| 188 | 1 | 378 |
| 下载次数 | 被引频次 | 阅读次数 |
随着车联网的高速发展,车内安全问题越来越突出。使用密码算法实现认证和保密是解决车内安全问题的必然选择,其关键是密钥管理。常用的公钥证书方案消耗较多的计算资源,时延较大,缺乏安全防护。提出了一种基于组合公钥(CPK)的无证书新型动态密钥管理方案,在汽车启动瞬间,由车载网关动态生成CPK矩阵并更新私钥,既可实现强认证和保密,同时能防止OBD静态攻击。
Abstract:With the rapid development of the internet of vehicles, the issue of in-vehicle security was becoming prominent. Using cryptographic algorithms to achieve authentication and confidentiality was an inevitable choice to solve the problem of vehicle interior security, and the most important was the key management. The common public key certificate schemes consumed more computing resources, with longer delay and lower security protection. A new certificateless dynamic key management scheme based on combined public key(CPK) was proposed. At the moment of vehicle startup, the CPK matrix was dynamically generated by the vehicle gateway and the private key was updated. The strong authentication and confidentiality were realized, and the OBD static attacks was prevented.
[1] LING C L,FENG D Q.An algorithm for detection of malicious messages on CAN buses[C]//Proceedings of National Conference on Information Technology and Computer Science.Paris:Atlantis Press,2012:630-647.
[2] 韩正士,秦贵和,赵睿,等.车载FlexRay总线安全协议的设计与实现[J].西安交通大学学报,2018,52(12):63-69.HAN Z S,QIN G H,ZHAO R,et al.Design and implementation of security protocol for in-vehicle FlexRay buses[J].Journal of Xi′an jiaotong university,2018,52(12):63-69.
[3] 史宏宇.基于LIN总线的标定系统的研究与设计[D].重庆:重庆邮电大学,2020.SHI H Y.Research and design of calibration system based on LIN bus[D].Chongqing:Chongqing University of Posts and Telecommunications,2020.
[4] 王喜文.汽车信息安全问题不容忽视[J].汽车工业研究,2013(11):34-39.WANG X W.The problem of automobile information security cannot be ignored[J].Auto industry research,2013(11):34-39.
[5] 闫鸿滨.密钥管理关键技术研究[J].南通纺织职业技术学院学报,2010,10(4):5-7.YAN H B.Research on critical technology of key management[J].Journal of Nantong textile vocational technology college,2010,10(4):5-7.
[6] 舒浩敏.基于CAN总线的车身控制系统设计[D].长沙:湖南大学,2012.SHU H M.Car body control module design based on CAN bus[D].Changsha:Hunan University,2012.
[7] 刘旭.基于车载以太网与CAN总线互联技术研究[D].天津:河北工业大学,2018.LIU X.Research on the interconnection technology based on vehicle ethnernet and CAN bus[D].Tianjin:Hebei University of Technology,2018.
[8] 吕孟恩,韩晓明,张鹏军.FlexRay-CAN网关在火控系统中的应用[J].自动化与仪表,2021,36(3):81-85,94.LV M E,HAN X M,ZHANG P J.Application of FlexRay-can bus in artillery system[J].Automation & instrumentation,2021,36(3):81-85,94.
[9] WOLF M,WEIMERSKIRCH A,PAAR C.Secure in-vehicle communication[M]//LEMKE K,PAAR C,WOLF M.Embedded security in cars.Berlin:Springer Press,2006:95-109.
[10] PARK Y H.Key management and data re-encryption schemes for secure in-vehicle network[J].Journal of intelligent & fuzzy systems,2018,35(6):6079-6087.
[11] WOLF M,WEIMERSKIRCH A,PAAR C.Security in automotive bus systems[C]//Proceedings of the Workshop on Embedded Security in Cars.Berlin:Springer Press,2004:1-13.
[12] KURACHI R,MATSUBARA Y,TAKADA H,et al.CaCAN-centralized authentication system in CAN[C]//International Conference on Embedded Security in Cars.Berlin:Springer Press,2014:1-10.
[13] CARVAJAL-ROCA I E,WANG J,DU J,et al.A semi-centralized dynamic key management framework for in-vehicle networks[J].IEEE transactions on vehicular technology,2021,70(10):10864-10879.
[14] 朱泉.PKI CA身份认证技术研究[J].网络空间安全,2016,7(S1):37-39.ZHU Q.Researchof the PKI CA authentication technology[J].Cyberspace security,2016,7(S1):37-39.
[15] 南湘浩,陈化平,陈钟,等.组合公钥(CPK)体制标准(v3.0)[J].计算机安全,2009(11):1-2.NAN X H,CHEN H P,CHEN Z,et al.Combined public key (CPK) system standard (v3.0) [J] Computer security,2009(11):1-2.
[16] 南湘浩.CPK组合公钥体制(v7.0)[J].计算机安全,2012(5):2-4,7.NAN X H.CPK Combined public key system (v7.0)[J].Computer security,2012(5):2-4,7.
[17] 南湘浩.CPK组合公钥体制(v8.0)[J].信息安全与通信保密,2013,11(3):39-41,44.NAN X H.NAN X H.CPK Combined public key system (v8.0)[J].Information security and communications privacy,2013,11(3):39-41,44.
[18] 张爱丽,吴传伟.一种基于CPK的无线传感器网络密钥管理方法[J].通信技术,2019,52(2):439-443.ZHANG A L,WU C W.Key management method for wireless sensor network based on CPK[J].Communications technology,2019,52(2):439-443.
[19] 陈亚茹,陈庄,齐锋.一种基于CPK的远程认证方案[J].信息安全研究,2018,4(11):1034-1039.CHEN Y R,CHEN Z,QI F.A remote authentication scheme based on CPK[J].Journal of information security research,2018,4(11):1034-1039.
[20] 胡景秀,杨阳,熊璐,等.国密算法分析与软件性能研究[J].信息网络安全,2021,21(10):8-16.HU J X,YANG Y,XIONG L,et al.SM algorithm analysis and software performance research[J].Netinfo security,2021,21(10):8-16.
[21] 廖国鸿,袁宇恒,黎伟杰,等.组合公钥体制的线性共谋攻击[J].计算机应用与软件,2016,33(12):291-294.LIAO G H,YUAN Y H,LI W J,et al.Linear collusion attack in combined public key cryptosystem[J].Computer applications and software,2016,33(12):291-294.
[22] 熊荣华,李增欣,杨恒亮,等.组合公钥(CPK)体制密钥间的线性关系[J].计算机安全,2012(1):30-33.XIONG R H,LI Z X,YANG H L,et al.On the linear relations between the keys of combined public key cryptosystem(CPK)[J].Computer security,2012(1):30-33.
[23] 马安君,李方伟,朱江.组合公钥体制的线性共谋攻击分析[J].计算机应用,2013,33(8):2225-2227.MA A J,LI F W,ZHU J.Linear collusion attack analysis of combined public key cryptosystem[J].Journal of computer applications,2013,33(8):2225-2227.
[24] 张文政,王立斌,李益发.安全协议设计与分析[M].北京:国防工业出版社,2015:33-60.ZHANG W Z,WANG L B,LI Y F.Design and analysis of security protocols[M].Beijing:National Defense Industry Press,2015:33-60.
[25] 韩笑,施荣华.一种高效的椭圆曲线数字签名方案[J].微计算机信息,2012,28(9):395-396.HAN X,SHI R H.An efficient elliptic curve digital signature scheme [J].Microcomputer information,2012,28(9):395-396.
基本信息:
DOI:10.13705/j.issn.1671-6841.2022100
中图分类号:TN918.4;U463.6
引用信息:
[1]薛梦阳,陈铎,巢时刚,等.基于CPK的车内高速总线动态密钥管理方案[J],2023,55(02):18-24.DOI:10.13705/j.issn.1671-6841.2022100.
基金信息:
2020年工业互联网创新发展工程项目-智能网联汽车车载安全网关项目(TC200H033)
2022-04-15
2022
2023-03-17
2023
2