-
公开(公告)号:EP4290790A1
公开(公告)日:2023-12-13
申请号:EP21927307.5
申请日:2021-02-26
发明人: SHENG, De , GENG, Feng , YIN, Xinxing
IPC分类号: H04L20060101
摘要: This application discloses a key obtaining method and apparatus, and a key management system, and relates to the field of intelligent vehicle technologies. This not only can improve communication security, but also can update a key at any time, which is quite convenient. The key management system includes a key server and a first node in a communication connection to the key server, where the first node is a key client or a key proxy. The key server is configured to: obtain first key information, and send the first key information to the first node. The first node is configured to: receive the first key information from the key server, and generate a first key based on the first key information, where the first key information includes a first key material and an identifier of a first communication domain. The identifier of the first communication domain is used to indicate the first communication domain, the first key is applied to the first communication domain, the first communication domain includes at least two nodes in the key management system, and the at least two nodes include the first node.
-
公开(公告)号:EP4191940A1
公开(公告)日:2023-06-07
申请号:EP20949047.3
申请日:2020-08-13
发明人: GENG, Feng , SHA, Qingdi , ZHONG, Steven Yin
摘要: This application provides a secure onboard network communication method, an apparatus, and a device, to ensure that a freshness value is effectively synchronized within a vehicle lifecycle of a vehicle, and prevent a replay attack in onboard network communication. The device includes: a first processing module, configured to obtain an initial value of a first freshness value FV, obtain a second value based on the initial value, and refresh the initial value to the second value; a first sending module, configured to send a first message, where the first message includes the second value of the first FV; a first receiving module, configured to receive the first message; and a second processing module, configured to obtain an initial value of a second freshness value FV, and when a first condition is met, refresh the second FV to the second value, where the first condition includes a condition that the second value of the first FV is greater than or equal to a sum of the initial value of the second FV and a predetermined value.
-
3.发明公开
公开(公告)号:EP4362521A1
公开(公告)日:2024-05-01
申请号:EP21948781.6
申请日:2021-07-07
发明人: GENG, Feng , LI, Yong , SHANG, Yu
IPC分类号: H04W12/50
CPC分类号: H04W12/50
摘要: Embodiments of this application provide a method for establishing secure vehicle communication, a vehicle, a terminal, and a system. The vehicle may generate a ciphering parameter based on a parameter included in a first interaction parameter set sent by the terminal; then encrypt a shared key by using the ciphering parameter, to obtain a first vehicle key; and finally send a second interaction parameter set including the first vehicle key to the terminal, so that the terminal can decrypt the first vehicle key to obtain the shared key. In this way, the terminal and the vehicle can perform encryption and/or integrity protection on sent data by using the shared key.
-
公开(公告)号:EP4250631A1
公开(公告)日:2023-09-27
申请号:EP20964526.6
申请日:2020-12-08
发明人: GENG, Feng , LI, Yong , YI, Pingping , LI, Min
摘要: A vehicle diagnostic system, method, and apparatus are provided, to address insecure effect caused by using a long-term key for a vehicle diagnostic. The vehicle diagnostic system includes a key management system and a to-be-diagnosed unit. The key management system receives a key authorization request sent by a diagnostic device, generates a temporary key based on the key authorization request, and sends a key authorization response to the diagnostic device. The key authorization response carries the temporary key. The key management system configures the temporary key for the to-be-diagnosed unit, so that the diagnostic device and the to-be-diagnosed unit complete a diagnostic based on the temporary key and obtain a diagnostic result. The temporary key is independent of a long-term key in a vehicle. The temporary key is configured to complete the vehicle diagnostic, so that the diagnostic device can be prevented from accessing the long-term key in the vehicle as much as possible. This not only helps protect privacy data of a vehicle owner, but also reduces a possibility that an unauthorized person uses the long-term key to control vehicle running, thereby improving driving security of the vehicle owner.
-
公开(公告)号:EP4218167A1
公开(公告)日:2023-08-02
申请号:EP20953740.6
申请日:2020-09-18
发明人: YASMIN, Rehana , WEI, Zhuo , KANG, Suk In , GENG, Feng
IPC分类号: H04L20060101
-
公开(公告)号:EP4339820A1
公开(公告)日:2024-03-20
申请号:EP21943587.2
申请日:2021-06-04
发明人: SHANG, Yu , LI, Jiangqi , HE, Zhaohua , JIN, Shijing , GENG, Feng , CAO, Jianlong
IPC分类号: G06F21/62
摘要: A data protection method and a vehicle are provided. In the method, a target vehicle may receive a first configuration file, and determine a first configuration policy based on the first configuration file. The first configuration policy may be used to configure a protection manner of user data associated with a first application, so that the target vehicle may perform, according to the first configuration policy, a first operation (namely, a protection operation) on the user data associated with the first application. In this way, a data protection capability of the vehicle can be effectively improved, and the user data associated with the first application is protected. This effectively improves user experience.
-
公开(公告)号:EP4322467A1
公开(公告)日:2024-02-14
申请号:EP21938305.6
申请日:2021-04-28
发明人: SHENG, De , GENG, Feng , YIN, Xinxing
IPC分类号: H04L9/32
摘要: Embodiments of this application provide a key processing method and apparatus, and relate to the field of communication technologies. The key processing method includes: a first device determines a first memory slot, where the first memory slot is used to store a first key; and the first device determines a second memory slot associated with the first memory slot, where the second memory slot is used to store a second key, and the second key is an update key of the first key. In this way, a complex key update process in the conventional technology can be avoided, and the first key is updated by using the first memory slot and the second memory slot, thereby simplifying key update operations and improving efficiency of key update.
-
公开(公告)号:EP4322033A1
公开(公告)日:2024-02-14
申请号:EP21938281.9
申请日:2021-04-27
发明人: LI, Jiangqi , GENG, Feng , HE, Zhaohua , JIN, Shijing
IPC分类号: G06F21/30
摘要: An access method, apparatus, and system are disclosed, to implement remote access of a to-be-accessed apparatus to an access apparatus. In the access method, the to-be-accessed apparatus receives a remote authorization request sent by the access apparatus, then the to-be-accessed apparatus returns a remote authorization result to the access apparatus, and then the access apparatus accesses the to-be-accessed apparatus based on a remote authorization success result returned by the to-be-accessed apparatus. The access apparatus remotely authorizes the to-be-accessed apparatus, so that the access apparatus can invoke data of the to-be-accessed apparatus, and the access apparatus can further control the to-be-accessed apparatus.
-
公开(公告)号:EP4044502A1
公开(公告)日:2022-08-17
申请号:EP20953505.3
申请日:2020-10-30
发明人: LI, Yong , GENG, Feng , DUAN, Li , YI, Pingping , LI, Min
IPC分类号: H04L9/40
摘要: This application discloses a secure communications method and apparatus, so as to improve security of in-vehicle bus communication by negotiating an ephemeral session key. The method is applied to a first network device, and includes: receiving a second ephemeral public key of a second network device; determining an ephemeral session key based on a first shared key, a first ephemeral secret key of the first network device, and the second ephemeral public key, where the first shared key is a key shared between the first network device and the second network device; and performing secure communication with the second network device based on the ephemeral session key.
-
-
-
-
-
-
-
-
搜索结果
9 条记录 (耗时 0.017 秒)
