Design And Implementation Of Safety Function Of Refreshing Data About On-board Electronic Control Unit

With the continuous development of automotive electronic technology,the degree of vehicle automation is increasing subsequently.The concept of "software defines vehicle" has gradually affected the development of automotive electronic technology.The incredibly rapid increase in the number of on-board ECU and codes in on-board control system,the more and more expensive R & D cost of vehicle refresh data,and the increasable proportion of vehicle software value contribute to the more and more important refresh data security.On the other hand,there are also massive rise in risks and issues about information leak in the use of existing vehicle refresh data,such as the copy of diagnostic instrument data,CAN bus monitoring and so on.As a result,the phenomenon of data refreshing is out of control.Besides,the non-bound relationship between refresh data and vehicle intensifies the issues about unrestricted use of stolen refresh data.In this case,due to the data refreshing of different vehicles,secured car loans are out of control and the traffic accidents caused by the decrease of vehicle safety occur frequently as well.At the same time,as data refreshing is regarded as the independent intellectual property rights of the vehicle enterprises,the disclosure of information could conduce to incalculable economic losses to the vehicle enterprises.In this case,individuals have begun to pay more and more attention to the safety function development of the on-board ECU.Referring to the existing information security technology,this paper puts forward three leakage dangers in the process of data transmission: data packet is not encrypted,CAN bus data is easy to be monitored,ECU and vehicle are not bound.(1)Data refreshing encryption scheme uses the mutual authentication process in HTTPS for reference.Authenticates the legal identity of the after-sales server and the computer tool for vehicle trouble diagnosis to ensure the legitimacy of the computer tool for vehicle trouble diagnosis.At the same time,AES algorithm is used to encrypt data stored in the diagnosis instrument in order to avoid directly copy the data in the diagnosis instrument.(2)Important encryption scheme to diagnostic message encrypts the specific data with AES,which not only ensures that the important refresh data would not be leaked due to being monitored but also guarantees the flexibility to use of non-important data.(3)VIN consistency verification scheme compares the VIN number in the specified ECU before the application and use of data and connects the VIN number during the process in order to match the refresh data with the vehicle one by one,which increases the difficulty of data refreshing between different vehicles.This paper designs the three security schemes mentioned above,which could effectively reduce the possibility of the refreshing file disclosure in the process and meanwhile increase the cost of stealing data,which removes issues of stealing the refreshing data to a large extent as a result.After the design of each scheme,this paper also carries out the feasibility study experiment of the corresponding scheme,mainly including the code development of each part of the scheme,which shows the feasibility of the above three schemes.