.
Example 1:
the embodiment provides a communication method of a car networking terminal, and as shown in fig. 1, an application scenario relates to communication terminals such as car networking terminals (such as an on-board unit and a road side unit), a base station, and core network equipment. Each C-V2X vehicle-mounted unit is provided with a Uu interface and a PC5/V5 direct connection communication interface, the vehicle-mounted unit is communicated with a base station through the Uu interface, and is communicated with other vehicles or RSUs through the PC5/V5 interface in a direct connection mode.
As shown in fig. 2, this embodiment provides a communication method of a car networking terminal, which is applied to a network device, where the network device includes a base station and a core network device, and the method includes:
step 101, receiving and analyzing a service request sent by a first car networking terminal.
In this embodiment, when the first car networking terminal has a car networking service requirement, the first car networking terminal sends a service request to the network device, where the service request includes a service type and a first car networking terminal identifier. The service type is used for determining a communication object and a communication range of the first vehicle networking terminal. The vehicle networking terminal comprises at least one of the following: vehicle-mounted unit, road side unit.
And 102, positioning a second car networking terminal which needs to communicate with the first car networking terminal according to the service request.
In this embodiment, if the communication object determined by the service type is vehicle-to-vehicle communication, the determined communication range is anti-collision warning within a preset range, for example, the first vehicle networking terminal needs to communicate with a second vehicle networking terminal (e.g., a vehicle-mounted unit) within a preset range (e.g., 300 meters) around the first vehicle networking terminal, at this time, the number of the second vehicle networking terminals is one or more, and the network device locates the second vehicle networking terminal that the first vehicle networking terminal needs to communicate. It should be noted that the second car networking terminal may be distributed within the coverage area of at least one base station.
Specifically, the positioning of the second vehicle networking terminal, which needs to communicate with the first vehicle networking terminal according to the service request specifically includes: determining the position of a first vehicle networking terminal according to the first vehicle networking terminal identifier in the service request; and positioning a second vehicle networking terminal needing communication of the first vehicle networking terminal according to the position and the service type of the first vehicle networking terminal.
In this embodiment, the first car networking terminal identifier may be a mobile communication user identifier, or a combination of an encrypted character string of the mobile communication user identifier and an encrypted character string of the device identifier, or other identification information uniquely identifying the car networking terminal. And positioning a second car networking terminal within 300 meters around the first car networking terminal according to the position of the first car networking terminal and the service type (such as anti-collision early warning service).
Step 103, encrypting the session key f i (K, K) directionally sending to the corresponding first car networking terminal and the second car networking terminal so that the first car networking terminal and the second car networking terminal respectively encrypt the session key f i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m and m are the total number of the vehicle networking terminals consisting of the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
In this embodiment, store fixed encryption session key pool to every car networking terminal in network equipment department, network equipment can send corresponding encryption session key to corresponding car networking terminal according to car networking terminal identification. The first vehicle networking terminal and the second vehicle networking terminal can decrypt the secret key F by using the session secret key stored by the first vehicle networking terminal and the second vehicle networking terminal (such as a subscriber identity module SIM card or a terminal hardware module) i For encrypted session key f i And (K, K) decryption, high security is achieved, and the certificate maintenance pressure of the Internet of vehicles terminal is reduced. By encrypting the session key f i And (K, K) directionally sending the session key to the corresponding first vehicle networking terminal and the second vehicle networking terminal, so that the session key communicated between the vehicle networking terminals is prevented from being stolen and replaced when the air interface is spread, and the safety communication of the vehicle networking terminals is further improved.
Optionally, after the second vehicle networking terminal needing communication is located according to the service request, the session key f is encrypted i Before (K, K) the directional transmission is performed to the corresponding first and second car networking terminals, the communication method further includes: respectively generating corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal i (k,K)。
In this embodiment, one car networking terminal corresponds to one encrypted session key f i (K, K). And (K, K) is a session key pair, and is a key used by the first internet-of-vehicles terminal and the second internet-of-vehicles terminal for encrypting or decrypting session content communicated between the first internet-of-vehicles terminal and the second internet-of-vehicles terminal. For example, the encrypted session key of the first car networking terminal is f 1 (K, K), if the number of the second car networking terminals is three, the encryption session keys of the three second car networking terminals are respectively f 2 (k,K)、f 3 (k,K)、f 4 (K, K). The session key pair required by the communication between the terminals of the Internet of vehicles is respectively encrypted and protected to obtain an encrypted session key f i And (K, K), the encryption of the session key pair of the Internet of vehicles terminal realizes one-user-one secret, and the communication safety between subsequent Internet of vehicles terminals is effectively guaranteed.
Specifically, the first car networking terminal and the second car networking terminalThe terminals in the Internet of vehicles respectively generate corresponding encrypted session keys f i (K, K) includes: encrypting a key f using a session key i Encrypting the session key pairs (K, K) respectively to obtain an encrypted session key f i (K, K) and periodically updating the session key pair (K, K), wherein one car networking terminal encrypts the key f corresponding to one session key i
In this embodiment, the session key pair (K, K) is distributed to the legitimate car networking terminals by the network device, and the session key pair (K, K) is periodically updated in consideration of security. For the car networking terminals communicating in the same period, the network equipment issues a pair of session key pairs (a first session encryption key K and a first session decryption key K), so that the car networking terminals can encrypt and communicate conveniently. The sending party encrypts the session content s to be sent into K(s) for transmission by using a first session encryption key K, and the receiving party decrypts by using the first session decryption key K to analyze the session content s. The communication security of the vehicle networking terminal can be improved by distributing and periodically updating the session key pair (K, K) by the network equipment. Session key encryption key f i Wherein i =1,2,3 \ 8230n, n is the total number of all registered terminals of the Internet of vehicles, f i The key used for encrypting the session key pair (K, K) and sent by the core network device to the base station device may be a key used for preventing the session key from being intercepted by a third party and encrypting the session key when the base station device sends the session key to the car networking terminal. The core network equipment stores session key encryption keys { f) corresponding to all registered Internet of vehicles terminals i }. The core network can inquire the session key encryption key f of the Internet of vehicles terminal i according to the mobile communication user identification of the Internet of vehicles terminal i i
Optionally, after the receiving and analyzing the service request sent by the first car networking terminal, and before the locating, according to the service request, a second car networking terminal that the first car networking terminal needs to communicate with, the communication method further includes: and authenticating the identity validity of the first vehicle networking terminal.
Optionally, the locating, according to the service request, a second car networking terminal that the first car networking terminal needs to communicate with is further performed, and the communication method further includes: and authenticating the identity validity of the second vehicle networking terminal.
In this embodiment, the network device performs identity legitimacy authentication on the first vehicle networking terminal and the second vehicle networking terminal. Identity validity authentication is carried out on the first vehicle networking terminal which initiates the service request, the service request of the terminal with the illegal identity is refused, and the vehicle networking communication safety can be improved. In addition, after the network equipment locates the second vehicle networking terminal which needs to communicate with the first vehicle networking terminal, identity legitimacy authentication is carried out on the located second vehicle networking terminal, and the vehicle networking terminal with the legal identity is determined to be the final second vehicle networking terminal, so that the vehicle networking terminals of both communication parties are guaranteed to be legal equipment, and communication safety is improved.
Optionally, the authenticating the identity validity of the car networking terminal specifically includes: the network identity legitimacy of the Internet of vehicles terminal is authenticated according to the Internet of vehicles terminal identification, wherein the Internet of vehicles terminal identification is the combination of the encrypted character string of the mobile communication user identification and the encrypted character string of the equipment identification; responding to the fact that the network identity of the Internet of vehicles terminal is legal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center can authenticate the equipment identity validity of the Internet of vehicles terminal; and determining that the identity of the Internet of vehicles terminal is legal in response to the fact that the network identity of the Internet of vehicles terminal is legal and the equipment identity is legal.
Optionally, the authenticating, according to the identifier of the car networking terminal, the validity of the network identity of the car networking terminal specifically includes: extracting an encrypted character string of a mobile communication user identifier from the Internet of vehicles terminal identifier; decrypting the encrypted character string of the mobile communication user identification by using a preset first encryption key to obtain the mobile communication user identification; and authenticating the network identity validity of the Internet of vehicles terminal according to the mobile communication user identification.
In this embodiment, an identification OBU of the on-board unit is defined ID For mobile communication user identification and vehicle carried identification V ID The encryption combination of (1). Vehicle-mounted sign V ID Defined by the entity that needs to authenticate the vehicle's legitimacySuch as vehicle manufacturers, vehicle operating companies, and internet of vehicles service companies. For example, the mobile communication subscriber identity of the vehicle-mounted unit is N 1 Bit string, vehicle-mounted identification V ID Is N 2 Bit string, identification of vehicle-mounted unit OBU ID Is N 1 +N 2 Bit string, first N 1 Encryption combination F with mobile communication user identification 1 (Mobile communication subscriber identity) OBU ) Wherein the first encryption key pair is respectively set (or stored) in a communication SIM card and a core network of the onboard unit. Rear N 2 Is a vehicle-mounted mark V ID Is encrypted and combined F 2 (V ID ) Wherein the second encryption key pair respectively sets (or stores) the communication SIM card and the trust center TA of the vehicle-mounted unit 1 . Therefore, the communication SIM card of the onboard unit stores two types of keys: first encryption key K for communication network identity 1 ' (corresponding decryption key K) 1 Presence of core network), a second encryption key K for encrypting the device identity 2 ' (corresponding decryption Key K) 2 Presence trusted center TA 1 )。
The RSUs are uniformly arranged on the roadside, wirelessly communicate with vehicles in a coverage range through a PC5 port, and are connected with the base station through a Uu port. The coverage area of the base station is larger than the RSU, and a plurality of RSUs can be arranged in the coverage area of the base station. Identification RSU defining RSU ID For mobile communication user identification and RSU equipment identification RSU VID The encryption combination of (1). Equipment identification RSU of road side unit RSU VID Defined by RSU operating company, and trusted center TA of RSU operating company 2 And (7) authentication. If the mobile communication user identification of the road side unit is an N1 bit string, the equipment identification RSU VID Is N 2 Bit string, authentication identification RSU of RSU ID Is N 1 +N 2 Bit string, first N 1 Encryption combination F with mobile communication user identification 1 (Mobile communication subscriber identity) RSU ) And the encryption key pair is stored in the communication SIM card of the road side unit and the core network. Rear N 2 Bit is N 2 Bit RSU device identification RSU VID Is encrypted and combined F 2 (RSU VID ) WhereinEncryption key pair is respectively stored in communication SIM card and trusted center TA of road side unit 2 . Therefore, the communication SIM card of the rsu stores two types of keys: first encryption key K for communication network identity 1 ' (corresponding decryption Key K) 1 Presence of core network), a second encryption key K for encrypting the device identity 2 ' (corresponding decryption key K) 2 Presence trusted center TA 2 )。
Network equipment draws on-board unit OBU ID Front N of 1 Bit string F 1 (mobile communication subscriber identity) using a stored first encryption key K 1 To F is aligned with 1 And (5) decrypting the mobile communication user identifier to obtain the mobile communication user identifier, and authenticating the network identity legality of the vehicle-mounted unit according to the mobile communication user identifier. Or the network equipment extracts the RSU VID First N of 1 Bit string F 1 (Mobile communication subscriber identity) RSU ) Using the stored first encryption key K 1 To F is aligned with 1 (Mobile communication subscriber identity) RSU ) And decrypting to obtain a mobile communication user identifier, and authenticating the network identity validity of the road side unit according to the mobile communication user identifier. After the vehicle networking terminal passes the network validity authentication of the core network, the OBU is sent by the core network ID After N 2 Bit string F 2 (V ID ) Sending to trusted center TA 1 Or the core network will RSU VID Last N 2 Bit string F 2 (RSU VID ) Sending to trusted center TA 2 . And for any security domain, the identification of the other security domain can be ensured not to be revealed in the authentication process, so that the identity privacy of the terminal user is effectively protected, and the security of the system is improved. The method includes that a trusted center authenticates the equipment identity validity of the internet of vehicles terminal according to an encrypted character string of an equipment identifier, and specifically includes the following steps: the trusted center decrypts the encrypted character string of the equipment identifier in the Internet of vehicles terminal identifier by using a preset second encryption key to obtain the equipment identifier; authenticating the equipment identity of the Internet of vehicles terminal according to the equipment identificationIt is also good. For example, a trust center TA 1 /TA 2 Using a stored second encryption key K 2 To F 2 And decrypting to obtain a corresponding equipment identifier, and authenticating the equipment identity legality of the Internet of vehicles terminal according to the equipment identifier. When the network identity of the Internet of vehicles terminal is legal and the equipment identity thereof is legal, the network equipment determines that the identity of the Internet of vehicles terminal is legal. And when the authentication result of the network identity and/or the equipment identity of the vehicle networking terminal is illegal, the network equipment determines that the identity of the vehicle networking terminal is illegal.
In the communication method of the car networking terminal of the embodiment, the session key f is encrypted i And (K, K) directionally transmitting to the vehicle networking terminals needing to communicate with each other, so that the vehicle networking terminals decrypt the session key pairs needed by the communication with each other respectively. The session key pairs required by communication between the Internet of vehicles terminals are respectively encrypted and protected, so that the encryption of the session key pairs of the Internet of vehicles terminals is realized through one-family one-secret, the security of subsequent communication can be obviously improved, the encryption result of the session key pairs corresponding to the Internet of vehicles terminals is directionally transmitted to the Internet of vehicles terminals, the session key of the Internet of vehicles terminals is prevented from being stolen and replaced when the air interface is propagated, and the secure communication between the Internet of vehicles terminals is further realized. Further, the session key pair (K, K) is distributed and periodically updated by the network device, so that the communication security of the vehicle networking terminal can be improved. The first vehicle networking terminal and the second vehicle networking terminal can decrypt the key F by using the session key stored by the first vehicle networking terminal and the second vehicle networking terminal i For encrypted session key f i And (K, K) decryption, high security is achieved, and certificate maintenance pressure of the Internet of vehicles terminal is reduced. In addition, identity legitimacy authentication is carried out on the first vehicle networking terminal and the second vehicle networking terminal which are about to carry out service communication, so that the vehicle networking terminals of two communication parties are legal devices, and communication safety is improved.
Example 2:
the embodiment provides a communication method of a vehicle networking terminal, which comprises the following steps:
step 201, a first car networking terminal is about to perform car networking service, and sends a car networking service request to core network equipment, wherein the car networking service request comprises a first car networking terminal identifier and a service type;
step 202, the core network device authenticates the identity validity of the first vehicle networking terminal according to the terminal identifier, responds to the identity validity of the first vehicle networking terminal, and sends an identity validity message of the first vehicle networking terminal to the base station, so that the base station provides network access for the first vehicle networking terminal.
Step 203, the core network device analyzes the service type in the service request of the car networking, if the service type is communication between the car and the road side unit, that is, the second car networking terminal is the road side unit, the core network sends the session key encryption key f of the first car networking terminal to the base station i And a session key pair (K, K).
Step 204, the base station encrypts the key f by using the session key i Encrypting the session key pair (K, K) to obtain an encrypted session key f i (K, K) and will encrypt the session key f i And (K, K) sending to the first vehicle networking terminal.
Step 205, the base station stores the session key encryption key of the roadside unit RSU in the coverage area, the base station locates the roadside unit RSU that the first vehicle-to-network terminal needs to communicate, and encrypts the key f by using the session key encryption key of the located roadside unit RSU RSU_i Encrypting the session key pair (K, K) to obtain an encrypted session key f RSU_i (K, K) and will encrypt the session key f RSU_i (K, K) to the road side unit RSU.
Step 206, the first car networking terminal and the road side unit respectively use the F stored in the SIM card or the terminal hardware module i Analyzing the encrypted session key f sent by the base station i (K, K) and f RSU_i (K, K), resulting in a session key pair (K, K).
And step 207, the first Internet of vehicles terminal and the road side unit utilize the session key pair (K, K) to encrypt and decrypt the Internet of vehicles service content, so as to realize the Internet of vehicles safety communication.
Example 3:
as shown in fig. 3, the present embodiment provides a communication method of a car networking terminal, which is applied to a first car networking terminal, and includes:
step 301, sending a service request to a network device, so that the network device locates a second car networking terminal, which needs to communicate with the first car networking terminal, according to the service request.
In this embodiment, the positioning, by the network device, the second car networking terminal, which needs to communicate with the first car networking terminal according to the service request specifically includes: the network equipment determines the position of a first vehicle networking terminal according to the first vehicle networking terminal identifier in the service request; and positioning a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the position and the service type of the first vehicle networking terminal.
Step 302, receiving an encrypted session key f sent by a network device in a directional manner i (K, K), wherein i =1,2,3, \8230;, m, m is the total number of the first and second car networking terminals.
In this embodiment, a fixed encryption session key pool is stored for each car networking terminal at the network device, and the network device can directionally send the corresponding encryption session key to the corresponding car networking terminal according to the car networking terminal identifier.
In another embodiment, the network device may generate corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal, respectively i (K, K). Wherein, one car networking terminal corresponds to one encrypted session key f i (K, K). And (K, K) is a session key pair, and is a key used by the first internet-of-vehicles terminal and the second internet-of-vehicles terminal for encrypting or decrypting session content communicated between the first internet-of-vehicles terminal and the second internet-of-vehicles terminal. For example, the encrypted session key of the first car networking terminal is f 1 (K, K), if the number of the second car networking terminals is three, the encryption session keys of the three second car networking terminals are respectively f 2 (k,K)、f 3 (k,K)、f 4 (K, K). The session key f required by communication between the terminals of the Internet of vehicles is encrypted and protected respectively to obtain an encrypted session key f i And (K, K), the encryption of the session key pair of the Internet of vehicles terminal realizes one-user-one secret, and the communication safety between subsequent Internet of vehicles terminals is effectively guaranteed. Specifically, the network device generates corresponding data for the first car networking terminal and the second car networking terminal respectivelyEncryption session key f i (K, K) includes: encrypting a key f using a session key i Encrypting the session key pairs (K, K) respectively to obtain an encrypted session key f i (K, K) and periodically updating the session key pair (K, K), wherein one car networking terminal encrypts the key f corresponding to one session key i . The session key pair (K, K) is distributed to the legal vehicle networking terminals by the network equipment, and is periodically updated for security. For the car networking terminals communicating in the same period, the network equipment issues a pair of session key pairs (a first session encryption key K and a first session decryption key K), so that the car networking terminals can encrypt and communicate conveniently. The sending party encrypts the session content s to be sent into K(s) for transmission by using a first session encryption key K, and the receiving party decrypts by using the first session decryption key K to analyze the session content s. The communication security of the vehicle networking terminal can be improved by distributing and periodically updating the session key pair (K, K) by the network equipment. Session key encryption key f i Wherein i =1,2,3 \ 8230n, n is the total number of all registered terminals of the Internet of vehicles, f i The key used for encrypting the session key pair (K, K) and sent by the core network device to the base station device may be a key used for preventing the session key from being intercepted by a third party and encrypting the session key when the base station device sends the session key to the car networking terminal. The core network equipment stores a session key encryption key { f } corresponding to all registered Internet of vehicles terminals i }. The core network can inquire the session key encryption key f of the Internet of vehicles terminal i according to the mobile communication user identification of the Internet of vehicles terminal i i . Step 303, decrypt the key F with its own session key i For encryption session key f i And (K, K) decrypting to obtain the session key pair (K, K).
Step 303, decrypt the key F with its own session key i For encryption session key f i And (K, K) decrypting to obtain the session key pair (K, K).
And step 304, communicating with the second car networking terminal by using a session key pair (K, K), wherein K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
Optionally, the service request includes a service type and a first vehicle networking terminal identifier, and the service type is used for determining a communication object and a communication range of the first vehicle networking terminal.
Decrypting the key F by using the own session key i For encrypted session key f i And (K, K) decrypting specifically comprises: decrypting the key F using the self-stored session key stored therein i For encrypted session key f i And (K, K) decrypting.
Optionally, the car networking terminal comprises at least one of: vehicle-mounted unit, road side unit. Before the sending of the service request to the network device, the communication method of the car networking terminal further includes: and sending an identity authentication request to the network equipment so that the network equipment authenticates the legality of the identity of the vehicle networking terminal.
In this embodiment, the validity of the network device for authenticating the identity of the car networking terminal (the first car networking terminal and the second car networking terminal) includes: the network identity validity of the Internet of vehicles terminal is authenticated according to the Internet of vehicles terminal identification, wherein the Internet of vehicles terminal identification is a combination of an encrypted character string of a mobile communication user identification and an encrypted character string of an equipment identification; responding to the legality of the network identity of the Internet of vehicles terminal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center authenticates the legality of the equipment identity of the Internet of vehicles terminal; and determining that the identity of the Internet of vehicles terminal is legal in response to the fact that the network identity of the Internet of vehicles terminal is legal and the equipment identity is legal.
The communication method of the car networking terminal of the embodiment encrypts the session key f i And (K, K) directionally transmitting to a first vehicle networking terminal and a second vehicle networking terminal which need to communicate with each other, so that the vehicle networking terminals decrypt session key pairs needed by the communication with each other respectively.
Example 4:
as shown in fig. 4, this embodiment provides a communication apparatus for a terminal in a vehicle networking, which is applied to a network device, and includes:
the first receiving module 41 is configured to receive and analyze a service request sent by a first car networking terminal.
And the positioning module 42 is connected with the first receiving module 41 and is used for positioning a second car networking terminal, which needs to communicate with the first car networking terminal, according to the service request.
A first sending module 43, connected to the positioning module 42, for sending the encrypted session key f i (K, K) is directionally sent to the corresponding first car networking terminal and the second car networking terminal, so that the first car networking terminal and the second car networking terminal respectively encrypt the session key f i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m, m is the total number of the vehicle networking terminals consisting of the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content. The first sending module is further used for storing a fixed encryption session key pool for each Internet of vehicles terminal and sending the corresponding encryption session key to the corresponding Internet of vehicles terminal in an oriented manner according to the Internet of vehicles terminal identification.
Optionally, the service request includes a service type and a first vehicle networking terminal identifier, and the service type is used to determine a communication object and a communication range of the first vehicle networking terminal.
The positioning module comprises a positioning unit. The positioning unit is used for determining the position of the first car networking terminal according to the first car networking terminal identifier in the service request; and the second vehicle networking terminal is used for positioning the second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the position and the service type of the first vehicle networking terminal.
Optionally, the communication device of the car networking terminal further comprises a generation module. The generating module is connected with the first receiving module and the positioning module and used for respectively generating corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal i (K, K), wherein i =1,2,3, \8230;, and m, m is the total number of the car networking terminals consisting of the first car networking terminal and the second car networking terminal.
Optionally, the generating module comprises a generating unit. GeneratingThe unit is used for receiving a session key encryption key f sent by the core network equipment i And a session key pair (K, K), wherein one Internet of vehicles terminal encrypts the key f corresponding to one session key i The core network equipment periodically updates the session key pair (K, K); and for encrypting the key f with the session key i Encrypting the session key pairs (K, K) respectively to obtain an encrypted session key f i (k,K)。
Optionally, the vehicle networking terminal comprises at least one of: vehicle-mounted unit, road side unit. The communication device of the vehicle networking terminal further comprises an authentication module. And the authentication module is connected with the first receiving module and the positioning module and used for authenticating the identity legality of the first vehicle networking terminal and authenticating the identity legality of the second vehicle networking terminal.
Optionally, the authentication module is configured to authenticate the validity of a network identity of the car networking terminal according to a car networking terminal identifier, where the car networking terminal identifier is a combination of an encrypted character string of a mobile communication user identifier and an encrypted character string of an equipment identifier; responding to the network identity of the Internet of vehicles terminal being legal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center can authenticate the equipment identity validity of the Internet of vehicles terminal; and the terminal is used for responding to the network identity legality and the equipment identity legality of the Internet of vehicles terminal and determining that the identity of the Internet of vehicles terminal is legal. The specific working process of the authentication module is described in embodiment 1.
Example 5:
as shown in fig. 5, the present embodiment provides a communication device of a car networking terminal, which is applied to a first car networking terminal, and includes:
the second sending module 51 is configured to send a service request to the network device, so that the network device locates, according to the service request, a second car networking terminal that the first car networking terminal needs to communicate with. In this embodiment, the network device is configured to determine the location of the first vehicle networking terminal according to the identifier of the first vehicle networking terminal in the service request, and is configured to locate, according to the location and the service type of the first vehicle networking terminal, a second vehicle networking terminal that the first vehicle networking terminal needs to communicate.
A second receiving module 52, configured to receive the encrypted session key f sent by the network device in a directed manner i (K, K), wherein i =1,2,3, \8230;, m, m is the total number of the first and second car networking terminals. The network equipment stores a fixed encryption session key pool for each Internet of vehicles terminal, and is used for directionally sending the corresponding encryption session key to the corresponding Internet of vehicles terminal according to the Internet of vehicles terminal identification. In another embodiment, the network device is configured to generate corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal, respectively i (K, K), wherein one car networking terminal corresponds to one session key encryption key f i The network device is configured to periodically update the session key pair (K, K) and to encrypt the key f with the session key i Encrypting the session key pair (K, K) respectively to obtain an encrypted session key f i (k,K)。
A decryption module 53, connected to the second receiving module 52, for decrypting the key F by using its own session key i For encryption session key f i And (K, K) decrypting to obtain the session key pair (K, K).
The communication module 54 is connected to the decryption module 53, and is configured to communicate with the second car networking terminal by using a session key pair (K, K), where K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
Optionally, the service request includes a service type and a first vehicle networking terminal identifier, and the service type is used for determining a communication object and a communication range of the first vehicle networking terminal.
Optionally, the decryption module is configured to decrypt the key F using the session key stored therein i For encrypted session key f i And (K, K) decrypting.
Optionally, the vehicle networking terminal comprises at least one of: vehicle-mounted unit, road side unit.
Optionally, the second sending module is further configured to send an identity authentication request to the network device, so that the network device authenticates the validity of the identity of the car networking terminal.
In this embodiment, the validity of the network device for authenticating the identity of the car networking terminal (the first car networking terminal and the second car networking terminal) includes: the network identity validity of the Internet of vehicles terminal is authenticated according to the Internet of vehicles terminal identification, wherein the Internet of vehicles terminal identification is a combination of an encrypted character string of a mobile communication user identification and an encrypted character string of an equipment identification; responding to the fact that the network identity of the Internet of vehicles terminal is legal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center can authenticate the equipment identity validity of the Internet of vehicles terminal; and determining that the identity of the Internet of vehicles terminal is legal in response to the fact that the network identity of the Internet of vehicles terminal is legal and the equipment identity is legal.
Example 6:
as shown in fig. 6, the present embodiment provides an electronic device, which includes a memory 61 and a processor 62, where the memory 61 stores therein a computer program, and the processor 62 is configured to run the computer program to implement the communication method of the terminal in the internet of vehicles according to embodiment 1 or the communication method of the terminal in the internet of vehicles according to embodiment 3.
Example 7:
the present embodiment provides a computer-readable storage medium on which a computer program is stored, the computer program, when executed by a processor, implementing the communication method of the vehicle networking terminal according to embodiment 1 or the communication method of the vehicle networking terminal according to embodiment 3.
Communication apparatuses of in-vehicle network terminals of embodiments 4 and 5, electronic devices of embodiment 6, and computer-readable storage media of embodiment 7 to encrypt the session key f i And (K, K) directionally transmitting to a first vehicle networking terminal and a second vehicle networking terminal which need to communicate with each other, so that the vehicle networking terminals decrypt session key pairs needed by the communication with each other respectively. The session key pairs required by communication between the Internet of vehicles terminals are respectively encrypted and protected, so that the encryption of the session key pairs of the Internet of vehicles terminals is realized by one user and one secret, and the subsequent communication can be obviously improvedThe session key pair encryption method and system are used for directionally transmitting the encryption result of the session key pair corresponding to the vehicle networking terminal, and the session key of the vehicle networking terminal is prevented from being stolen and replaced when the air interface is spread, so that safe communication between the vehicle networking terminals is further achieved. Further, the network device is used for distributing and periodically updating the session key pair (K, K), so that the communication safety of the vehicle networking terminal can be improved. The first car networking terminal and the second car networking terminal are used for decrypting the key F by using the session key stored in the first car networking terminal and the second car networking terminal i For encrypted session key f i And (K, K) decryption, high security is achieved, and certificate maintenance pressure of the Internet of vehicles terminal is reduced. In addition, the identity legitimacy authentication is carried out on the first vehicle networking terminal and the second vehicle networking terminal which are about to carry out service communication, so that the vehicle networking terminals of two communication parties are legal devices, and the communication safety is improved.
It will be understood that the above embodiments are merely exemplary embodiments adopted to illustrate the principles of the present invention, and the present invention is not limited thereto. It will be apparent to those skilled in the art that various modifications and improvements can be made without departing from the spirit and scope of the invention, and such modifications and improvements are also considered to be within the scope of the invention.

Claims (12)

1. A communication method of a vehicle networking terminal is applied to network equipment, and the method comprises the following steps:
receiving and analyzing a service request sent by a first car networking terminal;
positioning a second car networking terminal needing communication of the first car networking terminal according to the service request;
encrypting the session key f i (K, K) is directionally sent to the corresponding first car networking terminal and the second car networking terminal, so that the first car networking terminal and the second car networking terminal respectively encrypt the session key f i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m and m are the total quantity of the vehicle networking terminals formed by the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key,k is a session decryption key, and the pair of session keys (K, K) is used to encrypt or decrypt the session content.
2. The communication method of the car networking terminal according to claim 1, wherein the service request comprises a service type and a first car networking terminal identification, the service type is used for determining a communication object and a communication range of the first car networking terminal,
after the second car networking terminal needing communication is located according to the service request, and the session key f to be encrypted i Before the directional transmission to corresponding first car networking terminal and second car networking terminal (K, K), still include:
respectively generating corresponding encrypted session keys f for the first car networking terminal and the second car networking terminal i (k,K),
The positioning of the second car networking terminal, which needs to communicate with the first car networking terminal according to the service request, specifically includes:
determining the position of a first car networking terminal according to the first car networking terminal identifier in the service request;
and positioning a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the position and the service type of the first vehicle networking terminal.
3. The communication method of the vehicle networking terminal according to claim 2, wherein the encrypted session keys f corresponding to the first vehicle networking terminal and the second vehicle networking terminal are respectively generated i (K, K), specifically including:
encrypting the key f using the session key i Encrypting the session key pairs (K, K) respectively to obtain an encrypted session key f i (K, K) and periodically updating the session key pair (K, K), wherein one car networking terminal encrypts the key f corresponding to one session key i
4. The communication method of the vehicle networking terminal according to claim 1, wherein the vehicle networking terminal comprises at least one of the following: a vehicle-mounted unit, a road side unit,
after the receiving and analyzing the service request sent by the first vehicle networking terminal, and before the locating a second vehicle networking terminal, which needs to communicate with the first vehicle networking terminal, according to the service request, the method further includes:
the identity validity of the first vehicle networking terminal is authenticated,
the positioning of the second car networking terminal, which needs to communicate with the first car networking terminal according to the service request, further comprises:
and authenticating the identity validity of the second vehicle networking terminal.
5. The communication method of the Internet of vehicles terminal according to claim 4, wherein the authentication of the identity validity of the Internet of vehicles terminal specifically comprises:
the network identity legitimacy of the Internet of vehicles terminal is authenticated according to the Internet of vehicles terminal identification, wherein the Internet of vehicles terminal identification is the combination of the encrypted character string of the mobile communication user identification and the encrypted character string of the equipment identification;
responding to the fact that the network identity of the Internet of vehicles terminal is legal, and sending the encrypted character string of the equipment identity in the Internet of vehicles terminal identity to a trusted center so that the trusted center can authenticate the equipment identity validity of the Internet of vehicles terminal;
and determining that the identity of the Internet of vehicles terminal is legal in response to the fact that the network identity of the Internet of vehicles terminal is legal and the equipment identity is legal.
6. A communication method of a vehicle networking terminal is applied to a first vehicle networking terminal, and is characterized by comprising the following steps:
sending a service request to network equipment so that the network equipment positions a second car networking terminal which needs to communicate with the first car networking terminal according to the service request;
receiving an encrypted session key f sent by the network equipment in a directional manner i (K, K), wherein i =1,2,3, \8230;, m, m is the total number of the first and second car networking terminals;
by usingOwn session key decryption key F i For encrypted session key f i Decrypting the (K, K) to obtain a session key pair (K, K);
and communicating with the second networked terminal using a session key pair (K, K), wherein K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
7. The communication method of the car networking terminal according to claim 6, wherein the service request comprises a service type and a first car networking terminal identification, the service type is used for determining a communication object and a communication range of the first car networking terminal,
decrypting the key F by using the own session key i For encrypted session key f i And (K, K) decrypting specifically comprises:
decrypting the key F using the self-stored session key i For encrypted session key f i And (K, K) decrypting.
8. The communication method of the vehicle networking terminal according to claim 6, wherein the vehicle networking terminal comprises at least one of the following: a vehicle-mounted unit, a road side unit,
before the sending the service request to the network device, the method further includes:
and sending an identity authentication request to the network equipment so that the network equipment authenticates the legality of the identity of the Internet of vehicles terminal.
9. The utility model provides a communication device of car networking terminal which characterized in that, is applied to network equipment, includes:
a first receiving module, configured to receive and analyze a service request sent by a first car networking terminal,
the positioning module is connected with the first receiving module and used for positioning a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the service request,
a first sending module connected with the positioning module and used for encrypting the session key f i (K, K) directional transmission pairThe first car networking terminal and the second car networking terminal are used for respectively encrypting the session key f by the first car networking terminal and the second car networking terminal i And (K, K) decrypting to obtain a session key pair (K, K) for mutual communication, wherein i =1,2,3, \8230;, m, m is the total number of the vehicle networking terminals consisting of the first vehicle networking terminal and the second vehicle networking terminal, K is a session encryption key, K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
10. The utility model provides a communication device of car networking terminal, is applied to first car networking terminal, its characterized in that includes:
the second sending module is used for sending a service request to the network equipment so that the network equipment positions a second vehicle networking terminal which needs to communicate with the first vehicle networking terminal according to the service request,
a second receiving module, configured to receive an encrypted session key f sent by the network device in a directional manner i (K, K), wherein i =1,2,3, \8230;, m, m is the total number of the first and second car networking terminals,
a decryption module connected with the second receiving module for decrypting the key F by using its own session key i For encryption session key f i (K, K) decrypting to obtain a session key pair (K, K),
and the communication module is connected with the decryption module and is used for communicating with the second vehicle networking terminal by using a session key pair (K, K), wherein the K is a session encryption key, the K is a session decryption key, and the session key pair (K, K) is used for encrypting or decrypting session content.
11. An electronic device, comprising a memory and a processor, wherein the memory stores a computer program, and the processor is configured to execute the computer program to implement the communication method of the vehicle networking terminal according to any one of claims 1-5 or the communication method of the vehicle networking terminal according to any one of claims 6-8.
12. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out a communication method of a vehicle networking terminal according to any one of claims 1 to 5 or a communication method of a vehicle networking terminal according to any one of claims 6 to 8.
CN202211556623.8A 2022-12-06 2022-12-06 Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium Pending CN115884175A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211556623.8A CN115884175A (en) 2022-12-06 2022-12-06 Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211556623.8A CN115884175A (en) 2022-12-06 2022-12-06 Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium

Publications (1)

Publication Number Publication Date
CN115884175A true CN115884175A (en) 2023-03-31

Family

ID=85766063

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211556623.8A Pending CN115884175A (en) 2022-12-06 2022-12-06 Communication method and device of Internet of vehicles terminal, electronic equipment and storage medium

Country Status (1)

Country Link
CN (1) CN115884175A (en)

Similar Documents

Publication Publication Date Title
CN110769393B (en) Identity authentication system and method for vehicle-road cooperation
CN105827586B (en) V2X communication equipment, system and nonvolatile memory
CN104683112B (en) A kind of car car safety communicating method that certification is assisted based on RSU
CN101136748B (en) Identification authentication method and system
CN112399382A (en) Vehicle networking authentication method, device, equipment and medium based on block chain network
CN111865919B (en) Digital certificate application method and system based on V2X
CN112039951A (en) Safe distribution method, device and system of vehicle Bluetooth key and storage medium
KR101521412B1 (en) Protocol Management System for Aggregating Massages based on certification
CN102907039A (en) Communication system, vehicle-mounted terminal, roadside device
CN109362062B (en) ID-based group signature-based VANETs anonymous authentication system and method
CN108881176A (en) A kind of method of secure communication between car networking terminal
CN103974255B (en) A kind of vehicle access system and method
CN101841525A (en) Secure access method, system and client
KR20140023799A (en) Method for guarantying the confidentiality and integrity of a data in controller area networks
CN109005032B (en) Routing method and device
CN111601280B (en) Access verification method and device
CN112994873A (en) Certificate application method and equipment
CN114339680B (en) V2X system and safety authentication method
CN115694891A (en) Roadside device communication system and method based on central computing platform
CN114430552B (en) Vehicle networking v2v efficient communication method based on message pre-authentication technology
CN111080856A (en) Bluetooth entrance guard unlocking method
CN113163375B (en) Air certificate issuing method and system based on NB-IoT communication module
CN106657021B (en) Vehicle message authentication method and device in Internet of vehicles
CN115802347A (en) Method and device for authenticating identity of terminal in Internet of vehicles, electronic equipment and storage medium
KR101749449B1 (en) Two Level Privacy Preserving Pseudonymous Authentication Method for Vehicular Ad-Hoc Network and System Therefor

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination