Key management method for train-ground secure communication protocol of CTCS-3 level train control system

Abstract

The invention provides a key management method for a train-ground secure communication protocol of a CTCS-3 level train control system. The method comprises the following steps: sharing, by a securityrelated device in the CTCS-3 level train control system, a key management function required by the train-ground secure communication protocol thereof, generating a transmission key and a key book forverifying the key offline, storing the key book in the security related device, allocating the transmission key to the security related device in the CTCS-3 level train control system according to the key book of the transmission key by using a public key password mechanism, after the transmission key is allocated, continuing to establish a secure channel by using the transmission key in accordance of a method specified by the train-ground secure communication protocol of the CTCS-3 level train control system, and distributing a verification key to the security related device by using the secure channel. According to the method provided by the invention, the key management function is executed through the security related device, the physical key distribution mode in the key management process is changed, the risk caused by manual intervention key management is reduced, and the security of the key is improved.

Description

technical field [0001] The invention relates to the technical field of vehicle-ground safety communication, in particular to a key management method for a vehicle-ground safety communication protocol of a CTCS-3 train control system. Background technique [0002] In CTCS (China Train Control System, China Train Control System)-3-level train control system, OBU (On board Unit, on-board train control equipment) and ground RBC (Raid Block Center, wireless blocking center) through such as figure 1 The shown GSM-R system implements two-way data information exchange based on an open wireless network. In order to ensure the security of the key information of train-ground train control, based on the ETCSEuroradio functional interface specification and the ETCS subset-037 protocol, the CTCS-3 train-ground communication protocol is formulated. This protocol is based on the 3DES symmetric encryption algorithm to ensure the system. secure transmission. [0003] The CTCS-3 level vehicl...

AI Technical Summary

Problems solved by technology

[0031] The 3DES encryption algorithm has high security, but the premise is that the two parties in the communication can distribute the shared key safely and reliably.

The above situation will lead to the loss of security of the transmission key, resulting in the loss of security of all subsequent processes related to the key

In addition, the distribution, update, and storage of the primary key and secondary key must rely on the key management center to complete, if the key management center crashes, is threatened by an attack, or the channel between the center and the security device is destroyed , or even the center is replaced by a maliciously disguised center, then the entire secure communication will no longer be safe

[0037] At present, in the CTCS-3 train control system, the management of the transmission key not only requires a special key management center, but also requires a safe and closed environment and strictly authorized personnel for its generation, distribution and installation, while GSM-R The network is an open network environment, so the transmission key management needs to set up a safe and closed environment for it and assign management personnel; and in the same key management area, the same transmission key is usually used uniformly, and different communication interfaces are also used. The same verification key value can be used uniformly, and the verification key is encrypted and protected by the transmission key, and since the transmission key does not change for a long time, the transmission key is likely to be cracked, and as long as there is a transmission key between communication interfaces If it is cracked, the communication in the entire area will lose security

Images