Vehicle charging authentication method and device, vehicle, and charging pile
By employing a dual authentication mechanism between the vehicle and the charging station, and utilizing the binding relationship and the generation of encryption keys, security risks in charging authentication are addressed, thereby improving the security and reliability of charging authentication.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Patents(China)
- Current Assignee / Owner
- BEIJING CO WHEELS TECH CO LTD
- Filing Date
- 2021-11-29
- Publication Date
- 2026-06-09
AI Technical Summary
In existing vehicle charging certification, the Bluetooth Low Energy connection process presents security risks because each charging station has the ability to generate a charging code encryption key.
The vehicle receives the charging pile authentication information, the charging pile serial number, and the charging code signature information. Based on the binding relationship, it obtains a random number from the broadcast information, generates a first encryption key, and sends the encrypted charging code signature information to the charging pile for authentication. The charging pile uses the charging pile signature information and the second encryption key to decrypt and verify.
The dual authentication method increases the security of charging authentication, ensuring the safety and reliability of the charging process.
Smart Images

Figure CN116176345B_ABST
Abstract
Description
Technical Field
[0001] This disclosure relates to the field of vehicle technology, and in particular to a vehicle charging authentication method and device, vehicle, and charging pile. Background Technology
[0002] In existing vehicle charging authentication processes using Bluetooth Low Energy (BLE), the vehicle broadcasts a message based on the serial number of the connected charging station, and the charging station receives the broadcast and initiates a connection. When multiple available charging stations exist, each can establish a connection with the charging vehicle. The authentication process requires verification of the charging code encryption key, which is generated from a random number generated by both the charging vehicle and the charging station. Since each available charging station has the ability to generate its own charging code encryption key based on these random numbers, vehicle charging authentication faces certain security risks. Summary of the Invention
[0003] This disclosure provides a vehicle charging authentication method and device, a vehicle, and a charging pile.
[0004] According to one aspect of this disclosure, a vehicle charging authentication method is provided, the method being applied to the vehicle side, comprising:
[0005] The system receives charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0006] The random number in the broadcast information is obtained according to the binding relationship, wherein the binding relationship is the binding relationship between vehicle identification information and charging pile serial number;
[0007] A first encryption key is generated based on the random number and the charging pile authentication information;
[0008] The charging code signature information is encrypted using the first encryption key, and the encrypted charging code signature information is sent to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
[0009] Optionally, obtaining the random number from the broadcast message based on the binding relationship includes:
[0010] Scan broadcast information within a preset distance range and determine the paired charging pile based on the charging pile serial number;
[0011] Obtain the random number from the broadcast information of the charging pile.
[0012] Optionally, the step of scanning broadcast information within a preset distance range and determining the paired charging pile based on the charging pile serial number includes:
[0013] After the vehicle connects to the charging gun of the charging station, it scans the broadcast information via Bluetooth and establishes a communication connection with the charging station.
[0014] According to a second aspect of this disclosure, a vehicle charging authentication method is provided, the method being applied to a cloud server side, comprising:
[0015] The charging pile authentication information, charging pile serial number, and charging code signature information are sent to the vehicle. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0016] A binding relationship between the vehicle and the charging pile is established based on the vehicle's identification information and the charging pile's serial number, which is used by the vehicle to obtain a random number from the broadcast information according to the binding relationship.
[0017] Optionally, before sending the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle, the method further includes:
[0018] Generate a string based on the preset key and the charging pile serial number;
[0019] The string is divided into two parts, one part is used as the charging pile authentication information, and the other part is used as the charging pile signature information.
[0020] Optionally, the method further includes:
[0021] The charging pile authentication information and the charging pile signature information are injected into the charging pile so that the charging pile can authenticate the information sent by the vehicle based on the charging pile authentication information and the charging pile signature information.
[0022] Optionally, before sending the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle, the method further includes:
[0023] A charging code is generated based on the vehicle's identification information and the charging pile's serial number;
[0024] The charging code signature information is obtained by signing the charging pile signature information.
[0025] According to a third aspect of this disclosure, a vehicle charging authentication method is provided, the method being applied to a charging pile side, comprising:
[0026] Receive charging pile authentication information and charging pile signature information;
[0027] Send a broadcast message containing a random number;
[0028] A second encryption key is generated based on the random number and the charging pile authentication information;
[0029] The system receives the encrypted charging code signature information sent by the vehicle and uses the charging pile signature information and the second encryption key to decrypt and verify the encrypted charging code signature information.
[0030] Optionally, decrypting and verifying the encrypted charging code signature information using the charging pile signature information and the second encryption key includes:
[0031] The encrypted charging code signature information is decrypted using the second encryption key;
[0032] The decrypted signature information of the charging pile is verified using the signature information of the charging pile.
[0033] According to a fourth aspect of this disclosure, a vehicle charging authentication device is provided, the device being applied to a cloud server side, comprising:
[0034] The receiving unit is used to receive charging pile authentication information, charging pile serial number, and charging code signature information, wherein the charging code signature information is obtained by signing the charging code using the charging pile signature information;
[0035] The acquisition unit is used to acquire a random number from the broadcast information according to the binding relationship, wherein the binding relationship is the binding relationship between vehicle identification information and charging pile serial number;
[0036] A generation unit is used to generate a first encryption key based on the random number and the charging pile authentication information;
[0037] The processing unit is configured to encrypt the charging code signature information using the first encryption key and send the encrypted charging code signature information to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
[0038] Optionally, the acquisition unit includes:
[0039] The scanning module is used to scan broadcast information within a preset distance range;
[0040] The determination module is used to determine the paired charging pile based on the charging pile serial number;
[0041] The acquisition module is used to acquire the random number in the broadcast information of the charging pile.
[0042] Optionally, the scanning module is also used to scan the broadcast information via Bluetooth and communicate with the charging pile after the vehicle is connected to the charging gun of the charging pile.
[0043] According to a fifth aspect of this disclosure, a vehicle charging authentication device is provided, the device being applied to a cloud server side, comprising:
[0044] The sending unit is used to send the charging pile authentication information, the charging pile serial number, and the charging code signature information to the vehicle. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0045] The unit is used to establish a binding relationship between the vehicle and the charging pile based on the vehicle's identification information and the charging pile's serial number.
[0046] Optionally, the device further includes:
[0047] The first generation unit is used to generate a string based on a preset key and the charging pile serial number before the sending unit sends the charging pile authentication information, the charging pile serial number and the charging code signature information to the vehicle.
[0048] The determining unit is used to divide the string into two parts, and use one part as the charging pile authentication information and the other part as the charging pile signature information.
[0049] Optionally, the device further includes:
[0050] An injection unit is used to inject the charging pile authentication information and the charging pile signature information into the charging pile, so that the charging pile can authenticate the information sent by the vehicle based on the charging pile authentication information and the charging pile signature information.
[0051] Optionally, the device further includes:
[0052] The second generation unit is used to generate a charging code based on the vehicle's identification information and the charging pile serial number before the sending unit sends the charging pile authentication information, the charging pile serial number, and the charging code signature information to the vehicle.
[0053] An encryption unit is used to sign the charging code using the charging pile signature information to obtain the charging code signature information.
[0054] According to a sixth aspect of this disclosure, a vehicle charging authentication device is provided, the device being applied to a charging pile side, comprising:
[0055] The first receiving unit is used to receive charging pile authentication information and charging pile signature information;
[0056] The transmitting unit is used to transmit broadcast information containing random numbers;
[0057] A generation unit is used to generate a second encryption key based on the random number and the charging pile authentication information;
[0058] The second receiving unit is used to receive the encrypted charging code signature information sent by the vehicle;
[0059] The decryption unit is used to decrypt and verify the encrypted charging code signature information using the charging pile signature information and the second encryption key.
[0060] Optionally, the decryption unit includes:
[0061] The decryption module is used to decrypt the encrypted charging code signature information using the second encryption key;
[0062] The verification module is used to verify the decrypted signature information of the charging pile using the signature information of the charging pile.
[0063] According to a seventh aspect of this disclosure, a vehicle is provided that includes the vehicle charging authentication device described in the fifth aspect.
[0064] According to the eighth aspect of this disclosure, a charging pile is provided, the charging pile including the vehicle charging authentication device described in the sixth aspect.
[0065] According to a ninth aspect of this disclosure, an electronic device is provided, comprising:
[0066] At least one processor; and
[0067] A memory communicatively connected to the at least one processor; wherein,
[0068] The memory stores instructions that can be executed by the at least one processor to enable the at least one processor to perform the methods described in the first, second, or third aspects above.
[0069] According to a tenth aspect of this disclosure, a non-transitory computer-readable storage medium is provided storing computer instructions, wherein the computer instructions are configured to cause the computer to perform the methods described in the first, second, or third aspects described above.
[0070] According to the eleventh aspect of this disclosure, a computer program product is provided, including a computer program that, when executed by a processor, implements the methods described in the first, second, or third aspects described above.
[0071] This disclosure provides a vehicle charging authentication method and device, a vehicle, and a charging pile. The method involves receiving charging pile authentication information, a charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information. A random number is obtained from broadcast information based on a binding relationship between vehicle identification information and the charging pile serial number. A first encryption key is generated based on the random number and the charging pile authentication information. The first encryption key is used to encrypt the charging code signature information, and the encrypted charging code signature information is sent to the charging pile for authentication. Compared with related technologies, in this embodiment, the vehicle acts as the main device receiving the broadcast and performs a dual authentication method of authentication and signing based on the charging pile authentication information, the charging pile serial number, and the charging code signature information, thereby increasing the security of charging authentication.
[0072] It should be understood that the description in this section is not intended to identify key or essential features of the embodiments of this application, nor is it intended to limit the scope of this application. Other features of this application will become readily apparent from the following description. Attached Figure Description
[0073] The accompanying drawings are provided to better understand this solution and do not constitute a limitation of this disclosure. Wherein:
[0074] Figure 1 A schematic flowchart illustrating the first vehicle charging authentication method provided in this embodiment of the present disclosure;
[0075] Figure 2 A schematic flowchart illustrating the second vehicle charging authentication method provided in this embodiment of the present disclosure;
[0076] Figure 3 A schematic flowchart illustrating the third vehicle charging authentication method provided in this embodiment of the present disclosure;
[0077] Figure 4 A schematic flowchart illustrating the fourth vehicle charging authentication method provided in this embodiment of the present disclosure;
[0078] Figure 5 A schematic diagram of the structure of a first vehicle charging authentication device provided in an embodiment of this disclosure;
[0079] Figure 6 A schematic diagram of the structure of a second vehicle charging authentication device provided in an embodiment of this disclosure;
[0080] Figure 7 A schematic diagram of the structure of a third vehicle charging authentication device provided in an embodiment of this disclosure;
[0081] Figure 8A schematic diagram of the structure of a fourth vehicle charging authentication device provided in this embodiment of the disclosure;
[0082] Figure 9 A schematic diagram of the structure of a fifth vehicle charging authentication device provided in an embodiment of this disclosure;
[0083] Figure 10 A schematic diagram of the structure of a sixth vehicle charging authentication device provided in this embodiment of the disclosure;
[0084] Figure 11 A schematic block diagram of an example electronic device 700 provided for embodiments of this disclosure. Detailed Implementation
[0085] The exemplary embodiments of this disclosure are described below with reference to the accompanying drawings, including various details of the embodiments to aid understanding, and should be considered merely exemplary. Therefore, those skilled in the art will recognize that various changes and modifications can be made to the embodiments described herein without departing from the scope and spirit of this disclosure. Similarly, for clarity and brevity, descriptions of well-known functions and structures are omitted in the following description.
[0086] This application provides a first method for authenticating vehicle charging, such as... Figure 1 As shown, the method is applied to the vehicle side and includes:
[0087] 101. The vehicle receives charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0088] In the specific implementation process, the cloud server will generate a 32-byte string based on the preset key generated by the third-party security center and the serial number SN of the charging pile. The first 16 characters of this string serve as the charging pile authentication information (Charging Pile Auth Key, CP_AK), and the last 16 characters serve as the charging pile signature information (Charging Pile HMAC Key, CP_HK).
[0089] The cloud server generates a charging code plaintext based on the vehicle's identification information and the charging pile serial number. Then, it signs the charging code plaintext using the charging pile signature information CP_HK to obtain the signature information. Finally, it sends the charging pile authentication information, the charging code, and the signature information to the vehicle.
[0090] 102. The vehicle obtains a random number from the broadcast information based on the binding relationship, wherein the binding relationship is the binding relationship between the vehicle identification information and the charging pile serial number.
[0091] In practice, the Bluetooth Low Energy (BLE) connection process is as follows: the charging pile acts as a slave device and sends a broadcast with the charging pile serial number, while the vehicle acts as the master device and receives the broadcast and initiates a connection.
[0092] In practical applications, a vehicle can establish a binding relationship with one or more charging piles. This binding relationship is established when the vehicle leaves the factory or when the charging pile is produced. As another implementation method of this application embodiment, the cloud server can also establish a binding relationship between the vehicle and the charging pile. This application embodiment does not limit the specific implementation method for establishing the binding relationship.
[0093] 103. The vehicle generates a first encryption key based on the random number and the charging pile authentication information.
[0094] In the specific implementation process, after the charging gun of the charging pile is inserted into the vehicle body, based on the binding relationship in step 102, the vehicle initiates a BLE connection to the charging pile. At the same time, the vehicle will perform encryption calculation based on the random number in the broadcast and the CP_AK obtained from the cloud server in step 101 to obtain the first encryption key (SK). Common encryption calculation methods include, but are not limited to, HMAC-SHA256 operation, or any encryption calculation method in related technologies. The embodiments of this application will not be described in detail here.
[0095] 104. The vehicle uses the first encryption key to encrypt the charging code signature information and sends the encrypted charging code signature information to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
[0096] After the vehicle establishes a BLE connection with the charging station, the vehicle sends an encrypted signature message to the charging station. In practice, all communication between the vehicle and the charging station after the BLE connection is established is encrypted using SK.
[0097] When a charging station rolls off the production line at the factory, its CP_AK and CP_HK are injected. After broadcasting a randomly generated number, the charging station also generates an SK based on the random number and CP_AK. If the vehicle and charging station are correctly bound, then their generated SKs will be the same.
[0098] After receiving a charging request with encrypted signature information, the charging station uses SK to decrypt the message, obtaining the signed charging code. Then, it uses CP_HK to verify the signature of the charging code. Once the charging code is confirmed to be valid, the charging gun's circuit switch is closed to initiate charging, and a successful charging authentication command is sent to the vehicle. This completes the seamless charging authentication process.
[0099] The vehicle charging authentication method disclosed herein receives charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using charging pile signature information. A random number is obtained from broadcast information based on a binding relationship, wherein the binding relationship is between vehicle identification information and the charging pile serial number. A first encryption key is generated based on the random number and the charging pile authentication information. The first encryption key is used to encrypt the charging code signature information, and the encrypted charging code signature information is sent to the charging pile for authentication. Compared with related technologies, in this embodiment, the vehicle acts as the main device receiving the broadcast and performs a dual authentication method of authentication and signing based on the charging pile authentication information, charging pile serial number, and charging code signature information, thereby increasing the security of charging authentication.
[0100] As a further extension of the above embodiments, the method further includes: the vehicle receiving a charging pile serial number sent by the cloud server, scanning broadcast information within a preset distance range, and determining a paired charging pile based on the charging pile serial number; after the vehicle connects to the charging gun of the charging pile, scanning the broadcast information via Bluetooth, communicating with the charging pile, and obtaining the random number in the broadcast information of the charging pile. The preset distance range described in this embodiment is an empirical value and needs to be set according to different scenarios, such as setting the preset distance range to 20 meters, 10 meters, etc., without specific limitation.
[0101] The above embodiment illustrates that the charging code SK is generated jointly by CP_AK and the random number of the charging pile. CP_AK is generated by a cloud server, which communicates with the vehicle based on a preset security channel. That is, only vehicles of this product can obtain it, and only vehicles of this product can generate SK, thus improving the security level.
[0102] This invention also provides a second method for authenticating vehicle charging, such as... Figure 2 As shown, the method is applied to the cloud server side and includes:
[0103] 201. The cloud server sends the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0104] 202. The cloud server establishes a binding relationship between the vehicle and the charging pile based on the vehicle's identification information and the charging pile's serial number, so that the vehicle can obtain a random number from the broadcast information according to the binding relationship.
[0105] The purpose of establishing a binding relationship is to directly obtain the broadcasts of charging piles with which the vehicle has a binding relationship from among numerous charging pile broadcasts. This saves time in obtaining random numbers, thereby saving authentication time and improving charging efficiency. After the vehicle and charging pile are bound, the cloud server generates a charging code plaintext based on information such as the vehicle identification number (VIN) and the charging pile's serial number (SN). Then, it uses CP_HK to sign the charging code plaintext to ensure the security of data authentication.
[0106] As a response Figure 2 An extension of the method shown, before sending the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle in step 201, the cloud server generates a preset byte string based on a preset key and the charging pile serial number. This preset byte string is then divided into two equal-length parts: one part serves as the charging pile signature information, and the other as the charging pile authentication information. The cloud server uses a preset key generated by a third-party security center and the charging pile serial number (SN). Since both the preset key and serial number are unique, the generated string is also unique. The preset byte string is a unique empirical value; in this embodiment, a 32-byte string is generated during implementation. The first 16 bytes of this string are used as CP_AK, and the last 16 bytes are used as the charging pile signature information CP_HK.
[0107] The vehicle charging authentication method disclosed herein receives charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using charging pile signature information. A random number is obtained from broadcast information based on a binding relationship, wherein the binding relationship is between vehicle identification information and the charging pile serial number. A first encryption key is generated based on the random number and the charging pile authentication information. The first encryption key is used to encrypt the charging code signature information, and the encrypted charging code signature information is sent to the charging pile for authentication. Compared with related technologies, in this embodiment, the vehicle acts as the main device receiving the broadcast and performs a dual authentication method of authentication and signing based on the charging pile authentication information, charging pile serial number, and charging code signature information, thereby increasing the security of charging authentication.
[0108] As a further extension of the above embodiments, in step 201, after obtaining the charging pile signature information and the charging pile authentication information, the charging pile signature information and the charging pile authentication information are injected into the charging pile, so that the charging pile can authenticate the information sent by the vehicle based on the charging pile signature information and the charging pile authentication information. For a detailed description of the charging pile's authentication process for the charging code, please refer to the above embodiments; it will not be repeated here.
[0109] This application also provides a third method for authenticating vehicle charging, such as... Figure 3 As shown, the method is applied to the charging pile side and includes:
[0110] 301. Receive charging pile authentication information and charging pile signature information;
[0111] 302. Send a broadcast message with a random number.
[0112] The form of broadcasting can be any of the related technologies, and the embodiments of this application do not limit the form of broadcasting.
[0113] 303. Generate a second encryption key based on the random number and the charging pile authentication information.
[0114] The method for generating the second encryption key is the same as that for generating the first encryption key. If the vehicle and the charging station are correctly bound, the first encryption key and the second encryption key will be the same, and the encrypted charging code signature information sent by the vehicle can be decrypted. If the second encryption key and the first encryption key are not the same, it means that the vehicle and the charging station are not bound, and the authentication fails.
[0115] 304. Receive the encrypted charging code signature information sent by the vehicle, and use the charging pile signature information and the second encryption key to decrypt and verify the encrypted charging code signature information.
[0116] The encrypted charging code signature information is decrypted using the second encryption key, and the decrypted charging pile signature information is verified using the charging pile signature information. This decryption process is the reverse of the encryption process on the vehicle side.
[0117] The above embodiments have described the authentication process between the vehicle and the charging station. The following embodiment illustrates the interaction between the cloud server, the vehicle, and the charging station through an application scenario. The vehicle includes: an onboard host (HU), a vehicle control and computing unit (XCU), and an onboard charger (OBC). Figure 4 As shown, the process includes: the cloud server synchronizing the charging code to the HU and XCU in the vehicle; the charging pile sending an indication message to the OBC indicating that the charging gun is inserted; the OBC responding to the indication message and sending a charging gun insertion signal; the XCU sending a notification to the HU that the charging gun has been inserted; and the HU reporting a Bluetooth connection event to the cloud server to complete the Bluetooth pairing between the vehicle and the charging pile. The Bluetooth connection is completed through the above process.
[0118] The HU generates an encryption key based on the charging pile's random number and the charging pile's authentication information. It then uses the encryption key to encrypt the signature information and sends the encrypted signature information to the charging pile. After receiving the encrypted signature information, the charging pile uses SK to decrypt the encrypted signature information to obtain the signed charging code. It then uses CP_HK to verify the signature of the charging code. Once the charging code is confirmed to be valid, the charging gun's circuit switch is closed to start charging, and a charging authentication success command is sent back to the HU.
[0119] Figure 5 This is a schematic diagram of the structure of a first vehicle charging authentication device provided in an embodiment of this disclosure. The device is applied to the vehicle side, such as... Figure 4 As shown, it includes:
[0120] The receiving unit 41 is used to receive charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0121] The acquisition unit 42 is used to acquire a random number in the broadcast information according to the binding relationship, wherein the binding relationship is the binding relationship between vehicle identification information and charging pile serial number;
[0122] The generation unit 43 is used to generate a first encryption key based on the random number and the charging pile authentication information;
[0123] Processing unit 44 is used to encrypt the charging code signature information using the first encryption key and send the encrypted charging code signature information to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
[0124] Furthermore, in one possible implementation of this embodiment, such as Figure 6 As shown, the acquisition unit 42 includes:
[0125] Scanning module 421 is used to scan broadcast information within a preset distance range;
[0126] The determining module 422 is used to determine the paired charging pile based on the charging pile serial number;
[0127] The acquisition module 423 is used to acquire the random number in the broadcast information of the charging pile.
[0128] Furthermore, in one possible implementation of this embodiment, the scanning module 221 is also used to scan the broadcast information via Bluetooth and communicate with the charging pile after the vehicle is connected to the charging gun of the charging pile.
[0129] This disclosure also provides a third type of vehicle charging authentication device, which is applied to the cloud server side, such as... Figure 7 As shown, it includes:
[0130] The sending unit 51 is used to send the charging pile authentication information, the charging pile serial number, and the charging code signature information to the vehicle. The charging code signature information is obtained by signing the charging code using the charging pile signature information.
[0131] Establishment unit 52 is used to establish a binding relationship between the vehicle and the charging pile based on the vehicle's identification information and the charging pile's serial number, and to allow the vehicle to obtain a random number from the broadcast information according to the binding relationship.
[0132] Furthermore, in one possible implementation of this embodiment, such as Figure 8 As shown, the device further includes:
[0133] The first generation unit 53 is used to generate a string based on a preset key and the charging pile serial number before the sending unit sends the charging pile authentication information, the charging pile serial number and the charging code signature information to the vehicle.
[0134] The determining unit 54 is used to divide the string into two parts, and use one part as the charging pile authentication information and the other part as the charging pile signature information.
[0135] Furthermore, in one possible implementation of this embodiment, such as Figure 8 As shown, the device further includes:
[0136] The injection unit 55 is used to inject the charging pile authentication information and the charging pile signature information into the charging pile, so that the charging pile can authenticate the information sent by the vehicle based on the charging pile authentication information and the charging pile signature information.
[0137] Furthermore, in one possible implementation of this embodiment, such as Figure 8 As shown, the device further includes:
[0138] The second generation unit 56 is used to generate a charging code based on the vehicle's identification information and the charging pile serial number before the sending unit sends the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle.
[0139] The encryption unit 57 is used to sign the charging code using the charging pile signature information to obtain the charging code signature information.
[0140] This disclosure also provides a fifth type of vehicle charging authentication device, which is applied to the charging pile side, such as... Figure 9 As shown, it includes:
[0141] The first receiving unit 61 is used to receive charging pile authentication information and charging pile signature information.
[0142] The transmitting unit 62 is used to transmit broadcast information containing random numbers;
[0143] The generation unit 63 is used to generate a second encryption key based on the random number and the charging pile authentication information;
[0144] The second receiving unit 64 is used to receive the encrypted charging code signature information sent by the vehicle.
[0145] The decryption unit 65 is used to decrypt and verify the encrypted charging code signature information using the charging pile signature information and the second encryption key.
[0146] Furthermore, in one possible implementation of this embodiment, such as Figure 10 As shown, the decryption unit 65 includes:
[0147] The decryption module 651 is used to decrypt the encrypted charging code signature information using the second encryption key;
[0148] The verification module 652 is used to verify the decrypted signature information of the charging pile using the signature information of the charging pile.
[0149] This disclosure also provides a vehicle, the vehicle comprising... Figure 5 or Figure 6 The aforementioned vehicle charging authentication device.
[0150] This disclosure also provides a charging pile, the charging pile comprising... Figure 9 or Figure 10 The aforementioned vehicle charging authentication device.
[0151] It should be noted that the charging pile can also be a charging station, charging platform, mobile charging pile, or other equipment or facilities that can charge vehicles.
[0152] It should be noted that the foregoing explanation of the method embodiments also applies to the apparatus of this embodiment, and the principle is the same, so it is not limited in this embodiment.
[0153] This disclosure provides a vehicle charging authentication method and device, a vehicle, and a charging pile. The method involves receiving charging pile authentication information, a charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information. A random number is obtained from broadcast information based on a binding relationship between vehicle identification information and the charging pile serial number. A first encryption key is generated based on the random number and the charging pile authentication information. The first encryption key is used to encrypt the charging code signature information, and the encrypted charging code signature information is sent to the charging pile for authentication. Compared with related technologies, in this embodiment, the vehicle acts as the main device receiving the broadcast and performs a dual authentication method of authentication and signing based on the charging pile authentication information, the charging pile serial number, and the charging code signature information, thereby increasing the security of charging authentication.
[0154] According to embodiments of this disclosure, this disclosure also provides an electronic device, a readable storage medium, and a computer program product.
[0155] Figure 11 A schematic block diagram of an example electronic device 700 that can be used to implement embodiments of the present disclosure is shown. The electronic device is intended to represent various forms of digital computers, such as laptop computers, desktop computers, workstations, personal digital assistants, servers, blade servers, mainframe computers, and other suitable computers. The electronic device may also represent various forms of mobile devices, such as personal digital processors, cellular phones, smartphones, wearable devices, and other similar computing devices. The components shown herein, their connections and relationships, and their functions are merely illustrative and are not intended to limit the implementation of the present disclosure described and / or claimed herein.
[0156] like Figure 11 As shown, device 700 includes a computing unit 701, which can perform various appropriate actions and processes based on a computer program stored in ROM (Read-Only Memory) 702 or loaded from storage unit 707 into RAM (Random Access Memory) 703. RAM 703 can also store various programs and data required for the operation of device 700. The computing unit 701, ROM 702, and RAM 703 are interconnected via bus 704. I / O (Input / Output) interface 707 is also connected to bus 704.
[0157] Multiple components in device 700 are connected to I / O interface 705, including: input unit 706, such as keyboard, mouse, etc.; output unit 707, such as various types of monitors, speakers, etc.; storage unit 708, such as disk, optical disk, etc.; and communication unit 709, such as network card, modem, wireless transceiver, etc. Communication unit 709 allows device 700 to exchange information / data with other devices through computer networks such as the Internet and / or various telecommunications networks.
[0158] The computing unit 701 can be various general-purpose and / or special-purpose processing components with processing and computing capabilities. Some examples of the computing unit 701 include, but are not limited to, CPUs (Central Processing Units), GPUs (Graphics Processing Units), various special-purpose AI (Artificial Intelligence) computing chips, various computing units running machine learning model algorithms, DSPs (Digital Signal Processors), and any suitable processor, controller, microcontroller, etc. The computing unit 701 performs the various methods and processes described above, such as a vehicle charging authentication method. For example, in some embodiments, the vehicle charging authentication method may be implemented as a computer software program tangibly contained in a machine-readable medium, such as storage unit 707. In some embodiments, part or all of the computer program may be loaded and / or installed on device 700 via ROM 702 and / or communication unit 709. When the computer program is loaded into RAM 703 and executed by the computing unit 701, one or more steps of the methods described above may be performed. Alternatively, in other embodiments, the computing unit 701 may be configured to perform the aforementioned vehicle charging authentication method by any other suitable means (e.g., by means of firmware).
[0159] Various implementations of the systems and techniques described above herein can be implemented in digital electronic circuit systems, integrated circuit systems, FPGAs (Field Programmable Gate Arrays), ASICs (Application-Specific Integrated Circuits), ASSPs (Application-Specific Standard Products), SOCs (System-on-Chips), CPLDs (Complex Programmable Logic Devices), computer hardware, firmware, software, and / or combinations thereof. These various implementations may include implementations in one or more computer programs that can be executed and / or interpreted on a programmable system including at least one programmable processor, which may be a dedicated or general-purpose programmable processor, capable of receiving data and instructions from a storage system, at least one input device, and at least one output device, and transmitting data and instructions to the storage system, the at least one input device, and the at least one output device.
[0160] The program code used to implement the methods of this disclosure may be written in any combination of one or more programming languages. This program code may be provided to a processor or controller of a general-purpose computer, special-purpose computer, or other programmable data processing apparatus, such that when executed by the processor or controller, the program code causes the functions / operations specified in the flowcharts and / or block diagrams to be implemented. The program code may be executed entirely on a machine, partially on a machine, as a standalone software package partially on a machine and partially on a remote machine, or entirely on a remote machine or server.
[0161] In the context of this disclosure, a machine-readable medium can be a tangible medium that may contain or store a program for use by or in conjunction with an instruction execution system, apparatus, or device. A machine-readable medium can be a machine-readable signal medium or a machine-readable storage medium. A machine-readable medium can be, but is not limited to, electronic, magnetic, optical, electromagnetic, infrared, or semiconductor systems, apparatus, or devices, or any suitable combination of the foregoing. More specific examples of machine-readable storage media include electrical connections based on one or more wires, portable computer disks, hard disks, RAM, ROM, EPROM (Electrically Programmable Read-Only Memory) or flash memory, optical fiber, CD-ROM (Compact Disc Read-Only Memory), optical storage devices, magnetic storage devices, or any suitable combination of the foregoing.
[0162] To provide interaction with a user, the systems and techniques described herein can be implemented on a computer having: a display device for displaying information to the user (e.g., a CRT (Cathode-Ray Tube) or LCD (Liquid Crystal Display) monitor); and a keyboard and pointing device (e.g., a mouse or trackball) through which the user provides input to the computer. Other types of devices can also be used to provide interaction with the user; for example, feedback provided to the user can be any form of sensory feedback (e.g., visual feedback, auditory feedback, or tactile feedback); and input from the user can be received in any form (including sound input, voice input, or tactile input).
[0163] The systems and technologies described herein can be implemented in computing systems that include backend components (e.g., as data servers), or middleware components (e.g., application servers), or frontend components (e.g., user computers with graphical user interfaces or web browsers through which users can interact with implementations of the systems and technologies described herein), or any combination of such backend, middleware, or frontend components. The components of the system can be interconnected via digital data communication (e.g., communication networks) of any form or medium. Examples of communication networks include LANs (Local Area Networks), WANs (Wide Area Networks), the Internet, and blockchain networks.
[0164] Computer systems can include clients and servers. Clients and servers are generally geographically separated and typically interact via communication networks. The client-server relationship is created by computer programs running on the respective computers and having a client-server relationship with each other. A server can be a cloud server, also known as a cloud computing server or cloud host, a hosting product within the cloud computing service ecosystem, addressing the shortcomings of traditional physical hosts and VPS (Virtual Private Server, or simply "VPS") services, such as high management difficulty and weak business scalability. Servers can also be servers for distributed systems or servers incorporating blockchain technology.
[0165] It's important to note that artificial intelligence (AI) is the study of enabling computers to simulate certain human thought processes and intelligent behaviors (such as learning, reasoning, thinking, and planning). It encompasses both hardware and software technologies. AI hardware technologies generally include sensors, dedicated AI chips, cloud computing, distributed storage, and big data processing. AI software technologies primarily include computer vision, speech recognition, natural language processing, machine learning / deep learning, big data processing, and knowledge graph technologies.
[0166] It should be understood that the various processes shown above can be used, with steps rearranged, added, or deleted. For example, the steps described in this disclosure can be executed in parallel, sequentially, or in different orders, as long as the desired result of the technical solution disclosed in this disclosure is achieved, and this is not limited herein. The specific embodiments described above do not constitute a limitation on the scope of protection of this disclosure. Those skilled in the art should understand that various modifications, combinations, sub-combinations, and substitutions can be made according to design requirements and other factors. Any modifications, equivalent substitutions, and improvements made within the spirit and principles of this disclosure should be included within the scope of protection of this disclosure.
Claims
1. A method for authenticating vehicle charging, characterized in that, The method is applied to the vehicle side and includes: The system receives charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information. The charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number. The charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and the charging pile serial number. The random number in the broadcast information is obtained according to the binding relationship, wherein the binding relationship is the binding relationship between vehicle identification information and charging pile serial number; A first encryption key is generated based on the random number and the charging pile authentication information; The charging code signature information is encrypted using the first encryption key, and the encrypted charging code signature information is sent to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
2. The authentication method according to claim 1, characterized in that, The random number is obtained from the broadcast message based on the binding relationship, including: Scan broadcast information within a preset distance range and determine the paired charging pile based on the charging pile serial number; Obtain the random number from the broadcast information of the charging pile.
3. The authentication method according to claim 2, characterized in that, The process of scanning broadcast information within a preset distance range and determining the paired charging pile based on the charging pile serial number includes: After the vehicle connects to the charging gun of the charging station, it scans the broadcast information via Bluetooth and establishes a communication connection with the charging station.
4. A method for certifying vehicle charging, characterized in that, The method is applied to the cloud server side and includes: The charging pile authentication information, charging pile serial number, and charging code signature information are sent to the vehicle. The charging code signature information is obtained by signing the charging code using the charging pile signature information. The charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number. The charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and the charging pile serial number. A binding relationship between the vehicle and the charging pile is established based on the vehicle's identification information and the charging pile's serial number, which is used by the vehicle to obtain a random number from the broadcast information according to the binding relationship.
5. The authentication method according to claim 4, characterized in that, Before sending the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle, the method further includes: Generate a string based on the preset key and the charging pile serial number; The string is divided into two parts, one part is used as the charging pile authentication information, and the other part is used as the charging pile signature information.
6. The authentication method according to claim 5, characterized in that, The method further includes: The charging pile authentication information and the charging pile signature information are injected into the charging pile so that the charging pile can authenticate the information sent by the vehicle based on the charging pile authentication information and the charging pile signature information.
7. The authentication method according to any one of claims 4-6, characterized in that, Before sending the charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle, the method further includes: A charging code is generated based on the vehicle's identification information and the charging pile's serial number; The charging code signature information is obtained by signing the charging pile signature information.
8. A method for authenticating vehicle charging, characterized in that, The method is applied to the charging pile side, including: Receive charging pile authentication information and charging pile signature information; Send a broadcast message containing a random number; A second encryption key is generated based on the random number and the charging pile authentication information; The system receives encrypted charging code signature information sent by the vehicle and uses the charging pile signature information and the second encryption key to decrypt and verify the encrypted charging code signature information; the charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number; the charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and the charging pile serial number.
9. The authentication method according to claim 8, characterized in that, Decrypting and verifying the encrypted charging code signature information using the charging pile signature information and the second encryption key includes: The encrypted charging code signature information is decrypted using the second encryption key; The decrypted signature information of the charging pile is verified using the signature information of the charging pile.
10. A vehicle charging authentication device, characterized in that, The device is applied to the vehicle side and includes: The receiving unit is used to receive charging pile authentication information, charging pile serial number, and charging code signature information. The charging code signature information is obtained by signing the charging code using the charging pile signature information. The charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number. The charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and the charging pile serial number. The acquisition unit is used to acquire a random number from the broadcast information according to the binding relationship, wherein the binding relationship is the binding relationship between vehicle identification information and charging pile serial number; A generation unit is used to generate a first encryption key based on the random number and the charging pile authentication information; The processing unit is configured to encrypt the charging code signature information using the first encryption key and send the encrypted charging code signature information to the charging pile so that the charging pile can authenticate the encrypted charging code signature information.
11. A vehicle charging authentication device, characterized in that, The device is applied to the cloud server side and includes: The sending unit is used to send charging pile authentication information, charging pile serial number, and charging code signature information to the vehicle. The charging code signature information is obtained by signing the charging code using charging pile signature information. The charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number. The charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and charging pile serial number. The unit is used to establish a binding relationship between the vehicle and the charging pile based on the vehicle's identification information and the charging pile's serial number, and to allow the vehicle to obtain a random number from the broadcast information according to the binding relationship.
12. A vehicle charging authentication device, the device being applied to a charging pile side, comprising: The first receiving unit is used to receive charging pile authentication information and charging pile signature information; The transmitting unit is used to transmit broadcast information containing random numbers; A generation unit is used to generate a second encryption key based on the random number and the charging pile authentication information; The second receiving unit is used to receive the encrypted charging code signature information sent by the vehicle; The decryption unit is used to decrypt and verify the encrypted charging code signature information using the charging pile signature information and the second encryption key; the charging code is plaintext generated based on the combination of vehicle identification information and charging pile serial number; the charging pile authentication information is obtained by splitting a string generated by the cloud server based on a preset key and the charging pile serial number.
13. A vehicle, characterized in that, The vehicle includes the vehicle charging authentication device as described in claim 10.
14. A charging pile, characterized in that, The charging station includes the vehicle charging authentication device as described in claim 12.
15. An electronic device comprising: At least one processor; as well as A memory communicatively connected to the at least one processor; wherein, The memory stores instructions executable by the at least one processor, which, when executed by the at least one processor, enables the at least one processor to perform the method of any one of claims 1-3, any one of claims 4-7, or any one of claims 8-9.
16. A non-transitory computer-readable storage medium storing computer instructions, wherein, The computer instructions are used to cause the computer to perform the method according to any one of claims 1-3, any one of claims 4-7, or any one of claims 8-9.
17. A computer program product comprising a computer program that, when executed by a processor, implements the method according to any one of claims 1-3, any one of claims 4-7, or any one of claims 8-9.