Traffic data sharing method and device, nonvolatile storage medium and electronic equipment

By using blockchain networks and public-key encryption algorithms, the problem of data transmission between connected vehicles from different operators has been solved, enabling secure sharing of traffic data and protection of identity privacy, and improving the efficiency and security of data transmission between connected vehicles.

CN119071783BActive Publication Date: 2026-07-03CHINA TELECOM CORP LTD

Patent Information

Authority / Receiving Office
CN · China
Patent Type
Patents(China)
Current Assignee / Owner
CHINA TELECOM CORP LTD
Filing Date
2024-08-07
Publication Date
2026-07-03

Smart Images

  • Figure CN119071783B_ABST
    Figure CN119071783B_ABST
Patent Text Reader

Abstract

The application discloses a traffic data sharing method and device, a nonvolatile storage medium and an electronic device. The method comprises the following steps: a first edge computing node in a blockchain network sends an edge computing node public key of the first edge computing node to an authoritative trusted node in the blockchain network, and obtains a verification certificate generated by the authoritative trusted node according to the edge computing node public key; the first edge computing node verifies the verification certificate, and after the verification result is verified, obtains traffic sharing data in the blockchain network, wherein the traffic sharing data comprises traffic data uploaded to the blockchain network by a second edge computing node; and the traffic sharing data is broadcasted through a base station where the first edge computing node is located. The application solves the technical problem that the road information corresponding to different operators in the region cannot be integrated and shared due to the fact that the networked vehicles corresponding to different operators cannot directly transmit data in the prior art.
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This application relates to the field of vehicle networking, and more specifically, to a traffic data sharing method, apparatus, non-volatile storage medium, and electronic device. Background Technology

[0002] In related technologies such as assisted driving and intelligent driving, vehicles typically collect surrounding road information using sensors such as lidar or cameras, and this information can be transmitted via communication with the vehicle manufacturer's server. A problem with sharing traffic data in these technologies is that connected vehicles from different manufacturers use eSIM cards from different operators. These vehicles cannot communicate directly to securely share their collected data, making it impossible to integrate and share road information collected by various vehicles within a region while ensuring vehicle data security.

[0003] There is currently no effective solution to the above problems. Summary of the Invention

[0004] This application provides a traffic data sharing method, apparatus, non-volatile storage medium, and electronic device to at least solve the technical problem in the related art that the inability to directly transmit data between networked vehicles of different operators results in the inability to integrate and share road information corresponding to different operators within a region.

[0005] According to one aspect of the embodiments of this application, a traffic data sharing method is provided, comprising: a first edge computing node in a blockchain network sending its edge computing node public key to an authoritative trusted node in the blockchain network, and obtaining a verification certificate generated by the authoritative trusted node based on the edge computing node public key, wherein the first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators; after the first edge computing node verifies the verification certificate and the verification result is successful, it obtains traffic sharing data in the blockchain network, wherein the traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node; the first edge computing node broadcasts the traffic sharing data through the base station where the first edge computing node is located.

[0006] Optionally, the method further includes: obtaining signature data sent by the connected vehicle, wherein the signature data is obtained by the connected vehicle signing vehicle data based on the vehicle's private key; the first edge computing node authenticating the signature data based on the connected vehicle's public key; and after successful authentication, uploading the vehicle data to the blockchain network to update the traffic sharing data.

[0007] Optionally, the vehicle data also includes timestamp information; uploading vehicle data to the blockchain network to update the traffic sharing data includes: determining whether there is historical vehicle data uploaded by connected vehicles in the traffic sharing data; if it is determined that historical vehicle data uploaded by connected vehicles already exists, updating the historical vehicle data in the traffic sharing data based on the timestamp information.

[0008] Optionally, the first edge computing node broadcasts traffic sharing data through the base station where the first edge computing node is located, including: after obtaining the traffic sharing data, signing the traffic sharing data with the base station's private key to obtain broadcast data, wherein the broadcast data includes the plaintext of the traffic sharing data, the base station's public key certificate, the signature of the plaintext, and the broadcast timestamp; and broadcasting the data through the base station within the coverage area of ​​the base station.

[0009] Optionally, the traffic sharing data further includes: identifying abnormal connected vehicles, wherein the abnormal connected vehicles are those that send traffic sharing data acquisition requests to the first edge computing node at a frequency higher than a preset frequency, or whose shared vehicle data is problematic data, including false data; and sending the vehicle pseudonym identifier of the abnormal connected vehicles to an authoritative and trusted node, wherein the authoritative and trusted node is used to determine the real vehicle information of the abnormal connected vehicles based on the identifier information, and add the real vehicle information to the corresponding malicious vehicle list in the blockchain network, and the vehicle pseudonym identifier is the identifier information of the abnormal connected vehicles in the blockchain network generated by the authoritative and trusted node based on the real vehicle information of the abnormal connected vehicles during the authentication process of the abnormal connected vehicles.

[0010] Optionally, the traffic data sharing method further includes: obtaining authentication request parameters sent by the connected vehicle, wherein the authentication request parameters include vehicle identification information, pre-installed operator communication card identification information, operator information, and vehicle manufacturer information of the connected vehicle; the first edge computing node encrypts the authentication request parameters using the system public key to obtain encrypted authentication parameters; sending the encrypted authentication parameters to an authoritative trusted node, wherein the authoritative trusted node decrypts the encrypted authentication parameters using its private key to obtain the authentication request parameters, and calls the operator authentication service node to authenticate the authentication request parameters; after successful authentication and the connected vehicle obtaining the vehicle pseudonym generated by the authoritative trusted node, the first edge computing node... The computing node obtains vehicle authentication data generated by the connected vehicle based on the vehicle pseudonym and vehicle private key, and signs the vehicle authentication data based on the base station's private key to obtain signed authentication data. The vehicle authentication data includes the connected vehicle pseudonym, the vehicle public key certificate generated by the connected vehicle based on the vehicle pseudonym and vehicle private key, and the vehicle public key generated by the connected vehicle based on the vehicle private key and global parameters broadcast by the authoritative trusted node. The signed authentication data is sent to the authoritative trusted node, which uses the signed authentication data to verify the security status of the connected vehicle, and after confirming that the security status is secure, saves the connected vehicle's vehicle authentication data to the ledger of the blockchain network.

[0011] Optionally, the vehicle pseudonym includes a first pseudonym parameter, a second pseudonym parameter, and a third pseudonym parameter. The first pseudonym parameter is calculated by an authoritative and trusted node based on a random number and the system key of the blockchain network. The second pseudonym parameter is calculated by an authoritative and trusted node based on the vehicle identification information, vehicle manufacturer information, pre-installed operator communication card identification information, and operator information of the connected vehicle. The third pseudonym parameter is calculated by an authoritative and trusted node based on the first pseudonym parameter, the second pseudonym parameter, the system key, and the system public key of the blockchain network.

[0012] According to another aspect of the embodiments of this application, a traffic data sharing system is also provided, including: an authoritative trusted node, multiple edge computing nodes, a vehicle manufacturer certification service node, and connected vehicles. The authoritative trusted node is used to call the vehicle manufacturer certification service node to authenticate the connected vehicle during the authentication process, and to calculate the vehicle pseudonym identifier of the connected vehicle. A first edge computing node among the multiple edge computing nodes is used to send its edge computing node public key to the authoritative trusted node in the blockchain network, and to obtain a verification certificate generated by the authoritative trusted node based on the edge computing node public key. The first edge computing node is any one of the multiple edge computing nodes. The computing nodes, specifically the edge computing nodes in the blockchain network, correspond to multiple operators. After verifying the verification certificate and confirming that the verification is successful, they acquire traffic sharing data from the blockchain network. This traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator corresponding to the second edge computing node is different from that of the first edge computing node. The traffic sharing data is broadcast through the base station where the first edge computing node is located. After receiving the traffic sharing data, connected vehicles verify the validity of the signature of the traffic sharing data. After verifying the validity of the signature, they determine the traffic conditions based on the traffic sharing data.

[0013] According to another aspect of the embodiments of this application, a traffic data sharing device is also provided, applicable to a first edge computing node in a blockchain network, comprising: a first processing module, configured to send the edge computing node public key of the first edge computing node to an authoritative and trusted node in the blockchain network, and obtain a verification certificate generated by the authoritative and trusted node based on the edge computing node public key, wherein the first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators; a second processing module, configured to verify the verification certificate, and after the verification result is successful, obtain traffic sharing data in the blockchain network, wherein the traffic sharing data includes traffic data uploaded to the blockchain network by the second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node; and a third processing module, configured to broadcast the traffic sharing data through the base station where the first edge computing node is located.

[0014] According to another aspect of the embodiments of this application, a non-volatile storage medium is also provided, wherein a program is stored in the non-volatile storage medium, wherein the program controls the device where the non-volatile storage medium is located to execute a traffic data sharing method when it runs.

[0015] According to another aspect of the embodiments of this application, an electronic device is also provided, including: a memory and a processor, the processor being configured to run a program stored in the memory, wherein the program executes a traffic data sharing method during runtime.

[0016] According to another aspect of the embodiments of this application, a computer program product is also provided, including a computer program that, when executed by a processor, implements a traffic data sharing method.

[0017] In this embodiment, a first edge computing node in the blockchain network sends its public key to an authoritative trusted node in the blockchain network and obtains a verification certificate generated by the authoritative trusted node based on the public key. The first edge computing node can be any edge computing node in the blockchain network, and multiple operators can be associated with each edge computing node. After verifying the verification certificate and confirming that the verification is successful, the first edge computing node obtains traffic sharing data from the blockchain network. This traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator associated with the second edge computing node corresponds to the operator associated with the first edge computing node. The operators are different; the first edge computing node broadcasts traffic sharing data through the base station where the first edge computing node is located. By using authoritative and trusted nodes to authenticate the edge computing nodes in the base stations of various operators, and after successful authentication, the edge computing nodes can obtain and broadcast traffic sharing data. This achieves the goal of integrating traffic data uploaded by different edge computing nodes to obtain traffic sharing data, and sharing this traffic sharing data among edge computing nodes of different manufacturers. This realizes the technical effect of cross-operator traffic data integration and sharing, and solves the technical problem in related technologies that the inability to directly transmit data between connected vehicles of different operators leads to the inability to integrate and share road information corresponding to different operators in the region. Attached Figure Description

[0018] The accompanying drawings, which are included to provide a further understanding of this application and form part of this application, illustrate exemplary embodiments and are used to explain this application, but do not constitute an undue limitation of this application. In the drawings:

[0019] Figure 1 This is a schematic diagram of the structure of a traffic data sharing system according to an embodiment of this application;

[0020] Figure 2 This is a schematic diagram of the interaction process of a traffic data sharing system according to an embodiment of this application;

[0021] Figure 3This is a flowchart illustrating a traffic data sharing method according to an embodiment of this application;

[0022] Figure 4 This is a schematic diagram of a blockchain network initialization process provided according to an embodiment of this application;

[0023] Figure 5 This is a schematic diagram of a base station authentication process provided according to an embodiment of this application;

[0024] Figure 6 This is a schematic diagram of a networked vehicle authentication process provided according to an embodiment of this application;

[0025] Figure 7 This is a schematic diagram of a traffic data sharing process for networked vehicles according to an embodiment of this application;

[0026] Figure 8 This is a schematic diagram of a shared traffic data verification process provided according to an embodiment of this application;

[0027] Figure 9 This is a schematic diagram of an abnormal vehicle identification and processing flow provided according to an embodiment of this application;

[0028] Figure 10 This is a schematic diagram of the structure of a traffic data sharing device according to an embodiment of this application;

[0029] Figure 11 This is a schematic diagram of the structure of an electronic device provided according to an embodiment of this application. Detailed Implementation

[0030] To enable those skilled in the art to better understand the present application, the technical solutions in the embodiments of the present application will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are only some embodiments of the present application, and not all embodiments. Based on the embodiments in the present application, all other embodiments obtained by those of ordinary skill in the art without creative effort should fall within the scope of protection of the present application.

[0031] It should be noted that the terms "first," "second," etc., in the specification, claims, and accompanying drawings of this application are used to distinguish similar objects and are not necessarily used to describe a specific order or sequence. It should be understood that such data can be interchanged where appropriate so that the embodiments of this application described herein can be implemented in orders other than those illustrated or described herein. Furthermore, the terms "comprising" and "having," and any variations thereof, are intended to cover non-exclusive inclusion; for example, a process, method, system, product, or apparatus that comprises a series of steps or units is not necessarily limited to those steps or units explicitly listed, but may include other steps or units not explicitly listed or inherent to such processes, methods, products, or apparatus.

[0032] To better understand the embodiments of this application, the technical terms involved in the embodiments of this application are explained below:

[0033] 5G vehicle-to-everything (V2X) technology: Based on fifth-generation mobile communication technology, V2X refers to the real-time connection and data exchange between vehicles and infrastructure, other vehicles, pedestrians, and the Internet through 5G networks, thereby improving traffic efficiency and safety.

[0034] Blockchain: Blockchain is a decentralized distributed ledger technology that records and verifies data through cryptographic algorithms and consensus mechanisms, ensuring that the data is transparent, tamper-proof, and traceable.

[0035] Currently, in the 5G vehicle-to-everything (V2X) field, mainstream assisted driving and intelligent driving technologies rely on sensors such as lidar or cameras mounted on vehicles to collect traffic information about pedestrians and other vehicles around the vehicle. This data is then processed and analyzed for intelligent driving decisions, or intelligent driving is achieved through communication and remote control via vehicle manufacturer servers. This approach suffers from high computational overhead and latency, making it unsuitable for large-scale 5G network connectivity for future connected vehicles. Furthermore, connected vehicles from different automakers each have eSIM cards from different operators. Since network services from different operators within the same coverage area are not continuous, complete, and highly homogeneous, the waste of vehicle computing power and the inefficient use of different operator network base stations make it difficult to achieve carbon peaking and carbon neutrality goals. Moreover, assisted driving methods that rely on connected vehicles receiving traffic information and even remote control commands from the vehicle manufacturer's central server suffer from high communication burdens and low efficiency. There is also the risk of real-time transmission of critical traffic information due to the vehicle manufacturer's central server downtime, potentially leading to safety hazards in real-time vehicle-to-vehicle communication.

[0036] To enable connected vehicles to access road information within a specific area, these technologies allow them to receive traffic information such as accidents and congestion alerts from map providers like Gaode and Baidu, facilitating intelligent driving decisions. Furthermore, 5G-connected vehicles operating on different carrier networks can report and share traffic information such as accidents and congestion with other passing vehicles, preventing them from encountering similar situations like accidents, fires, or severe weather. However, direct communication between connected vehicles from different carriers is difficult, and even sharing traffic data presents dual security risks related to data security and identity privacy. In other words, current technologies cannot securely share data between 5G-connected vehicles across carrier networks, nor can they protect the identity privacy and data legitimacy of vehicles from different automakers. These security factors are crucial for the secure sharing of data and the protection of identity privacy for connected vehicles from different automakers operating across different carrier networks.

[0037] To address the aforementioned issues, this application provides a blockchain-based traffic data sharing method for 5G vehicle-to-everything (V2X) networks. This method enables identity authentication and traffic data sharing between connected vehicles from different automakers across different operator networks, protecting the secure sharing of traffic data for connected vehicles, enhancing the identity privacy of connected vehicles, and reducing the risk of data security and privacy leaks related to assisted driving. A consortium blockchain network is established using automaker authentication service nodes and operator authentication service nodes to complete the legal authentication of vehicle unique identifiers and vehicle eSIM cards, recording these authentications on the blockchain. The automaker authentication service node is responsible for the legal authentication of the vehicle's unique identifier, while the operator authentication service node is responsible for both the legal authentication of the eSIM card in the connected vehicle and the subsequent secure data transmission and communication process. Secure traffic data sharing and data legitimacy are achieved through public key encryption and signature algorithms for vehicles and base stations. A pseudonym is used to protect the vehicle identity privacy of 5G connected vehicles. Privacy-traceable technology is used to reveal the true identity of the vehicle, blacklisting it and preventing further traffic data sharing. This solution enables secure traffic data sharing between 5G connected vehicles from different automakers across different operator networks while protecting vehicle identity privacy, providing effective secure traffic data sharing services for intelligent driving of connected vehicles. The method provided in this application will be described in detail below.

[0038] According to an embodiment of this application, a method embodiment for traffic data sharing is provided. It should be noted that the steps shown in the flowchart in the accompanying drawings can be executed in a computer system such as a set of computer-executable instructions. Furthermore, although a logical order is shown in the flowchart, in some cases, the steps shown or described may be executed in a different order than that shown here.

[0039] The traffic data sharing method provided in this application can be used in, for example... Figure 1 This is executed in the traffic data sharing system shown. Figure 1 This is a schematic diagram of the structure of a traffic data sharing system. Figure 1 As can be seen, the system includes: authoritative and trusted nodes, multiple edge computing nodes, automotive manufacturer-certified service nodes, and connected vehicles.

[0040] The authoritative and trusted node is used to call the car manufacturer's authentication service node to authenticate the connected vehicle during the authentication process, and to calculate the vehicle pseudonym identifier of the connected vehicle.

[0041] The first edge computing node among the plurality of edge computing nodes is used to send its public key to an authoritative trusted node in the blockchain network and obtain a verification certificate generated by the authoritative trusted node based on the public key. The first edge computing node is any one of the plurality of edge computing nodes, and the edge computing nodes in the blockchain network correspond to multiple operators. After verifying the verification certificate and confirming that the verification is successful, traffic sharing data is obtained from the blockchain network. This traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node among the plurality of edge computing nodes, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node. The traffic sharing data is broadcast through the base station where the first edge computing node is located. After receiving the traffic sharing data, the connected vehicle verifies the validity of the signature of the traffic sharing data. After verifying the validity of the signature, the vehicle determines the traffic conditions based on the traffic sharing data.

[0042] from Figure 1 As can be seen, the aforementioned traffic data sharing system also includes multiple operator-certified service grounds, and there are also multiple vehicle manufacturer-certified service grounds. Furthermore, each edge computing node is located within an operator base station.

[0043] Specifically, with the large-scale, continuous, and high-quality coverage of 5G base stations, 5G networks can provide highly reliable and low-latency services for connected vehicles, directly providing data communication services without relying on external equipment or channels. Furthermore, the MEC edge computing nodes within 5G base stations possess strong computing and storage capabilities, enabling the collection, analysis, processing, and sharing of traffic data. This application provides a method for efficiently utilizing the computing, storage, and traditional communication capabilities of 5G base stations. By leveraging a consortium blockchain network, a blockchain network node for the operation and maintenance of MEC edge computing at 5G base stations is constructed, connecting different operator networks, different car manufacturers, and other entities. Vehicles act as data collectors, while the MEC edge computing nodes of the 5G base stations act as data collectors and sharers. Through the design of identity authentication, public key encryption, and signature algorithms, traffic data between connected vehicles from different car manufacturers is securely shared with connected vehicles from other manufacturers in different networks. This achieves secure sharing of traffic data between connected vehicles from different networks and manufacturers, avoiding waste of computing power, saving energy consumption, and efficiently utilizing the remaining resources of base stations. It also provides traffic data assistance for low-end connected vehicles that lack data collection sensors such as LiDAR and cameras for assisted driving on the road.

[0044] In some embodiments of this application, Figure 1 The interaction flow between the various parts of the traffic data sharing system shown is as follows: Figure 2 As shown. From Figure 2 As can be seen, the interaction process between traffic data sharing systems can be divided into several parts, including base station authentication, vehicle authentication, vehicle data sharing and updating, traffic sharing data synchronization, and malicious vehicle handling. It should also be noted that connected vehicles, through their vehicle security communication modules, are responsible for generating vehicle-measured security parameters, processing data securely, and transmitting data securely. Furthermore, they achieve secure communication with MEC edge computing nodes on the 5G base station side via the 5G New Radio interface.

[0045] In the base station authentication part, the edge computing nodes in the 5G base station submit authentication information to the authoritative trusted node. Then, the authoritative trusted node calls the operator's authentication service node to authenticate the authentication information submitted by the base station and returns a digital certificate to the base station after successful authentication.

[0046] In the vehicle authentication process, connected vehicles submit their authentication information to the edge computing nodes in the corresponding base stations. The edge computing nodes then forward this information to the authoritative trusted node. The authoritative trusted node invokes the operator's authentication service node to verify the legitimacy of the sSIM in the vehicle authentication information, and also invokes the vehicle manufacturer's authentication service node to verify the vehicle's legitimacy. Once it is confirmed that neither the vehicle nor its eSIM is on a blacklist, the edge computing node sends a pseudonym to the connected vehicle. The connected vehicle then generates a public-private key pair and a pseudonym public key certificate request, and sends the encrypted public key certificate request to the edge computing node. The edge computing node then signs the request and sends the signed request to the authoritative trusted node. The authoritative trusted node then verifies the base station signature, vehicle signature, and pseudonym, and upon successful verification, records the relevant information in the blockchain via the edge computing node.

[0047] In the more detailed section on vehicle data sharing, when vehicles A and B wish to share the traffic information they have collected, they sign the collected traffic information and send the signed information to an edge computing node to request the sharing of traffic information. After verifying the validity of the signature, the edge computing node formats the traffic information according to a preset processing method and then applies to an authoritative and trusted node to synchronize the traffic information to the blockchain. If the signature verification fails, the traffic information is discarded directly.

[0048] In addition, after receiving traffic information and requesting synchronization, the edge computing node will also determine whether there is previously uploaded traffic information for the vehicle and update the traffic information in a timely manner, including updating the affected location and time.

[0049] When a connected vehicle receives traffic sharing information broadcast by an edge computing node via a base station, the vehicle will first verify the base station signature in the traffic sharing information, and then receive the traffic sharing information after the verification is successful.

[0050] In the malicious vehicle handling process, a vehicle is identified as malicious if it sends requests to the edge computing nodes in the base station too frequently or sends malicious false information. The edge computing nodes in the base station then send the malicious vehicle's alias to an authoritative trusted node. The authoritative trusted node uses the alias to determine the malicious vehicle's true identity, revokes its privileges, and reveals its true identity.

[0051] Under the aforementioned operating environment, this application provides a method for sharing traffic data, such as... Figure 3 As shown, the method includes the following steps:

[0052] Step S302: The first edge computing node in the blockchain network sends its edge computing node public key to the authoritative trusted node in the blockchain network and obtains the verification certificate generated by the authoritative trusted node based on the edge computing node public key. Here, the first edge computing node can be any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators.

[0053] In some embodiments of this application, the initialization process of the blockchain network is as follows: Figure 4 As shown, it includes the following steps:

[0054] Step S402: The authoritative and trusted node selects security parameters, choosing two cyclic groups and two secure one-way hash functions;

[0055] Step S404: Select a random number as the system master key and calculate the system public key;

[0056] Step S406: The authoritative and trusted node publishes global parameters, which include the system public key and the generator of the cyclic group, while keeping the system master key secret.

[0057] As an optional implementation, the authoritative trusted node will select a security parameter. Two cyclic groups Two secure one-way hash functions and Then select a random number. As the system master key, calculate the system public key. Then return to public global parameters. and keep the system master key confidential. The global parameters include the system public key. and generator Cyclic group It is an addition group. It is a multiplication group. It is the order of two groups. yes The generator.

[0058] Step S304: After the first edge computing node verifies the verification certificate and the verification result is successful, it obtains the traffic sharing data in the blockchain network. The traffic sharing data includes the traffic data uploaded to the blockchain network by the second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node.

[0059] It should be noted that the aforementioned edge computing node is the MEC edge computing module built into the 5G base station, which has strong local data computing and storage capabilities. As an MEC edge computing node in the blockchain network, this module is responsible for forwarding vehicle authentication request information, processing and transmitting traffic sharing data, maintaining the blockchain ledger node, and broadcasting shared traffic data within the validity period.

[0060] In some embodiments of this application, the process of authenticating the base station where the first edge computing node is located through the first edge computing node is as follows: Figure 5 As shown. It should be noted that the actions performed by the base station in the following process can all be performed by the first edge computing node, including the following steps:

[0061] Step S502: The base station selects a random number as its private key, calculates the public key, and provides the base station public key and the base station's unique identifier to the authoritative and trusted node.

[0062] In the technical solution provided in step S502, the 5G base station selects a random number. as its private key and utilize global parameters Calculate its public key 5G base stations share their public keys and the unique identifier of the base station Send to an authoritative and trusted node.

[0063] Step S504: After the authoritative and trusted node receives the base station's public key and confirms the base station's legitimacy through the base station's identifier, it signs the base station to generate the first parameter of the public key certificate, generates the public key certificate, and sends the certificate parameters to the base station.

[0064] In the scheme provided in step S504, after the authoritative and trusted node receives the public key of the 5G base station and confirms the legitimacy of the base station through the base station identifier, it uses its private key. Sign the public key of the 5G base station to generate the first parameter of the base station public key certificate. Then, a public key certificate for the 5G base station is generated. and the 5G base station public key certificate parameters Send to the MEC edge computing node.

[0065] Step S506: The base station verifies whether the base station's public key certificate is valid. If not, the verification is terminated; if yes, the public key certificate is saved.

[0066] In the technical solution provided in step S506, after receiving the certificate, the base station uses the system public key Verify Certificate To determine the legitimacy of the certificate, the base station's public key is compared after decryption to prevent eavesdropping and tampering by third-party attackers. The public key certificate is saved only after verification; otherwise, the subscription is terminated. This refers to the validity period of the public key certificate. The specific validity period is determined based on the actual policy and can be one month, two months, or six months.

[0067] In some embodiments of this application, the connected vehicle can be authenticated in the following manner: The authentication request parameters sent by the connected vehicle are obtained, wherein the authentication request parameters include the vehicle identification information, pre-installed operator communication card identification information, operator information, and vehicle manufacturer information; a first edge computing node encrypts the authentication request parameters using the system public key to obtain encrypted authentication parameters; the encrypted authentication parameters are sent to an authoritative trusted node, wherein the authoritative trusted node decrypts the encrypted authentication parameters using its private key to obtain the authentication request parameters, and calls the operator authentication service node to authenticate the authentication request parameters; after successful authentication and the connected vehicle obtains the vehicle pseudonym generated by the authoritative trusted node... Subsequently, the first edge computing node obtains the vehicle authentication data generated by the connected vehicle based on the vehicle pseudonym and vehicle private key, and signs the vehicle authentication data based on the base station's base station private key to obtain signed authentication data. The vehicle authentication data includes the connected vehicle pseudonym, the vehicle public key certificate generated by the connected vehicle based on the vehicle pseudonym and vehicle private key, and the vehicle public key generated by the connected vehicle based on the vehicle private key and global parameters broadcast by the authoritative trusted node. The signed authentication data is then sent to the authoritative trusted node, which verifies the security status of the connected vehicle based on the signed authentication data, and saves the connected vehicle's vehicle authentication data to the ledger of the blockchain network after confirming that the security status is secure.

[0068] As an optional implementation, the vehicle pseudonym identifier includes a first pseudonym parameter, a second pseudonym parameter, and a third pseudonym parameter. The first pseudonym parameter is calculated by an authoritative and trusted node based on a random number and the system key of the blockchain network. The second pseudonym parameter is calculated by an authoritative and trusted node based on the vehicle identification information of the connected vehicle, the vehicle manufacturer information, the identification information of the pre-installed operator communication card, and the operator information. The third pseudonym parameter is calculated by an authoritative and trusted node based on the first pseudonym parameter, the second pseudonym parameter, the system key, and the system public key of the blockchain network.

[0069] In some embodiments of this application, the following methods may also be used: Figure 6 The authentication process shown verifies connected vehicles. It should be noted that the operations performed by the base station in the following process can be completed by edge computing nodes within the base station:

[0070] In step S602, the vehicle sends the vehicle manufacturer, vehicle unique identifier, operator identifier, and eSIM card identifier to the base station. The base station then encrypts the authentication request using the system public key and forwards it to the authoritative and trusted node.

[0071] Specifically, connected vehicles have a built-in vehicle security communication module with a certain computing power. Assuming each car manufacturer... Every connected car Each vehicle has a unique identifier that identifies it when it leaves the factory. and pre-installed operators of The card, its unique identifier is Record it as the true identity of the manufacturer's M vehicle V. Manufacturers Connected vehicles The authentication parameters will be sent via 5G New Radio. The data is transmitted to the 5G base station, and the MEC edge computing node encrypts the authentication request using the system public key. Forward directly to an authoritative and trusted node;

[0072] Step S604: After the authoritative and trusted node confirms the legitimate identity of the vehicle and eSIM, it calculates a pseudonym for the vehicle and transmits it to the vehicle as a response.

[0073] In the technical solution provided in step S604, the authoritative and trusted node receives the request information and uses its private key to decrypt it. It calls the car manufacturer's authentication service node to perform the car manufacturer's unique identification of the vehicle. The system will then perform legitimate authentication. Afterwards, it will call the operator's authentication service node to perform network authentication of the vehicle. Unique Identifier Legal certification. And in confirming the car manufacturer. vehicle In the operator network of After obtaining a legitimate identity, the authoritative and trusted node first selects a random number. Through the system master key Calculate the first parameter of the pseudonym for the vehicle The second parameter of the kana The third parameter of the kana Generate vehicle pseudonyms and the vehicle's pseudonym Transmitted to connected vehicles during authentication response .

[0074] Step S606: The vehicle selects a random number as its private key and calculates the vehicle's public key, generating a vehicle pseudonym public key certificate which is then transmitted to the base station.

[0075] Step S608: The base station uses its private key to sign the vehicle pseudonym public key certificate and transmits it to the authoritative trusted node.

[0076] In the technical solutions provided in steps S606 and S608, the connected vehicle After receiving a valid, authenticated response and obtaining a pseudonym Then, its vehicle safety communication module selects a random number. as its private key and utilize global parameters Calculate its public key Using vehicle private key kana Perform digital signature and generate the first parameter of the vehicle public key certificate. Then generate pseudonyms. Vehicle public key certificate and the vehicle public key certificate and public key The data is sent to the 5G base station, and the MEC edge computing node uses the 5G base station's private key. right Perform signing and generate and will Send to the blockchain network.

[0077] Step S610: The base station verifies the legality of the base station and vehicle signature, and checks whether the vehicle information exists in the blacklist. If it exists in the blacklist, the vehicle authentication is terminated; otherwise, proceed to step S612.

[0078] In step S612, the authoritative and trusted node saves the vehicle's pseudonym, real identity, and related public key certificate to the blockchain ledger.

[0079] In the technical solutions provided in steps S610 and S612, after receiving the certificate, the authoritative and trusted node uses the base station public key. Verify Certificate Is it legal? If legal, further verify the vehicle public key certificate. , through verification Whether it meets and To prevent eavesdropping and tampering by third-party attackers, the validity period is checked by comparing the vehicle's pseudonym with its public key. Secondly, a trusted node is consulted to verify if the vehicle's information exists in the blockchain's malicious vehicle blacklist ledger. If it does, the vehicle's registration is terminated. After verification, the vehicle's pseudonym, public key, and certificate authentication parameters are combined into a tuple. It is stored in the ledger of the blockchain network. This refers to the validity period of the public key certificate. The specific validity period is determined based on the actual policy and can be one month, two months, or six months.

[0080] In some embodiments of this application, a method such as... is also provided. Figure 7 The diagram illustrates the traffic data sharing process for connected vehicles. For example... Figure 7As shown, the process includes the following steps:

[0081] Step S702: Obtain the signature data sent by the connected vehicle, wherein the signature data is obtained by the connected vehicle signing the vehicle data based on the vehicle's private key.

[0082] Step S704: The first edge computing node authenticates the signature data based on the vehicle public key of the connected vehicle;

[0083] Step S706: After authentication is successful, the vehicle data is uploaded to the blockchain network to update the traffic sharing data.

[0084] Specifically, in vehicles If you are driving within the coverage area of ​​a certain base station and want to share traffic information... At that time, through the private key This traffic sharing message Perform signature, calculate ,in This indicates the first timestamp of the message. Then the vehicle... Will The data is sent to the MEC edge computing node in the 5G base station. The base station uses the vehicle's public key to verify the signature. If the verification is valid, the shared traffic data is analyzed and processed according to the specified format. It then uploads data to the blockchain network requesting synchronization. This data includes the location and time of traffic information. If the signature is invalid, the message is discarded. .

[0085] In some embodiments of this application, the step of uploading vehicle data to a blockchain network to update traffic sharing data further includes: determining whether there is historical vehicle data uploaded by connected vehicles in the traffic sharing data; and updating the historical vehicle data in the traffic sharing data based on timestamp information if historical vehicle data uploaded by connected vehicles already exists.

[0086] Specifically, in vehicles If you are driving within the coverage area of ​​a certain base station and want to share traffic information... At that time, through the private key This traffic sharing message Perform signature, calculate ,in This indicates the second timestamp of the message. Then the vehicle... Will The data is sent to the MEC edge computing node in the 5G base station. The base station uses the vehicle's public key to verify the signature. If the verification is valid, the shared traffic data is analyzed and processed according to the specified format. If the data already exists in the blockchain network, that is... Then, it requests updates to the blockchain network regarding the location and time range of the traffic data affecting the vehicle-to-everything (V2X) network. The system will indicate whether the traffic sharing message is valid. If the traffic situation in the area reported by the shared traffic data returns to normal, it will request an update to invalidate the message from the blockchain network to avoid misleading connected vehicles passing through the area.

[0087] In step S306, the first edge computing node broadcasts traffic sharing data through the base station where the first edge computing node is located.

[0088] In the technical solution provided in step S306, the step of the first edge computing node broadcasting traffic sharing data through the base station where the first edge computing node is located includes: after obtaining the traffic sharing data, signing the traffic sharing data with the base station's private key to obtain broadcast data, wherein the broadcast data includes the plaintext of the traffic sharing data, the base station's public key certificate, the signature of the plaintext, and the broadcast timestamp; and broadcasting the data through the base station within the coverage area of ​​the base station.

[0089] Specifically, after obtaining traffic sharing data through the first edge computing node, the base station can generate traffic sharing messages locally based on the synchronized and valid traffic sharing data in the blockchain network. And through the 5G base station private key Regarding the message Perform signature, calculate Then, it periodically broadcasts information within the coverage area of ​​this base station. 5G base stations will The broadcast is sent to connected vehicles within the coverage area of ​​the base station on the operator's network. The broadcast information includes plaintext shared traffic data, the base station's public key certificate, a signature of the plaintext, and a timestamp of the base station data broadcast. .

[0090] In some embodiments of this application, such as Figure 8 As shown, when a connected vehicle receives shared traffic information broadcast by a base station, it will execute the following process to control the vehicle's movement state based on the shared traffic information:

[0091] Step S802: Verify whether the signature in the shared traffic information is valid;

[0092] Step S804: After successful verification, determine the traffic conditions around the connected vehicle based on the shared traffic information, and provide data services for intelligent driving based on the traffic conditions.

[0093] Specifically, when the vehicle When driving within the coverage area of ​​this 5G base station, you will receive traffic information broadcast and shared by the 5G base station. ,vehicle Through the base station's public key certificate First, verify the 5G base station. middle and If the 5G base station public key certificate is valid within the valid time period, then the 5G base station public key verification equation will be used again. Confirm the signature of the shared message. Is it legal? If not, discard the message. If the verification is valid, receive the message. It is used to analyze and process current traffic conditions, providing safe and reliable traffic information sharing for intelligent driving decisions of connected vehicles.

[0094] As an optional implementation method, the following can also be used: Figure 9 The process shown identifies and handles abnormal connected vehicles, specifically including the following steps:

[0095] Step S902: Identify abnormal connected vehicles. Abnormal connected vehicles are those that send traffic sharing data acquisition requests to the first edge computing node at a frequency higher than a preset frequency, or whose shared vehicle data is problematic, including false data.

[0096] Step S904: Send the pseudonym of the abnormal connected vehicle to the authoritative trusted node. The authoritative trusted node is used to determine the real vehicle information of the abnormal connected vehicle based on the pseudonym information and add the real vehicle information to the corresponding malicious vehicle list in the blockchain network. The pseudonym is the identification information of the abnormal connected vehicle in the blockchain network generated by the authoritative trusted node based on the real vehicle information of the abnormal connected vehicle during the authentication process of the abnormal connected vehicle.

[0097] Specifically, in 5G vehicle-to-everything (V2X) communication, when a base station detects a vehicle... Frequent requests for shared traffic information may contain malicious or false information; 5G base station MEC edge computing nodes will use pseudonyms for vehicles. Send to the authoritative and trusted node; the authoritative and trusted node receives it. Then, calculate , Then, the vehicle The real identity corresponding to the pseudonym Added to the blacklist of malicious vehicles in the blockchain network.

[0098] Authoritative and trusted nodes maintain a blacklist of malicious vehicles in the consortium's blockchain network, including the mapping relationship between vehicle pseudonyms and real identities, enabling the revocation of shared permissions and the disclosure of the real identities of malicious vehicles.

[0099] The process involves a first edge computing node in the blockchain network sending its public key to an authoritative, trusted node in the blockchain network and obtaining a verification certificate generated by the authoritative, trusted node based on the public key. The first edge computing node can be any edge computing node in the blockchain network, and these edge computing nodes may correspond to multiple telecom operators. After verifying the verification certificate and confirming successful verification, the first edge computing node obtains traffic sharing data from the blockchain network. This traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the telecom operator corresponding to the second edge computing node is the same as the telecom operator corresponding to the first edge computing node. The difference lies in the method used: the first edge computing node broadcasts traffic sharing data through the base station where it is located. By employing authoritative and trusted nodes to authenticate edge computing nodes in various operator base stations, and after successful authentication, the edge computing nodes acquire and broadcast traffic sharing data. This achieves the goal of integrating traffic data uploaded by different edge computing nodes to obtain traffic sharing data, and sharing this traffic sharing data among edge computing nodes from different manufacturers. This realizes the technical effect of cross-operator traffic data integration and sharing, and solves the technical problem in related technologies where networked vehicles from different operators cannot directly transmit data, thus preventing the integration and sharing of road information corresponding to different operators within the region.

[0100] Furthermore, to achieve secure traffic data sharing between connected vehicles from different automakers across different networks, the traffic data sharing method provided in this application embodiment efficiently utilizes the computing, storage, and traditional communication capabilities of base stations. Leveraging a consortium blockchain network, MEC edge computing between different operator networks, different automakers, and 5G base stations is constructed as blockchain network nodes. Traffic data collected by vehicles is encrypted using public keys and signature algorithms to achieve secure data sharing between connected vehicles across different networks. This avoids wasting the computing power of connected vehicles, efficiently utilizes the remaining resources of base stations, and provides data support for assisted driving and intelligent driving of low-end connected vehicles that lack their own data collection capabilities. Moreover, this application embodiment uses a consortium blockchain and data security algorithms to achieve identity authentication, secure data communication, and privacy protection for connected vehicles from different automakers communicating across different operator networks. This reduces the risk of data and identity privacy leakage during communication between vehicles from different automakers and protects identity privacy and data security during vehicle communication.

[0101] To achieve identity authentication and secure data communication between connected vehicles from different automakers, this application embodiment uses automaker authentication service nodes as nodes in a consortium blockchain network. These nodes are used to authenticate connected vehicles from different automakers within the blockchain network. For each authenticated and valid connected vehicle, a pseudonym and public-private key pair are generated for secure data communication during real-time data communication. This enables secure sharing of real-time traffic information within the same coverage area in a 5G vehicle-to-everything (V2X) scenario, significantly reducing the risk of data and identity privacy leaks during secure data communication and protecting data security and identity privacy during vehicle communication.

[0102] To achieve conditional traceability of connected vehicles from different car manufacturers across different networks, this application embodiment designs corresponding public key certificates and signature technologies to achieve legal authentication of vehicle-shared information and ensure the legality of the shared information. If a malicious vehicle is found to be spreading forged information, the blockchain network reveals the true identity of the vehicle through a 5G base station and revokes the vehicle's relevant permissions, restricting its participation in subsequent 5G vehicle-to-everything (V2X) secure communication.

[0103] In summary, the traffic data sharing method provided in this application enables secure data sharing and identity privacy protection for connected vehicles from different car manufacturers across different operator networks, thereby enhancing the utilization value of 5G base stations. Furthermore, it reduces the energy consumption of connected vehicles processing data, demonstrating high practical value, cost reduction and efficiency improvement, and strong scalability. It is easily deployed on a large scale in 5G vehicle-to-everything (V2X) scenarios for assisted driving, intelligent driving, and autonomous driving.

[0104] This application provides a traffic data sharing device. Figure 10 This is a schematic diagram of the device. From Figure 10 As can be seen from the diagram, the device includes: a first processing module 100, used to send the public key of the first edge computing node to an authoritative and trusted node in the blockchain network, and obtain a verification certificate generated by the authoritative and trusted node based on the public key of the edge computing node, wherein the first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators; a second processing module 102, used to verify the verification certificate, and after the verification result is successful, obtain traffic sharing data in the blockchain network, wherein the traffic sharing data includes traffic data uploaded to the blockchain network by the second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node; and a third processing module 104, used to broadcast the traffic sharing data through the base station where the first edge computing node is located.

[0105] In some embodiments of this application, the traffic data sharing device is further configured to: acquire signature data sent by a networked vehicle, wherein the signature data is obtained by the networked vehicle signing vehicle data based on the vehicle's private key; a first edge computing node authenticates the signature data based on the vehicle's public key; and after successful authentication, upload the vehicle data to the blockchain network to update the traffic sharing data.

[0106] In some embodiments of this application, the vehicle data also includes timestamp information; the step of the traffic data sharing device uploading vehicle data to the blockchain network to update the traffic sharing data includes: determining whether there is historical vehicle data uploaded by connected vehicles in the traffic sharing data; if it is determined that there is historical vehicle data uploaded by connected vehicles, updating the historical vehicle data in the traffic sharing data according to the timestamp information.

[0107] In some embodiments of this application, the traffic data sharing device is further configured to: obtain authentication request parameters sent by a connected vehicle, wherein the authentication request parameters include vehicle identification information, pre-installed operator communication card identification information, operator information, and vehicle manufacturer information of the connected vehicle; a first edge computing node encrypts the authentication request parameters using a system public key to obtain encrypted authentication parameters; sends the encrypted authentication parameters to an authoritative trusted node, wherein the authoritative trusted node decrypts the encrypted authentication parameters using its private key to obtain the authentication request parameters, and calls an operator authentication service node to authenticate the authentication request parameters; after successful authentication and the connected vehicle obtains the vehicle pseudonym representation generated by the authoritative trusted node, the first edge computing node... An edge computing node obtains vehicle authentication data generated by a connected vehicle based on a vehicle pseudonym and a vehicle private key, and signs the vehicle authentication data based on the base station's private key to obtain signed authentication data. The vehicle authentication data includes the connected vehicle's pseudonym, a vehicle public key certificate generated by the connected vehicle based on the vehicle pseudonym and the vehicle private key, and a vehicle public key generated by the connected vehicle based on the vehicle private key and global parameters broadcast by an authoritative trusted node. The signed authentication data is sent to the authoritative trusted node, which verifies the security status of the connected vehicle based on the signed authentication data, and saves the connected vehicle's vehicle authentication data to the ledger of the blockchain network after confirming that the security status is secure.

[0108] In some embodiments of this application, the vehicle pseudonym identifier includes a first pseudonym parameter, a second pseudonym parameter, and a third pseudonym parameter. The first pseudonym parameter is calculated by an authoritative and trusted node based on a random number and the system key of the blockchain network. The second pseudonym parameter is calculated by an authoritative and trusted node based on the vehicle identification information of the connected vehicle, the vehicle manufacturer information, the identification information of the pre-installed operator communication card, and the operator information. The third pseudonym parameter is calculated by an authoritative and trusted node based on the first pseudonym parameter, the second pseudonym parameter, the system key, and the system public key of the blockchain network.

[0109] In some embodiments of this application, the step of the third processing module 104 broadcasting traffic sharing data through the base station where the first edge computing node is located includes: after obtaining the traffic sharing data, signing the traffic sharing data with the base station's private key to obtain broadcast data, wherein the broadcast data includes the plaintext of the traffic sharing data, the base station's public key certificate, the signature of the plaintext, and the broadcast timestamp; and broadcasting the data through the base station within the coverage area of ​​the base station.

[0110] In some embodiments of this application, the traffic data sharing device is further configured to: identify abnormal connected vehicles, wherein the abnormal connected vehicles are those that send traffic sharing data acquisition requests to the first edge computing node at a frequency higher than a preset frequency, or whose shared vehicle data is problematic data, including false data; and send the vehicle pseudonym identifier of the abnormal connected vehicles to an authoritative and trusted node, wherein the authoritative and trusted node is configured to determine the real vehicle information of the abnormal connected vehicles based on the identifier information, and add the real vehicle information to the corresponding malicious vehicle list in the blockchain network, and the vehicle pseudonym identifier is the identifier information of the abnormal connected vehicles in the blockchain network generated by the authoritative and trusted node based on the real vehicle information of the abnormal connected vehicles during the authentication process of the abnormal connected vehicles.

[0111] It should be noted that the modules in the above-mentioned traffic data sharing device can be program modules (such as a set of program instructions to implement a certain function) or hardware modules. For the latter, they can be in the following forms, but are not limited to these: each of the above modules is in the form of a processor, or the functions of each of the above modules are implemented by a processor.

[0112] The methods and embodiments provided in this application can be executed in an electronic device. Figure 11 A hardware block diagram of an electronic device for implementing a traffic data sharing method is shown. Figure 11As shown, the electronic device 110 may include one or more processors 1102 (shown as 1102a, 1102b, ..., 1102n in the figure) 1102 (processor 1102 may include, but is not limited to, a microprocessor MCU or a programmable logic device FPGA, etc.), a memory 1104 for storing data, and a transmission device 1106 for communication functions. In addition, it may also include: a display, an input / output interface (I / O interface), a universal serial bus (USB) port (which may be included as one of the ports of a BUS bus), a network interface, a power supply, and / or a camera. Those skilled in the art will understand that... Figure 11 The structure shown is for illustrative purposes only and does not limit the structure of the electronic device described above. For example, the electronic device 110 may also include... Figure 11 The more or fewer components shown, or having the same Figure 11 The different configurations shown.

[0113] It should be noted that the aforementioned one or more processors 1102 and / or other data processing circuits are generally referred to herein as "data processing circuits". These data processing circuits may be embodied, in whole or in part, in software, hardware, firmware, or any other combination thereof. Furthermore, the data processing circuits may be a single, independent processing module, or may be integrated, in whole or in part, into any other element in the electronic device 11110. As involved in the embodiments of this application, the data processing circuits serve as a processor control mechanism (e.g., selection of a variable resistor termination path connected to an interface).

[0114] The memory 1104 can be used to store software programs and modules of application software, such as the program instructions / data storage device corresponding to the traffic data sharing method in this embodiment. The processor 1102 executes various functional applications and data processing by running the software programs and modules stored in the memory 1104, thereby realizing the aforementioned traffic data sharing method. The memory 1104 may include high-speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some instances, the memory 1104 may further include memory remotely located relative to the processor 1102, and these remote memories can be connected to the electronic device 110 via a network. Examples of such networks include, but are not limited to, the Internet, corporate intranets, local area networks, mobile communication networks, and combinations thereof.

[0115] The transmission device 1106 is used to receive or send data via a network. Specific examples of the network described above may include a wireless network provided by the communication provider of the electronic device 110. In one example, the transmission device 1106 includes a Network Interface Controller (NIC), which can connect to other network devices via a base station to communicate with the Internet. In another example, the transmission device 1106 may be a Radio Frequency (RF) module, used for wireless communication with the Internet.

[0116] The display may be, for example, a touchscreen liquid crystal display (LCD), which allows the user to interact with the user interface of the electronic device 110.

[0117] According to another aspect of the embodiments of this application, a non-volatile storage medium is also provided. The non-volatile storage medium stores a program that, when running, controls the device where the non-volatile storage medium is located to execute the following traffic data sharing method: A first edge computing node in a blockchain network sends its public key to an authoritative trusted node in the blockchain network and obtains a verification certificate generated by the authoritative trusted node based on the public key. The first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators. After verifying the verification certificate and receiving a successful verification result, the first edge computing node obtains traffic sharing data from the blockchain network. The traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node. The first edge computing node broadcasts the traffic sharing data through the base station where it is located.

[0118] According to another aspect of the embodiments of this application, an electronic device is also provided, including: a memory and a processor, wherein the processor is used to run a program stored in the memory, wherein the program executes the following traffic data sharing method: a first edge computing node in a blockchain network sends its edge computing node public key to an authoritative trusted node in the blockchain network, and obtains a verification certificate generated by the authoritative trusted node based on the edge computing node public key, wherein the first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators; after the first edge computing node verifies the verification certificate and the verification result is successful, it obtains traffic sharing data in the blockchain network, wherein the traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node; the first edge computing node broadcasts the traffic sharing data through the base station where the first edge computing node is located.

[0119] According to another aspect of the embodiments of this application, a computer program product is also provided, including a computer program that, when executed by a processor, implements the following traffic data sharing method: a first edge computing node in a blockchain network sends its edge computing node public key to an authoritative trusted node in the blockchain network and obtains a verification certificate generated by the authoritative trusted node based on the edge computing node public key, wherein the first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators; after the first edge computing node verifies the verification certificate and the verification result is successful, it obtains traffic sharing data in the blockchain network, wherein the traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node; the first edge computing node broadcasts the traffic sharing data through the base station where the first edge computing node is located.

[0120] In the above embodiments of this application, the descriptions of each embodiment have different focuses. For parts not described in detail in a certain embodiment, please refer to the relevant descriptions of other embodiments.

[0121] In the several embodiments provided in this application, it should be understood that the disclosed technical content can be implemented in other ways. The device embodiments described above are merely illustrative; for example, the division of units can be a logical functional division, and in actual implementation, there may be other division methods. For instance, multiple units or components may be combined or integrated into another system, or some features may be ignored or not executed. Furthermore, the displayed or discussed mutual coupling, direct coupling, or communication connection may be through some interfaces; the indirect coupling or communication connection between units or modules may be electrical or other forms.

[0122] The units described as separate components may or may not be physically separate. The components shown as units may or may not be physical units; that is, they may be located in one place or distributed across multiple units. Some or all of the units can be selected to achieve the purpose of this embodiment according to actual needs.

[0123] Furthermore, the functional units in the various embodiments of this application can be integrated into one processing unit, or each unit can exist physically separately, or two or more units can be integrated into one unit. The integrated unit can be implemented in hardware or as a software functional unit.

[0124] If the integrated unit is implemented as a software functional unit and sold or used as an independent product, it can be stored in a computer-readable storage medium. Based on this understanding, the technical solution of this application, in essence, or the part that contributes to related technologies, or all or part of the technical solution, can be embodied in the form of a software product. This computer software product is stored in a storage medium and includes several instructions to cause a computer device (which may be a personal computer, server, or network device, etc.) to execute all or part of the steps of the methods described in the various embodiments of this application. The aforementioned storage medium includes various media capable of storing program code, such as USB flash drives, read-only memory (ROM), random access memory (RAM), portable hard drives, magnetic disks, or optical disks.

[0125] The above description is only a preferred embodiment of this application. It should be noted that for those skilled in the art, several improvements and modifications can be made without departing from the principle of this application, and these improvements and modifications should also be considered within the scope of protection of this application.

Claims

1. A method for sharing traffic data, characterized in that, include: The first edge computing node in the blockchain network sends its public key to an authoritative trusted node in the blockchain network and obtains a verification certificate generated by the authoritative trusted node based on the public key. The first edge computing node can be any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators. The authoritative trusted node is used to call the car manufacturer's authentication service node to authenticate the connected vehicle during the authentication of the connected vehicle, and to calculate the vehicle pseudonym identifier of the connected vehicle. After the first edge computing node verifies the verification certificate and the verification result is successful, it obtains traffic sharing data in the blockchain network. The traffic sharing data includes traffic data uploaded to the blockchain network by the second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node. The first edge computing node broadcasts the traffic sharing data through the base station where the first edge computing node is located.

2. The traffic data sharing method according to claim 1, characterized in that, The method further includes: Obtain the signature data sent by the connected vehicle, wherein the signature data is obtained by the connected vehicle signing vehicle data based on the vehicle's private key; The first edge computing node authenticates the signature data based on the vehicle public key of the connected vehicle; After authentication, the vehicle data is uploaded to the blockchain network to update the traffic sharing data.

3. The traffic data sharing method according to claim 2, characterized in that, The vehicle data also includes timestamp information; uploading the vehicle data to the blockchain network to update the traffic sharing data includes: Determine whether the traffic sharing data contains historical vehicle data uploaded by the connected vehicle; If it is determined that historical vehicle data uploaded by the connected vehicle already exists, the historical vehicle data in the traffic sharing data is updated based on the timestamp information.

4. The traffic data sharing method according to claim 1, characterized in that, The first edge computing node broadcasts the traffic sharing data through the base station where the first edge computing node is located, including: After obtaining the traffic sharing data, the traffic sharing data is signed using the base station's private key to obtain broadcast data. The broadcast data includes the plaintext of the traffic sharing data, the base station's public key certificate, the signature of the plaintext, and a broadcast timestamp. The broadcast data is broadcast through the base station within its coverage area.

5. The traffic data sharing method according to claim 1, characterized in that, The method further includes: Identify abnormal connected vehicles, wherein the abnormal connected vehicles are those that send traffic sharing data acquisition requests to the first edge computing node at a frequency higher than a preset frequency, or whose shared vehicle data is problematic data, including false data; The pseudonym of the abnormal connected vehicle is sent to the authoritative trusted node, wherein the authoritative trusted node is used to determine the real vehicle information of the abnormal connected vehicle based on the pseudonym, and add the real vehicle information to the vehicle malicious list corresponding to the blockchain network. The pseudonym is a pseudonym of the abnormal connected vehicle in the blockchain network generated by the authoritative trusted node based on the real vehicle information of the abnormal connected vehicle during the authentication process of the abnormal connected vehicle.

6. The traffic data sharing method according to claim 1, characterized in that, The traffic data sharing method also includes: Obtain the authentication request parameters sent by the connected vehicle, wherein the authentication request parameters include the vehicle identification information of the connected vehicle, the identification information of the pre-installed operator communication card, operator information and vehicle manufacturer information; The first edge computing node encrypts the request authentication parameters using the system public key to obtain encrypted authentication parameters; The encrypted authentication parameters are sent to the authoritative trusted node, wherein the authoritative trusted node is used to decrypt the encrypted authentication parameters according to the authoritative trusted node's private key to obtain the request authentication parameters, and call the operator authentication service node to authenticate the request authentication parameters; After successful authentication and the connected vehicle obtains the vehicle pseudonym generated by the authoritative trusted node, the first edge computing node obtains the vehicle authentication data generated by the connected vehicle based on the vehicle pseudonym identifier and the vehicle private key, and signs the vehicle authentication data based on the base station private key of the base station to obtain signed authentication data. The vehicle authentication data includes the vehicle pseudonym identifier of the connected vehicle, the vehicle public key certificate generated by the connected vehicle based on the vehicle pseudonym identifier and the vehicle private key, and the vehicle public key generated by the connected vehicle based on the vehicle private key and the global parameters broadcast by the authoritative trusted node. The signature authentication data is sent to the authoritative trusted node, wherein the authoritative trusted node is used to verify the security status of the connected vehicle based on the signature authentication data, and after confirming that the security status is secure, saves the vehicle authentication data of the connected vehicle to the ledger of the blockchain network.

7. The traffic data sharing method according to claim 6, characterized in that, The vehicle pseudonym identifier includes a first pseudonym parameter, a second pseudonym parameter, and a third pseudonym parameter. The first pseudonym parameter is calculated by the authoritative and trusted node based on a random number and the system key of the blockchain network. The second pseudonym parameter is calculated by the authoritative and trusted node based on the vehicle identification information, vehicle manufacturer information, pre-installed operator communication card identification information, and operator information of the connected vehicle. The third pseudonym parameter is calculated by the authoritative and trusted node based on the first pseudonym parameter, the second pseudonym parameter, the system key, and the system public key of the blockchain network.

8. A traffic data sharing system, characterized in that, This includes authoritative and trusted nodes, multiple edge computing nodes, automotive manufacturer-certified service nodes, and connected vehicles. The authoritative and trusted node is used to call the car manufacturer's authentication service node to authenticate the connected vehicle during the authentication process, and to calculate the vehicle pseudonym identifier of the connected vehicle. The first edge computing node among the plurality of edge computing nodes is used to send its public key to an authoritative trusted node in the blockchain network and obtain a verification certificate generated by the authoritative trusted node based on the public key. The first edge computing node is any one of the plurality of edge computing nodes, and the edge computing nodes in the blockchain network correspond to multiple operators. After verifying the verification certificate and confirming that the verification is successful, it obtains traffic sharing data from the blockchain network. This traffic sharing data includes traffic data uploaded to the blockchain network by a second edge computing node among the plurality of edge computing nodes, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node. The traffic sharing data is then broadcast through the base station where the first edge computing node is located. After receiving the traffic sharing data, the connected vehicle verifies whether the signature of the traffic sharing data is valid; after verifying that the signature of the traffic sharing data is valid, it determines the traffic conditions based on the traffic sharing data.

9. A traffic data sharing device, characterized in that, Suitable for the first edge computing node in a blockchain network, including: The first processing module is used to send the public key of the first edge computing node to the authoritative trusted node in the blockchain network, and to obtain the verification certificate generated by the authoritative trusted node based on the public key of the edge computing node. The first edge computing node is any edge computing node in the blockchain network, and the edge computing nodes in the blockchain network correspond to multiple operators. The authoritative trusted node is used to call the car manufacturer's authentication service node to authenticate the connected vehicle during the authentication of the connected vehicle, and to calculate the vehicle pseudonym identifier of the connected vehicle. The second processing module is used to verify the verification certificate, and after the verification result is successful, to obtain the traffic sharing data in the blockchain network. The traffic sharing data includes traffic data uploaded to the blockchain network by the second edge computing node, and the operator corresponding to the second edge computing node is different from the operator corresponding to the first edge computing node. The third processing module is used to broadcast the traffic sharing data through the base station where the first edge computing node is located.

10. A non-volatile storage medium, characterized in that, The non-volatile storage medium stores a program, wherein when the program is executed, it controls the device containing the non-volatile storage medium to perform the traffic data sharing method according to any one of claims 1 to 7.

11. An electronic device, characterized in that, include: A memory and a processor, the processor being configured to run a program stored in the memory, wherein the program, when running, executes the traffic data sharing method according to any one of claims 1 to 7.

12. A computer program product, characterized in that, It includes a computer program that, when executed by a processor, implements the traffic data sharing method according to any one of claims 1 to 7.