| 摘要 |
The present invention relates to providing a service for generating an encryption key. More specifically, an initial value for generating a random number is generated based on packet control information of a header area in packets transmitted between nodes placed in a network so that the data of a packet can be encrypted and decrypted by applying a one-time pad (OTP) or a Vernam cipher algorithm to the corresponding packet transmitted from a control area network (CAN) used in the domain of a vehicle or the like. Accordingly, the problem of generating an encryption key, which is the restraint of the OTP or Vernam cipher technique considered to be the safest encryption algorithm, is solved using a hardware-based random number generator (RNG) by dynamically generating a first encryption key and one or more encryption keys continuously following the first encryption key. Therefore, not only a corresponding algorithm can be realized completely but also the restraints of encryption key sharing among multiple ECUs and high-speed encryption can be overcome in CAN communications for providing a closed network service. Accordingly, provided is a technique wherein an encryption key generating module used by the ECUs disables a third party from knowing an inner circuit using a counter measure technique. |
