CN114363373A

Movatterモバイル変換

Info

Publication number: CN114363373A
Application number: CN202111657230.1A
Authority: CN
Inventors: 于士淇; 张晓谦; 李岩; 田学明; 孙荫权
Original assignee: FAW Group Corp
Current assignee: FAW Group Corp
Priority date: 2021-12-31
Filing date: 2021-12-31
Publication date: 2022-04-15
Anticipated expiration: 2041-12-31
Also published as: CN114363373B

Abstract

The embodiment of the invention discloses an application communication management system, method and device, electronic equipment and a storage medium. The system comprises: the communication management module and the communication decision module; the communication management module comprises a permission management submodule and a communication execution submodule, wherein the communication execution submodule is used for acquiring application verification information of a target calling application and sending the application verification information to a communication decision module if a calling request sent to the permission management submodule by the target calling application is detected; the communication decision module is used for determining a communication authority verification result of the target calling application based on the application verification information and feeding the communication authority verification result back to the authority management submodule; and the authority management submodule is used for carrying out communication management on the target calling application based on the communication authority verification result, so that the communication safety performance of application software is improved, and the safety of automatic driving is further ensured.

Description

Application communication management system, method, device, electronic device and storage medium

Technical Field

The embodiment of the invention relates to the technical field of automatic driving, in particular to an application communication management system, method and device, electronic equipment and a storage medium.

Background

With the continuous development of the automotive open system architecture (AUTOSAR), the software architecture of the automotive Electronic Controller (ECU) also brings new challenges, especially to the communication security of the automotive application software. Nowadays, people's demand to intelligent automobile enlarges gradually, and on-vehicle ECU has also undertaken information, functional safety's risk when satisfying the functional requirement, if software is maliciously visited can direct influence driver's personal safety. For example, when an autopilot system or networking software is hacked and thus controlled to access certain critical driving components, serious threats can be posed to driving safety and information safety, and thus access authority management of the software is a security problem that cannot be ignored.

Disclosure of Invention

The invention provides an application communication management system, method, device, electronic equipment and storage medium, which are used for improving the communication safety performance of automobile application software so as to ensure the safety of automatic driving.

In a first aspect, an embodiment of the present invention provides an application communication management system, where the system includes:

the communication management module and the communication decision module; wherein the communication management module comprises a right management submodule and a communication execution submodule,

the communication execution submodule is used for acquiring application verification information of a target calling application and sending the application verification information to a communication decision module if a calling request sent by the target calling application to the authority management submodule is detected; wherein the calling request is used for calling a target called application based on the authority management submodule; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers;

the communication decision module is used for determining a communication authority verification result of the target calling application based on the application verification information and feeding the communication authority verification result back to the authority management submodule;

and the authority management submodule is used for carrying out communication management on the target calling application based on the communication authority verification result.

In a second aspect, an embodiment of the present invention further provides an application communication management method, where the method includes:

monitoring a calling request sent by a target calling application to the authority management submodule; wherein the calling request is used for calling a target called application based on the authority management submodule;

if the calling request is detected, acquiring application verification information of the target calling application, and sending the application verification information to a communication decision module; the application verification information comprises first application verification information based on a target calling application and a target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers;

and receiving a communication authority verification result fed back by the communication decision module, and carrying out communication management on the target calling application according to the communication authority verification result.

In a third aspect, an embodiment of the present invention further provides an application communication management apparatus, where the apparatus includes:

the calling request monitoring module is used for monitoring a calling request sent by a target calling application to the authority management submodule; wherein the calling request is used for calling a target called application based on the authority management submodule;

the verification information acquisition module is used for acquiring the application verification information of the target calling application and sending the application verification information to the communication decision module if the calling request is detected; the application verification information comprises first application verification information based on a target calling application and a target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers;

and the communication management module is used for receiving the communication authority verification result fed back by the communication decision module and carrying out communication management on the target calling application according to the communication authority verification result.

In a fourth aspect, an embodiment of the present invention further provides an electronic device, where the electronic device includes:

one or more processors;

a storage device for storing one or more programs,

when the one or more programs are executed by the one or more processors, the one or more processors are caused to implement the application communication management method as provided by any embodiment of the invention.

In a fifth aspect, the embodiment of the present invention further provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements the application communication management method provided in any embodiment of the present invention.

The application communication management system provided in this embodiment specifically monitors, through the communication execution sub-module, a call request sent by a target call application to the rights management sub-module; the calling request is used for calling a target called application based on the authority management submodule; further, if the communication execution sub-module detects the call request, acquiring application verification information of the target call application, and sending the application verification information to the communication decision module; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers; furthermore, the communication decision module determines a communication authority verification result of the target calling application based on the application verification information, and feeds the communication authority verification result back to the authority management submodule so that the authority management submodule carries out communication management on the target calling application based on the communication authority verification result; the technical scheme of the embodiment is that the communication execution submodule is responsible for capturing and forwarding the request and the identity information of the application, and verifying and processing the transmitted application information based on the communication decision module; the communication execution submodule manages the communication record of the application based on the processing result of the communication decision, and the information safety in the communication process between application software in the automobile is improved, so that the rated safety of automatic driving is ensured.

Drawings

In order to more clearly illustrate the technical solutions of the exemplary embodiments of the present invention, a brief description is given below of the drawings used in describing the embodiments. It should be clear that the described figures are only views of some of the embodiments of the invention to be described, not all, and that for a person skilled in the art, other figures can be derived from these figures without inventive effort.

Fig. 1 is a schematic structural diagram of an application communication management system according to an embodiment of the present invention;

FIG. 2 is a schematic structural diagram of the AUTOSAR IAM module design specification provided in the first embodiment of the present invention;

FIG. 3 is a schematic diagram of a service-oriented communication within the same controller according to an embodiment of the present invention;

FIG. 4 is a schematic diagram of a service-oriented communication between different controllers according to an embodiment of the present invention;

fig. 5 is a flowchart illustrating an application communication management method according to a second embodiment of the present invention;

fig. 6 is a schematic structural diagram of an application communication management apparatus according to a third embodiment of the present invention;

fig. 7 is a schematic structural diagram of an electronic device according to a fourth embodiment of the present invention.

Detailed Description

The present invention will be described in further detail with reference to the accompanying drawings and examples. It is to be understood that the specific embodiments described herein are merely illustrative of the invention and are not limiting of the invention. It should be further noted that, for the convenience of description, only some of the structures related to the present invention are shown in the drawings, not all of the structures.

Example one

Fig. 1 is a schematic structural diagram of an application communication management system according to an embodiment of the present invention, where the embodiment is applicable to a situation of managing application software communication in an automobile; in particular, the method is more suitable for the situation of managing the application software communication in the automobile based on the IAM method.

Before describing the technical solution of the embodiment of the present invention, an exemplary description is first given to an application scenario in which the technical solution of the embodiment is implemented. Of course, the following application scenarios are only optional application scenarios, and this embodiment may also be implemented in other application scenarios, and the application scenarios of the implemented technical method are not limited in this embodiment. Specifically, the application scenarios include: with the continuous development of the automotive open system architecture (AUTOSAR), the software architecture of the automotive Electronic Controller (ECU) also brings new challenges, especially to the communication security of the automotive application software. Nowadays, the demand of people for intelligent automobiles is gradually expanded, the vehicle-mounted controller also bears the risks of information and function safety while meeting the function demand, if software is maliciously accessed, the personal safety of a driver can be directly influenced, for example, when an automatic driving system or networking software is damaged by hackers and is controlled to access certain key driving components, serious threats can be caused to the driving safety and the information safety, and therefore, the management method for communication among the software on the automobile controller is very important.

Currently, in the latest specification formulated by AUTOSAR core organization members, there is an IAM design scheme for the security problem of an Adaptive application, and the requirement specification sets the IAM to provide services for the Adaptive application and a Function Cluster (FC) of an Adaptive AUTOSAR platform, and the aim of the design scheme is to prevent an incorrect or damaged Adaptive application from accessing some resources or services that should not be accessed.

The design principle of this method gives a platform deployment scheme how to restrict the adaptive application access function cluster, where there are two key components, PDP (Policy Decision Point) and PEP (Policy Enforcement Point), PDP represents the logic for making access control Decision, which determines whether to allow the application to execute the requested task, PEP represents the logic for executing access control Decision, which establishes communication with PDP to receive control Decision, and the Decision (Policy Decision) is divided into two types, authorization (Grant) and denial (Deny). This method creates a central instance, Access Manager, which queries the contents of the authorization list, which acts as a PDP. The PEP part is designed and integrated in the functional cluster, and is responsible for identifying a caller of the functional cluster and acquiring identity information of the caller transmitted from an Adaptive automotive Management EM (Execution Management).

Specifically referring to the AUTOSAR principle provided in fig. 2, the adaptive application requests to call the API interface of the functional cluster, the PEP receives the request and obtains the identity of the caller through the EM, the PEP forwards the identity and the requested resource information to the PDP query, the PDP Access Manager queries the authorization list, and if authorization is passed through and Grant is returned to the PEP, the Access control decision of the adaptive application is executed. The above prior art has the disadvantage in the execution process that the scheme only provides member modules and a deployment architecture of the IAM, and determines the logic of function implementation, but how to specifically restrict the adaptive application from accessing the function cluster resources in a variety of application scenarios of the automobile controller platform is not a detailed implementation scheme. For example, an in-vehicle application a needs to access an interface of a communication management module to interact with in-vehicle applications B and C using an SOME/IP service-oriented communication protocol, and an IAM module needs to be used for making an access management decision, so that a PEP and a PDP in the IAM should detect and query specific parameters related to applications to achieve effective management, so as to avoid malicious access with improper intention, which is a problem that needs attention.

Therefore, based on the Adaptive automotive application system platform architecture, the technical idea of this embodiment is to provide an IAM-based automobile application communication management method, and in order to an Adaptive application program developed under the Adaptive automotive application system platform specification, when the Adaptive application program accesses and calls resources and services to a communication module of the Adaptive automotive application system platform, according to collected specific application verification information such as identity, an independent process responsible for authorization determines a request of the Adaptive application based on the application verification information of the application, and returns an authorized or rejected command to an execution module, thereby meeting the requirements of the Adaptive application program on information and function security when calling the Adaptive automotive application system platform resource.

Based on the technical idea, the application communication management system provided by this embodiment specifically monitors, through the communication execution sub-module, a call request sent by a target call application to the rights management sub-module; the calling request is used for calling a target called application based on the authority management submodule; further, if the communication execution sub-module detects the call request, acquiring application verification information of the target call application, and sending the application verification information to the communication decision module; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers; furthermore, the communication decision module determines a communication authority verification result of the target calling application based on the application verification information, and feeds the communication authority verification result back to the authority management submodule so that the authority management submodule carries out communication management on the target calling application based on the communication authority verification result; the technical scheme of the embodiment is that the communication execution submodule is responsible for capturing and forwarding the request and the identity information of the application, and verifying and processing the transmitted application information based on the communication decision module; the communication execution submodule manages the communication record of the application based on the processing result of the communication decision, and the information safety in the communication process between application software in the automobile is improved, so that the rated safety of automatic driving is ensured.

Referring to fig. 1, the specific structure of the application communication management apparatus includes: acommunication management module 110 and acommunication decision module 120; wherein, thecommunication management module 110 comprises arights management sub-module 111 and acommunication execution sub-module 112,

thecommunication execution sub-module 112 is configured to, if detecting that the target calling application sends a calling request to therights management sub-module 111, obtain application verification information of the target calling application, and send the application verification information to thecommunication decision module 120;

thecommunication decision module 120 is configured to determine a communication right verification result of the target called application based on the application verification information, and feed back the communication right verification result to theright management sub-module 111;

theauthority management submodule 111 is configured to perform communication management on the target calling application based on the communication authority verification result.

In an embodiment of the present invention, thecommunication management module 110 may be a module responsible for communication between all applications in the embedded environment. Thecommunication management module 110 may also be used to find and connect the target of the communication, i.e., to find and connect the target calling application and the target called application authorizing the communication, and to provide SOME/IP service-oriented communication between the target calling application and the target called application. Of course, thecommunication management module 110 also functions to disallow communication between the calling application that rejects communication and other applications.

Thecommunication execution sub-module 112 may be a PEP (Policy Enforcement Point) component in the IAM, and is responsible for capturing and forwarding a call request and application verification information of a target call application; thecommunication Decision module 120 may be a PDP (Policy Decision Point) component in the IAM for deciding whether the target calling application can use the service-oriented SOME/IP communication provided by therights management sub-module 111.

It should be noted that, of course, thecommunication execution sub-module 112 and thecommunication decision module 120 may also be implemented based on other components, and the implementation manner of thecommunication execution sub-module 112 and thecommunication decision module 120 is not limited in this embodiment. Thecommunication management module 110 may provide SOME/IP service-oriented communication between the target calling application and the target called application, and if the communication management module is another management module, it may also provide another service between the target calling application and the target called application, and this implementation does not limit the service provided by the management module.

Specifically, thecommunication execution sub-module 112 is configured to listen to a call request of the target calling application to therights management sub-module 111. Wherein the calling request is used for calling the target called application based on theauthority management submodule 111. Further, if the call request is detected, the application verification information of the target call application is obtained, and the application verification information is sent to thecommunication decision module 120. The target calling application can be application software used for realizing various scene services in a controller in the vehicle. Optionally, the target calling application and the target called application may be located in the same controller, or may be located in different controllers, and of course, in the call request sent by the target calling application, the number of the target called applications requested to be called may be one, or may be multiple, and this embodiment does not limit the position and the number of the target called applications.

As shown in fig. 3, thecommunication execution sub-module 112 is configured in a preset function cluster set, and thecommunication execution sub-module 112 is initialized when the function cluster is started. When theauthority management sub-module 111 is started, thecommunication execution sub-module 112 starts to wait for a call request of the adaptive application a (i.e., a target call application), and once it is sensed that theauthority management sub-module 111 is requested to be used, thecommunication execution sub-module 112 collects application authentication information such as the identity of the adaptive application a, and establishes inter-process communication with thecommunication decision module 120 to inquire authorization.

In some embodiments, if the connection between thecommunication execution sub-module 112 and thecommunication decision module 120 fails, the identity of the adaptive application a cannot be verified, and thus all requests of the application a are directly rejected. If thecommunication execution sub-module 112 successfully communicates with thecommunication decision module 120, thecommunication execution sub-module 112 passes the identity information of the application a through the function interface and waits for the processing decision of thecommunication decision module 120.

Further, the communication decision is taken as an independent module, and establishes inter-module communication with thecommunication execution sub-module 112, and receives and processes the adaptive application request transmitted by thecommunication execution sub-module 112. The processing result determines whether the adaptive application can use service-oriented SOME/IP communication, and in thecommunication decision module 120, a code of a judgment logic needs to be written in advance, so that the adaptive application information transmitted by thecommunication execution sub-module 112 can be quickly processed later, and a processing result is given.

Optionally, the processing method for thecommunication decision module 120 to receive and process the adaptive application request transmitted by thecommunication execution sub-module 112 may include: and acquiring a preset application authorization database, and determining a communication authority verification result of the target calling application based on the application authorization database and the application verification information of the target calling application.

Specifically, thecommunication decision module 120 matches each authorization condition in the application authorization list based on the received application verification information of the target calling application. If the matching result is consistent, the communication authority verification result is authorized communication; and if any item in the application verification information is not matched with the corresponding authorization condition in the application authorization list, the communication permission verification result is communication refusal.

In this embodiment, the preset application authorization database may be an application authorization list pre-stored in thecommunication decision module 120, where the application authorization list includes conditions for each target to call an application to allow authorized communication; in other words, the condition for authorizing communication may also be understood as an application authentication message.

Optionally, if the target calling application and the target called application are located in the same controller, the condition that the target calling application allows authorization of communication includes at least one of the following authorization conditions.

Illustratively, the application authorization list includes an application identification authorization condition of the target calling application. Wherein, the application identification can be a unique application identification configured when the application is started.

The application identifier may be a unique application identifier configured for the target calling application based on the execution management module before the target calling application sends the calling request. For example, the unique application identification may be a PID of the process, a UID of the application, or a Token.

Specifically, the application identifier may be used as a condition for the application verification information obtained by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in the present scenario, thecommunication decision module 120 gives authorization only if thecommunication management module 110 interface is invoked with the identity of the adaptive application A, B, C.

Illustratively, the application authorization list includes the communication protocol type adopted by the target calling application when sending the calling request. In this embodiment, the communication protocol types include SOME/IP service-oriented communication and DDS data distribution service.

Specifically, the communication protocol type may be used as a condition for the application verification information obtained by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in the present scenario, thecommunication decision module 120 grants authorization only if the communication protocol used by the adaptive application A, B, C is the SOME/IP communication protocol.

Illustratively, the application authorization list comprises a communication service identifier executed by the target calling application when sending the calling request; wherein the communication service identifies a communication service provided by a communication protocol. In this embodiment, SOME/IP communication provides three services, namely, event, method, and field, and each service is accompanied by a unique ID value corresponding to the event, method, and field in the service design stage.

Specifically, the communication service identifier may be used as a condition for the application verification information obtained by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in the present scenario, assuming that a certain vehicular service ID is defined as 0x34, thecommunication decision module 120 gives authorization only if the SOME/IP service ID provided or subscribed by the adaptive application A, B, C is0x 34.

Illustratively, the application authorization list includes the type of operation behavior performed by the target calling application when sending the call request. In this embodiment, the operation behavior type includes a provision service operation or a subscription service operation.

Specifically, the operation behavior type may be used as a condition for the application verification information obtained by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in the present scenario, thecommunication decision module 120 gives authorization only if the operational behavior of the adaptive application a is the "offer" service, i.e., the provisioning service, or the operational behavior of the adaptive application B, C is the "find" service, i.e., the subscription service.

Illustratively, the application authorization list includes the data encryption type adopted by the target calling application when sending the calling request.

Specifically, since information security is involved, it is necessary to encrypt or sign the transmitted data, and the data encryption type is used as a condition for the application verification information acquired by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in this scenario, thecommunication decision module 120 gives authorization only if the data published or subscribed to by the adaptive application A, B, C is an RSA asymmetrically encrypted message.

Optionally, if the target calling application and the target called application are located in different controllers, the condition that the target calling application allows the authorization communication further includes at least one of the following authorization conditions on the basis of the authorization conditions.

As shown in fig. 4, the application authorization list includes the calling authority of the target calling application and the called authority of the target called request. In this embodiment, the called permission may be whether the target calling application in the current controller has a permission to call the target called application in the other controller; and whether the target called application in the current controller has the authority to be called by the target calling applications in other controllers.

Specifically, the invoked authority and/or the invoked authority may be used as a condition for the application verification information obtained by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. For example, in this scenario, application A on ECU-1 wants to establish communication with application D on ECU-2. If it is detected that a does not have the corresponding authority, thecommunication decision module 120 on EUC-1 will prevent application a from invoking the interface for communication management. However, if ECU-1 is hacked and loses control, ECU-2 cannot rely on the correct determination of ECU-1. Therefore, thecommunication decision module 120 on ECU-2 must check if ECU-1 has permission to access application D. The access permission list of each controller platform should be communicated with each other among the respectivecommunication decision modules 120 for inquiry, so as to avoid that one of the platforms is invaded and cannot know whether the access decision is correct.

As shown in fig. 4, the application authorization list includes a calling IP address where the target calling application is located when sending the calling request and a called IP address where the target called application is located.

Specifically, since the IP address of each ECU is independent, the IP address can be used as a condition for the application authentication information acquired by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. In this scenario, when the application a on the ECU-1 tries to provide a service to the application D on the ECU-2, thecommunication decision module 120 on the ECU-1 gives an authorization only when thecommunication decision module 120 detects that the target IP address is the IP address of the ECU-2, and similarly, thecommunication decision module 120 on the ECU-2 also needs to detect whether the IP address subscribed to the service by the application D is authorized.

As shown in fig. 4, the application authorization list includes an IP port number used by the target calling application when sending the call request and a called port number used by the target called application when receiving the call.

Specifically, on the basis of the IP address, the IPC Port used by each adaptive application is independent, so the calling Port number and/or the called Port number can be used as the condition for the application authentication information acquired by thecommunication execution sub-module 112 and the decision read by thecommunication decision module 120 in the preset authorization list. In this scenario, thecommunication decision module 120 grants authorization only when thecommunication decision module 120 detects that the adaptive applications a and D use respective IPC ports for communication.

Further, the communication right verification result in this embodiment includes authorized communication and denied communication; correspondingly, theauthority management submodule 111 is configured to allow the target invoked application to perform communication with the target invoked application if it is determined that the communication authority verification result is authorized communication; and if the communication authority verification result is determined to be communication rejection, not allowing the target calling application to communicate with the target called application.

On the basis of the above embodiment, the application communication management system provided by the embodiment of the present invention further includes an application verification module; the application verification module is used for verifying whether the target calling application needs to carry out communication authority verification when sending the calling request before the target calling application sends the calling request.

Specifically, the application verification module performs communication authority verification based on a preset application verification list and an application identifier of a current target calling application. If the target calling application does not need to perform communication authority verification, the target calling application can directly call the target called application for communication based on theauthority management sub-module 111. If the target calling application needs to perform communication authority verification, when the target calling application calls the target called application based on theauthority management submodule 111, thecommunication execution submodule 112 is required to obtain application verification information of the target calling application, and send the application verification information to thecommunication decision module 120 for communication authority verification, so that the security of communication between applications is ensured.

It should be noted that the application communication management system provided in the embodiment of the present invention includes an upgrade module, and specifically, the upgrade module may also be used to manage service upgrade for service-oriented communication.

Specifically, after the vehicle-mounted service is updated, the new service can be easily adapted to the identity security management of the application software only by changing the configuration of the authorization condition corresponding to the service ID called by the application in the preset application authorization database in thecommunication decision module 120.

The application communication management system provided in this embodiment specifically monitors, through the communication execution sub-module 112, a call request sent by a target call application to the authority management sub-module 111; wherein, the calling request is used for calling the target called application based on the authority management submodule 111; further, if the communication execution sub-module 112 detects a call request, the application verification information of the target call application is obtained, and the application verification information is sent to the communication decision module 120; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers; further, the communication decision module 120 determines a communication permission verification result of the target calling application based on the application verification information, and feeds the communication permission verification result back to the permission management sub-module 111, so that the permission management sub-module 111 performs communication management on the target calling application based on the communication permission verification result; in the technical scheme of the embodiment, the communication execution sub-module 112 is responsible for capturing and forwarding the request and the identity information of the application, and verifies and processes the transmitted information of the application based on the communication decision module 120; the communication execution sub-module 112 manages the communication memorability of the application based on the processing result of the communication decision, and realizes the improvement of the information safety in the communication process between the application software in the automobile, thereby ensuring the rated safety of automatic driving.

The following is an embodiment of an application communication management method provided in an embodiment of the present invention, which belongs to the same inventive concept as the application communication management systems in the above embodiments, and reference may be made to the embodiment of the application communication management system for details that are not described in detail in the embodiment of the application communication management method.

Example two

Fig. 5 is a flowchart of an application communication management method according to a second embodiment of the present invention, where the second embodiment is applicable to a case of managing application software communication in an automobile; in particular, the method is more suitable for the situation of managing the application software communication in the automobile based on the IAM method. The method may be performed by an application communication management apparatus, which may be implemented by means of software and/or hardware. As shown in fig. 5, the method specifically includes the following steps:

s210, monitoring a call request sent by a target call application to an authority management submodule; and the calling request is used for calling the target called application based on the authority management submodule.

S220, if the call request is detected, obtaining application verification information of the target call application, and sending the application verification information to the communication decision module.

And S230, receiving a communication authority verification result fed back by the communication decision module, and carrying out communication management on the target calling application according to the communication authority verification result.

The application communication management system provided in this embodiment specifically monitors a call request sent by a target call application to the rights management submodule; the calling request is used for calling a target called application based on the authority management submodule; if the call request is detected, acquiring application verification information of the target call application, and sending the application verification information to a communication decision module; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers; and receiving a communication authority verification result fed back by the communication decision module, and performing communication management on the target calling application according to the communication authority verification result. According to the technical scheme of the embodiment, the communication execution submodule is responsible for capturing and forwarding the request and the identity information of the application A, and verifying and processing the transmitted information of the application A based on the communication decision module; the communication execution submodule carries out communication record management on the application A based on the processing result of the communication decision, and information safety in the communication process between application software in the automobile is improved, so that the rated safety of automatic driving is guaranteed.

Optionally, the first application verification information includes: at least one of an application identifier of the target calling application, a communication protocol type adopted by the target calling application when sending the calling request, a communication service identifier executed by the target calling application when sending the calling request, an operation behavior type executed by the target calling application when sending the calling request, and a data encryption type adopted by the target calling application when sending the calling request;

the second application authentication information further includes, on the basis of the first authentication information: at least one of the calling authority of the target calling application, the called authority of the target called request, the calling IP address of the target calling application when the calling request is sent, the called IP address of the target called application, the IP port number used by the target calling application when the calling request is sent and the called port number used by the target called application when the calling request is received.

Optionally, the method configures the unique application identifier for the target calling application before the target calling application sends the call request.

Optionally, the method further comprises: and acquiring a preset application authorization database, and determining a communication authority verification result of the target calling application based on the application authorization database and the application verification information of the target calling application.

Optionally, the communication right verification result includes authorized communication and refused communication;

correspondingly, the method also comprises the step of allowing the target calling application to communicate with the target called application if the communication authority verification result is determined to be authorized communication;

and if the communication authority verification result is determined to be communication rejection, not allowing the target calling application to communicate with the target called application.

Optionally, the method further includes verifying whether the target calling application needs to perform communication right verification when sending the calling request.

The following is an embodiment of the application communication management apparatus provided in the embodiment of the present invention, and the apparatus and the application communication management system and method in the above embodiments belong to the same inventive concept, and details that are not described in detail in the embodiment of the application communication management apparatus may refer to the embodiment of the application communication management system and method in the above embodiments.

EXAMPLE III

Fig. 6 is a schematic structural diagram of an application communication management apparatus according to a third embodiment of the present invention, where the third embodiment is applicable to a case of managing application software communication in an automobile; in particular, the method is more suitable for the situation of managing the application software communication in the automobile based on the IAM method. Referring to fig. 6, the specific structure of the application communication management apparatus includes: a callrequest monitoring module 310, an authenticationinformation acquisition module 320 and acommunication management module 330; wherein,

a callingrequest monitoring module 310, configured to monitor a calling request sent by a target calling application to the rights management sub-module; the calling request is used for calling a target called application based on the authority management submodule;

the verificationinformation obtaining module 320 is configured to, if the call request is detected, obtain application verification information of the target call application, and send the application verification information to the communication decision module; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers;

and thecommunication management module 330 is configured to receive the communication right verification result fed back by the communication decision module, and perform communication management on the target calling application according to the communication right verification result.

The application communication management device provided by the embodiment of the invention can execute the application communication management method provided by any embodiment of the invention, and has corresponding functional modules and beneficial effects of the execution method.

It should be noted that, in the embodiment of the application communication management apparatus, the included units and modules are merely divided according to functional logic, but are not limited to the above division as long as the corresponding functions can be implemented; in addition, specific names of the functional units are only for convenience of distinguishing from each other, and are not used for limiting the protection scope of the present invention.

Example four

Fig. 7 is a schematic structural diagram of an electronic device according to a fourth embodiment of the present invention. FIG. 7 illustrates a block diagram of an exemplaryelectronic device 12 suitable for use in implementing embodiments of the present invention. Theelectronic device 12 shown in fig. 7 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiment of the present invention.

As shown in FIG. 7,electronic device 12 is embodied in the form of a general purpose computing electronic device. The components ofelectronic device 12 may include, but are not limited to: one or more processors orprocessing units 16, asystem memory 28, and abus 18 that couples various system components including thesystem memory 28 and theprocessing unit 16.

Bus 18 represents one or more of any of several types of bus structures, including a memory bus or memory controller, a peripheral bus, an accelerated graphics port, and a processor or local bus using any of a variety of bus architectures. By way of example, such architectures include, but are not limited to, Industry Standard Architecture (ISA) bus, micro-channel architecture (MAC) bus, enhanced ISA bus, Video Electronics Standards Association (VESA) local bus, and Peripheral Component Interconnect (PCI) bus.

Electronic device 12 typically includes a variety of computer system readable media. Such media may be any available media that is accessible byelectronic device 12 and includes both volatile and nonvolatile media, removable and non-removable media.

Thesystem memory 28 may include computer system readable media in the form of volatile memory, such as Random Access Memory (RAM)30 and/orcache memory 32. Theelectronic device 12 may further include other removable/non-removable, volatile/nonvolatile computer system storage media. By way of example only,storage system 34 may be used to read from and write to non-removable, nonvolatile magnetic media (not shown in FIG. 7, and commonly referred to as a "hard drive"). Although not shown in FIG. 7, a magnetic disk drive for reading from and writing to a removable, nonvolatile magnetic disk (e.g., a "floppy disk") and an optical disk drive for reading from or writing to a removable, nonvolatile optical disk (e.g., a CD-ROM, DVD-ROM, or other optical media) may be provided. In these cases, each drive may be connected tobus 18 by one or more data media interfaces.System memory 28 may include at least one program product having a set (e.g., at least one) of program modules that are configured to carry out the functions of embodiments of the invention.

A program/utility 40 having a set (at least one) ofprogram modules 42 may be stored, for example, insystem memory 28,such program modules 42 including, but not limited to, an operating system, one or more application programs, other program modules, and program data, each of which examples or some combination thereof may comprise an implementation of a network environment.Program modules 42 generally carry out the functions and/or methodologies of the described embodiments of the invention.

Electronic device 12 may also communicate with one or more external devices 14 (e.g., keyboard, pointing device, display 24, etc.), with one or more devices that enable a user to interact withelectronic device 12, and/or with any devices (e.g., network card, modem, etc.) that enableelectronic device 12 to communicate with one or more other computing devices. Such communication may be through an input/output (I/O)interface 22. Also, theelectronic device 12 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network, such as the Internet) via thenetwork adapter 20. As shown in FIG. 7, thenetwork adapter 20 communicates with the other modules of theelectronic device 12 via thebus 18. It should be appreciated that although not shown in FIG. 7, other hardware and/or software modules may be used in conjunction withelectronic device 12, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.

Theprocessing unit 16 executes various functional applications and sample data acquisition by running the program stored in thesystem memory 28, for example, implementing steps of an application communication management method provided by the embodiment of the present invention, where the application communication management method includes:

monitoring a calling request sent by a target calling application to an authority management submodule; the calling request is used for calling a target called application based on the authority management submodule;

if the call request is detected, acquiring application verification information of the target call application, and sending the application verification information to a communication decision module; the application verification information comprises first application verification information based on the target calling application and the target called application in the same controller and/or second application verification information based on the target calling application and the target called application in different controllers;

and receiving a communication authority verification result fed back by the communication decision module, and performing communication management on the target calling application according to the communication authority verification result.

Of course, those skilled in the art can understand that the processor may also implement the technical solution of the sample data obtaining method provided in any embodiment of the present invention.

EXAMPLE five

The fifth embodiment provides a computer-readable storage medium, on which a computer program is stored, where the computer program, when executed by a processor, implements, for example, the steps of an application communication management method provided in this embodiment, where the application communication management method includes:

Computer storage media for embodiments of the invention may employ any combination of one or more computer-readable media. The computer readable medium may be a computer readable signal medium or a computer readable storage medium. The computer-readable storage medium may be, for example but not limited to: an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination thereof. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: an electrical connection having one or more wires, a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing. In the context of this document, a computer readable storage medium may be any tangible medium that can contain, or store a program for use by or in connection with an instruction execution system, apparatus, or device.

A computer readable signal medium may include a propagated data signal with computer readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A computer readable signal medium may also be any computer readable medium that is not a computer readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device.

Program code embodied on a computer readable medium may be transmitted using any appropriate medium, including but not limited to: wireless, wire, fiber optic cable, RF, etc., or any suitable combination of the foregoing.

Computer program code for carrying out operations for aspects of the present invention may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, Smalltalk, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider).

It will be understood by those skilled in the art that the modules or steps of the invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of computing devices, and optionally they may be implemented by program code executable by a computing device, such that it may be stored in a memory device and executed by a computing device, or it may be separately fabricated into various integrated circuit modules, or it may be fabricated by fabricating a plurality of modules or steps thereof into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.

It is to be noted that the foregoing is only illustrative of the preferred embodiments of the present invention and the technical principles employed. It will be understood by those skilled in the art that the present invention is not limited to the particular embodiments described herein, but is capable of various obvious changes, rearrangements and substitutions as will now become apparent to those skilled in the art without departing from the scope of the invention. Therefore, although the present invention has been described in greater detail by the above embodiments, the present invention is not limited to the above embodiments, and may include other equivalent embodiments without departing from the spirit of the present invention, and the scope of the present invention is determined by the scope of the appended claims.

Claims

1. An application communication management system, comprising: the communication management module and the communication decision module; wherein the communication management module comprises a right management submodule and a communication execution submodule,

2. The system of claim 1, wherein the first application verification information comprises: at least one of an application identifier of the target calling application, a communication protocol type adopted by the target calling application when sending a calling request, a communication service identifier executed by the target calling application when sending the calling request, an operation behavior type executed by the target calling application when sending the calling request, and a data encryption type adopted by the target calling application when sending the calling request;

the second application verification information further includes, on the basis of the first verification information: at least one of the calling authority of the target calling application, the called authority of the target called request, the calling IP address of the target calling application when sending the calling request, the called IP address of the target called application, the IP port number used by the target calling application when sending the calling request and the called port number used by the target called application when receiving the calling.

3. The system of claim 1, further comprising an execution management module; wherein,

the execution management module is used for configuring a unique application identifier for the target calling application before the target calling application sends a calling request.

4. The system according to claim 1, wherein the communication decision module is further configured to obtain a preset application authorization database, and determine a communication permission verification result of the target calling application based on the application authorization database and the application verification information of the target calling application.

5. The system according to claim 1, wherein the communication right verification result includes an authorized communication and a rejected communication;

correspondingly, the authority management submodule is used for allowing the target calling application to communicate with the target called application if the communication authority verification result is determined to be authorized communication;

6. The system of claim 1, further comprising an application verification module; wherein,

the application verification module is used for verifying whether the target calling application needs to carry out communication authority verification when sending the calling request.

7. An application communication management method is applied to a communication management module, and comprises the following steps:

monitoring a calling request sent by a target calling application to an authority management submodule; wherein the calling request is used for calling a target called application based on the authority management submodule;

8. An application communication management apparatus, comprising:

9. An electronic device, comprising:

one or more processors;

a storage device for storing one or more programs,

when executed by the one or more processors, cause the one or more processors to implement the application communication management method as recited in claim 7.

10. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out the method for application communication management as claimed in claim 7.