| 摘要 |
PURPOSE: An authentication and obtaining method of automotive data and a system thereof are provided to efficiently transmit and receive authentication values for automotive data to and from control parts inside a vehicle, to prevent falsification of automotive data, and to check the status of a vehicle by allowing an external maintenance diagnostic part outside the vehicle to easily obtain automotive data for the vehicle without a separate device. CONSTITUTION: An authentication and obtaining method of automotive data, transmitted and received between control parts(122,124) prepared inside a vehicle through internal networks of the vehicle, includes the following steps: a symmetric key storage step where a gateway control unit(110) stores an intrinsic certificate, and the gateway control unit and the control parts store mutually identical symmetric keys(S110); a symmetric key exchange step where the gateway control unit generates a first random value(S120), encrypts the generated first random value with the symmetric key(S130), and transmits the encrypted first random value to the control parts(S140), and where the gateway control unit and the control parts, receiving the encrypted first random value, generate an authentication key and an encryption key to encrypt automotive data(S150); a data transmission step where the control parts encrypt the automotive data to be transmitted(S160), generate a message authentication value for the encrypted automotive data by using the authentication key(S170), and insert the message authentication value into a network packet field and transmit the value(S180); and a data reception step where the control parts, receiving the network packet, authenticate the message authentication value in the network packet by using the authentication key(S190), then decrypt the encrypted automotive data by using the encryption key, and then obtain automotive data(S200). [Reference numerals] (110) Gateway control unit; (122,124) Control unit; (AA) Storing a unique certificate and a symmetric key; (BB,CC) Storing the symmetric key; (S120) Generating a first random value; (S130) Encrypting the first random value; (S140) Transmitting the encrypted first random value; (S150) Generating an authentication key and an encryption key; (S160) Encrypting automotive data; (S170) Generating a message authentication value for the automotive data; (S180) Transmitting the message authentication value by inserting the same into an extended ID field and a CRC field within a network packet field; (S190) Authenticating the message authentication value; (S200) Obtaining the automotive data by decrypting the encrypted automotive data
|
