武汉ETC密钥管理系统的研究与实现

发布时间：2018-07-01 21:42

本文选题：密钥管理 + 密钥体系　；参考：《华中科技大学》2015年硕士论文

【摘要】：为了保障ETC系统的安全,系统中车载单元(OBU)与路侧单元(RSU)之间各种通信都使用了密钥进行加密,所以设计一个安全的密钥管理系统来集中管理这些密钥从而保障ETC系统的安全是十分必要的。本文依据智能卡以及ETC系统的相关特点,对武汉ETC密钥管理系统中密钥的生成、密钥的传输和密钥的存储进行了分析设计并以密钥体系为主体设计了一套密钥卡认证体系以提高系统的安全性。为了实现“一卡一密”来保证系统安全,本文设计了一种由一个根密钥对智能卡的唯一身份ID逐层分散来获得应用密钥的密钥生成方式。并基于智能卡的特点,设计了一种使用卡片主控密钥来作为密钥传输过程中保护密钥的方案。考虑到现今智能卡技术仍然存在的一些安全问题,将使用频率最高的业务主密钥保存在更加安全的硬件加密机中,并实现了将密钥注入加密机的功能。基于智能卡的特点,本文还设计了一套认证卡体系,使得密钥卡只有在获得相应认证卡的认证授权后才可以使用,规范了密钥管理系统的管理,也提高了其安全性。对于现有的密钥管理系统,都只能生成一套固定的密钥体系,在ETC系统中,任何一项应用的增加或减少都将改变其密钥体系的结构,因而需要新的密钥管理系统来生成新的密钥体系。近年来ETC技术发展越来越快,其应用也越来越广泛,本文提出了一种密钥管理系统的可调节化设计,基于ETC系统的特点,从密钥数量和密钥层级数量两个方面来实现密钥管理系统的可调节化以满足密钥体系变化的需要。在文章的最后,基于武汉市ETC密钥管理系统的特点,对系统的功能与结构进行了详细的分析与研究,成功开发并实现了武汉ETC密钥管理系统。
[Abstract]:In order to ensure the security of etc system, all kinds of communication between OBU and RSU are encrypted with key. So it is necessary to design a secure key management system to manage these keys centrally to ensure the security of etc system. According to the characteristics of smart card and etc system, the key generation in Wuhan etc key management system is discussed in this paper. The key transmission and key storage are analyzed and designed, and a key card authentication system is designed to improve the security of the system. In order to realize "one card and one secret" to ensure system security, this paper designs a key generation method in which the unique identity ID of a root key pair of smart cards is scattered layer by layer to obtain the application key. Based on the characteristics of smart card, a scheme of using card master key to protect the key during key transmission is designed. In view of some security problems still existing in smart card technology, the service master key with the highest frequency is stored in a more secure hardware encryption machine, and the function of injecting the key into the encryption machine is realized. Based on the characteristics of smart card, this paper also designs a set of authentication card system, which makes the key card can only be used after obtaining the authentication authorization of the corresponding authentication card, standardizing the management of the key management system and improving its security. For the existing key management system, only a set of fixed key systems can be generated. In etc system, the increase or decrease of any application will change the structure of the key system. Therefore, a new key management system is needed to generate a new key system. In recent years, the technology of etc is developing more and more quickly, and its application is more and more extensive. In this paper, a kind of adjustable design of key management system is proposed, which is based on the characteristics of etc system. The key management system can be adjusted from two aspects of the number of keys and the number of key levels to meet the needs of the change of the key system. At the end of the paper, based on the characteristics of Wuhan etc key management system, the function and structure of the system are analyzed and studied in detail, and the Wuhan etc key management system is successfully developed and implemented.
【学位授予单位】：华中科技大学
【学位级别】：硕士
【学位授予年份】：2015
【分类号】：U495;TN918.4

【相似文献】