CN111935200A - Vehicle control method and related equipment - Google Patents

Abstract

The embodiments of the present application provide a vehicle control method and related equipment, which can be applied to the Internet of Vehicles. The car company server receives the car control request sent by the terminal. If the car control request meets the preset conditions, the car company server sends a car control notification message with a vehicle identification to the parking lot server. The car control notification message is used to instruct the parking lot server to control After that, the car company server receives the car control permission request carrying the vehicle identification sent by the parking lot server, and then the car company server generates a car control token including the digital signature of the car company server according to the car control permission request. The field server sends a vehicle control token to the vehicle to enable the parking lot server to control the vehicle. The vehicle can only execute the vehicle control instruction after verifying that the vehicle control instruction is authorized by the car company server, which reduces the potential safety hazard.

Description

A vehicle control method and related equipment

technical field

The present application relates to the field of Internet of Vehicles, and in particular, to a vehicle control method and related equipment.

Background technique

Automated Valet Parking (AVP) refers to a system in which the driver parks the car in a designated parking area in front of the parking lot and activates automatic valet parking. The AVP is guided by the parking lot, and the car automatically passes through the barrier and finds an empty parking space in the parking lot to park. When the driver presses the button on the mobile phone, the car can automatically return to the designated parking area.

The current AVP process is: the mobile phone initiates a parking request to the cloud platform, the cloud platform verifies the parking request, and after the verification, the cloud platform sends the parking request to the parking lot server, and then the parking lot server establishes a connection with the vehicle to be parked through the network Connected, the vehicle to be parked will park the car into the parking space under the guidance of the parking lot server.

The current AVP process has the following problems: the parking instruction received by the vehicle to be parked may not be issued by the parking lot server, and the vehicle to be parked may travel to other places under the guidance of unauthorized malicious instructions. security risks.

SUMMARY OF THE INVENTION

Embodiments of the present application provide a vehicle control method and related equipment. The vehicle can execute the vehicle control instruction only after verifying that the vehicle control instruction is a vehicle control instruction authorized by the vehicle enterprise server, thereby reducing potential safety hazards.

In view of this, a first aspect of the present application provides a vehicle control method, including:

The car company server receives the car control request sent by the terminal, wherein the car control request is used to request to control the vehicle associated with the terminal. If the car control request meets the preset conditions, the car company server sends a car control notification message to the parking lot server , wherein the car control notification message carries the vehicle identification of the vehicle, and the car control notification message is used to instruct the parking lot server to control the vehicle, and then the car company server receives the car control permission request sent by the parking lot server, wherein the car control permission request carries the vehicle's Vehicle identification, and then the car company server generates a car control token according to the car control permission request, wherein the car control token includes the digital signature of the car company server, and then the car company server sends the car control token to the vehicle through the parking lot server to Causes the parking lot server to control the vehicle.

In this embodiment, on the basis that the car control request initiated by the terminal meets the preset conditions, the car company server also needs to generate a car control token according to the car control permission request initiated by the parking lot server, and send the car control token to The parking lot server, and then the parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle, and then the vehicle verifies the vehicle control token. The vehicle control instruction authorized by the enterprise server is not an unauthorized malicious instruction, that is, in this solution, the vehicle can only execute the vehicle control instruction after verifying that the vehicle control instruction is authorized by the vehicle enterprise server, which reduces the potential safety hazard. .

Optionally, in some possible implementations,

The vehicle control token further includes at least one of a parking lot identification, a vehicle identification, a vehicle enterprise server identification, the authority of the vehicle control token, and the validity period of the vehicle control token.

In this embodiment, other information that may be included in the vehicle control token in addition to the digital signature of the vehicle enterprise server is listed, which improves the scalability of the solution.

Optionally, in some possible implementations,

The car control request includes vehicle identification, parking lot identification and parking location identification. After the car company server receives the car control request sent by the terminal, and before the car company server sends a car control notification message to the parking lot server, the method further includes:

The car company server sends a license plate request to the parking lot server, and then the car company server receives the license plate number of the vehicle sent by the parking lot server, and if the vehicle identification matches the license plate number, the car company server sends a car control notification message to the parking lot server.

In this embodiment, there is a unique correspondence between the vehicle identification and the license plate number. Therefore, the car company server can effectively prevent the license plate number recognized by the parking lot from being matched with the locally stored vehicle identification. Fake car control request.

Optionally, in some possible implementations,

Before the car company server receives the car control request sent by the terminal, the method further includes:

The car company server establishes the car company security channel with the vehicle, the parking lot server and the terminal respectively. The car company security channel is used to carry the information transmitted between the car company server and the vehicle, the parking lot server and the terminal respectively.

In this embodiment, a secure channel for transmitting information is established between the car company server and the vehicle, the parking lot server, and the terminal, which helps to improve the security of information transmission between all parties and avoid interference of malicious information.

Optionally, in some possible implementations,

Before the car company server receives the car control request sent by the terminal, the method further includes:

The car company server receives the vehicle identification from the vehicle through the car company security channel, and receives at least one of the driver's license, driving license and license plate number associated with the vehicle from the terminal through the car company security channel, and can also pass the car company security channel. The wireless network information associated with the parking lot, the parking lot identification, and the network communication address are received from the parking lot server.

In this embodiment, the car company server can obtain the information of each party from the vehicle, the terminal, and the parking lot server through the secure channel, so as to complete the mutual authentication and improve the integrity of the solution.

Optionally, in some possible implementations,

After the car company server receives the wireless network information, parking lot identification and network communication address associated with the parking lot from the parking lot server through the car company security channel, and before the car company server sends the car control token to the vehicle through the parking lot server, the method further includes: include:

The car company server sends the parking lot identification, the wireless network information of the parking lot, and the network communication address of the parking lot to the vehicle.

In this embodiment, the car company server may send the acquired information about the parking lot to the vehicle, so as to ensure that the vehicle can establish a secure communication with the parking lot and prevent the vehicle from connecting to a malicious server.

Optionally, in some possible implementations,

The car control request includes a parking request or a recall request. After the car company server sends the car control token to the vehicle through the parking lot server, the method further includes:

The car company server receives the car control response sent by the parking lot server. The car control response includes the vehicle identification, vehicle status information, and vehicle location information. The vehicle status information includes the parking status or recall status. After that, the car company server sends a control response to the terminal. car responds.

In this embodiment, after the vehicle executes the vehicle control command, the car company server can receive the car control response sent by the parking lot server to indicate the latest status and latest location of the vehicle, and the car company server will also update these information. The information is fed back to the terminal, so that the user can know the latest situation of his vehicle at the first time.

A second aspect of the present application provides a vehicle control method, including:

The parking lot server receives the car control notification message, and the car control notification message carries the vehicle identification. The car control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identification, and then the parking lot server sends a car control permission request to the car company server. , wherein the car control permission request carries the vehicle identification, and the parking lot server receives the car control token sent by the car company server, wherein the car control token includes the digital signature of the car company server, and then the parking lot server sends the vehicle control token to the vehicle. The car control command of the car token to control the vehicle.

Optionally, in some possible implementations,

The vehicle control token further includes at least one of a parking lot identification, a vehicle identification and a validity period of the vehicle control token.

Optionally, in some possible implementations,

Before the parking lot server receives the vehicle control notification message, the method further includes:

The parking lot server receives the license plate request sent by the car company server, and then the parking lot server identifies the license plate number of the vehicle, and then the parking lot server sends the license plate number to the car company server.

Optionally, in some possible implementations,

Before the parking lot server receives the vehicle control notification message, the method further includes:

The parking lot server identifies the license plate number of the vehicle;

The parking lot server queries the car company server associated with the license plate number;

The parking lot server sends the license plate number to the car company server.

In this embodiment, the car company server does not need to actively send a license plate request to the parking lot server, and the parking lot server can be triggered to actively identify the license plate number when the vehicle enters the designated position of the parking lot. Based on the process of this embodiment, the parking lot server does not Then, the license plate number is identified according to the received license plate request, which can effectively avoid the DDoS attack of some malicious platforms by sending a large number of license plate requests to the parking lot server.

Optionally, in some possible implementations,

The car control notification message received by the parking lot server includes:

The parking lot server receives the car control notification message sent by the car company server or the vehicle.

Optionally, in some possible implementations,

After the parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle, the method further includes:

The parking lot server sends a car control response to the car company server. The car control response includes vehicle identification, vehicle status information, and vehicle location information. The vehicle status information includes parking status or recall status.

A third aspect of the present application provides a vehicle control method, including:

The vehicle receives the car control command sent by the parking lot server, wherein the car control command includes a car control token, and the car control token includes the digital signature of the car company server, and then the vehicle verifies the car control token. If the car control token passes the verification , the vehicle executes the vehicle control command.

Optionally, in some possible implementations,

Vehicle Verification Vehicle Control Tokens include:

The vehicle obtains the public key certificate of the vehicle enterprise server from the vehicle enterprise server, and then the vehicle verifies the digital signature according to the public key certificate.

In this embodiment, a specific implementation manner of vehicle verification vehicle control token is provided, which improves the practicability of this solution.

Optionally, in some possible implementations,

The car control token further includes at least one of the parking lot identification, the vehicle identification and the validity period of the car control token;

Methods also include:

The vehicle verifies at least one of the parking lot identification, the vehicle identification, and the validity period of the vehicle control token.

Optionally, in some possible implementations,

Before the vehicle receives the vehicle control instruction sent by the parking lot server, the method further includes:

The vehicle receives the parking lot identification, the wireless network information of the parking lot, and the network communication address of the parking lot sent by the car company server.

Optionally, in some possible implementations,

Before the vehicle receives the vehicle control instruction sent by the parking lot server, the method further includes:

The vehicle sends a vehicle control notification message to the parking lot server, the vehicle control notification message carries the vehicle identification, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identification.

Optionally, in some possible implementations,

After the vehicle executes the vehicle control instruction, the method further includes:

The vehicle sends location information of the vehicle to the parking lot server, where the location information includes location information in a parking state or location information in a recall state.

A fourth aspect of the present application provides a car enterprise server, including:

a receiving unit, configured to receive a vehicle control request sent by the terminal, and the vehicle control request is used to request to control a vehicle associated with the terminal;

a sending unit, configured to send a car control notification message to the parking lot server if the car control request satisfies a preset condition, the car control notification message carrying the vehicle identification of the vehicle, and the car control notification message is used to instruct the parking lot server to control the vehicle;

The receiving unit is further configured to receive the car control permission request sent by the parking lot server, and the car control permission request carries the vehicle identification of the vehicle;

The processing unit is used to generate a car control token according to the request for the car control permission, and the car control token includes the digital signature of the car enterprise server;

The sending unit is further configured to send the vehicle control token to the vehicle through the parking lot server, so that the parking lot server controls the vehicle.

Optionally, in some possible implementations,

The vehicle control token further includes at least one of a parking lot identification, a vehicle identification, a vehicle enterprise server identification, the authority of the vehicle control token, and the validity period of the vehicle control token.

Optionally, in some possible implementations,

The car control request includes vehicle identification, parking lot identification and parking location identification. After the receiving unit receives the car control request sent by the terminal, before the sending unit sends the car control notification message to the parking lot server,

The sending unit is also used to send a license plate request to the parking lot server;

The receiving unit is further configured to receive the license plate number of the vehicle sent by the parking lot server;

The sending unit is specifically configured to send a vehicle control notification message to the parking lot server if the vehicle identification matches the license plate number.

Optionally, in some possible implementations,

Before the receiving unit receives the vehicle control request sent by the terminal,

The processing unit is also used to establish a car company security channel with the vehicle, the parking lot server and the terminal respectively, and the car company security channel is used to carry the information transmitted between the car company server and the vehicle, the parking lot server and the terminal respectively.

Optionally, in some possible implementations,

Before the receiving unit receives the vehicle control request sent by the terminal,

The receiving unit is also used to receive the vehicle identification from the vehicle through the safety channel of the car company;

Receive at least one of the driver's license, driving license and license plate number associated with the vehicle from the terminal through the car company's security channel;

Receive wireless network information, parking lot identification and network communication address associated with the parking lot from the parking lot server through the car company's secure channel.

Optionally, in some possible implementations,

After the receiving unit receives the wireless network information associated with the parking lot, the parking lot identification and the network communication address from the parking lot server through the security channel of the car company, and before the sending unit sends the vehicle control token to the vehicle through the parking lot server,

The sending unit is further configured to send the identification of the parking lot, the wireless network information of the parking lot and the network communication address of the parking lot to the vehicle.

Optionally, in some possible implementations,

The car control request includes a parking request or a recall request. After the sending unit sends the car control token to the vehicle through the parking lot server,

The receiving unit is further configured to receive the car control response sent by the parking lot server, where the car control response includes vehicle identification, vehicle status information and vehicle location information, and the vehicle status information includes the parking status or recall status;

The sending unit is also used for sending a vehicle control response to the terminal.

A fifth aspect of the present application provides a parking lot server, including:

a receiving unit, configured to receive a vehicle control notification message, where the vehicle control notification message carries a vehicle identification, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identification;

The sending unit is used to send the car control permission request to the car enterprise server, and the car control permission request carries the vehicle identification;

The receiving unit is used to receive the car control token sent by the car company server, and the car control token includes the digital signature of the car company server;

The sending unit is used for sending the vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle.

Optionally, in some possible implementations,

The vehicle control token further includes at least one of a parking lot identification, a vehicle identification and a validity period of the vehicle control token.

Optionally, in some possible implementations,

Before the receiving unit receives the vehicle control notification message,

The receiving unit is also used to receive the license plate request sent by the car company server;

The parking lot server further includes a processing unit for recognizing the license plate number of the vehicle;

The sending unit is also used to send the license plate number to the car company server.

Optionally, in some possible implementations,

Before the receiving unit receives the vehicle control notification message,

The parking lot server further includes a processing unit for recognizing the license plate number of the vehicle;

Query the car company server associated with the license plate number;

The sending unit is also used to send the license plate number to the car company server.

Optionally, in some possible implementations,

The receiving unit is specifically configured to receive the vehicle control notification message sent by the car company server or the vehicle.

Optionally, in some possible implementations,

After the sending unit sends the vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle,

The sending unit is further configured to send a vehicle control response to the car company server, where the vehicle control response includes vehicle identification, vehicle status information, and vehicle location information, and the vehicle status information includes a parking status or a recall status.

A sixth aspect of the present application provides a vehicle, comprising:

The receiving unit is used for receiving the car control instruction sent by the parking lot server, the car control instruction includes a car control token, and the car control token includes the digital signature of the car company server;

The processing unit is used to verify the vehicle control token;

If the vehicle control token is verified, the vehicle control instruction is executed.

Optionally, in some possible implementations,

The processing unit is specifically used to obtain the public key certificate of the car company server from the car company server; and verify the digital signature according to the public key certificate.

Optionally, in some possible implementations,

The car control token further includes at least one of the parking lot identification, the vehicle identification and the validity period of the car control token;

The processing unit is further configured to verify at least one of the parking lot identification, the vehicle identification and the validity period of the vehicle control token.

Optionally, in some possible implementations,

Before the receiving unit receives the car control instruction sent by the parking lot server,

The receiving unit is further configured to receive the parking lot identification, the wireless network information of the parking lot and the network communication address of the parking lot sent by the car company server.

Optionally, in some possible implementations,

Before the receiving unit receives the car control instruction sent by the parking lot server,

The vehicle further includes a sending unit for sending a car control notification message to the parking lot server, where the vehicle control notification message carries the vehicle identification, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identification.

Optionally, in some possible implementations,

After the processing unit executes the vehicle control command,

The vehicle further includes a sending unit for sending the location information of the vehicle to the parking lot server, where the location information includes location information of a parking state or location information of a recalled state.

A seventh aspect of the present application provides a car enterprise server, including:

processor, memory, bus and input and output interface;

program code is stored in the memory;

When the processor calls the program code in the memory, the process of any implementation in the first aspect is executed.

An eighth aspect of the present application provides a parking lot server, including:

processor, memory, bus and input and output interface;

program code is stored in the memory;

When the processor calls the program code in the memory, the process of any implementation in the second aspect is executed.

A ninth aspect of the present application provides a vehicle, comprising:

processor, memory, bus and input and output interface;

program code is stored in the memory;

When the processor calls the program code in the memory, the process of any implementation in the third aspect is executed.

A tenth aspect of the embodiments of the present application provides a computer-readable storage medium, including instructions, when the instructions are run on a computer, the computer is made to execute the process of the vehicle control method of the first aspect, the second aspect or the third aspect .

An eleventh aspect of the embodiments of the present application provides a computer program product including instructions, which, when run on a computer, enables the computer to execute the processes in the vehicle control method of the first, second or third aspects.

As can be seen from the above technical solutions, the embodiments of the present application have the following advantages:

In the embodiment of the present application, the car company server receives the car control request sent by the terminal, which is used to request to control the vehicle associated with the terminal. If the car control request satisfies the preset conditions, the car company server receives the car control request sent by the parking lot server. Permission request, the car control permission request carries the vehicle identification of the vehicle, and then the car company server generates a car control token according to the car control permission request. The car control token includes the digital signature of the car company server. The field server sends a vehicle control token to the vehicle to enable the parking lot server to control the vehicle. Based on the above description, on the basis that the car control request initiated by the terminal meets the preset conditions, the car company server also needs to generate a car control token according to the car control permission request initiated by the parking lot server, and send the car control token to the parking lot Then, the parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle, and then the vehicle verifies the vehicle control token. If the verification passes, it means that the vehicle control instruction received by the vehicle has passed the The vehicle control command authorized by the server is not an unauthorized malicious command, that is, in this solution, the vehicle can only execute the car control command after verifying that the car control command is authorized by the car company server, which reduces security risks.

Description of drawings

Fig. 1 is the scene schematic diagram of automatic valet parking;

2 is a schematic diagram of a network scenario applied by the application;

FIG. 3 is a schematic diagram of an embodiment of the vehicle control method of the application;

4 is a schematic diagram of another embodiment of the vehicle control method of the application;

FIG. 5 is a schematic diagram of another embodiment of the vehicle control method of the application;

FIG. 6 is a schematic diagram of an embodiment of the application for a car company server;

FIG. 7 is a schematic diagram of an embodiment of the parking lot server of the application;

FIG. 8 is a schematic diagram of an embodiment of the vehicle of the application;

FIG. 9 is a schematic structural diagram of the processing device of the present application.

Detailed ways

Embodiments of the present application provide a vehicle control method and related equipment. The vehicle can execute the vehicle control instruction only after verifying that the vehicle control instruction is a vehicle control instruction authorized by the vehicle enterprise server, thereby reducing potential safety hazards.

With the continuous development of Internet technology, the Internet of Vehicles has become more and more closely related to people's daily travel. The Internet of Vehicles is a huge interactive network composed of information such as vehicle location, speed and route. Through the Global Positioning System (GPS), Radio Frequency Identification (RFID), sensors, camera image processing and other devices, the vehicle can complete the collection of its own environment and status information; through Internet technology, all vehicles can All kinds of information transmissions are gathered to the central processing unit; through computer technology, the information of these large numbers of vehicles can be analyzed and processed, so as to calculate the best route for different vehicles, report road conditions in time and arrange signal light cycles. The Internet of Vehicles is based on the intra-vehicle network, the inter-vehicle network and the in-vehicle mobile Internet. According to the agreed communication protocols and data exchange standards, it can be realized between vehicles and vehicles, between vehicles and roads, between vehicles and pedestrians, and between vehicles and pedestrians. Wireless communication and information exchange between the Internet and so on.

This application is mainly applied to a specific scenario in the Internet of Vehicles, namely the Automated Valet Parking (AVP) scenario. As shown in Figure 1, AVP refers to the driver parks the car in the designated parking area in front of the parking lot and Activate the system for automatic valet parking. AVP is guided by the parking lot. The car automatically passes through the gate and finds an empty parking space in the parking lot to park. When the driver presses the button on the mobile phone, the car can automatically return to the designated parking area. Compared with traditional manual parking, AVP has the following advantages: relieve the burden of personal parking, save time, improve the efficiency of parking lot utilization, blind spot detection, etc. AVP includes two major application scenarios: private car valet parking and shared car parking and pickup.

An existing AVP process is: the mobile phone initiates a parking request to the cloud platform, the cloud platform verifies the parking request, and after the verification, the cloud platform sends the parking request to the parking lot server, and then the parking lot server passes the network A connection is established with the vehicle to be parked, and the vehicle to be parked parks the car into the parking space under the guidance of the parking lot server. It can be seen that the existing AVP mainly verifies the parking request initiated by the user, that is, as long as the identity information of the initiator of the parking request is verified, the parking lot server can issue a parking instruction to the vehicle to be parked to perform the parking operation. , but the parking instruction received by the vehicle to be parked may not be issued by the parking lot server, and the vehicle to be parked may travel to other places under the guidance of unauthorized malicious instructions, which poses a greater safety hazard.

To this end, the embodiments of the present application provide a vehicle control method. The vehicle can execute the vehicle control instruction only after verifying that the vehicle control instruction is a vehicle control instruction authorized by the vehicle enterprise server, thereby reducing potential safety hazards.

The multi-party interaction scenario involved in this application can be as shown in Figure 2, including vehicles, terminals, car company servers and parking lot servers, and the parties conduct data interaction through the Internet, in which the user can initiate data to the car company server through the terminal. For a car control request, the car company server can be a server controlled by the car company that produces the vehicle and used to remotely manage vehicle status information. The car company server needs to authenticate the terminal and the vehicle. After the verification is passed, it will notify the parking lot server. And according to the application permission request of the parking lot server, the parking lot server is given the permission to control the car, and finally after the vehicle verifies the car control command issued by the parking lot server (verifies whether the car control command has been authorized by the car company server), the vehicle is The car control command can be executed to complete automatic parking or car pickup.

Referring to FIG. 3 below, an embodiment of the vehicle control method of the embodiment of the present application includes:

301. The terminal sends a car control request to the car company server.

In this embodiment, the terminal may send a car control request to the car company server through an application program bound to the car company server. It can be understood that the car control request can include a parking request or a recall request according to different user needs. If the vehicle is in the waiting state, the user can use the terminal to initiate a parking request to the car company server. The user can use the terminal to initiate a recall request to the car company server. Specifically, the terminal can display the parking lot logo on the interface according to the GPS information, the user can select the parking lot on the interface, and after the parking lot is determined, the terminal interface can further display the entrance logo of the parking lot (which can be one or more The user then selects the entrance to enter the parking lot, and then the terminal sends a car control request carrying the vehicle identification, the parking lot identification and the parking lot entrance identification to the car company server. It can be understood that the vehicle identification in this application may be a vehicle identification number (VIN) uniquely corresponding to the vehicle.

It should be noted that the terminal in the embodiments of the present application may be referred to as user equipment (user equipment, UE), mobile station (mobile station, MS), mobile terminal (mobile terminal), intelligent terminal, etc. A radio access network (RAN) communicates with one or more core networks. For example, the terminal device can be a mobile phone (or "cellular" phone), a computer with a mobile terminal, etc., and the terminal device can also be a portable, pocket-sized, hand-held, computer-built or vehicle-mounted mobile device and future NR networks The terminal equipment in the RA, which exchanges voice or data with the radio access network, will be introduced in this application as a UE in a general sense.

302. The car company server determines whether the vehicle control request satisfies the preset condition, and if not, executes step 303, and if yes, executes step 304.

In this embodiment, after receiving the car control request, the car company server needs to verify the car control request, that is, to determine whether the car control request satisfies a preset condition. Specifically, the car company server can complete mutual authentication with the vehicle, the parking lot server and the terminal in advance. When the car company server receives the car control request, it can combine the information about the terminal and the parking lot carried in the car control request to verify whether the Pre-completed authentication information matches.

303. The car company server rejects the car control request.

In this embodiment, if the car control request does not meet the preset conditions, the car company server rejects the car control request.

304. The car company server sends a car control notification message carrying the vehicle identification to the parking lot server.

In this embodiment, if the car control request satisfies the preset conditions, the car company server sends a car control notification message carrying the vehicle identification to the parking lot server, which is used to indicate that the parking lot can prepare to control the vehicle, and the parking lot server can control the vehicle according to the vehicle identification Determine the vehicle corresponding to the control request.

305 . The parking lot server sends a request for permission to control the vehicle carrying the vehicle identification to the server of the vehicle enterprise.

In this embodiment, after receiving the car control notification message, the parking lot server will send a car control permission request carrying the vehicle identification to the car company server. It is understandable that since the parking lot server may receive a car control notification message sent by a server pretending to be a car company, in order to reduce potential safety hazards, the parking lot server needs to apply for the car control permission to the car company server corresponding to the vehicle, that is, to the car company. The server sends a vehicle control permission request carrying the vehicle identification.

306. The car company server generates a car control token.

In this embodiment, after the car company service receives the car control permission request sent by the parking lot server, it can first verify whether the vehicle corresponding to the vehicle identification carried in the car control permission request is in the state of the vehicle to be controlled. The recorded vehicle is indeed in the state to be controlled, and the car company server will generate a car control token. The car control token includes the digital signature of the car company server. In addition, the car control token can also include parking. At least one of the field identification, vehicle identification, car enterprise server identification, the authority of the car control token, and the validity period of the car control token, wherein the car enterprise server identification can indicate the generator of the car control token, the parking lot server It can indicate the applicant of the car control token, the vehicle identification can indicate the recipient of the car control token, the authority of the car control token is used to indicate the purpose of the car control token (for example, used for car control), and the car control token can be used to control the car. The validity period of the token can indicate how long the car control token can remain valid. If the car control does not end within the validity period of a car control token, in order to ensure the safety of the car control, the parking lot server needs to repeat the above step 305 , and add the expired car control token to the newly sent car control permission request to prove that this car control permission request is a new request based on the previous car control permission request.

It should be noted that a digital signature is a digital string that can only be generated by the sender of the information and cannot be forged by others. This digital string is also an effective proof of the authenticity of the information sent by the sender of the information. Specifically, the car company server uses a hash function to generate a digest of the car control token, and then encrypts the digest with its own private key. The encrypted digest will be sent as a digital signature together with the response containing the car control token. to the parking lot server. The digital signature can confirm that the message is indeed signed and sent by the car company server. Because other people cannot obtain the private key of the car company server, they cannot fake the signature of the car company server. In addition, the digital signature can determine the integrity of the car control token. Because the characteristic of the digital signature is that it represents the characteristics of the car control token, if the car control token changes, the value of the digital signature will also change.

307. The car company server sends a car control permission response carrying the car control token to the parking lot server.

308. The parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle.

In this embodiment, after receiving the vehicle control token issued by the car company server, the parking lot server can add the vehicle control token to the vehicle control instruction and forward it to the vehicle. It can be understood that, the vehicle control instruction may include at least one item of information such as the destination position, speed, and direction that the vehicle needs to drive into, which is not limited here.

309. The vehicle verifies whether the vehicle control token is legal, if not, execute step 310, if yes, execute step 311.

In this embodiment, the vehicle needs the vehicle control token carried in the vehicle control instruction for verification. Specifically, in the process of mutual authentication with the car company server, the vehicle is pre-configured with the car company server logo and the car company server's public key certificate, and the vehicle can verify the car company server's digital signature according to the car company server's public key certificate. For example, , the vehicle first uses the same hash function as the car company server to calculate the digest in the received car control token, and then uses the car company server's public key certificate to decrypt the digital signature to obtain another digest. If these two If the digest is the same, the vehicle can confirm that the digital signature belongs to the car company server, and indicates that the received information is complete and has not been modified during the transmission process. In addition, the vehicle can also verify other information in the car control token such as the parking lot identification, the vehicle identification, the car enterprise server identification, the authority of the vehicle control token, and the validity period of the vehicle control token.

310. The vehicle refuses the vehicle control instruction.

In this embodiment, if the vehicle control token fails the verification of the vehicle, the vehicle rejects the vehicle control instruction.

311. The vehicle executes the vehicle control instruction.

In this embodiment, if the vehicle control token passes the verification of the vehicle, the vehicle executes the vehicle control instruction issued by the parking lot server until the vehicle enters the predetermined destination position.

In the embodiment of the present application, the car company server receives the car control request sent by the terminal, which is used to request to control the vehicle associated with the terminal. If the car control request satisfies the preset conditions, the car company server receives the car control request sent by the parking lot server. Permission request, the car control permission request carries the vehicle identification of the vehicle, and then the car company server generates a car control token according to the car control permission request. The car control token includes the digital signature of the car company server. The field server sends a vehicle control token to the vehicle to enable the parking lot server to control the vehicle. Based on the above description, on the basis that the car control request initiated by the terminal meets the preset conditions, the car company server also needs to generate a car control token according to the car control permission request initiated by the parking lot server, and send the car control token to the parking lot Then, the parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle, and then the vehicle verifies the vehicle control token. If the verification passes, it means that the vehicle control instruction received by the vehicle has passed the The vehicle control command authorized by the server is not an unauthorized malicious command, that is, in this solution, the vehicle can only execute the car control command after verifying that the car control command is authorized by the car company server, which reduces security risks.

The above embodiment shown in FIG. 3 is further supplemented and improved by another embodiment below.

Referring to FIG. 4 , another embodiment of the vehicle control method according to the embodiment of the present application includes:

401. The car company server mutually authenticates the vehicle, the parking lot server, and the terminal, respectively.

In this embodiment, before executing car control, the car company server needs to complete mutual authentication with the devices of all parties. First, the car company server establishes a secure channel with the vehicle, the parking lot server, and the terminal, and the secure channel is used to carry all parties. information transmitted between. The process of mutual authentication is described below: First, the vehicle can be registered on the car company server, the car company server obtains and stores the vehicle identification, the vehicle obtains and stores the car company server ID and the car company server's public key certificate; In the second aspect, the user operates the terminal to register on the car company server, and the terminal uploads information such as vehicle identification, license plate number, user account, driving license, and driver's license. And the license plate number binding; in the third aspect, the car company server obtains information such as the wireless network information of the parking lot, the parking lot identification, and the network communication address of the parking lot.

It can be understood that, the above-mentioned security channel may specifically refer to a transmission channel of messages between two parties established through a security mechanism such as a transport layer security protocol (Transport Layer Security, TLS).

402. The terminal sends a car control request to the car company server.

In this embodiment, step 402 is similar to step 301 in the embodiment shown in FIG. 3 , and details are not repeated here.

403. The car company server sends a license plate request to the parking lot server.

In this embodiment, the car company server determines the parking lot where the vehicle is located and the specific parking lot entrance according to the parking lot ID and the parking lot entrance ID in the car control request, and then the car company server sends the parking lot ID and parking lot to the parking lot server. License plate requests for field entrance signs.

404. The parking lot server identifies the license plate number.

In this embodiment, the parking lot server first verifies whether the parking lot identification carried in the license plate request matches, and if it matches, the camera at the corresponding parking lot entrance is called to identify the license plate number of the vehicle to be controlled according to the parking lot entrance identification carried in the license plate request.

405. The parking lot server sends a license plate response carrying the license plate number to the car enterprise server.

406. The car company server verifies whether the license plate number matches the vehicle identification, if not, execute step 407, if yes, execute step 408.

In this embodiment, after receiving the license plate number fed back by the parking lot server, the car company server will further verify whether the license plate number matches the vehicle identification obtained in the second aspect of step 401. It is understandable that there is a unique correspondence between the vehicle identification and the license plate number, so the car company server can effectively prevent the license plate number recognized by the parking lot and the locally stored vehicle identification by verifying whether the license plate number is matched with the locally stored vehicle identification. Fake car control request.

407. The car company server rejects the car control request.

In this embodiment, if the car company server verifies that the license plate number does not match the vehicle identification, it means that the car control request is a fake car control request or a car control request sent by a set of license plates, then the car company server will reject the car control request ask.

408. The car company server sends a car control preparation message to the vehicle.

In this embodiment, if the car company server verifies that the license plate number matches the vehicle identifier, the car company server will send a car control preparation message to the vehicle to instruct the vehicle to prepare for car control, wherein the car control preparation message can carry a parking lot Identification, wireless network information of the parking lot, and network communication address of the parking lot. It can be understood that the network communication address of the parking lot may be an Internet Protocol (Internet Protocol, IP) address or a domain name of the parking lot.

409. The vehicle connects to the wireless network of the parking lot.

In this embodiment, the vehicle connects to the wireless network of the parking lot according to the wireless network information in the vehicle control preparation message, and establishes a secure channel with the parking lot server according to the network communication address in the vehicle control preparation message, which is used to carry the vehicle and the parking lot. Messages transmitted between farm servers.

410. The vehicle sends a vehicle control preparation response to the car company server.

411. The vehicle or vehicle enterprise server sends a vehicle control notification message carrying the vehicle identifier to the parking lot server.

In this embodiment, both the vehicle and the car company server can send a car control notification message to the parking lot server to indicate that the parking lot can prepare to control the vehicle, and the parking lot server can determine the vehicle corresponding to the car control request according to the vehicle identifier. Specifically, when the car company server receives the car control preparation response sent by the vehicle, it can trigger the car company server to send a car control notification message to the parking lot server. The server sends a car control notification message.

412-418. In this embodiment, steps 412-418 are similar to steps 305-311 in the above-mentioned embodiment shown in FIG. 3, and are not repeated here.

419. The vehicle sends a vehicle control response to the car enterprise server through the parking lot server.

In this embodiment, after the vehicle executes the vehicle control command, it first sends a vehicle control response carrying location information to the parking lot to indicate the current location of the vehicle, and then the parking lot server sends the vehicle identification and location information to the car company server. The vehicle control response is used to indicate the vehicle that has completed the vehicle control and its corresponding current position.

420. The car company server sends a notification of successful car control to the terminal.

In this embodiment, after receiving the car control response, the car company server will locally update the state information and location information of the vehicle, wherein the state information of the vehicle may be a parked state or a recalled state. Depending on the type of request (parking request or recall request), the car company server notifies the terminal successfully through the control of the vehicle and feeds back the status information of the vehicle (parked or recalled) and vehicle location information to the terminal.

The above-mentioned embodiment shown in FIG. 4 describes the application scenario in which the car company server asks the parking lot server for the license plate number captured by the camera. However, based on this scenario, the parking lot server may suffer from a distributed denial of service attack. attack, DDoS), that is, some malicious platforms can use reasonable service requests to send a large number of interference messages to the parking lot server to occupy a large number of service resources of the parking lot server, so that legitimate users cannot get service responses, so the following introduction Another application scenario of the present application can effectively prevent the parking lot server from being subjected to DDoS attacks.

Referring to FIG. 5 , another embodiment of the vehicle control method of the embodiment of the present application includes:

501. The car company server mutually authenticates the vehicle, the parking lot server, and the terminal, respectively.

In this embodiment, step 501 is similar to step 401 in the embodiment shown in FIG. 4 , and details are not repeated here.

502. The vehicle enters the designated position.

In this embodiment, the vehicle needs to drive into a specified position to trigger the parking lot server to call the camera to identify the license plate number, and the specified position may be a specified parking space or a specified parking lot entrance set in the parking lot within the coverage of the camera. For example, if the user wishes to park, the designated location is the designated parking lot entrance, and if the user wishes to recall the vehicle, the designated location is the designated parking space.

503. The parking lot server identifies the license plate number.

In this embodiment, when the parking lot camera detects that the vehicle has entered the designated position, the camera can upload the captured license plate number to the parking lot server.

504. The parking lot server determines a car company server corresponding to the vehicle.

In this embodiment, the car company server can query the car model brand corresponding to the license plate number through the public security network, and further determine the car company server corresponding to the car model brand. It can be understood that the camera can also upload the captured car logo to the parking lot server, and the parking lot server will match the locally stored car logo, and then determine the car company server corresponding to the successfully matched car logo.

505. The parking lot server sends a license plate report message to the car enterprise server.

In this embodiment, after the parking lot server determines the car company server, it can send the recognized license plate number to the car company server through a license plate report message, so that the car company server stores the license plate number. It can be understood that, the license plate report message may also carry the above-mentioned identifier of the designated location to indicate the current state information of the vehicle (to be parked or to be recalled) and location information.

506. The terminal sends a car control request to the car company server.

In this embodiment, step 506 is similar to step 301 in the embodiment shown in FIG. 3 , and details are not repeated here.

It should be noted that the steps after step 506 in this embodiment are similar to steps 406 to 420 in the embodiment shown in FIG. 4 , and details are not repeated here.

As can be seen from the above description, the difference between this embodiment and the embodiment shown in FIG. 4 is that the car company server does not need to actively send a license plate request to the parking lot server, and the parking lot can be triggered when the vehicle enters the designated position of the parking lot. The server actively recognizes the license plate number, then based on the process of this embodiment, the parking lot server no longer recognizes the license plate number according to the received license plate request, which can effectively prevent some malicious platforms from sending a large number of license plate requests to the parking lot server. DDoS attacks .

The vehicle control method of the embodiment of the present application is further described below through some practical application scenarios:

Application Scenario 1:

Suppose user A drives into the designated entrance of the parking lot and initiates a parking request to the car company server through his mobile phone. After receiving the parking request, the car company server initiates a license plate request to the parking lot server, and then the parking lot server calls the camera at the designated entrance. Photograph the license plate number of user A's vehicle and feed back the photographed license plate number to the car company server. The car company server verifies that the license plate number matches the vehicle identification carried in the parking request, and then the car company server can instruct the vehicle to connect to the parking lot's wireless network. After that, the parking lot server receives the car control notification message sent by the vehicle or the car company server, and initiates a car control permission request to the car company server. The car company server generates a car control token with its own digital signature and feeds it back to the parking lot server. The parking lot server is granted the permission to control the car, and further, the parking lot server sends a parking instruction with a control token to the vehicle of user A. After the vehicle of user A verifies that the control token is legal, the parking instruction can be executed. The parking instruction enters the designated parking space. After the vehicle is parked, the car company server can feed back the message of the successful parking of the vehicle to user A's mobile phone.

Application Scenario 2:

Assuming that user A's vehicle has parked in the designated parking space of the parking lot, the camera located in the designated parking space can feed back the license plate number of user A's vehicle captured to the parking lot server, and the parking lot server will report the license plate number of user A to the parking lot server. The car company server, when user A initiates a recall request to the car company server through the mobile phone, the car company server verifies that the vehicle identification carried in the recall request matches the license plate number captured by the parking lot camera, and then the parking lot server receives the vehicle or car. The car control notification message sent by the enterprise server, and initiates a car control permission request to the car company server. The car company server generates a car control token with its own digital signature and feeds it back to the parking lot server to grant the parking lot server control permission. Further users Vehicle A has received two recall instructions (recall instruction 1 and recall instruction 2). The vehicle needs to verify whether the vehicle control token carried in the two recall instructions is legal according to the public key certificate of the car company server obtained in advance. It is found that the recall instruction 1 is not a recall instruction authorized by the car company server, and the recall instruction 2 is a recall instruction authorized by the car company server. Therefore, the vehicle rejects the recall instruction 1 and executes the recall instruction 2. The vehicle drives to the designated recall location according to the recall instruction 2. , after the vehicle arrives at the recall location, the car company server can feed back the message of the successful recall of the vehicle to user A's mobile phone.

Application Scenario 3:

Assume that user A is the owner of a Mercedes-Benz car, user B is the owner of a BMW car, and user A has copied the license plate of user B's vehicle (user A is the owner of the copy), but the license plate registered by user A's mobile phone on the Mercedes-Benz car company server does not match. It is not the imitation license plate, then when user A initiates a car control request to the Mercedes-Benz car company server through the mobile phone, the Mercedes-Benz car company server initiates a license plate request to the parking lot server, and the parking lot server feeds back the imitation license plate number captured by the camera to Mercedes-Benz The car company server of the Mercedes-Benz car company, and then the car company server of Mercedes-Benz verifies whether the vehicle identification of the Mercedes-Benz car carried in the car control request matches the license plate number photographed in the parking lot. The Mercedes-Benz car company server determines that user A's Mercedes-Benz car is a licensed car, and then the Mercedes-Benz car company server rejects the car control request initiated by user A's mobile phone.

The vehicle control method in the embodiment of the present application has been described above, and the vehicle enterprise server in the embodiment of the present application is described below:

Referring to FIG. 6 , an embodiment of the car company server in the embodiment of the present application includes:

A receiving unit 601, configured to receive a vehicle control request sent by a terminal, where the vehicle control request is used to request to control a vehicle associated with the terminal;

The sending unit 602 is configured to send a car control notification message to the parking lot server if the car control request satisfies a preset condition, the car control notification message carries the vehicle identification of the vehicle, and the car control notification message is used to instruct the parking lot server to control the vehicle;

The receiving unit 601 is further configured to receive a car control permission request sent by the parking lot server, and the car control permission request carries the vehicle identification of the vehicle;

The processing unit 603 is configured to generate a vehicle control token according to the request for the permission to control the vehicle, and the vehicle control token includes the digital signature of the vehicle enterprise server;

The sending unit 602 is further configured to send a vehicle control token to the vehicle through the parking lot server, so that the parking lot server controls the vehicle.

In the embodiment of the present application, the receiving unit 601 receives a car control request sent by the terminal, which is used to request to control a vehicle associated with the terminal. If the car control request satisfies a preset condition, the receiving unit 601 receives the car control request sent by the parking lot server. Permission request, the vehicle control permission request carries the vehicle identification of the vehicle, and then the processing unit 603 generates a vehicle control token according to the vehicle control permission request, and the vehicle control token includes the digital signature of the car company server, and further sends the unit 602 through the parking The field server sends a vehicle control token to the vehicle to enable the parking lot server to control the vehicle. Based on the above description, on the basis that the car control request initiated by the terminal meets the preset conditions, the car company server also needs to generate a car control token according to the car control permission request initiated by the parking lot server, and send the car control token to the parking lot Then, the parking lot server sends the vehicle control instruction carrying the vehicle control token to the vehicle, and then the vehicle verifies the vehicle control token. If the verification passes, it means that the vehicle control instruction received by the vehicle has passed the The vehicle control command authorized by the server is not an unauthorized malicious command, that is, in this solution, the vehicle can only execute the car control command after verifying that the car control command is authorized by the car company server, which reduces security risks.

Optionally, the vehicle control token further includes at least one of a parking lot identification, a vehicle identification, a vehicle enterprise server identification, the authority of the vehicle control token, and a validity period of the vehicle control token.

Optionally, the car control request includes a vehicle identification, a parking lot identification and a parking location identification. After the receiving unit 601 receives the car control request sent by the terminal, before the sending unit 602 sends a car control notification message to the parking lot server,

The sending unit 602 is further configured to send a license plate request to the parking lot server;

The receiving unit 601 is further configured to receive the license plate number of the vehicle sent by the parking lot server;

The sending unit 602 is specifically configured to send a vehicle control notification message to the parking lot server if the vehicle identifier matches the license plate number.

Optionally, before the receiving unit 601 receives the vehicle control request sent by the terminal,

The processing unit 603 is further configured to establish a car company security channel with the vehicle, the parking lot server and the terminal respectively, and the car company security channel is used to carry the information transmitted between the car company server and the vehicle, the parking lot server and the terminal respectively.

Optionally, before the receiving unit 601 receives the vehicle control request sent by the terminal,

The receiving unit 601 is further configured to receive the vehicle identification from the vehicle through the safety channel of the vehicle manufacturer;

Receive at least one of the driver's license, driving license and license plate number associated with the vehicle from the terminal through the car company's security channel;

Receive wireless network information, parking lot identification and network communication address associated with the parking lot from the parking lot server through the car company's secure channel.

Optionally, after the receiving unit 601 receives the wireless network information associated with the parking lot, the parking lot identification and the network communication address from the parking lot server through the car company security channel, the sending unit 602 sends the vehicle control token to the vehicle through the parking lot server. Before,

The sending unit 602 is further configured to send the identification of the parking lot, the wireless network information of the parking lot and the network communication address of the parking lot to the vehicle.

Optionally, the car control request includes a parking request or a recall request. After the sending unit 602 sends the car control token to the vehicle through the parking lot server,

The receiving unit 601 is further configured to receive a car control response sent by the parking lot server, where the car control response includes vehicle identification, vehicle status information and vehicle location information, and the vehicle status information includes a parking status or a recall status;

The sending unit 602 is further configured to send a vehicle control response to the terminal.

The parking lot server in the embodiment of the present application is described below:

Referring to FIG. 7, an embodiment of the parking lot server in the embodiment of the present application includes:

A receiving unit 701, configured to receive a vehicle control notification message, where the vehicle control notification message carries a vehicle identification, and the vehicle control notification message is used to instruct a parking lot server to control a vehicle associated with the vehicle identification;

A sending unit 702, configured to send a vehicle control permission request to the car company server, where the vehicle control permission request carries a vehicle identification;

A receiving unit 701, configured to receive a vehicle control token sent by a car company server, where the car control token includes a digital signature of the car company server;

The sending unit 702 is configured to send a vehicle control instruction carrying a vehicle control token to the vehicle to control the vehicle.

Optionally, the vehicle control token further includes at least one of a parking lot identification, a vehicle identification and a validity period of the vehicle control token.

Optionally, before the receiving unit 701 receives the vehicle control notification message,

The receiving unit 701 is further configured to receive the license plate request sent by the car company server;

The parking lot server further includes a processing unit 703 for identifying the license plate number of the vehicle;

The sending unit 702 is further configured to send the license plate number to the car company server.

Optionally, before the receiving unit 701 receives the vehicle control notification message,

The parking lot server further includes a processing unit 703 for identifying the license plate number of the vehicle;

Query the car company server associated with the license plate number;

The sending unit 702 is further configured to send the license plate number to the car company server.

Optionally, the receiving unit 701 is specifically configured to receive a vehicle control notification message sent by a car company server or a vehicle.

Optionally, after the sending unit 702 sends the vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle,

The sending unit 702 is further configured to send a vehicle control response to the car company server, where the vehicle control response includes vehicle identification, vehicle status information, and vehicle location information, and the vehicle status information includes parking status or recall status.

The vehicles in the embodiments of the present application are described below:

Referring to FIG. 8, an embodiment of the vehicle in the embodiment of the present application includes:

A receiving unit 801 is configured to receive a car control instruction sent by a parking lot server, where the car control instruction includes a car control token, and the car control token includes a digital signature of the car company server;

a processing unit 802, configured to verify the vehicle control token;

If the vehicle control token is verified, the vehicle control instruction is executed.

Optionally, the processing unit 802 is specifically configured to obtain the public key certificate of the car company server from the car company server; and verify the digital signature according to the public key certificate.

Optionally, the vehicle control token further includes at least one of the parking lot identification, the vehicle identification and the validity period of the vehicle control token;

The processing unit 802 is further configured to verify at least one of the parking lot identification, the vehicle identification and the validity period of the vehicle control token.

Optionally, before the receiving unit 801 receives the car control instruction sent by the parking lot server,

The receiving unit 801 is further configured to receive the identification of the parking lot, the wireless network information of the parking lot, and the network communication address of the parking lot sent by the car company server.

Optionally, before the receiving unit 801 receives the car control instruction sent by the parking lot server,

The vehicle further includes a sending unit 803 for sending a car control notification message to the parking lot server, where the vehicle control notification message carries the vehicle identification, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identification.

Optionally, after the processing unit 802 executes the vehicle control instruction,

The vehicle further includes a sending unit 803 for sending the location information of the vehicle to the parking lot server, where the location information includes location information of a parking state or location information of a recall state.

The car company server, the parking lot server, and the vehicle in the embodiment of the present application are described above from the perspective of modular functional entities, and the car company server, the parking lot server, and the vehicle in the embodiment of the present application are described below from the perspective of hardware processing. . It can be understood that the above-mentioned car company servers, parking lot servers and vehicles all have built-in processing devices for executing the processes in the above-mentioned embodiments shown in FIG. 3 to FIG. 5 , and the car company servers, parking lot servers and vehicles The structure of the processing device is similar, and the structure of the processing device is uniformly described below:

Referring to FIG. 9 , the processing apparatus in this application includes one or more processors 901 , a memory 902 and a communication interface 903 , wherein the processor 901 , the memory 902 and the communication interface 903 are connected to each other through a bus.

The memory 902 may be short-term storage or persistent storage for storing related instructions and data, and the communication interface 903 is used for receiving and sending data. Further, the processor 901 may be configured to communicate with the memory 902 to execute a series of instruction operations in the memory 902 .

Specifically, the processing device may be used to execute all or part of the actions performed by the car company server, the parking lot server and the vehicle in the embodiments shown in FIG. 3 to FIG. 5 .

It should be understood that the processor mentioned in the embodiments of the present application may be a central processing unit (Central Processing Unit, CPU), and may also be other general-purpose processors, digital signal processors (Digital Signal Processors, DSP), application specific integrated circuits (Application Specific Integrated Circuits) Integrated Circuit, ASIC), off-the-shelf Programmable Gate Array (Field Programmable Gate Array, FPGA) or other programmable logic devices, discrete gate or transistor logic devices, discrete hardware components, etc. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.

It should also be understood that the memory mentioned in the embodiments of the present application may be volatile memory or non-volatile memory, or may include both volatile and non-volatile memory. The non-volatile memory may be Read-Only Memory (ROM), Programmable ROM (PROM), Erasable Programmable Read-Only Memory (EPROM), Erasable Programmable Read-Only Memory (EPROM), Erase programmable read-only memory (Electrically EPROM, EEPROM) or flash memory. The volatile memory may be random access memory (RAM), which is used as an external cache. By way of example and not limitation, many forms of RAM are available, such as Static RAM (SRAM), Dynamic RAM (DRAM), Synchronous DRAM, SDRAM), double data rate synchronous dynamic random access memory (Double DataRate SDRAM, DDR SDRAM), enhanced synchronous dynamic random access memory (Enhanced SDRAM, ESDRAM), synchronous link dynamic random access memory (Synchlink DRAM, SLDRAM) And direct memory bus random access memory (Direct Rambus RAM, DR RAM).

It should be noted that when the processor is a general-purpose processor, DSP, ASIC, FPGA or other programmable logic devices, discrete gate or transistor logic devices, or discrete hardware components, the memory (storage module) is integrated in the processor.

Those skilled in the art can clearly understand that, for the convenience and brevity of description, the specific working process of the system, device and unit described above may refer to the corresponding process in the foregoing method embodiments, which will not be repeated here.

In the several embodiments provided in this application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the apparatus embodiments described above are only illustrative. For example, the division of the units is only a logical function division. In actual implementation, there may be other division methods. For example, multiple units or components may be combined or Can be integrated into another system, or some features can be ignored, or not implemented. On the other hand, the shown or discussed mutual coupling or direct coupling or communication connection may be through some interfaces, indirect coupling or communication connection of devices or units, and may be in electrical, mechanical or other forms.

The units described as separate components may or may not be physically separated, and components displayed as units may or may not be physical units, that is, may be located in one place, or may be distributed to multiple network units. Some or all of the units may be selected according to actual needs to achieve the purpose of the solution in this embodiment.

In addition, each functional unit in each embodiment of the present application may be integrated into one processing unit, or each unit may exist physically alone, or two or more units may be integrated into one unit. The above-mentioned integrated units may be implemented in the form of hardware, or may be implemented in the form of software functional units.

The integrated unit, if implemented in the form of a software functional unit and sold or used as an independent product, may be stored in a computer-readable storage medium. Based on this understanding, the technical solutions of the present application can be embodied in the form of software products in essence, or the parts that contribute to the prior art, or all or part of the technical solutions, and the computer software products are stored in a storage medium , including several instructions for causing a computer device (which may be a personal computer, a server, or a network device, etc.) to execute all or part of the steps of the methods described in the various embodiments of the present application. The aforementioned storage medium includes: U disk, removable hard disk, read-only memory (ROM, read-only memory), random access memory (RAM, random access memory), magnetic disk or optical disk and other media that can store program codes.

As mentioned above, the above embodiments are only used to illustrate the technical solutions of the present application, but not to limit them; although the present application has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand: The technical solutions recorded in the embodiments are modified, or some technical features thereof are equivalently replaced; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the spirit and scope of the technical solutions in the embodiments of the present application.

Claims (43)

1. A vehicle control method characterized by comprising:

the method comprises the steps that a vehicle-enterprise server receives a vehicle control request sent by a terminal, wherein the vehicle control request is used for requesting to control a vehicle related to the terminal;

if the vehicle control request meets a preset condition, the vehicle enterprise server sends a vehicle control notification message to a parking lot server, wherein the vehicle control notification message carries a vehicle identifier of the vehicle, and the vehicle control notification message is used for indicating the parking lot server to control the vehicle;

the vehicle-enterprise server receives a vehicle control authority request sent by a parking lot server, wherein the vehicle control authority request carries a vehicle identifier of the vehicle;

the vehicle-enterprise server generates a vehicle control token according to the vehicle control authority request, wherein the vehicle control token comprises a digital signature of the vehicle-enterprise server;

and the vehicle-enterprise server sends the vehicle control token to the vehicle through the parking lot server so that the parking lot server controls the vehicle.

2. The vehicle control method according to claim 1, wherein the vehicle control token further includes at least one of a parking lot identifier, the vehicle identifier, a vehicle-enterprise server identifier, authority of the vehicle control token, and a validity period of the vehicle control token.

3. The vehicle control method according to claim 1, wherein the vehicle control request includes the vehicle identifier, a parking lot identifier, and a parking position identifier, and after the vehicle-enterprise server receives the vehicle control request sent by the terminal, before the vehicle-enterprise server sends a vehicle control notification message to the parking lot server, the method further includes:

the vehicle-enterprise server sends a license plate request to the parking lot server;

the vehicle-enterprise server receives the license plate number of the vehicle sent by the parking lot server;

if the vehicle control request meets the preset condition, the vehicle-enterprise server sends a vehicle control notification message to the parking lot server, wherein the vehicle control notification message comprises:

and if the vehicle identification is matched with the license plate number, the vehicle enterprise server sends the vehicle control notification message to a parking lot server.

4. The vehicle control method according to any one of claims 1 to 3, wherein before the vehicle-enterprise server receives the vehicle control request sent by the terminal, the method further comprises:

the vehicle-enterprise server establishes a vehicle-enterprise safety channel with the vehicle, the parking lot server and the terminal respectively, and the vehicle-enterprise safety channel is used for bearing information transmitted between the vehicle-enterprise server and the vehicle, between the parking lot server and the terminal respectively.

5. The vehicle control method according to claim 4, wherein before the vehicle-enterprise server receives the vehicle control request sent by the terminal, the method further comprises:

the vehicle-enterprise server receives the vehicle identification from the vehicle through the vehicle-enterprise secure channel;

the vehicle-enterprise server receives at least one of a driver's license, a driving license and a license plate number which are associated with the vehicle from the terminal through the vehicle-enterprise secure channel;

and the vehicle-enterprise server receives the wireless network information, the parking lot identification and the network communication address which are associated with the parking lot from the parking lot server through the vehicle-enterprise safety channel.

6. The vehicle control method of claim 5, wherein after the vehicle-to-enterprise server receives the wireless network information associated with the parking lot, the parking lot identification, and the network communication address from the parking lot server via the vehicle-to-enterprise secure tunnel, before the vehicle-to-enterprise server sends the vehicle control token to the vehicle via the parking lot server, the method further comprises:

and the vehicle-enterprise server sends the parking lot identification, the wireless network information of the parking lot and the network communication address of the parking lot to the vehicle.

7. The vehicle control method according to any one of claims 1 to 3, wherein the vehicle control request includes a parking request or a recall request, and after the vehicle-enterprise server transmits the vehicle control token to the vehicle through the parking lot server, the method further includes:

the vehicle-enterprise server receives a vehicle control response sent by the parking lot server, wherein the vehicle control response comprises the vehicle identification, the state information of the vehicle and the position information of the vehicle, and the state information of the vehicle comprises a parking state or a recall state;

and the vehicle-enterprise server sends the vehicle control response to the terminal.

8. A vehicle control method characterized by comprising:

a parking lot server receives a vehicle control notification message, wherein the vehicle control notification message carries a vehicle identifier and is used for indicating the parking lot server to control a vehicle associated with the vehicle identifier;

the parking lot server sends a vehicle control authority request to the vehicle-enterprise server, wherein the vehicle control authority request carries the vehicle identifier;

the parking lot server receives a vehicle control token sent by the vehicle-enterprise server, wherein the vehicle control token comprises a digital signature of the vehicle-enterprise server;

and the parking lot server sends a vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle.

9. The vehicle control method according to claim 8, characterized in that at least one of a parking lot identification, the vehicle identification, and a validity period of the vehicle control token is further included in the vehicle control token.

10. The vehicle control method according to claim 8, wherein before the parking lot server receives the vehicle control notification message, the method further comprises:

the parking lot server receives a license plate request sent by the vehicle-enterprise server;

the parking lot server identifying a license plate number of the vehicle;

and the parking lot server sends the license plate number to the vehicle-enterprise server.

11. The vehicle control method according to claim 8, wherein before the parking lot server receives the vehicle control notification message, the method further comprises:

the parking lot server identifying a license plate number of the vehicle;

the parking lot server inquires the vehicle-enterprise server related to the license plate number;

and the parking lot server sends the license plate number to the vehicle-enterprise server.

12. The vehicle control method according to any one of claims 8 to 11, wherein the parking lot server receiving a vehicle control notification message includes:

and the parking lot server receives the vehicle control notification message sent by the vehicle-enterprise server or the vehicle.

13. The vehicle control method according to any one of claims 8 to 11, wherein after the parking lot server transmits a vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle, the method further comprises:

the parking lot server sends a vehicle control response to the vehicle-enterprise server, the vehicle control response comprises the vehicle identification, the state information of the vehicle and the position information of the vehicle, and the state information of the vehicle comprises a parking state or a recall state.

14. A vehicle control method characterized by comprising:

the method comprises the steps that a vehicle receives a vehicle control instruction sent by a parking lot server, wherein the vehicle control instruction comprises a vehicle control token, and the vehicle control token comprises a digital signature of a vehicle-enterprise server;

the vehicle verifies the vehicle control token;

and if the vehicle control token passes the verification, the vehicle executes the vehicle control instruction.

15. The vehicle control method of claim 14, wherein the vehicle verifying the control token comprises:

the vehicle acquires a public key certificate of the vehicle-enterprise server from the vehicle-enterprise server;

and the vehicle verifies the digital signature according to the public key certificate.

16. The vehicle control method according to claim 15, characterized in that at least one of a parking lot identification, the vehicle identification, and a validity period of the vehicle control token is further included in the vehicle control token;

the method further comprises the following steps:

the vehicle verifies at least one of the parking lot identification, the vehicle identification, and the validity period of the vehicle control token.

17. The vehicle control method according to any one of claims 14 to 16, wherein before the vehicle receives the vehicle control instruction transmitted by the parking lot server, the method further includes:

and the vehicle receives the parking lot identification, the wireless network information of the parking lot and the network communication address of the parking lot, which are sent by the vehicle-enterprise server.

18. The vehicle control method according to any one of claims 14 to 16, wherein before the vehicle receives the vehicle control instruction transmitted by the parking lot server, the method further includes:

and the vehicle sends a vehicle control notification message to the parking lot server, wherein the vehicle control notification message carries a vehicle identifier, and the vehicle control notification message is used for indicating the parking lot server to control the vehicle associated with the vehicle identifier.

19. The vehicle control method according to any one of claims 14 to 16, characterized in that after the vehicle executes the vehicle control instruction, the method further comprises:

the vehicle sends the position information of the vehicle to the parking lot server, wherein the position information comprises the position information of a parking state or the position information of a recall state.

20. A vehicle-enterprise server, comprising:

the system comprises a receiving unit, a processing unit and a processing unit, wherein the receiving unit is used for receiving a vehicle control request sent by a terminal, and the vehicle control request is used for requesting to control a vehicle associated with the terminal;

a sending unit, configured to send a vehicle control notification message to a parking lot server if the vehicle control request meets a preset condition, where the vehicle control notification message carries a vehicle identifier of the vehicle, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle;

the receiving unit is further configured to receive a vehicle control authority request sent by a parking lot server, where the vehicle control authority request carries a vehicle identifier of the vehicle;

the processing unit is used for generating a car control token according to the car control authority request, and the car control token comprises a digital signature of the car-enterprise server;

the sending unit is further configured to send the vehicle control token to the vehicle through the parking lot server, so that the parking lot server controls the vehicle.

21. The vehicle-enterprise server of claim 20, wherein the car-control token further comprises at least one of a parking lot identifier, the vehicle identifier, a vehicle-enterprise server identifier, authority of the car-control token, and a validity period of the car-control token.

22. The vehicle-enterprise server of claim 20, wherein the vehicle-control request comprises the vehicle identifier, the parking lot identifier and the parking position identifier, after the receiving unit receives the vehicle-control request from the terminal, and before the sending unit sends the vehicle-control notification message to the parking lot server,

the sending unit is also used for sending a license plate request to the parking lot server;

the receiving unit is further used for receiving the license plate number of the vehicle sent by the parking lot server;

the sending unit is specifically configured to send the vehicle control notification message to a parking lot server if the vehicle identifier matches the license plate number.

23. The vehicle-enterprise server according to any one of claims 20 to 22, wherein the receiving unit is configured to, before receiving the vehicle control request sent by the terminal,

the processing unit is further used for establishing a vehicle-enterprise safety channel with the vehicle, the parking lot server and the terminal respectively, and the vehicle-enterprise safety channel is used for bearing information transmitted between the vehicle-enterprise server and the vehicle, between the parking lot server and the terminal respectively.

24. The vehicle-enterprise server as claimed in claim 23, wherein before the receiving unit receives the vehicle control request from the terminal,

the receiving unit is further used for receiving the vehicle identification from the vehicle through the vehicle-enterprise safe channel;

receiving at least one of a driver's license, a driving license and a license plate number associated with the vehicle from the terminal through the vehicle-enterprise secure channel;

and receiving wireless network information, parking lot identification and network communication address which are associated with the parking lot from the parking lot server through the vehicle-enterprise safety channel.

25. The vehicle-enterprise server of claim 24, wherein after the receiving unit receives the wireless network information associated with the parking lot, the parking lot identification, and the network communication address from the parking lot server via the vehicle-enterprise secure channel, the transmitting unit transmits the vehicle control token to the vehicle via the parking lot server,

the sending unit is further configured to send the parking lot identifier, the wireless network information of the parking lot, and the network communication address of the parking lot to the vehicle.

26. The vehicle-enterprise server according to any one of claims 20 to 22, wherein the vehicle-control request comprises a parking request or a recall request, and after the transmitting unit transmits the vehicle-control token to the vehicle through the parking lot server,

the receiving unit is further configured to receive a vehicle control response sent by the parking lot server, where the vehicle control response includes the vehicle identifier, the state information of the vehicle, and the position information of the vehicle, and the state information of the vehicle includes a parking state or a recall state;

and the sending unit is also used for sending the vehicle control response to the terminal.

27. A parking lot server, comprising:

the parking lot management system comprises a receiving unit, a parking lot management unit and a processing unit, wherein the receiving unit is used for receiving a vehicle control notification message, the vehicle control notification message carries a vehicle identifier, and the vehicle control notification message is used for indicating the parking lot server to control a vehicle related to the vehicle identifier;

the sending unit is used for sending a vehicle control authority request to the vehicle-enterprise server, and the vehicle control authority request carries the vehicle identifier;

the receiving unit is used for receiving a car control token sent by the car-enterprise server, and the car control token comprises a digital signature of the car-enterprise server;

the sending unit is used for sending a vehicle control instruction carrying the vehicle control token to the vehicle so as to control the vehicle.

28. The parking lot server of claim 27, wherein the vehicle control token further comprises at least one of a parking lot identification, the vehicle identification, and a validity period of the vehicle control token.

29. The parking lot server according to claim 27, wherein before the receiving unit receives the vehicle-control notification message,

the receiving unit is also used for receiving a license plate request sent by the vehicle-enterprise server;

the parking lot server further comprises a processing unit for identifying the license plate number of the vehicle;

the sending unit is also used for sending the license plate number to the vehicle-enterprise server.

30. The parking lot server according to claim 27, wherein before the receiving unit receives the vehicle-control notification message,

the parking lot server further comprises a processing unit for identifying the license plate number of the vehicle;

querying the vehicle-enterprise server associated with the license plate number;

the sending unit is also used for sending the license plate number to the vehicle-enterprise server.

31. The parking lot server according to any one of claims 27 to 30, wherein the receiving unit is specifically configured to receive the vehicle control notification message sent by the vehicle-to-enterprise server or the vehicle.

32. The parking lot server according to any one of claims 27 to 30, wherein after the transmission unit transmits a vehicle control instruction carrying the vehicle control token to the vehicle to control the vehicle,

the sending unit is further configured to send a vehicle control response to the vehicle-enterprise server, where the vehicle control response includes the vehicle identifier, the state information of the vehicle, and the position information of the vehicle, and the state information of the vehicle includes a parking state or a recall state.

33. A vehicle, characterized by comprising:

the parking lot management system comprises a receiving unit, a parking lot management unit and a parking lot management unit, wherein the receiving unit is used for receiving a vehicle control instruction sent by a parking lot server, the vehicle control instruction comprises a vehicle control token, and the vehicle control token comprises a digital signature of a vehicle-enterprise server;

the processing unit is used for verifying the car control token;

and if the vehicle control token passes the verification, executing the vehicle control instruction.

34. The vehicle of claim 33, wherein the processing unit is specifically configured to obtain a public key certificate of the vehicle-enterprise server from the vehicle-enterprise server; and verifying the digital signature according to the public key certificate.

35. The vehicle of claim 34, wherein the vehicle control token further comprises at least one of a parking lot identification, the vehicle identification, and a validity period of the vehicle control token;

the processing unit is further configured to verify at least one of the parking lot identifier, the vehicle identifier, and the validity period of the vehicle control token.

36. The vehicle according to any one of claims 33 to 35, wherein, before the receiving unit receives the vehicle control instruction transmitted from the parking lot server,

the receiving unit is further configured to receive the parking lot identifier, the wireless network information of the parking lot, and the network communication address of the parking lot, which are sent by the vehicle-enterprise server.

37. The vehicle according to any one of claims 33 to 35, wherein, before the receiving unit receives the vehicle control instruction transmitted from the parking lot server,

the vehicle further comprises a sending unit, configured to send a vehicle control notification message to the parking lot server, where the vehicle control notification message carries a vehicle identifier, and the vehicle control notification message is used to instruct the parking lot server to control the vehicle associated with the vehicle identifier.

38. The vehicle of any of claims 33-35, characterized in that after the processing unit executes the control command,

the vehicle further includes a transmission unit configured to transmit location information of the vehicle to the parking lot server, where the location information includes location information of a parking state or location information of a recall state.

39. A vehicle-enterprise server, comprising:

the system comprises a processor, a memory, a bus and an input/output interface;

the memory stores program codes;

the processor, when calling the program code in the memory, executes the vehicle control method according to any of claims 1 to 7.

40. A parking lot server, comprising:

the system comprises a processor, a memory, a bus and an input/output interface;

the memory stores program codes;

the processor, when calling the program code in the memory, executes the vehicle control method according to any of claims 8 to 13.

41. A vehicle, characterized by comprising:

the system comprises a processor, a memory, a bus and an input/output interface;

the memory stores program codes;

the processor, when calling the program code in the memory, executes the vehicle control method according to any of claims 14 to 19.

42. A computer-readable storage medium comprising instructions that, when executed on a computer, cause the computer to perform the flow of the vehicle control method of claims 1 to 19.

43. A computer program product containing instructions which, when run on a computer, cause the computer to carry out the procedures of the vehicle control method of claims 1 to 19.

Images