摘要
针对现有商用车报文安全缺陷,以及校验值保留在商用车报文数据域预留位数限制,提出基于SM4分组密码算法与SM3密码杂凑算法的CAN总线安全通信方法 .利用CANoe设计虚拟安全网关,使得新鲜值与报文原始数据域基于SM4算法混合加密表现雪崩效应减少明文攻击风险同时,利用SM3算法保证数据来源合法性.在搭载VN1610的智能网联试验客车实施实车上,CAN总线高负载率验证测试.结果表明:SM4分组密码算法与SM3密码杂凑算法搭建安全通信方案的运行时间满足网关数据传输速度要求.
In this paper, aiming at the security defects of existing commercial vehicle messages and the limitation of reserved digits in the commercial vehicle message data field, a CAN bus security communication method is proposed based on the SM4 block cipher algorithm and the SM3 cryptographic hash algorithm. Applied the virtual security gateway is designed by CANoe, mixed the original data field encrypted based on the SM4 algorithm with the fresh value of the message, to manifest the avalanche effect and reduce the risk of plaintext attacks. In the meantime, the application of the SM3 algorithm is to ensure the legitimacy of the data source. A real vehicle CAN bus high load rate verification test was implemented on a VN1610-equipped intelligent network connection test bus. The results show that the running time of the secure communication scheme built by the SM4 block cipher algorithm and the SM3 cryptographic hash algorithm meets the data transmission speed requirements of the gateway.
作者
黄雯垠
高秀晶
尤双和
陈水宣
曾方正
张彬岑
HUANG Wenyin;GAO Xiujing;YOU Shuanghe;CHEN Shuixuan;ZENG Fangzheng;ZHANG Bincen(Mechanical and Automotive Engineering,Xiamen University of Technology,Xiamen,Fujian 361024,China;Fujian Collaborative Innovation Center for R&D of Coach and Special Vehicle,Xiamen,Fujian 361024,China;Technology Research Center of Xiamen Golden Dragon Bus Co.,Ltd.,Xiamen,Fujian 361022,China)
出处
《闽南师范大学学报(自然科学版)》
2023年第1期41-49,共9页
Journal of Minnan Normal University:Natural Science
基金
国家高端外国专家项目(G20200221011)
福建省自然科学基金(2020J01273)
企业委托项目(HX19079)。
