计算机工程与应用 ›› 2022, Vol. 58 ›› Issue (9): 116-126.DOI: 10.3778/j.issn.1002-8331.2010-0131

• 网络、通信与安全 • 上一篇    下一篇

基于数字签名的车联网安全体系研究

杨正球,郑一帆,修佳鹏   

  1. 北京邮电大学 计算机学院,北京 100876
  • 出版日期:2022-05-01 发布日期:2022-05-01

Research on Security System for Internet of Vehicles Based on Digital Signature

YANG Zhengqiu, ZHENG Yifan, XIU Jiapeng   

  1. College of Computer Science, Beijing University of Posts and Telecommunications, Beijing 100876, China
  • Online:2022-05-01 Published:2022-05-01

摘要: 车联网以智能网联汽车为信息交互感知主体,通过建立车-云-路-人消息互联传输体系,实现智慧交通智能管理、高效控制和及时调度。然而非法网络入侵与攻击导致车联网多通信场景存在安全隐患,为了解决通信各端身份识别问题和复杂通信场景下消息安全传输机制,身份认证技术成为车联网安全体系的重要保障。综述了国内外车联网研究现状和成果,说明了智能网联汽车平台、组件、通信体系,设计了基于数字签名的车联网安全架构;通过深入研究安全框架内在机理,进行架构的详细设计,将全生命周期安全保障机制融于设计中,实现了多场景全生命周期内的身份认证服务;通过分析LTE-V2X技术特点和V2X证书管理体系实际需要,提出面向LTE-V2X数字签名体系,可实际应用于LTE-V2X业务部署及系统开发设计。

关键词: 车联网安全, 身份认证, 数字签名, LTE-V2X

Abstract: As the main body of information interaction perception of Internet of Vehicles, intelligent connected vehicles aim to achieve intelligent management, efficient control and timely scheduling of intelligent transportation through the establishment of message interconnection and transmission system among on board units, cloud, road side units and humans. However, illegal network intrusion and cyber-attacks lead to security risks in the multi-communication scenarios of Internet of Vehicles. In order to solve the problem of identity identification at all communication terminals and the message security transmission mechanism in complex communication scenarios, identity authentication technology becomes an important guarantee for the security system of Internet of Vehicles. The basic ideas of research works are as follows. By summarizing the research status and results of Internet of Vehicles at home and abroad, the platform, components and communication system of intelligent connected vehicles are proposed, the security architecture based on digital certificate is constructed. By researching the intrinsic characters of security framework in depth, each terminal architecture is designed in detail based on the security requirements, full life-cycle security mechanisms are integrated into the architecture, the personalized identity authentication service within the whole life cycle of multiple scenes is realized. This paper analyzes the actual needs of the V2X certificate management and the LTE-V2X technical characteristics. And then a digital signature system based on LTE-V2X is proposed, which can actually be applied to the development and design of LTE-V2X service deployment and related systems.

Key words: Internet of Vehicles security, identity authentication, digital signature, long term evolution-v2x(LTE-V2X)