CN115294677A - A kind of vehicle control method and system based on digital key - Google Patents
A kind of vehicle control method and system based on digital keyDownload PDFInfo
- Publication number
- CN115294677A CN115294677ACN202210831053.2ACN202210831053ACN115294677ACN 115294677 ACN115294677 ACN 115294677ACN 202210831053 ACN202210831053 ACN 202210831053ACN 115294677 ACN115294677 ACN 115294677A
- Authority
- CN
- China
- Prior art keywords
- vehicle
- digital key
- cloud
- mobile terminal
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00182—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated with unidirectional data transmission between data carrier and locks
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R25/00—Fittings or systems for preventing or indicating unauthorised use or theft of vehicles
- B60R25/20—Means to switch the anti-theft system on or off
- B60R25/2018—Central base unlocks or authorises unlocking
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R25/00—Fittings or systems for preventing or indicating unauthorised use or theft of vehicles
- B60R25/20—Means to switch the anti-theft system on or off
- B60R25/24—Means to switch the anti-theft system on or off using electronic identifiers containing a code not memorised by the user
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00571—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by interacting with a central unit
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
- H04L67/125—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks involving control of end-device applications over a network
- B—PERFORMING OPERATIONS; TRANSPORTING
- B60—VEHICLES IN GENERAL
- B60R—VEHICLES, VEHICLE FITTINGS, OR VEHICLE PARTS, NOT OTHERWISE PROVIDED FOR
- B60R2325/00—Indexing scheme relating to vehicle anti-theft devices
- B60R2325/10—Communication protocols, communication systems of vehicle anti-theft devices
- B60R2325/108—Encryption
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computing Systems (AREA)
- Signal Processing (AREA)
- Mechanical Engineering (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- General Engineering & Computer Science (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Lock And Its Accessories (AREA)
Abstract
Description
Translated fromChinese技术领域technical field
本发明涉及数字钥匙技术领域,尤其涉及一种基于数字钥匙的车辆控制方法及系统。The present invention relates to the technical field of digital keys, in particular to a vehicle control method and system based on digital keys.
背景技术Background technique
随着无线通信、云计算及加解密等技术的发展,对于汽车数字钥匙的发展提供了良好的技术支持,现有车辆数字钥匙系统采用密码机以及车辆、用户等因子生成一把数字钥匙,再通过复杂的鉴权方式以及对称加密的方式进行控车指令的加密和解密,这种方法对MCU性能及系统算力的要求较高,且由于算法的加密解密过程较为繁杂,影响车机与外界的通信效率及指令运算效率,增加数字钥匙的生成及使用成本,且严重依赖网络,不利于用户的使用体验。With the development of wireless communication, cloud computing and encryption and decryption technologies, it provides good technical support for the development of car digital keys. The existing vehicle digital key system uses cipher machines, vehicles, users and other factors to generate a digital key, and then Encryption and decryption of car control commands are performed through complex authentication methods and symmetric encryption methods. This method has high requirements on MCU performance and system computing power, and because the encryption and decryption process of the algorithm is relatively complicated, it affects the car and the outside world. The communication efficiency and command operation efficiency are high, the cost of generating and using the digital key is increased, and it relies heavily on the network, which is not conducive to the user experience.
因此,现有技术还有待于进一步发展。Therefore, the prior art has yet to be further developed.
发明内容Contents of the invention
针对上述技术问题,本发明提供了一种基于数字钥匙的车辆控制方法及系统,可大幅降低对MCU性能及系统算力的要求,降低单个数字钥匙生成成本,同时提高车机与外界的通信效率及指令运算效率。In view of the above technical problems, the present invention provides a digital key-based vehicle control method and system, which can greatly reduce the requirements on MCU performance and system computing power, reduce the cost of generating a single digital key, and improve the communication efficiency between the vehicle and the outside world and command efficiency.
本发明的第一方面,提供一种基于数字钥匙的车辆控制方法,应用于移动终端,所述方法包括:A first aspect of the present invention provides a digital key-based vehicle control method applied to a mobile terminal, the method comprising:
向云端发送用户登录信息,所述用户登录信息至少用于使所述移动终端绑定车辆;sending user login information to the cloud, where the user login information is at least used to bind the mobile terminal to the vehicle;
接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙校验信息;Receive the digital key package issued by the cloud, and send the vehicle control vehicle device instruction to the vehicle end, the vehicle control vehicle device instruction includes the one-time digital key verification information in the digital key package;
基于所述一次性数字钥匙与车辆端进行钥匙校验动作;Carry out a key verification action based on the one-time digital key and the vehicle end;
若校验成功,执行所述车控车设指令,删除使用后的所述一次性数字钥匙;If the verification is successful, execute the vehicle control and vehicle setting instruction, and delete the used one-time digital key;
若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,向云端发送更新密钥请求,接收更新后的数字钥匙包。If the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, a key update request is sent to the cloud to receive the updated digital key bag.
可选地,所述向云端发送用户登录信息,包括:Optionally, the sending user login information to the cloud includes:
建立与云端的第一安全通信通道及第一数字证书,所述第一安全通信通道用于建立与云端之间的第一通信联系,所述第一数字证书用于所述第一通信联系的凭证;Establish a first secure communication channel with the cloud and a first digital certificate, the first secure communication channel is used to establish a first communication link with the cloud, and the first digital certificate is used for the first communication link certificate;
若所述第一数字证书过期,移动终端向云端申请更新第一数字证书。If the first digital certificate expires, the mobile terminal applies to the cloud for updating the first digital certificate.
可选地,所述方法还包括:Optionally, the method also includes:
在第一数字证书有效期内,基于第一安全通信通道,移动终端将所述用户登录信息发送至云端,云端将所述用户登录信息与车辆登录信息进行信息验证,若验证成功,移动终端接收车辆端的绑定申请。During the validity period of the first digital certificate, based on the first secure communication channel, the mobile terminal sends the user login information to the cloud, and the cloud verifies the user login information and the vehicle login information. If the verification is successful, the mobile terminal receives the vehicle registration information. End binding application.
可选地,所述用户登录信息,包括:用户账号、用户密码,所述一次性数字钥匙至少基于VIN、SN码、用户手机号生成。Optionally, the user login information includes: user account number and user password, and the one-time digital key is at least generated based on VIN, SN code, and user mobile phone number.
可选地,所述用户登录信息至少用于使所述移动终端绑定车辆,还包括:Optionally, the user login information is at least used to bind the mobile terminal to the vehicle, and further includes:
向云端发送解绑请求,接收云端的删除一次性数字钥匙指令。Send an unbinding request to the cloud, and receive the command to delete the one-time digital key from the cloud.
可选地,所述接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙,包括:Optionally, receiving the digital key package sent by the cloud, and sending a vehicle-controlled vehicle device instruction to the vehicle end, the vehicle-controlled vehicle device command includes the one-time digital key in the digital key package, including:
所述数字钥匙包中包括至少一把一次性数字钥匙;The digital key bag includes at least one one-time digital key;
所述数字钥匙包中的一次性数字钥匙携带的车控车设指令用于的场景包括车辆解锁场景、车辆锁定场景和/或车辆启动场景。The scene used for the instruction of the vehicle control device carried by the one-time digital key in the digital key bag includes a vehicle unlocking scene, a vehicle locking scene and/or a vehicle starting scene.
本发明的第二方面,提供一种基于数字钥匙的车辆控制系统,应用于移动终端,所述系统包括:The second aspect of the present invention provides a vehicle control system based on a digital key, which is applied to a mobile terminal, and the system includes:
第一发送模块,用于向云端发送用户登录信息,向云端发送解绑请求,向云端发送密钥请求和/或向车辆端发送车控车设指令;The first sending module is used to send user login information to the cloud, send an unbinding request to the cloud, send a key request to the cloud, and/or send a vehicle control vehicle device instruction to the vehicle end;
第一接收模块,用于接收云端的删除一次性数字钥匙指令;The first receiving module is used to receive the command to delete the one-time digital key from the cloud;
第一执行模块,用于接收、删除一次性数字钥匙,用于反馈所述车控车设指令,删除使用后的所述一次性数字钥匙。The first execution module is used to receive and delete the one-time digital key, and is used to feed back the instruction of the vehicle control device and delete the used one-time digital key.
本发明的第三方面,提供一种基于数字钥匙的车辆控制方法,应用于云端,所述方法包括:A third aspect of the present invention provides a digital key-based vehicle control method applied to the cloud, the method comprising:
接收移动终端发出的用户登录信息,所述用户登录信息至少用于进行身份校验认证;receiving user login information sent by the mobile terminal, where the user login information is at least used for identity verification and authentication;
若身份校验认证成功,基于移动终端或车辆端的密钥请求,分别下发数字钥匙包,所述密钥请求包括生成密钥请求和更新密钥请求。If the identity verification and authentication is successful, the digital key bag is issued respectively based on the key request of the mobile terminal or the vehicle, and the key request includes a key generation request and a key update request.
可选地,所述接收移动终端发出的用户登录信息之前,还包括:Optionally, before receiving the user login information sent by the mobile terminal, it also includes:
建立与移动终端之间的第一安全通信通道及第一数字证书,所述第一安全通信通道用于建立与移动终端之间的第一通信联系,所述第一数字证书用于所述第一通信联系的凭证;Establishing a first secure communication channel and a first digital certificate with the mobile terminal, the first secure communication channel is used to establish a first communication link with the mobile terminal, and the first digital certificate is used for the first - evidence of correspondence;
若所述第一数字证书过期,云端向移动终端发送更新后的第一数字证书;If the first digital certificate expires, the cloud sends an updated first digital certificate to the mobile terminal;
建立与车辆端之间的第二安全通信通道及第二数字证书,所述第二安全通信通道用于建立与车辆端之间的第二通信联系,所述第二数字证书用于所述第二通信联系的凭证;Establish a second secure communication channel and a second digital certificate with the vehicle end, the second secure communication channel is used to establish a second communication link with the vehicle end, and the second digital certificate is used for the first 2. Credentials for correspondence;
若所述第二数字证书过期,云端向车辆端发送更新后的第二数字证书。If the second digital certificate expires, the cloud sends an updated second digital certificate to the vehicle.
可选地,基于移动终端或车辆端的密钥请求,分别下发数字钥匙包,所述请求包括生成密钥请求和更新密钥请求,包括:Optionally, based on the key request of the mobile terminal or the vehicle end, the digital key bag is issued respectively, and the request includes a key generation request and a key update request, including:
所述数字钥匙包内分别各包含至少一把一次性数字钥匙。Each of the digital key bags contains at least one one-time digital key.
可选地,所述用户登录信息至少用于进行身份校验认证,包括:Optionally, the user login information is at least used for identity verification and authentication, including:
基于用户登录信息,接收移动终端和车辆端的请求绑定申请和解除绑定申请。Based on the user login information, the mobile terminal and the vehicle end request binding application and unbinding application are received.
可选地,所述解除绑定申请,包括:Optionally, the unbinding application includes:
接收移动终端和/或车辆端的解除绑定请求,发送移动终端和/或车辆端删除一次性数字钥匙的指令。Receive an unbinding request from the mobile terminal and/or the vehicle, and send an instruction to delete the one-time digital key from the mobile terminal and/or the vehicle.
本发明的第四方面,提供一种基于数字钥匙的车辆控制系统,应用于云端,所述系统包括:According to the fourth aspect of the present invention, a digital key-based vehicle control system is provided, which is applied to the cloud, and the system includes:
第二接收模块,用于接收用户登录信息;The second receiving module is used to receive user login information;
第二执行模块,用于进行身份校验验证;The second execution module is used for identity verification and verification;
第二发送模块,用于发送数字钥匙包,所述数字钥匙包包括至少一把一次性数字钥匙。The second sending module is used to send the digital key bag, and the digital key bag includes at least one one-time digital key.
本发明的第五方面,提供一种基于数字钥匙的车辆控制方法,应用于车辆端,所述方法包括:According to the fifth aspect of the present invention, a digital key-based vehicle control method is provided, which is applied to the vehicle end, and the method includes:
向云端发送车辆登录信息,所述车辆登录信息至少用于使所述云端验证车辆端身份;Sending vehicle login information to the cloud, where the vehicle login information is at least used to enable the cloud to verify the identity of the vehicle;
接收云端下发的数字钥匙包,校验移动终端发送的车控车设指令,所述校验包括使用所述数字钥匙包中的一次性数字钥匙;Receiving the digital key bag issued by the cloud, and verifying the car control and car setting instructions sent by the mobile terminal, the verification includes using the one-time digital key in the digital key bag;
基于所述一次性数字钥匙对移动终端进行钥匙校验动作;Performing a key verification action on the mobile terminal based on the one-time digital key;
若校验成功,执行所述车控车设指令,删除使用后的所述一次性数字钥匙;If the verification is successful, execute the vehicle control and vehicle setting instruction, and delete the used one-time digital key;
若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,向云端发送更新密钥请求,接收更新后的数字钥匙包。If the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, a key update request is sent to the cloud to receive the updated digital key bag.
可选地,所述向云端发送用户登录信息之前,还包括:Optionally, before sending the user login information to the cloud, it also includes:
建立与云端之间的第二安全通信通道及第二数字证书,所述第二安全通信通道用于建立与云端之间的第二通信联系,所述第二数字证书用于所述第二通信联系的凭证;Establishing a second secure communication channel and a second digital certificate with the cloud, the second secure communication channel is used to establish a second communication link with the cloud, and the second digital certificate is used for the second communication proof of contact;
若所述第二数字证书过期,车辆端向云端申请更新第二数字证书。If the second digital certificate expires, the vehicle end applies to the cloud for updating the second digital certificate.
可选地,所述若校验成功,执行所述车控车设指令,包括:Optionally, if the verification is successful, executing the vehicle control vehicle device instruction includes:
执行所述车控车设指令后,向移动终端发送车控车设反馈指令。After executing the vehicle-controlled vehicle-device instruction, a vehicle-controlled vehicle-set feedback instruction is sent to the mobile terminal.
可选地,所述接收云端下发的数字钥匙包,校验移动终端发送的车控车设指令,包括:Optionally, the receiving the digital key package issued by the cloud, and verifying the vehicle control and vehicle device instructions sent by the mobile terminal include:
所述数字钥匙包中包含至少一把一次性数字钥匙。The digital key bag contains at least one one-time digital key.
可选地,所述基于所述一次性数字钥匙对移动终端进行钥匙校验动作,包括:Optionally, performing key verification on the mobile terminal based on the one-time digital key includes:
所述钥匙校验动作包括使用至少一把一次性数字钥匙与车控车设指令进行验证,所述车控车设指令包括至少一把一次性数字钥匙。The key verification action includes using at least one one-time digital key and a vehicle-controlled vehicle device instruction to verify, and the vehicle-controlled vehicle device instruction includes at least one one-time digital key.
本发明的第六方面,一种基于数字钥匙的车辆控制系统,应用于车辆端,所述系统包括:According to the sixth aspect of the present invention, a vehicle control system based on a digital key is applied to the vehicle end, and the system includes:
第三发送模块,用于向云端发送用户登录信息;The third sending module is used to send user login information to the cloud;
第三接收模块,用于接收云端下发的数字钥匙包;The third receiving module is used to receive the digital key bag issued by the cloud;
校验模块,用于校验移动终端发送的车控车设指令,所述校验包括使用所述数字钥匙包中的一次性数字钥匙;A verification module, configured to verify the vehicle control and vehicle setting instructions sent by the mobile terminal, the verification includes using the one-time digital key in the digital key bag;
第三执行模块,执行所述车控车设指令,删除使用后的所述一次性数字钥匙。The third execution module executes the vehicle control and vehicle equipment instruction, and deletes the used one-time digital key.
本发明的第七方面,一种基于数字钥匙的车辆控制系统,包括移动终端、云端与车辆端,According to the seventh aspect of the present invention, a digital key-based vehicle control system includes a mobile terminal, a cloud and a vehicle terminal,
移动终端或车辆端向云端发送用户登录信息,所述用户登录信息至少用于使所述移动终端绑定车辆;The mobile terminal or the vehicle end sends user login information to the cloud, and the user login information is at least used to bind the mobile terminal to the vehicle;
云端接收移动终端或车辆端发出的用户登录信息并身份校验,若身份校验认证成功,基于移动终端或车辆端的密钥请求,分别下发数字钥匙包,所述密钥请求包括生成密钥请求和更新密钥请求;The cloud receives the user login information sent by the mobile terminal or the vehicle and verifies the identity. If the identity verification is successful, a digital key bag is issued based on the key request of the mobile terminal or the vehicle. The key request includes generating a key requests and rekey requests;
移动终端接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙;The mobile terminal receives the digital key package issued by the cloud, and sends a vehicle control vehicle device instruction to the vehicle end, and the vehicle control vehicle device command includes the one-time digital key in the digital key package;
基于所述一次性数字钥匙与车辆端进行钥匙校验动作;Carry out a key verification action based on the one-time digital key and the vehicle end;
若校验成功,车辆端执行所述车控车设指令,移动端与车辆端删除使用后的所述一次性数字钥匙;If the verification is successful, the vehicle terminal executes the vehicle control vehicle setting instruction, and the mobile terminal and the vehicle terminal delete the used one-time digital key;
若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,移动终端或车辆端向云端发送更新密钥请求,移动终端与车辆端接收更新后的数字钥匙包。If the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, the mobile terminal or the vehicle end sends a key update request to the cloud, and the mobile terminal and the vehicle end receive the updated digital key bag.
本发明提供的技术方案中,通过云端生成依托移动终端和车辆端的数字钥匙包,将数字钥匙包中包含的一次性数字钥匙分发给移动终端和车辆端,每次使用一把一次性数字钥匙就销毁一把,可及时清理内存数据,提高运行效率,且车辆无需复杂的鉴权过程及加解密过程,提高了鉴权效率,降低了对运算资源的消耗,由于移动终端和车辆端会一次性接收来自云端的数字钥匙包,所以在使用时可以支持长时间无网络情况下的使用,减少了对网络的依赖性。In the technical solution provided by the present invention, the digital key bag relying on the mobile terminal and the vehicle end is generated through the cloud, and the one-time digital key contained in the digital key bag is distributed to the mobile terminal and the vehicle end. Destroying one can clean up the memory data in time and improve the operating efficiency, and the vehicle does not need complicated authentication process and encryption and decryption process, which improves the authentication efficiency and reduces the consumption of computing resources. Receive the digital key package from the cloud, so it can support the use without network for a long time, reducing the dependence on the network.
附图说明Description of drawings
图1为本发明实施例中一种基于数字钥匙的车辆控制方法的流程示意图;FIG. 1 is a schematic flow chart of a digital key-based vehicle control method in an embodiment of the present invention;
图2为本发明实施例中一种基于数字钥匙的车辆控制系统的模块示意图;2 is a block diagram of a vehicle control system based on a digital key in an embodiment of the present invention;
图3为本发明实施例中又一基于数字钥匙的车辆控制方法的流程示意图;FIG. 3 is a schematic flowchart of another digital key-based vehicle control method in an embodiment of the present invention;
图4为本发明实施例中又一基于数字钥匙的车辆控制系统的模块示意图;4 is a block diagram of another digital key-based vehicle control system in an embodiment of the present invention;
图5为本发明实施例中又一基于数字钥匙的车辆控制方法的流程示意图;FIG. 5 is a schematic flowchart of another digital key-based vehicle control method in an embodiment of the present invention;
图6为本发明实施例中又一基于数字钥匙的车辆控制系统的模块示意图。FIG. 6 is a block diagram of another digital key-based vehicle control system according to an embodiment of the present invention.
具体实施方式Detailed ways
下面将结合本发明实施例中的附图,对本发明实施例中的技术方案进行清楚、完整地描述,显然,所描述的实施例仅仅是本发明一部分实施例,而不是全部的实施例。基于本发明中的实施例,本领域技术人员在没有作出创造性劳动前提下所获得的所有其他实施例,都属于本发明保护的范围。The following will clearly and completely describe the technical solutions in the embodiments of the present invention with reference to the accompanying drawings in the embodiments of the present invention. Obviously, the described embodiments are only some, not all, embodiments of the present invention. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative efforts fall within the protection scope of the present invention.
请参阅图1,本发明提供一种基于数字钥匙的车辆控制方法,应用于移动终端,所述方法包括以下步骤:Please refer to Fig. 1, the present invention provides a kind of vehicle control method based on digital key, is applied to mobile terminal, and described method comprises the following steps:
步骤110:向云端发送用户登录信息,所述用户登录信息至少用于使所述移动终端绑定车辆;Step 110: sending user login information to the cloud, where the user login information is at least used to bind the mobile terminal to a vehicle;
具体的,所述移动终端包括手机、笔记本、平板电脑、车载电脑等。具体的,所述移动终端可以基于动态图形界面的显示,查阅实时动态界面,如用户注册界面、用户登录界面、车控车设指令界面、数字钥匙使用界面等,基于所述移动终端的显示和交互,可以将数字钥匙以及用户操作清楚展示,提高用户的感知能力及使用体验。Specifically, the mobile terminal includes a mobile phone, a notebook, a tablet computer, a vehicle-mounted computer, and the like. Specifically, the mobile terminal can consult the real-time dynamic interface based on the display of the dynamic graphical interface, such as the user registration interface, the user login interface, the vehicle control vehicle setting command interface, the digital key use interface, etc., based on the display and Interaction can clearly display the digital key and user operations, improving the user's perception and experience.
详细地,所述移动终端向云端发送用户登录信息之前,用户需要通过移动终端进行信息注册,具体的,用户将用户注册信息输入移动终端,移动终端将所述用户注册信息发送至云端,并基于云端的反馈,在移动终端告知用户注册结果,如果注册成功,移动终端显示登录界面,如果登录失败,需要移动终端显示注册失败界面并提醒用户可进行重新输入注册。所述用户登录信息至少包括用户账号和用户密码。其中,用户注册信息包括用户手机号、VIN、SN。具体的,VIN具体指车辆识别号码(Vehicle Identification Number,或车架号码),简称VIN,是一组由十七个字母或数字组成,用于汽车上的一组独一无二的号码,可以识别汽车的生产商、引擎、底盘序号及其他性能等资料。Specifically, before the mobile terminal sends user login information to the cloud, the user needs to register information through the mobile terminal. Specifically, the user inputs the user registration information into the mobile terminal, and the mobile terminal sends the user registration information to the cloud, and based on The feedback from the cloud is to inform the user of the registration result on the mobile terminal. If the registration is successful, the mobile terminal displays the login interface. If the login fails, the mobile terminal needs to display the registration failure interface and remind the user to re-enter the registration. The user login information includes at least a user account and a user password. Wherein, the user registration information includes the user's mobile phone number, VIN, and SN. Specifically, VIN specifically refers to the vehicle identification number (Vehicle Identification Number, or VIN), referred to as VIN, which is a set of 17 letters or numbers and is used on a car. A set of unique numbers that can identify the car Manufacturer, engine, chassis serial number and other performance information.
SN具体指是Serial Number的缩写,有时也叫SerialNo,也就是产品序列号,产品序列是为了验证“产品的合法身份”而引入的一个概念,它是用来保障用户的正版权益,享受合法服务的;一套正版的产品只对应一组产品序列号。SN specifically refers to the abbreviation of Serial Number, sometimes called SerialNo, which is the product serial number. Product serial is a concept introduced to verify the "legal identity of the product". It is used to protect the legitimate rights and interests of users and enjoy legal services. A set of genuine products only corresponds to a set of product serial numbers.
进一步的,为提高用户登录信息的稳定性和准确性,用户注册信息还可以包括用户的个人身份信息等,如身份证号、护照号等。Furthermore, in order to improve the stability and accuracy of the user's login information, the user's registration information may also include the user's personal identity information, such as ID number, passport number, etc.
同理,所述移动终端绑定车辆之前,车辆端将包括VIN、SN、车辆归属人信息等发送至云端进行车辆端信息的注册,并基于云端的反馈,获得车辆登录信息,车辆登录信息包括车辆账号和车辆密码,具体的,所述车辆注册信息可在车辆出厂时设置、购车时安装或者系统更新时获得。在此,用户登录信息和车辆登录信息具有互相关联的信息支撑,也为后续云端对二者进行绑定等提供了信息基础。Similarly, before the mobile terminal is bound to the vehicle, the vehicle terminal will send information including VIN, SN, and vehicle owner information to the cloud to register the vehicle terminal information, and obtain vehicle registration information based on the feedback from the cloud. The vehicle registration information includes Vehicle account number and vehicle password. Specifically, the vehicle registration information can be set when the vehicle leaves the factory, installed when the vehicle is purchased, or obtained when the system is updated. Here, the user login information and the vehicle login information have interrelated information support, which also provides an information basis for the subsequent cloud binding of the two.
在此,通过将移动终端和车辆端各自通过登录信息在云端进行验证可以使移动终端和车辆端互相独立,保持信息的安全性、便捷性和稳定性,最后,云端根据移动终端的用户登录信息和车辆端的车辆登录信息,进行绑定。Here, by verifying the mobile terminal and the vehicle side through the login information on the cloud, the mobile terminal and the vehicle side can be independent of each other, and the security, convenience and stability of the information can be maintained. Finally, the cloud can Bind with the vehicle login information on the vehicle side.
具体绑定方式为,云端通过预留的移动终端用户注册信息验证用户登录信息,通过预留的车辆端注册信息验证车辆登录信息,当移动终端接收到用户指令传递给云端,云端接受用户指令,并基于车辆端信息完成绑定,值得说明的是,移动终端和车辆端绑定的原则可以是基于移动终端和车辆端的用户登录信息或用户注册信息涉及到的共同信息例如VIN等作为验证标准,以此获得绑定支持。The specific binding method is that the cloud verifies the user login information through the reserved mobile terminal user registration information, and verifies the vehicle login information through the reserved vehicle registration information. When the mobile terminal receives the user instruction and transmits it to the cloud, the cloud accepts the user instruction. And the binding is completed based on the information on the vehicle side. It is worth noting that the principle of binding between the mobile terminal and the vehicle side can be based on the user login information or the common information involved in the user registration information of the mobile terminal and the vehicle side, such as VIN, as the verification standard. Get binding support with this.
S102:接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙校验指令。S102: Receive the digital key package issued by the cloud, and send a vehicle control vehicle device command to the vehicle end, the vehicle control vehicle device command includes a one-time digital key verification command in the digital key package.
在该步骤中,所述云端下发的数字钥匙包主要依赖车辆信息和用户信息生成,如VIN、SN、手机号等生成数字钥匙。所述数字钥匙包包括云端下发给移动终端的数字钥匙包和下发给车辆端的数字钥匙包,二者数量相同。In this step, the digital key package issued by the cloud is mainly generated based on vehicle information and user information, such as VIN, SN, mobile phone number, etc. to generate a digital key. The digital key package includes the digital key package issued by the cloud to the mobile terminal and the digital key package issued to the vehicle, both of which have the same number.
进一步的,移动终端基于用户的输入操作,向车辆端发送车控车设指令。Further, the mobile terminal sends a vehicle control vehicle device instruction to the vehicle terminal based on the user's input operation.
所述车控车设指令具体包括用户解锁车辆指令、用户启动车辆指令、用户锁定车辆指令,即移动终端向车辆端发送车控车设指令时,会同时调用移动终端中的一次性数字钥匙,例如,当用户想启动车辆的时候,移动终端会向车辆端发送用户启动车辆指令及调用的一次性数字钥匙两类信息,可以理解的是,所述调用的一次性数字钥匙可以作为移动终端发送给车辆端的密码,车辆端对一次性数字钥匙进行解密,解密成功,车辆端才可以执行移动终端发送给车辆端的车控车设指令,如用户启动车辆指令,在此,基于此方法,可以保证其鉴权的稳定性和简便性及解决传统数字钥匙健全的复杂性。The vehicle control and vehicle setting instructions specifically include the user's unlocking vehicle instruction, the user's starting vehicle instruction, and the user's locking vehicle instruction, that is, when the mobile terminal sends the vehicle control and vehicle setting instruction to the vehicle end, it will call the one-time digital key in the mobile terminal at the same time, For example, when the user wants to start the vehicle, the mobile terminal will send two types of information to the vehicle end, the user's start vehicle instruction and the called one-time digital key. It can be understood that the called one-time digital key can be sent as a mobile terminal. Give the password to the vehicle side, and the vehicle side will decrypt the one-time digital key. If the decryption is successful, the vehicle side can execute the vehicle control and vehicle setting instructions sent by the mobile terminal to the vehicle side. For example, the user starts the vehicle command. Here, based on this method, it can be guaranteed The stability and simplicity of its authentication solve the complexity of traditional digital keys.
S103:基于所述一次性数字钥匙与车辆端进行钥匙校验动作;S103: Perform a key verification action based on the one-time digital key and the vehicle end;
举例而言,当用户在操作移动终端实现解锁车辆的时候,移动终端会从移动终端数字钥匙包中提取一把一次性数字钥匙用以携带校验信息,并和用户解锁车辆指令一起传输给车辆端,车辆端可以接收到移动终端的车控车设指令的请求,并将移动终端所发出的一次性数字钥匙校验信息与车辆端的一次性数字钥匙进行校验。车辆端中多把一次性钥匙中的一个与移动终端发来的一把一次性钥匙匹配,即完成校验。For example, when the user is operating the mobile terminal to unlock the vehicle, the mobile terminal will extract a one-time digital key from the mobile terminal digital key bag to carry the verification information, and transmit it to the vehicle together with the user's unlocking vehicle command On the vehicle end, the vehicle end can receive the request of the mobile terminal's vehicle control device instruction, and verify the one-time digital key verification information sent by the mobile terminal with the one-time digital key on the vehicle end. One of the multiple one-time keys in the vehicle end matches one of the one-time keys sent by the mobile terminal, that is, the verification is completed.
S104:若校验成功,执行所述车控车设指令,删除使用后的所述一次性数字钥匙;S104: If the verification is successful, execute the vehicle control vehicle device instruction, and delete the used one-time digital key;
与现有技术不同的是,当车辆端的数字钥匙对移动终端的一次性数字钥匙校验信息校验成功后,车辆端会根据移动终端发出的车控车设指令执行并反馈给移动终端执行完毕的信号,此外,在执行完任务后,移动终端与车辆端会删除使用后的一次性数字钥匙。Different from the existing technology, when the digital key at the vehicle end successfully verifies the one-time digital key verification information of the mobile terminal, the vehicle end will execute according to the vehicle control and vehicle setting instructions sent by the mobile terminal and feedback to the mobile terminal to complete the execution In addition, after the task is completed, the mobile terminal and the vehicle end will delete the used one-time digital key.
通过该方式,移动终端数字钥匙包内的数字钥匙会根据车控车设的指令的执行而逐渐减少,且经过校验后减少了传统数字钥匙需要加密解密等的操作,降低了对系统微控制单元算力的要求,提高了内存空间,保障了移动终端及车辆端的空间安全,提供一种新的车辆控制方式。In this way, the digital keys in the digital key bag of the mobile terminal will be gradually reduced according to the execution of the instructions of the car control device, and after verification, the traditional digital keys need to be encrypted and decrypted, etc., reducing the need for system micro-control. The requirement of unit computing power increases the memory space, ensures the space security of mobile terminals and vehicles, and provides a new vehicle control method.
S105:若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,向云端发送更新密钥请求,接收更新后的数字钥匙包。S105: If the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, send a key update request to the cloud, and receive the updated digital key bag.
在本发明提供的方法中,通过对移动终端数字钥匙包中的一次性钥匙的数量进行限定,在考虑汽车本身的内存空间、计算速率和执行效率等的基础上设定预设数字钥匙容量阈值,当移动终端数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值时,移动终端会向云端发送更新密钥请求,云端会发送更新后的数字钥匙包。例如移动终端数字钥匙包中的钥匙总量为10把,预设数字钥匙容量阈值为3把,当移动终端数字钥匙包中的钥匙总量为2把时,移动终端会向云端发送更新密钥请求,云端会接收到更新密钥请求后向移动终端发送更新后的数字钥匙包,更新后的数字钥匙包的数量可以仍旧为10把,值得注意的是,云端会在接收移动终端的更新密钥请求时,同时接收来自车辆端的更新密钥请求,若云端未接收到两者中的任何一个更新密钥请求,云端会报错,例如云端会向移动终端交互界面或车辆端显示屏中发送提示信息,保证数字钥匙的安全性与稳定性。In the method provided by the present invention, by limiting the number of one-time keys in the digital key bag of the mobile terminal, the preset digital key capacity threshold is set on the basis of considering the memory space, calculation rate and execution efficiency of the car itself , when the number of one-time digital keys in the digital key bag of the mobile terminal is lower than the preset digital key capacity threshold, the mobile terminal will send a key update request to the cloud, and the cloud will send the updated digital key bag. For example, the total number of keys in the digital key bag of the mobile terminal is 10, and the preset digital key capacity threshold is 3. When the total number of keys in the digital key bag of the mobile terminal is 2, the mobile terminal will send an updated key to the cloud request, the cloud will send the updated digital key package to the mobile terminal after receiving the key update request, and the number of updated digital key packages can still be 10. When the key is requested, the key update request is received from the vehicle at the same time. If the cloud does not receive any one of the two update key requests, the cloud will report an error. For example, the cloud will send a prompt to the mobile terminal interface or the vehicle display. information to ensure the security and stability of the digital key.
有鉴于此,本发明在保证车机及用户的信息安全的前提下,其采用的方法对系统的运算能力要求较低,无需消耗太多运算资源,为车内其他资源提供了计算空间,且该控制方法不依赖于复杂的加码解码过程,无论是移动终端还是车辆端,一定时间内只需要请求云端一次设置钥匙即可,且移动终端和车辆端之间对数字钥匙的校核形成安全的闭环网络,提高了动作的响应效率,也提高了健全效率,由于数字钥匙包囊括了移动终端一段时间的车控车设指令,所以在使用时可以不实时依赖车辆是否连接网络,可以支持在长时间无网络的情况下使用数字钥匙的要求,进而达成移动终端、车辆端二者的稳定交互操作。In view of this, under the premise of ensuring the information security of the car and the user, the method adopted by the present invention has lower requirements on the computing power of the system, does not need to consume too many computing resources, and provides computing space for other resources in the car, and This control method does not depend on the complicated code-encoding and decoding process. Whether it is the mobile terminal or the vehicle terminal, it only needs to request the cloud to set the key once within a certain period of time, and the verification of the digital key between the mobile terminal and the vehicle terminal forms a secure The closed-loop network improves the response efficiency of the action, and also improves the sound efficiency. Since the digital key package includes the vehicle control and vehicle setting instructions of the mobile terminal for a period of time, it does not depend on whether the vehicle is connected to the network in real time during use, and can support long-term The requirement of using the digital key when there is no network at any time, and then achieve the stable interactive operation of the mobile terminal and the vehicle terminal.
在一种实施方式中,所述向云端发送用户登录信息,包括:In one embodiment, the sending user login information to the cloud includes:
建立与云端的第一安全通信通道及第一数字证书,所述第一安全通信通道用于建立与云端之间的第一通信联系,所述第一数字证书用于所述第一通信联系的凭证。Establish a first secure communication channel with the cloud and a first digital certificate, the first secure communication channel is used to establish a first communication link with the cloud, and the first digital certificate is used for the first communication link certificate.
若所述第一数字证书过期,移动终端向云端申请更新第一数字证书。If the first digital certificate expires, the mobile terminal applies to the cloud for updating the first digital certificate.
在此,所述第一安全通信通道作为移动终端和云端的媒介,可以将通信信息进行互相交换,所述第一数字证书可以根据用户协议或其他条件比如车辆租赁等设置有效时期,如有效时期结束,第一数字证书会重新发放,通过定时更换第一数字证书,保证移动终端与云端的信息安全,此外,除了用户登录信息需要第一安全通信通道,涉及移动终端和云端的信息交互,如用户注册信息、更新密钥请求等,皆需要第一安全通信通道及第一数字证书共同起作用。Here, the first secure communication channel, as a medium between the mobile terminal and the cloud, can exchange communication information with each other, and the first digital certificate can set a validity period according to user agreements or other conditions such as vehicle leasing, such as the validity period After the end, the first digital certificate will be re-issued. By regularly replacing the first digital certificate, the information security between the mobile terminal and the cloud is guaranteed. In addition, in addition to the user login information requiring the first secure communication channel, information interaction between the mobile terminal and the cloud is involved. User registration information, key update requests, etc. all require the first secure communication channel and the first digital certificate to work together.
在另一种实施方式中,在第一数字证书有效期内,基于第一安全通信通道,移动终端将所述用户登录信息发送至云端,云端将所述用户登录信息与车辆登录信息进行信息验证,若验证成功,移动终端接收车辆端的绑定申请。In another embodiment, within the validity period of the first digital certificate, based on the first secure communication channel, the mobile terminal sends the user login information to the cloud, and the cloud verifies the user login information and the vehicle login information, If the verification is successful, the mobile terminal receives the binding application from the vehicle.
在此,所述用户登录信息中包含用户账号和用户密码,不仅用于登录验证还用于数字钥匙包的生成。所述车辆的登录信息包括车辆账号和车辆密码,可以保证移动终端和车辆端的一对一、多对一、一对多、多对多的一个或者多个端的安全,例如当用户A和用户B均拥有对车辆C的支配权时,可以开展A对云端、B对云端以及C对云端的不同或相同的第一安全通信通道,进一步的,第一安全数字证书也可根据不同的保密要求和等级设置相同或者不同的第一数字证书。移动终端有多个,车辆端接收的数字钥匙可与多个移动终端中的数字钥匙进行验证,从而免去对移动终端或用户身份的验证。Here, the user login information includes a user account and a user password, which are not only used for login verification but also for generation of a digital key bag. The login information of the vehicle includes the vehicle account number and the vehicle password, which can ensure the security of one or more terminals of the mobile terminal and the vehicle terminal, such as one or more terminals, such as when user A and user B When both have control over vehicle C, different or the same first secure communication channels between A and the cloud, B and the cloud, and C and the cloud can be carried out. Furthermore, the first secure digital certificate can also be used according to different confidentiality requirements and levels. Set the same or different first digital certificates. There are multiple mobile terminals, and the digital key received by the vehicle can be verified with the digital keys in multiple mobile terminals, thereby eliminating the need to verify the identity of the mobile terminal or user.
通过上述的第一数字证书和第一安全通信通道的建立,可以将提高移动终端、云端和车辆端三者的安全等级,在前期经过云端的绑定,移动终端和车辆端会基于该绑定关系获得可靠关联。Through the above-mentioned establishment of the first digital certificate and the first secure communication channel, the security level of the mobile terminal, the cloud and the vehicle can be improved. After the binding of the cloud in the early stage, the mobile terminal and the vehicle will be based on the binding Relationships get reliable associations.
在另一种实施方式中,所述用户登录信息,包括:用户账号、用户密码,所述一次性数字钥匙至少基于VIN、SN、用户手机号生成。In another embodiment, the user login information includes: user account number and user password, and the one-time digital key is generated based on at least VIN, SN, and user mobile phone number.
具体的,所述用户账号可以为用户的手机号或基于用户手机号或身份信息自由设定或者系统自定义生成的昵称或代号,所述一次性数字钥匙包括移动终端数字包中的一次性数字钥匙和车辆端中的一次性数字钥匙,至少基于VIN、SN、用户手机号生成;Specifically, the user account can be the user's mobile phone number or a nickname or code freely set based on the user's mobile phone number or identity information or generated by the system, and the one-time digital key includes the one-time digital key in the digital package of the mobile terminal The key and the one-time digital key in the vehicle end, at least based on VIN, SN, and user mobile phone number;
所述VIN指车辆识别号码(Vehicle Identification Number,或车架号码),简称VIN,是一组由十七个字母或数字组成,用于汽车上的一组独一无二的号码,可以识别汽车的生产商、引擎、底盘序号及其他性能等资料;The VIN refers to the vehicle identification number (Vehicle Identification Number, or VIN), referred to as VIN, is a set of 17 letters or numbers, a set of unique numbers used on the car, which can identify the manufacturer of the car , engine, chassis serial number and other performance information;
所述SN为Serial Number的缩写,有时也叫SerialNo,也就是产品序列号,产品序列号是为了验证“产品的合法身份”而引入的一个概念,它是用来保障用户的正版权益,享受合法服务的,一套正版的产品只对应一组产品序列号。The SN is the abbreviation of Serial Number, sometimes called SerialNo, that is, the product serial number. The product serial number is a concept introduced to verify the "legal identity of the product". It is used to protect the legitimate rights and interests of users and enjoy legal For service, a set of genuine products only corresponds to a set of product serial numbers.
因此,一次性数字钥匙将移动终端及其移动终端的输入对象——用户与车辆的信息进行绑定,完成了数字钥匙的连接,为后续数字钥匙在两者中的稳定使用发挥了重要的作用,相较于传统的车辆数字钥匙采用密码机等形式,再通过复杂的鉴权方式以及对称加密的方式进行控车指令的加解密,此方案一定程度上提高了MCU的处理效率和通讯效率。Therefore, the one-time digital key binds the information of the mobile terminal and the input object of the mobile terminal - the user and the vehicle, completes the connection of the digital key, and plays an important role in the stable use of the subsequent digital key in both , compared with the traditional vehicle digital key that uses a cipher machine and other forms, and then encrypts and decrypts the vehicle control instructions through complex authentication methods and symmetric encryption methods, this solution improves the processing efficiency and communication efficiency of the MCU to a certain extent.
在另一种实施方式中,所述用户登录信息至少用于使所述移动终端绑定车辆,还包括:In another embodiment, the user login information is at least used to bind the mobile terminal to the vehicle, and further includes:
向云端发送解绑请求,接收云端的删除一次性数字钥匙指令。Send an unbinding request to the cloud, and receive the command to delete the one-time digital key from the cloud.
具体的,当移动终端需要和车辆端解除绑定的时候,移动终端可以向云端发送解绑请求,当云端接收到解绑请求,并接受后,可以对移动终端和车辆端解除绑定,并向移动终端发送删除一次性数字钥匙的指令,云端通过对移动终端和车辆端的数字钥匙包进行删除,完成移动终端和车辆端的数字钥匙包的清理,净化移动终端、车辆端的内存空间。Specifically, when the mobile terminal needs to be unbound from the vehicle, the mobile terminal can send an unbinding request to the cloud. When the cloud receives and accepts the unbinding request, it can unbind the mobile terminal and the vehicle, and Send the command to delete the one-time digital key to the mobile terminal, and the cloud will delete the digital key package of the mobile terminal and the vehicle to complete the cleaning of the digital key package of the mobile terminal and the vehicle, and purify the memory space of the mobile terminal and the vehicle.
在另一种实施方式中,接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙,包括:In another embodiment, the digital key package issued by the cloud is received, and the vehicle control vehicle equipment instruction is sent to the vehicle end, the vehicle control vehicle equipment instruction includes the one-time digital key in the digital key package, including:
所述数字钥匙包中包括至少一把一次性数字钥匙;The digital key bag includes at least one one-time digital key;
所述数字钥匙包中的一次性数字钥匙携带的车控车设指令用于的场景包括车辆解锁场景、车辆锁定场景、和/或车辆启动场景。The scenarios used for the vehicle control and vehicle device instructions carried by the one-time digital key in the digital key bag include vehicle unlocking scenarios, vehicle locking scenarios, and/or vehicle starting scenarios.
请参阅图2,本发明的第二方面,提供一种基于数字钥匙的车辆控制系统,应用于移动终端,所述系统包括:Please refer to FIG. 2, the second aspect of the present invention provides a digital key-based vehicle control system applied to a mobile terminal, the system includes:
第一发送模块,用于向云端发送用户登录信息,向云端发送解绑请求,向云端发送密钥请求和/或向车辆端发送车控车设指令;The first sending module is used to send user login information to the cloud, send an unbinding request to the cloud, send a key request to the cloud, and/or send a vehicle control vehicle device instruction to the vehicle end;
具体的,所述第一发送模块还包括,用于向云端发送用户注册信息,向云端发送绑定请求,以及基于预设数字钥匙容量阈值,向云端发送密钥请求;向云端发送解绑请求;当用户需要车辆执行某种情况时,向车辆端发送车控车设指令,所述指令包括用户解锁车辆指令、用户启动车辆指令、用户锁定车辆指令;Specifically, the first sending module further includes sending user registration information to the cloud, sending a binding request to the cloud, and sending a key request to the cloud based on a preset digital key capacity threshold; sending an unbinding request to the cloud ;When the user needs the vehicle to perform a certain situation, send the vehicle control device instruction to the vehicle end, the instruction includes the user's instruction to unlock the vehicle, the user's instruction to start the vehicle, and the user's instruction to lock the vehicle;
第一接收模块,用于接收云端的删除一次性数字钥匙指令;The first receiving module is used to receive the command to delete the one-time digital key from the cloud;
具体的,所述删除一次性数字钥匙指令为移动终端向云端发送解绑请求后,由云端下发给移动终端的删除一次性数字钥匙指令,此时,为了提高车辆端内存空间,也会同时向车辆端下发删除一次性数字钥匙指令。Specifically, the command to delete the one-time digital key is a command to delete the one-time digital key issued by the cloud to the mobile terminal after the mobile terminal sends an unbinding request to the cloud. Send the command to delete the one-time digital key to the vehicle.
第一执行模块,用于接收、删除一次性数字钥匙,用于反馈所述车控车设指令,删除使用后的所述一次性数字钥匙。The first execution module is used to receive and delete the one-time digital key, and is used to feed back the instruction of the vehicle control device and delete the used one-time digital key.
具体的,当移动终端接受到云端的删除一次性数字钥匙指令后,移动终端删除所述一次性数字钥匙,所述一次性数字钥匙经过云端的删除后,可以节省移动终端的内存空间,提高内存空间的计算和指令效率。Specifically, when the mobile terminal receives the command to delete the one-time digital key from the cloud, the mobile terminal deletes the one-time digital key. After the one-time digital key is deleted by the cloud, the memory space of the mobile terminal can be saved, and the memory capacity can be improved. Computational and instructional efficiency in space.
请参阅图3,本发明的第三方面提供一种基于数字钥匙的车辆控制方法,应用于云端,所述方法包括:Referring to Fig. 3, the third aspect of the present invention provides a digital key-based vehicle control method applied to the cloud, the method comprising:
S301:接收移动终端发出的用户登录信息,所述用户登录信息至少用于进行身份校验认证;S301: Receive user login information sent by the mobile terminal, where the user login information is at least used for identity verification and authentication;
云端作为一种采用应用程序虚拟化技术(Application Virtualization)的软件平台,通过该平台,各类常用软件都能够在独立的虚拟化环境中被封装起来,从而使应用软件不会与系统产生耦合,达到绿色使用软件的目的。对于云端而言,云端存储着用户信息及车辆信息,当云端接收到用户信息及车辆信息后,若是用户注册信息,车端会基于用户注册信息进行用户ID的分配,及基于用户的身份信息完善用户在移动终端的信息配置,给予用户身份配置或当移动终端将用户登录信息发送至云端时,云端完成验证,同理,基于车辆端的身份验证可以是在车辆出厂时或车辆完成系统配置时或其他时间完成。The cloud is a software platform that adopts Application Virtualization technology. Through this platform, various commonly used software can be packaged in an independent virtualization environment, so that the application software will not be coupled with the system. To achieve the purpose of using software in a green way. For the cloud, the cloud stores user information and vehicle information. When the cloud receives the user information and vehicle information, if the user registration information is registered, the vehicle terminal will allocate the user ID based on the user registration information and improve the identity information based on the user. The user's information configuration on the mobile terminal, the user's identity configuration or when the mobile terminal sends the user's login information to the cloud, the cloud completes the verification. Similarly, the identity verification based on the vehicle side can be when the vehicle leaves the factory or when the vehicle completes system configuration or Complete other times.
S302:若身份校验认证成功,基于移动终端或车辆端的密钥请求,分别下发数字钥匙包,所述密钥请求包括生成密钥请求和更新密钥请求。S302: If the identity verification and authentication is successful, based on the key request of the mobile terminal or the vehicle, respectively issue the digital key package, and the key request includes a key generation request and a key update request.
进一步的,当身份校验成功后,云端会基于移动终端的请求,完成其与车辆端的绑定申请。Furthermore, when the identity verification is successful, the cloud will complete its binding application with the vehicle terminal based on the mobile terminal's request.
进一步的,基于移动终端或车辆端的生成密钥请求,云端分别下发数字钥匙包,所述下发数字钥匙包保持移动终端和车辆端的数字钥匙端数量一致,此外,当数字钥匙包的用量低于预设数字钥匙容量阈值时,云端会接收到来自移动终端和云端的更新密钥请求,若请求成功,云端会再次发送数字钥匙包,所述数字钥匙包内包括指定数量的一次性数字钥匙,有可能和前一次的下发给移动终端和云端的数字钥匙包内的一次性数字钥匙的数量相同。Further, based on the key generation request of the mobile terminal or the vehicle terminal, the cloud issues the digital key bag separately, and the digital key bag issued keeps the number of digital key terminals of the mobile terminal and the vehicle side consistent. In addition, when the usage of the digital key bag is low When the digital key capacity threshold is preset, the cloud will receive a key update request from the mobile terminal and the cloud. If the request is successful, the cloud will send the digital key package again, which includes a specified number of one-time digital keys , which may be the same as the number of one-time digital keys in the previous digital key package issued to the mobile terminal and the cloud.
在一种实施方式中,所述接收移动终端发出的用户登录信息之前,还包括:In one embodiment, before receiving the user login information sent by the mobile terminal, it also includes:
建立与移动终端之间的第一安全通信通道及第一数字证书,所述第一安全通信通道用于建立与移动终端之间的第一通信联系,所述第一数字证书用于所述第一通信联系的凭证;Establishing a first secure communication channel and a first digital certificate with the mobile terminal, the first secure communication channel is used to establish a first communication link with the mobile terminal, and the first digital certificate is used for the first - evidence of correspondence;
若所述第一数字证书过期,云端向移动终端发送更新后的第一数字证书;If the first digital certificate expires, the cloud sends an updated first digital certificate to the mobile terminal;
建立与车辆端之间的第二安全通信通道及第二数字证书,所述第二安全通信通道用于建立与车辆端之间的第二通信联系,所述第二数字证书用于所述第二通信联系的凭证;Establish a second secure communication channel and a second digital certificate with the vehicle end, the second secure communication channel is used to establish a second communication link with the vehicle end, and the second digital certificate is used for the first 2. Credentials for correspondence;
若所述第二数字证书过期,云端向车辆端发送更新后的第二数字证书。If the second digital certificate expires, the cloud sends an updated second digital certificate to the vehicle.
在此,云端不仅和移动终端及车辆端分别建立第一安全通信通道及第二安全通信通道,而且云端也分别掌管第一数字证书和第二数字证书的有效性。Here, the cloud not only establishes a first secure communication channel and a second secure communication channel with the mobile terminal and the vehicle respectively, but also controls the validity of the first digital certificate and the second digital certificate respectively.
第一数字证书是云端和移动终端使用第一安全通信通道的有效凭证,第二数字证书是云端和车辆端使用第二通信通道的有效凭证,第一安全通信通道可以作为云端和移动终端的有效媒介,用以接收移动终端的用户登录信息、绑定车辆端指令、解绑车辆端指令、生成密钥请求指令、更新密钥请求指令、发送数字钥匙包等;同理,第二安全通信通道可以作为云端和车辆端的有效媒介,用以接收车辆登录信息更新密钥请求指令、发送数字钥匙包等。The first digital certificate is a valid certificate for the cloud and the mobile terminal to use the first secure communication channel. The second digital certificate is a valid certificate for the cloud and the vehicle to use the second communication channel. The first secure communication channel can be used as a valid certificate for the cloud and the mobile terminal. The medium is used to receive the user login information of the mobile terminal, bind the vehicle terminal command, unbind the vehicle terminal command, generate the key request command, update the key request command, send the digital key bag, etc.; similarly, the second secure communication channel It can be used as an effective medium between the cloud and the vehicle side to receive vehicle registration information update key request instructions, send digital key bags, etc.
在一种实施方式中,基于移动终端或车辆端的密钥请求,分别下发数字钥匙包,所述请求包括生成密钥请求和更新密钥请求,包括:In one embodiment, based on the key request of the mobile terminal or the vehicle end, the digital key bag is issued respectively, and the request includes a key generation request and a key update request, including:
所述数字钥匙包内分别各包含至少一把一次性数字钥匙。Each of the digital key bags contains at least one one-time digital key.
基于此,所述一把一次性数字钥匙的数量可以根据实际的移动终端与车辆端的需求来设定,正因为包含了至少一把一次性数字钥匙,所以减少了频繁鉴权的次数,减少了对网络的依赖性,可以使得在长时间无网络的情况下使用该类数字钥匙。Based on this, the quantity of the one-time digital key can be set according to the actual needs of the mobile terminal and the vehicle end. Because at least one one-time digital key is included, the number of frequent authentications is reduced, and the The dependence on the network allows the use of this type of digital key without a network for a long time.
在一种实施方式中,所述用户登录信息至少用于进行身份校验认证,包括:In one embodiment, the user login information is at least used for identity verification and authentication, including:
基于用户登录信息,接收移动终端和车辆端的请求绑定申请和解除绑定申请。Based on the user login information, the mobile terminal and the vehicle end request binding application and unbinding application are received.
云端作为移动终端和车辆端的绑定中的认证方,当移动终端向云端申请绑定车辆端的请求,云端可以允许绑定车辆端;当移动终端向云端申请绑定车辆端的请求,云端可以允许移动终端和车辆端解绑。The cloud acts as the authentication party in the binding between the mobile terminal and the vehicle terminal. When the mobile terminal applies to the cloud for binding the vehicle terminal, the cloud can allow the vehicle terminal to be bound; when the mobile terminal applies to the cloud for the vehicle terminal binding request, the cloud can allow the mobile The terminal and the vehicle end are unbound.
采用该种方式,使得移动终端和车辆端的关系具有良好的适应性,用户可以根据实际情况完成移动终端对车辆端的绑定和解绑需求,具有良好的可操作性,减少了复杂的绑定或解绑程序。With this method, the relationship between the mobile terminal and the vehicle end has good adaptability, and the user can complete the binding and unbinding requirements of the mobile terminal to the vehicle end according to the actual situation, which has good operability and reduces complicated binding or unbinding Binding program.
进一步的,当云端接受移动终端对车辆端的解除绑定请求,移动终端和车辆端发送删除一次性数字钥匙的指令。Further, when the cloud accepts the unbinding request from the mobile terminal to the vehicle terminal, the mobile terminal and the vehicle terminal send an instruction to delete the one-time digital key.
在此,可以在移动终端和车辆端解除关系的时候,完全清楚掉移动终端和车辆端的无用的一次性数字钥匙,进一步清理了移动终端和车辆段的内存,为移动终端和车辆段的其余利用内存的功能组件或模块提供良好的内存支持。Here, when the relationship between the mobile terminal and the vehicle end is terminated, the useless one-time digital key on the mobile terminal and the vehicle end can be completely cleared, and the memory of the mobile terminal and the vehicle depot can be further cleaned up, and it can be used for the rest of the mobile terminal and the vehicle depot. Functional components or modules of memory provide good memory support.
请参阅图4,本发明的第四方面,提供一种基于数字钥匙的车辆控制系统,应用于云端,所述系统包括:Please refer to FIG. 4, the fourth aspect of the present invention provides a digital key-based vehicle control system applied to the cloud, and the system includes:
第二接收模块,用于接收用户登录信息;The second receiving module is used to receive user login information;
具体的,云端作为移动终端和车辆端的指令平台,除了接收用户登录信息外,还接收车辆登录信息等,在此,云端作为指令接收和处理平台,将来自移动终端和车辆端的信息进行处理,提高了对整体信息处理的响应能力。Specifically, as an instruction platform for mobile terminals and vehicles, the cloud not only receives user login information, but also receives vehicle login information. Here, the cloud serves as an instruction receiving and processing platform to process information from mobile terminals and vehicles to improve Responsiveness to overall information processing.
第二执行模块,用于进行身份校验验证;The second execution module is used for identity verification and verification;
具体的,所述身份验证包括对于移动终端和车辆端身份的验证处理,验证原则包括使用同一VIN等,此外,所述执行模块还可以对用户登录信息、车辆登录信息以及对应的登出信息、解绑信息做反馈处理。Specifically, the identity verification includes verifying the identity of the mobile terminal and the vehicle, and the verification principle includes using the same VIN. In addition, the execution module can also perform user login information, vehicle login information, and corresponding logout information, Unbind information for feedback processing.
第二发送模块, 用于发送数字钥匙包,所述数字钥匙包包括至少一把一次性数字钥匙;The second sending module is used to send the digital key bag, and the digital key bag includes at least one one-time digital key;
具体的,当云端收到移动终端和车辆端的生成密钥请求和更新密钥请求的时候,在身份校验成功且二者完成绑定的前提下,云端会分别向移动终端和车辆端发送数字钥匙包,所述数字钥匙包包括至少一把一次性数字钥匙,即:Specifically, when the cloud receives the key generation request and key update request from the mobile terminal and the vehicle, on the premise that the identity verification is successful and the two are bound, the cloud will send digital keys to the mobile terminal and the vehicle respectively. A key case, the digital key case includes at least one one-time digital key, namely:
当移动终端和车辆端获得数字钥匙包中的一次性数字钥匙后,移动终端调用数字钥匙包的一次性数字钥匙并绑定车控车设指令,传输到车辆端,当车辆端校验成功后,执行完毕移动终端的车控车设指令并反馈给移动终端,移动终端对调用数字钥匙包的一次性数字钥匙进行删除处理,所述数字钥匙包内的数量对移动终端的容量等有要求,一般情况下,数字钥匙包内的一次性数字钥匙数量越多,其车控车设指令执行的次数便越多,对网络的依赖性就越低;When the mobile terminal and the vehicle end obtain the one-time digital key in the digital key bag, the mobile terminal calls the one-time digital key in the digital key bag and binds the vehicle control and vehicle setting instructions, and transmits it to the vehicle end. After the verification of the vehicle end is successful , the mobile terminal's vehicle control and vehicle setting instructions are executed and fed back to the mobile terminal. The mobile terminal deletes the one-time digital key that calls the digital key package. The number of the digital key package has requirements on the capacity of the mobile terminal. In general, the more the number of one-time digital keys in the digital key bag, the more times the instructions of the car control device are executed, and the lower the dependence on the network;
同理,当车辆端获得了云端发送的数字钥匙包后,在获得移动终端调用数字钥匙包的一次性数字钥匙携带的校核信息及车控车设指令后,选取对应的一把一次性数字钥匙,来校验移动终端传输的一次性数字钥匙,若校验完成,则接收并执行车控车设指令,并且在执行完毕后,反馈给移动终端执行完毕的信息,同时删除本次参与校验的一次性数字钥匙。Similarly, when the vehicle side obtains the digital key package sent by the cloud, after obtaining the verification information carried by the one-time digital key that the mobile terminal calls the digital key package and the vehicle control and vehicle setting instructions, select a corresponding one-time digital key package. Key, to verify the one-time digital key transmitted by the mobile terminal. If the verification is completed, it will receive and execute the vehicle control and vehicle setting command, and after the execution is completed, it will feed back the information that the execution has been completed to the mobile terminal, and delete the participating verification key at the same time. A one-time digital key for authentication.
请参阅图5,本发明的第五方面,提供一种基于数字钥匙的车辆控制方法,应用于车辆端,所述方法包括:Please refer to Fig. 5, the fifth aspect of the present invention provides a digital key-based vehicle control method applied to the vehicle end, the method comprising:
S501:向云端发送车辆登录信息,所述车辆登录信息至少用于使所述云端验证车辆端身份;S501: Send vehicle login information to the cloud, where the vehicle login information is at least used to enable the cloud to verify the identity of the vehicle terminal;
具体的,所述车辆登录信息包括用户账号和用户密码,代表了VIN、SN、用户手机号等信息,验证车辆端身份具体包括基于所述车辆登录信息可以将车辆的信息在云端进行关联,云端经过所述车辆账号登录信息可以存储、管理该车辆的各类信息,包括车辆权利人信息、车辆的基本性能配置信息、车辆的使用年限、车辆的内存容量、车辆的服务有效期等,可以采用该信息对车辆进行后续数字钥匙包的发放进行评估。Specifically, the vehicle login information includes user account number and user password, which represent information such as VIN, SN, and user mobile phone number. Verifying the identity of the vehicle terminal specifically includes associating vehicle information in the cloud based on the vehicle login information. Through the vehicle account login information, various information of the vehicle can be stored and managed, including the information of the vehicle owner, the basic performance configuration information of the vehicle, the service life of the vehicle, the memory capacity of the vehicle, and the service validity period of the vehicle. The information is evaluated for the issuance of subsequent digital key packs for the vehicle.
所述信息用以使得云端获取车辆信息并完成验证保存,可以的,在汽车出厂前,车辆信息可以在云端形成信息备份,当车辆登录信息再次发送至云端,云端会进行验证完成车辆登录。The information is used to enable the cloud to obtain vehicle information and complete verification and storage. Yes, before the car leaves the factory, the vehicle information can form an information backup in the cloud. When the vehicle registration information is sent to the cloud again, the cloud will perform verification to complete the vehicle registration.
S502:接收云端下发的数字钥匙包,校验移动终端发送的车控车设指令,所述校验包括使用所述数字钥匙包中的一次性数字钥匙;S502: Receive the digital key bag issued by the cloud, and verify the vehicle control and vehicle device instruction sent by the mobile terminal, the verification includes using the one-time digital key in the digital key bag;
具体的,云端之所以会下发数字钥匙包是因为移动终端向云端发送请求,使得云端绑定移动终端和车辆端,此时,云端完成请求校核后,会下发给车辆端数字钥匙包,所述数字钥匙包中含有至少一把一次性数字钥匙。Specifically, the reason why the cloud will issue the digital key package is because the mobile terminal sends a request to the cloud, which makes the cloud bind the mobile terminal and the vehicle. At this time, after the cloud completes the request verification, it will issue the digital key package to the vehicle. , the digital key bag contains at least one one-time digital key.
S503:基于所述一次性数字钥匙对移动终端进行钥匙校验动作;S503: Perform a key verification action on the mobile terminal based on the one-time digital key;
具体的,所述车辆端中接收到的数字钥匙包中的一次性数字钥匙用以对移动终端发出的一次性数字钥匙进行校验动作,使用此方法,可以确保移动终端对车辆端的车控车设指令的稳定性和安全性,所述车控车设指令可以包括用户启动车辆指令、用户解锁车辆指令和/或用户锁定车辆指令,分别代表了车辆启动场景、车辆解锁场景和/或车辆锁定场景。Specifically, the one-time digital key in the digital key bag received at the vehicle end is used to verify the one-time digital key issued by the mobile terminal. Using this method, it can ensure that the mobile terminal can control the vehicle on the vehicle end. The stability and security of the setting instructions, the vehicle control and setting instructions may include the user starting the vehicle instruction, the user unlocking the vehicle instruction and/or the user locking the vehicle instruction, respectively representing the vehicle starting scene, the vehicle unlocking scene and/or the vehicle locking Scenes.
S504:若校验成功,执行所述车控车设指令,删除使用后的所述一次性数字钥匙;S504: If the verification is successful, execute the vehicle control and vehicle setting instruction, and delete the used one-time digital key;
具体的,删除使用后的一次性数字钥匙可以减少车辆的使用内存,且可对删除后的数字钥匙包进行数据统计,提高了车辆端的计算能力和抗风险的能力。Specifically, deleting the used one-time digital key can reduce the memory used by the vehicle, and can carry out data statistics on the deleted digital key package, which improves the computing power and anti-risk ability of the vehicle.
具体的,若移动终端发给车辆端的一次性数字钥匙与车辆端本身因为所述车控车设指令对应的一次性数字钥匙为相同的或相匹配的一次性数字钥匙,则车辆端执行移动终端发出的车控车设指令并且将执行完毕完成响应的车控车设指令反馈给移动终端;Specifically, if the one-time digital key issued by the mobile terminal to the vehicle terminal is the same as or matches the one-time digital key corresponding to the vehicle terminal itself because of the vehicle control device instruction, then the vehicle terminal executes the mobile terminal Send out the vehicle control vehicle equipment command and feed back the vehicle control vehicle equipment command that has been executed and responded to the mobile terminal;
具体的,所述执行包括车辆端完成移动终端交付的车控车设指令比如用户解锁车辆等指令,此外车辆端还会执行删除本次使用的所述一次性数字钥匙的指令。Specifically, the execution includes that the vehicle terminal completes the vehicle control and vehicle device instructions delivered by the mobile terminal, such as the user unlocking the vehicle, and the vehicle terminal will also execute the instruction to delete the one-time digital key used this time.
具体的,当车辆端和移动终端完成绑定后,基于移动终端和车辆端的数字钥匙请求,云端分别下发数字钥匙包,对于车辆端而言,所述数字钥匙包包括一批一次性的数字钥匙,其作用包括:接收到移动终端发送的一次性数字钥匙携带的校核信息后,使用所述包含在车辆端的一次性数字钥匙进行校验,在此,所述校验过程相当于密码过程,当校验成功,即密码正确,车辆端会执行移动终端的指令,若校验不成功,即密码错误,车辆端就不会执行移动终端的车控车设指令,在此,车控车设指令包括用户解锁指令、用户启动指令和用户锁定指令,通过将数字钥匙与车控车设指令绑定,构筑了移动终端与车辆端的安全防线,实现了一对一的验证,使得用户对汽车的操作更安全、便利。Specifically, after the binding between the vehicle terminal and the mobile terminal is completed, based on the digital key requests from the mobile terminal and the vehicle terminal, the cloud will issue a digital key package respectively. For the vehicle terminal, the digital key package includes a batch of one-time digital The function of the key includes: after receiving the verification information carried by the one-time digital key sent by the mobile terminal, use the one-time digital key contained in the vehicle to perform verification. Here, the verification process is equivalent to the password process , when the verification is successful, that is, the password is correct, the vehicle terminal will execute the command of the mobile terminal. The setting instructions include the user unlocking instruction, the user starting instruction and the user locking instruction. By binding the digital key with the car control and car setting instructions, the security defense line between the mobile terminal and the vehicle end is built, and one-to-one verification is realized. The operation is safer and more convenient.
S505:若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,向云端发送更新密钥请求,接收更新后的数字钥匙包。S505: If the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, send a key update request to the cloud, and receive the updated digital key bag.
同本发明第一方面的实施例类似,通过设置预设数字钥匙容量阈值,判定数字钥匙包的一次性数字钥匙容量,通过该方式,可以为数字钥匙包提供容量预警,保障数字钥匙包内钥匙的容量充足,尤其是对于现有技术下,重度依赖网络的场景,该方式可以在长时间无网络的情况下仍旧可以以一次性数字钥匙的方式进行校验,实现移动终端和车辆端的车控车设指令验证。Similar to the embodiment of the first aspect of the present invention, by setting the preset digital key capacity threshold, the one-time digital key capacity of the digital key case can be determined. In this way, a capacity warning can be provided for the digital key case to ensure that the keys in the digital key case are The capacity is sufficient, especially for the scenarios that rely heavily on the network under the existing technology. This method can still be verified in the form of a one-time digital key when there is no network for a long time, and realizes the car control of the mobile terminal and the vehicle. Verification of vehicle equipment instructions.
具体的,在S504中提出的,所述数据统计的目的是为了计算预设数字钥匙容量阈值,举例来说,若数字钥匙包终端的原有一次数字钥匙的容量为20,当数据统计中预设数字钥匙容量阈值为3时,则数字钥匙包中剩余一次性数字钥匙容量为2时,车辆端会向云端发送更新密钥请求,云端会基于所述更新密钥请求,发送更新后的数字钥匙包,车辆端亦可接收所述数字钥匙包,剩余的2把一次性数字钥匙会自动更新至更新后的数字钥匙包,其最大容量可以继续保持20,若基于车辆端内存或其他原因,云端可基于车辆端请求或其他信息做出新的一次性数字钥匙数量的调整。Specifically, it is proposed in S504 that the purpose of the data statistics is to calculate the preset digital key capacity threshold. For example, if the original primary digital key capacity of the digital key bag terminal is 20, when the preset When the digital key capacity threshold is set to 3, then when the remaining one-time digital key capacity in the digital key bag is 2, the vehicle will send a key update request to the cloud, and the cloud will send the updated digital key based on the key update request. The key bag, the vehicle end can also receive the digital key bag, and the remaining two one-time digital keys will be automatically updated to the updated digital key bag, and its maximum capacity can continue to be 20. If it is based on the memory of the vehicle or other reasons, The cloud can make adjustments to the number of new one-time digital keys based on vehicle-side requests or other information.
在本发明一实施例中,所述向云端发送用户登录信息之前,还包括:In an embodiment of the present invention, before sending the user login information to the cloud, it also includes:
建立与云端之间的第二安全通信通道及第二数字证书,所述第二安全通信通道用于建立与云端之间的第二通信联系,所述第二数字证书用于所述第二通信联系的凭证;Establishing a second secure communication channel and a second digital certificate with the cloud, the second secure communication channel is used to establish a second communication link with the cloud, and the second digital certificate is used for the second communication proof of contact;
若所述第二数字证书过期,车辆端向云端申请更新第二数字证书。If the second digital certificate expires, the vehicle end applies to the cloud for updating the second digital certificate.
在此,所述第二安全通信通道作为移动终端和车辆端的媒介,可以将通信信息进行互相交换,所述第二数字证书可以根据用户协议或其他事情设置有效时期,如有效时期结束或安全通道升级,数字证书会重新发放,通过定时更换数字证书,保证移动终端与车辆端的信息安全,此外,除了车辆登录信息需要数字通道,涉及移动终端和车辆端的信息交互,皆需要第二安全通信通道及第二数字证书共同起作用。Here, the second secure communication channel is used as a medium between the mobile terminal and the vehicle to exchange communication information, and the second digital certificate can be set with a valid period according to the user agreement or other things, such as the end of the valid period or the security channel Upgrade, the digital certificate will be re-issued, and the digital certificate will be replaced regularly to ensure the information security of the mobile terminal and the vehicle. In addition, in addition to the vehicle login information requiring a digital channel, the information interaction between the mobile terminal and the vehicle requires a second secure communication channel and The second digital certificate works together.
在另一种实施方式中,在第二数字证书有效期内,基于第二安全通信通道,车辆端将所述车辆登录信息发送至云端,云端将所述车辆登录信息与用户登录信息进行信息验证,若验证成功,车辆端会接收云端发送的数字钥匙包。In another embodiment, within the validity period of the second digital certificate, based on the second secure communication channel, the vehicle terminal sends the vehicle login information to the cloud, and the cloud performs information verification on the vehicle login information and the user login information, If the verification is successful, the vehicle will receive the digital key package sent by the cloud.
通过第二数字证书的设置和第二安全通信通道的建立,可以提高车辆端和云端的安全等级,在前期经过云端的绑定,车辆端和移动终端会基于所述关系获得可靠关联。Through the setting of the second digital certificate and the establishment of the second secure communication channel, the security level of the vehicle terminal and the cloud can be improved, and the vehicle terminal and the mobile terminal will obtain a reliable association based on the relationship after the binding of the cloud in the early stage.
在本发明一实施例中,所述若校验成功,执行所述车控车设指令,包括:In an embodiment of the present invention, if the verification is successful, executing the vehicle control vehicle device instruction includes:
执行所述车控车设指令后,向移动终端发送车控车设反馈指令。After executing the vehicle-controlled vehicle-device instruction, a vehicle-controlled vehicle-set feedback instruction is sent to the mobile terminal.
在此,之所以向移动终端发送车控车设反馈指令,是因为移动终端和车辆端之间依靠一次性数字钥匙进行沟通,而所述一次性数字钥匙在移动终端和车辆端基于该次车控车设指令校验完成后,其一次性数字钥匙的任务即算完成,对于车辆端来说,执行完毕作为本次车辆端一次性数字钥匙的寿命终结信号,即可完成删除,而对于移动终端来说,如何得到执行完毕的信号才是本次一次性数字钥匙寿命终结信号,因此,移动终端和车辆端的完整闭环的链条为移动终端得到车控车设反馈指令,即视为获得本次移动终端一次性数字钥匙的寿命终结信号,即完成删除。Here, the reason why the vehicle control and vehicle device feedback command is sent to the mobile terminal is that the communication between the mobile terminal and the vehicle depends on the one-time digital key, and the one-time digital key is based on the After the verification of the vehicle control setting instruction is completed, the task of the one-time digital key is completed. For the vehicle side, the completion of the execution is used as the end-of-life signal of the one-time digital key at the vehicle side, and the deletion can be completed. For the mobile As far as the terminal is concerned, how to get the signal of completion of execution is the end-of-life signal of this one-time digital key. The end-of-life signal of the one-time digital key of the mobile terminal means that the deletion is completed.
具体的,所述车控车设反馈指令可以作为车辆端向移动终端发送的删除移动终端一次性数字钥匙的指令生成信号,当移动终端接收到所述信号后,会删除所述移动终端一次性数字钥匙,经过删除,移动终端和车辆端的一次性数字钥匙在此形成闭环网络,使得一次性数字钥匙的接收、使用和删除达到同步。Specifically, the vehicle control vehicle device feedback command can be used as a signal generated by the vehicle terminal to delete the mobile terminal one-time digital key instruction. When the mobile terminal receives the signal, it will delete the mobile terminal one-time digital key. After the digital key is deleted, the one-time digital key on the mobile terminal and the vehicle side form a closed-loop network here, so that the reception, use and deletion of the one-time digital key are synchronized.
进一步的,可以理解的是,在云端接收更新密钥请求时,若二者的数字钥匙包中的数量未达到一致,即云端可下发移动终端和车辆端报错指令,需要重新检查一次性数字钥匙的使用情况。Further, it is understandable that when the cloud receives a key update request, if the numbers in the digital key bags of the two do not reach the same level, the cloud can issue an error command for the mobile terminal and the vehicle, and it is necessary to recheck the one-time digital key. Key usage.
在本发明一实施例中,所述接收云端下发的数字钥匙包,校验移动终端发送的车控车设指令,包括:In an embodiment of the present invention, the receiving the digital key package issued by the cloud, and verifying the vehicle control and vehicle equipment instructions sent by the mobile terminal include:
所述数字钥匙包中包含至少一把一次性数字钥匙。The digital key bag contains at least one one-time digital key.
具体的,所述数字钥匙包中包含至少一把一次性数字钥匙可以避免钥匙生成需要网络的情况,可支持在长时间无网络情况下数字钥匙的使用场景。Specifically, at least one one-time digital key contained in the digital key bag can avoid the situation that the key generation requires a network, and can support the usage scenario of the digital key without a network for a long time.
在本发明一实施例中,所述基于所述一次性数字钥匙对移动终端进行钥匙校验动作,包括:In an embodiment of the present invention, the key verification action for the mobile terminal based on the one-time digital key includes:
所述钥匙校验动作包括使用至少一把一次性数字钥匙与车控车设指令进行验证,所述车控车设指令包括至少一把一次性数字钥匙。The key verification action includes using at least one one-time digital key and a vehicle-controlled vehicle device instruction to verify, and the vehicle-controlled vehicle device instruction includes at least one one-time digital key.
所述至少一把一次性数字钥匙具体指若车辆端接收到来自移动终端的车控车设指令时,会根据移动终端提供的移动终端一次性数字钥匙进行校验,一个车控车设指令对应一次校验动作,举例来说,若车辆端接收到来自移动终端的2个车控车设指令时,可以相应进行两次校验动作,以确保其准确性和安全性。The at least one one-time digital key specifically means that if the vehicle end receives a vehicle-controlled vehicle device instruction from a mobile terminal, it will perform verification according to the mobile terminal one-time digital key provided by the mobile terminal, and a vehicle-controlled vehicle device instruction corresponds to One verification action, for example, if the vehicle side receives two vehicle control and vehicle device instructions from the mobile terminal, it can perform two verification actions accordingly to ensure its accuracy and safety.
请参阅图6,本发明的第六方面,提供一种基于数字钥匙的车辆控制系统,应用于车辆端,所述系统包括:Please refer to FIG. 6, the sixth aspect of the present invention provides a vehicle control system based on a digital key, which is applied to the vehicle end, and the system includes:
第三发送模块,用于向云端发送用户登录信息;The third sending module is used to send user login information to the cloud;
第三接收模块,用于接收云端下发的数字钥匙包;The third receiving module is used to receive the digital key bag issued by the cloud;
校验模块,用于校验移动终端发送的车控车设指令,所述校验包括使用所述数字钥匙包中的一次性数字钥匙;A verification module, configured to verify the vehicle control and vehicle setting instructions sent by the mobile terminal, the verification includes using the one-time digital key in the digital key bag;
第三执行模块,执行所述车控车设指令,删除使用后的所述一次性数字钥匙。The third execution module executes the vehicle control and vehicle equipment instruction, and deletes the used one-time digital key.
在此,将车辆端接收到的移动终端的车控车设指令独立化,可以做到车辆端的车控车设执行的独立性更高,不会因为存在多个车控车设指令而降低车辆端执行的完整性。Here, the independence of the vehicle-controlled vehicle-device instructions received by the mobile terminal at the vehicle end can make the execution of the vehicle-controlled vehicle-equipped equipment at the vehicle end more independent, and the vehicle will not be reduced due to the existence of multiple vehicle-controlled vehicle-device instructions. end-to-end integrity.
本发明的第七方面,提供一种基于数字钥匙的车辆控制系统,包括:A seventh aspect of the present invention provides a digital key-based vehicle control system, including:
移动终端向云端发送用户登录信息,所述用户登录信息至少用于使所述移动终端绑定车辆;The mobile terminal sends user login information to the cloud, and the user login information is at least used to bind the mobile terminal to the vehicle;
具体的,在该系统中,移动终端基于第一安全通信通道向云端发送用户登录信息,所述用户登录信息至少用于使所述移动终端绑定车辆步骤之前,车辆端也会基于第二通信通道向云端发送车辆登录信息,在此,云端可以基于移动终端的请求,查验用户登录信息和车辆登录信息的相关数据,绑定车辆。Specifically, in this system, the mobile terminal sends user login information to the cloud based on the first secure communication channel, and the user login information is used at least before the step of binding the mobile terminal to the vehicle. The channel sends the vehicle registration information to the cloud, where the cloud can check the user login information and related data of the vehicle registration information based on the request of the mobile terminal, and bind the vehicle.
进一步的,用户也可以通过移动终端向云端发送解绑请求,接收云端的删除一次性数字钥匙指令,具体表现为,当用户通过移动终端向云端发送解绑请求后,云端基于所述解绑请求查验信息并进行反馈,其反馈结果包括向移动终端和车辆端分别发送删除一次性数字钥匙指令,即移动终端会接收到来自云端的删除一次性数字钥匙指令,此时,移动终端会删除数字钥匙包内的一次性数字钥匙,车辆端也会在接收到来自云端的删除一次性数字钥匙指令后,删除数字钥匙包内的一次性数字钥匙,此时,通过删除这一方式,可以减轻解绑后一次性数字钥匙内存占有的情况,提高内存的利用率。Further, the user can also send an unbinding request to the cloud through the mobile terminal, and receive the command to delete the one-time digital key from the cloud. Specifically, when the user sends the unbinding request to the cloud through the mobile terminal, the cloud will Check the information and give feedback. The feedback results include sending commands to delete the one-time digital key to the mobile terminal and the vehicle respectively, that is, the mobile terminal will receive the command to delete the one-time digital key from the cloud. At this time, the mobile terminal will delete the digital key. The one-time digital key in the bag, the vehicle will also delete the one-time digital key in the digital key bag after receiving the command to delete the one-time digital key from the cloud. The post-one-time digital key memory occupation situation improves the utilization rate of the memory.
在一些实施例中,查验用户登录信息和车辆登录信息的相关数据即对云端接收移动终端发出的用户登录信息并身份校验,包括对用户登录信息中的用户登录ID和用户密码进行查询,以及对用户ID绑定的用户的个人信息及用户所属车辆进行查询,也包括对车辆登录信息中包含的车辆的相关信息,包括VIN、SN及用户手机号等进行查询,基于此,云端通过该方式可以提高移动终端和车辆端关联后的安全性,并且在分别进行第一安全通信通道和第二安全通信通道联系的过程中,分别叠加了第一安全数字证书和第二安全数字证书,使得云端与移动终端和车辆段的沟通具有专有性,充分保障了云端对于移动终端和车辆端的安全性和便利性。In some embodiments, checking the relevant data of the user login information and the vehicle login information is to receive the user login information sent by the mobile terminal on the cloud and verify the identity, including querying the user login ID and user password in the user login information, and Query the user's personal information bound to the user ID and the vehicle the user belongs to, as well as query the vehicle-related information contained in the vehicle registration information, including VIN, SN, and the user's mobile phone number. Based on this, the cloud through this method It can improve the security after the association between the mobile terminal and the vehicle terminal, and in the process of contacting the first secure communication channel and the second secure communication channel respectively, the first secure digital certificate and the second secure digital certificate are respectively superimposed, so that the cloud The communication with mobile terminals and vehicle depots is proprietary, which fully guarantees the security and convenience of the cloud for mobile terminals and vehicle terminals.
云端接收移动终端发出的用户登录信息并身份校验,若身份校验认证成功,且收到移动终端的请求绑定指令,并绑定成功,则会在收到基于移动终端或车辆端的密钥请求时,分别下发数字钥匙包,所述密钥请求包括生成密钥请求和更新密钥请求;The cloud receives the user login information sent by the mobile terminal and verifies the identity. If the identity verification and authentication is successful, and the binding instruction requested by the mobile terminal is received, and the binding is successful, it will receive the key based on the mobile terminal or the vehicle. When requesting, send digital key packages respectively, and the key request includes generating a key request and updating a key request;
具体的,所述数字钥匙包中包含一批一次性数字钥匙,分别下发数字钥匙包包含云端分别对移动终端和车辆端下发数字钥匙包,所述生成密钥请求包括移动终端初次绑定车辆端时云端收到的生成密钥请求,所述更新密钥请求为移动终端已绑定车辆端且已经使用一段数字钥匙包内的一次性数字钥匙后,云端收到的更新密钥请求。Specifically, the digital key package contains a batch of one-time digital keys, and the digital key packages are issued separately, including the cloud issuing digital key packages to the mobile terminal and the vehicle terminal respectively, and the key generation request includes the initial binding of the mobile terminal The key generation request received by the cloud at the vehicle end, and the key update request is a key update request received by the cloud after the mobile terminal has been bound to the vehicle end and a one-time digital key in a digital key bag has been used.
移动终端接收云端下发的数字钥匙包,向车辆端发送车控车设指令,所述车控车设指令包括所述数字钥匙包中的一次性数字钥匙;The mobile terminal receives the digital key package issued by the cloud, and sends a vehicle control vehicle device instruction to the vehicle end, and the vehicle control vehicle device command includes the one-time digital key in the digital key package;
具体的,移动终端接收到云端的数字钥匙包后,会存储该数字钥匙包,当需要向车辆端发送车控车设指令的时候,会调用该数字钥匙包中的一把一次性数字钥匙并和车控车设指令一起发送至车辆端。Specifically, after the mobile terminal receives the digital key bag from the cloud, it will store the digital key bag, and when it needs to send a vehicle control device instruction to the vehicle end, it will call a one-time digital key in the digital key bag and It is sent to the vehicle end together with the vehicle control and vehicle setting instructions.
基于所述一次性数字钥匙与车辆端进行钥匙校验动作;Carry out a key verification action based on the one-time digital key and the vehicle end;
在此,在移动终端中所包含的一次性数字钥匙相当于开启邮件的密码,而所述车控车设指令即相当于邮件正文,当车辆端接收到来自移动终端的车控车设指令后,会对基于车控车设指令上包括的一次性数字钥匙进行验证,即校验动作。Here, the one-time digital key included in the mobile terminal is equivalent to the password for opening the email, and the vehicle control and vehicle device instruction is equivalent to the text of the email. When the vehicle terminal receives the vehicle control and vehicle device instruction from the mobile terminal, , will verify the one-time digital key included in the command based on the vehicle control device, that is, the verification action.
若校验成功,车辆端执行所述车控车设指令,移动端与车辆端删除使用后的所述一次性数字钥匙;If the verification is successful, the vehicle terminal executes the vehicle control vehicle setting instruction, and the mobile terminal and the vehicle terminal delete the used one-time digital key;
具体的,所述校验的原则为基于一次性数字钥匙,具体的为一次性数字钥匙所代表的指令信息,可以包括VIN、SN及用户手机号等,若校验成功,车辆端可执行该车控车设指令,具体来说,车控车设指令可以包括用户启动车辆指令、用户解锁车辆指令和用户锁定车辆指令,基于此,可以确保移动终端对车辆端实施车控车设指令的准确性;若数字钥匙包中的一次性数字钥匙数量低于预设数字钥匙容量阈值,移动终端或车辆端向云端发送更新密钥请求,移动终端与车辆端接收更新后的数字钥匙包。Specifically, the verification principle is based on the one-time digital key, specifically the instruction information represented by the one-time digital key, which may include VIN, SN, and user mobile phone number. If the verification is successful, the vehicle can execute the Vehicle-controlled vehicle-setting instructions, specifically, the vehicle-controlled vehicle-setting instructions can include the user’s command to start the vehicle, the user’s command to unlock the vehicle, and the user’s command to lock the vehicle. reliability; if the number of one-time digital keys in the digital key bag is lower than the preset digital key capacity threshold, the mobile terminal or the vehicle end sends a key update request to the cloud, and the mobile terminal and the vehicle end receive the updated digital key bag.
具体来说,预设数字钥匙容量阈值的主要目的是为了提高鉴权效率,为移动终端和车辆端提供防御机制,当移动终端和车辆端的一次性数字钥匙数量低于预设数字钥匙容量阈值时,移动终端或车辆端向云端发送更新密钥请求,云端基于该请求,在至少保证移动终端绑定车辆端的前提下,向移动终端或车辆端发送更新后的数字钥匙包,举例来说,使用该方法可以解决使用时依赖网络的情况。Specifically, the main purpose of the preset digital key capacity threshold is to improve authentication efficiency and provide a defense mechanism for mobile terminals and vehicles. When the number of one-time digital keys on mobile terminals and vehicles is lower than the preset digital key capacity threshold , the mobile terminal or vehicle terminal sends a key update request to the cloud. Based on the request, the cloud sends an updated digital key package to the mobile terminal or vehicle terminal on the premise that the mobile terminal is at least bound to the vehicle terminal. For example, use This method can solve the situation of relying on the network during use.
在此,该系统可以通过云端生成依托移动终端和车辆端的数字钥匙包,将数字钥匙包中包含的一次性数字钥匙分发给移动终端和车辆端,每次使用一把一次性数字钥匙就销毁一把,可及时清理内存数据,提高运行效率,且车辆无需复杂的鉴权过程及加解密过程,提高了鉴权效率,降低了对运算资源的消耗,由于移动终端和车辆端会一次性接收来自云端的数字钥匙包,所以在使用时可以支持长时间无网络情况下的使用,减少了对网络的依赖性。Here, the system can generate a digital key package based on the mobile terminal and the vehicle through the cloud, distribute the one-time digital keys contained in the digital key package to the mobile terminal and the vehicle, and destroy a one-time digital key every time it is used. It can clean up the memory data in time and improve the operation efficiency, and the vehicle does not need complicated authentication process and encryption and decryption process, which improves the authentication efficiency and reduces the consumption of computing resources. The digital key bag in the cloud, so it can support the use without network for a long time, reducing the dependence on the network.
可以理解,计算机可读存储介质可以包括:能够携带计算机程序的任何实体或装置、记录介质、U盘、移动硬盘、磁碟、光盘、计算机存储器、只读存储器 (ROM ,Read-OnlyMemory)、随机存取存储器(RAM,RandomAccessMemory)、以及软件分发介质等。计算机程序包括计算机程序代码。计算机程序代码可以为源代码形式、对象代码形式、可执行文件或某些中间形式等。计算机可读存储介质可以包括:能够携带计算机程序代码的任何实体或装置、记录介质、U盘、移动硬盘、磁碟、光盘、计算机存储器、只读存储器(ROM,Read-OnlyMemory)、随机存取存储器(RAM,RandomAccessMemory)、以及软件分发介质等。It can be understood that a computer-readable storage medium may include: any entity or device capable of carrying a computer program, a recording medium, a USB flash drive, a removable hard disk, a magnetic disk, an optical disk, a computer memory, a read-only memory (ROM, Read-OnlyMemory), a random Access memory (RAM, RandomAccessMemory), and software distribution media. A computer program includes computer program code. The computer program code may be in source code form, object code form, executable file or some intermediate form, etc. The computer-readable storage medium may include: any entity or device capable of carrying computer program code, recording medium, U disk, removable hard disk, magnetic disk, optical disk, computer memory, read-only memory (ROM, Read-OnlyMemory), random access Memory (RAM, RandomAccessMemory), and software distribution media, etc.
在本发明的某些实施方式中,移动终端和车辆端中某些模块也可以包括控制器,控制器是一个单片机芯片,集成了处理器、存储器,通讯模块等。处理器可以是指控制器包含的处理器。处理器可以是中央处理单元(CentralProcessingUnit,CPU),还可以是其他通用处理器、数字信号处理器(DigitalSignalProcessor,DSP)、专用集成电路(ApplicationSpecificIntegratedCircuit,ASIC)、现成可编程门阵列(Field-ProgrammableGateArray,FPGA)或者其他可编程逻辑器件、分立门或者晶体管逻辑器件、分立硬件组件等。In some embodiments of the present invention, some modules in the mobile terminal and the vehicle may also include a controller, and the controller is a single-chip microcomputer chip integrating a processor, a memory, a communication module, and the like. The processor may refer to a processor included in the controller. The processor can be a central processing unit (Central Processing Unit, CPU), and can also be other general-purpose processors, digital signal processors (Digital Signal Processor, DSP), application specific integrated circuits (Application Specific Integrated Circuit, ASIC), off-the-shelf programmable gate arrays (Field-Programmable Gate Array, FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, etc.
流程图中或在此以其他方式描述的任何过程或方法描述可以被理解为,表示包括一个或更多个用于实现特定逻辑功能或过程的步骤的可执行指令的代码的模块、片段或部分,并且本发明的优选实施方式的范围包括另外的实现,其中可以不按所示出或讨论的顺序,包括根据所涉及的功能按基本同时的方式或按相反的顺序,来执行功能,这应被本发明的实施例所属技术领域的技术人员所理解。Any process or method descriptions in flowcharts or otherwise described herein may be understood to represent modules, segments or portions of code comprising one or more executable instructions for implementing specific logical functions or steps of the process , and the scope of preferred embodiments of the invention includes alternative implementations in which functions may be performed out of the order shown or discussed, including substantially concurrently or in reverse order depending on the functions involved, which shall It is understood by those skilled in the art to which the embodiments of the present invention pertain.
本领域普通技术人员可以意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,能够以电子硬件、计算机软件或者二者的结合来实现,为了清楚地说明硬件和软件的可互换性,在上述说明中已经按照功能一般性地描述了各示例的组成及步骤。这些功能究竟以硬件还是软件方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术人员可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本发明的范围。Those of ordinary skill in the art can realize that the units and algorithm steps of the examples described in conjunction with the embodiments disclosed herein can be implemented by electronic hardware, computer software, or a combination of the two. In order to clearly illustrate the relationship between hardware and software Interchangeability. In the above description, the composition and steps of each example have been generally described according to their functions. Whether these functions are executed by hardware or software depends on the specific application and design constraints of the technical solution. Those skilled in the art may use different methods to implement the described functions for each specific application, but such implementation should not be regarded as exceeding the scope of the present invention.
Claims (20)
Translated fromChinesePriority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210831053.2ACN115294677A (en) | 2022-07-15 | 2022-07-15 | A kind of vehicle control method and system based on digital key |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210831053.2ACN115294677A (en) | 2022-07-15 | 2022-07-15 | A kind of vehicle control method and system based on digital key |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN115294677Atrue CN115294677A (en) | 2022-11-04 |
Family
ID=83822173
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210831053.2APendingCN115294677A (en) | 2022-07-15 | 2022-07-15 | A kind of vehicle control method and system based on digital key |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN115294677A (en) |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115675361A (en)* | 2022-11-30 | 2023-02-03 | 成都赛力斯科技有限公司 | Cabin state adjusting method and system |
| CN116405208A (en)* | 2023-05-17 | 2023-07-07 | 零束科技有限公司 | Security authentication method and system for digital key |
| CN118316686A (en)* | 2024-04-16 | 2024-07-09 | 芜湖雄狮汽车科技有限公司 | Method, device, cloud and terminal equipment for creating data channel of Internet of Vehicles |
Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105015489A (en)* | 2015-07-14 | 2015-11-04 | 杭州万好万家新能源科技有限公司 | Intelligent vehicle control system based on digital key |
| CN108599961A (en)* | 2018-05-08 | 2018-09-28 | 济南浪潮高新科技投资发展有限公司 | A kind of communication means, car-mounted terminal, automobile services platform and system |
| CN109658555A (en)* | 2018-11-21 | 2019-04-19 | 武汉易间房科技有限公司 | Method for unlocking, equipment and house transaction based on bluetooth see room mode |
| CN109697773A (en)* | 2017-10-24 | 2019-04-30 | 丰田自动车株式会社 | Key information managing device and method and key information sharing method |
| CN110766832A (en)* | 2019-10-12 | 2020-02-07 | 广东科徕尼智能科技有限公司 | Method and system for setting temporary password of intelligent door lock |
| CN112200941A (en)* | 2020-10-09 | 2021-01-08 | 广东科徕尼智能科技有限公司 | Method, equipment and storage medium for generating temporary password by intelligent door lock |
| CN113066209A (en)* | 2021-03-23 | 2021-07-02 | 上海银基信息安全技术股份有限公司 | Method and device for safe off-line use of digital key and storage medium |
| CN113362504A (en)* | 2021-06-30 | 2021-09-07 | 江铃汽车股份有限公司 | NFC mobile phone intelligent key implementation method |
| CN113382409A (en)* | 2021-08-12 | 2021-09-10 | 北京百瑞互联技术有限公司 | Vehicle Bluetooth key distribution method, device, medium and equipment |
| CN114613041A (en)* | 2022-02-24 | 2022-06-10 | 智己汽车科技有限公司 | Bluetooth key intelligent control method, device, vehicle and storage medium |
- 2022
- 2022-07-15CNCN202210831053.2Apatent/CN115294677A/enactivePending
Patent Citations (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105015489A (en)* | 2015-07-14 | 2015-11-04 | 杭州万好万家新能源科技有限公司 | Intelligent vehicle control system based on digital key |
| CN109697773A (en)* | 2017-10-24 | 2019-04-30 | 丰田自动车株式会社 | Key information managing device and method and key information sharing method |
| CN108599961A (en)* | 2018-05-08 | 2018-09-28 | 济南浪潮高新科技投资发展有限公司 | A kind of communication means, car-mounted terminal, automobile services platform and system |
| CN109658555A (en)* | 2018-11-21 | 2019-04-19 | 武汉易间房科技有限公司 | Method for unlocking, equipment and house transaction based on bluetooth see room mode |
| CN110766832A (en)* | 2019-10-12 | 2020-02-07 | 广东科徕尼智能科技有限公司 | Method and system for setting temporary password of intelligent door lock |
| CN112200941A (en)* | 2020-10-09 | 2021-01-08 | 广东科徕尼智能科技有限公司 | Method, equipment and storage medium for generating temporary password by intelligent door lock |
| CN113066209A (en)* | 2021-03-23 | 2021-07-02 | 上海银基信息安全技术股份有限公司 | Method and device for safe off-line use of digital key and storage medium |
| CN113362504A (en)* | 2021-06-30 | 2021-09-07 | 江铃汽车股份有限公司 | NFC mobile phone intelligent key implementation method |
| CN113382409A (en)* | 2021-08-12 | 2021-09-10 | 北京百瑞互联技术有限公司 | Vehicle Bluetooth key distribution method, device, medium and equipment |
| CN114613041A (en)* | 2022-02-24 | 2022-06-10 | 智己汽车科技有限公司 | Bluetooth key intelligent control method, device, vehicle and storage medium |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115675361A (en)* | 2022-11-30 | 2023-02-03 | 成都赛力斯科技有限公司 | Cabin state adjusting method and system |
| CN116405208A (en)* | 2023-05-17 | 2023-07-07 | 零束科技有限公司 | Security authentication method and system for digital key |
| CN118316686A (en)* | 2024-04-16 | 2024-07-09 | 芜湖雄狮汽车科技有限公司 | Method, device, cloud and terminal equipment for creating data channel of Internet of Vehicles |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108235806B (en) | Method, device and system for safely accessing block chain, storage medium and electronic equipment | |
| CN115294677A (en) | A kind of vehicle control method and system based on digital key | |
| CN111186414A (en) | Automobile Bluetooth key safety management system and method | |
| WO2017101310A1 (en) | Remote control method, device and system for vehicle | |
| CN114499876B (en) | Internet of Things data storage method based on blockchain and NB-IoT chip | |
| CN111355684B (en) | Internet of things data transmission method, device and system, electronic equipment and medium | |
| WO2017028593A1 (en) | Method for making a network access device access a wireless network access point, network access device, application server, and non-volatile computer readable storage medium | |
| CN113515755B (en) | Awakening method of automatic driving vehicle, storage medium and electronic equipment | |
| CN112187470B (en) | Internet of things certificate distribution method, device and system, storage medium and electronic device | |
| CN112311543B (en) | GBA key generation method, terminal and NAF network element | |
| CN113766450B (en) | Vehicle virtual key sharing method, mobile terminal, server and vehicle | |
| WO2021109963A1 (en) | Initial security configuration method, security module, and terminal | |
| CN113613227B (en) | Data transmission method and device of Bluetooth equipment, storage medium and electronic device | |
| CN111949967A (en) | Device authentication method, device, electronic device, server and storage medium | |
| CN111541690B (en) | Safety protection method for communication between intelligent terminal and server | |
| WO2021208549A1 (en) | Method and device for charging authentication | |
| CN114513345A (en) | Information transmission system, user device and information security hardware module | |
| JP2020120173A (en) | Electronic signature system, certificate issuing system, certificate issuing method, and program | |
| CN115967920A (en) | A car bluetooth key security management method, system, device and medium | |
| CN115459925A (en) | A two-factor authentication method and system for cloud management platform based on National Secret Ukey | |
| WO2022252845A1 (en) | User data management method and related device | |
| CN118450383A (en) | Network access method and system | |
| CN118200916A (en) | A Bluetooth communication method, device, equipment and storage medium | |
| EP1790116B1 (en) | Method and system for managing authentication and payment for use of broadcast material | |
| CN110740139A (en) | secret key device and secret key management method, system, equipment and computer medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication | Application publication date:20221104 |