西安电子科技大学学报

• 研究论文 • 上一篇    下一篇

采用可信平台度量的车辆远程诊断授权协议

刘佼;孙聪;马建峰;焦政达   

  1. (西安电子科技大学 网络与信息安全学院,陕西 西安 710071)
  • 收稿日期:2016-05-26 出版日期:2017-06-20 发布日期:2017-07-17
  • 通讯作者: 孙聪(1982-),男,副教授,E-mail: suncong@xidian.edu.cn
  • 作者简介:刘佼(1991-),女,西安电子科技大学硕士研究生,E-mail: 3357278821@qq.com
  • 基金资助:

    国家自然科学基金资助项目(61303033);国家高技术研究发展计划(863计划)资助项目(2015AA017203);陕西省自然科学基础研究计划资助项目(2016JM6034);航空科学基金资助项目(2013ZC31003, 20141931001);工业和信息化部某专项科研资助项目(MJ-2014-S-37)

Remote authorization protocol for vehicle diagnosis using trusted platform measurements

LIU Jiao;SUN Cong;MA Jianfeng;JIAO Zhengda   

  1. (School of Cyber Engineering, Xidian Univ., Xi'an 710071, China)
  • Received:2016-05-26 Online:2017-06-20 Published:2017-07-17

摘要:

针对当前车辆远程诊断授权协议无法确定车辆软硬件环境完整性的问题,提出一种新的车辆远程诊断授权协议,通过车载可信平台模块提供的度量机制对车辆软硬件信息进行完整性度量,并将度量过程与现有远程诊断授权协议相结合,实现了可信第三方对被诊断车辆的强身份认证,并保证车辆当前软硬件完整可信.通过工具自动证明了新协议满足安全目标,并分析说明了协议开销增长处于合理范围.

关键词: 安全协议, 认证, 授权, 车辆远程诊断, 可信计算

Abstract:

The state-of-art remote authorization protocol for vehicle diagnosis cannot ensure the validation of vehicle hardware and software. We propose a new remote authorization protocol for vehicle diagnosis. We use the measurement mechanism provided by the in-vehicle trusted platform module (TPM) to measure the hardware and software of tne vehicle for validation. Embedding this measurement process into the current remote authorization protocol can achieve a strong authentication to the diagnosed vehicle for the trusted-third-party and ensure the validation on the current status of vehicular hardware and software. The new protocol is automatically proved to comply with the security objectives and the increase in computation and communication costs is moderate.

Key words: security protocol, authentication, authorization, remote vehicle diagnosis, trusted computing