Search

KR-20260063659-A - DID-based car infotainment and server-to-server encryption key sharing method

KR20260063659AKR 20260063659 AKR20260063659 AKR 20260063659AKR-20260063659-A

Abstract

The present invention relates to a method for sharing cryptographic keys between a DID-based car infotainment system and a server, comprising: a wallet creation process in which a DID server creates a DID-based user electronic wallet using data transmitted through a user terminal; a user authentication process in which the car infotainment system performs DID authentication from the user's electronic wallet through communication with the user terminal to obtain a cryptographic key for communication with the server and the user's identity information; and a cryptographic key sharing process in which, if authentication is successful, the server and the car infotainment system create and record a cryptographic key to be shared; thereby providing a safe and reliable communication environment by enhancing security.

Inventors

  • 김종현

Assignees

  • 주식회사 루트랩

Dates

Publication Date
20260507
Application Date
20241030

Claims (7)

  1. A wallet creation process in which a DID server creates a DID-based user electronic wallet using data transmitted through a user terminal, generates verifiable credentials (VC), and records them in the electronic wallet; Car infotainment performs a user authentication process that obtains a cryptographic key for communicating with a server and the user's identity information by performing DID authentication from the user's electronic wallet through communication with a user terminal; If authentication is successful, the above server and car infotainment generate and record a cryptographic key to be shared in a cryptographic key sharing process; A method for sharing cryptographic keys between a DID-based car infotainment system and a server, characterized by being configured to include
  2. A method for sharing encryption keys between a DID-based car infotainment system and a server, wherein, in claim 1, the electronic wallet generation process generates a private key and a public key using an asymmetric encryption algorithm based on data transmitted through a user terminal, generates a DID based on the generated public key, converts the public key into a hexadecimal string, generates a DID Document and stores it on a blockchain, and issues a VC using identity information transmitted from the user terminal and encrypts and records it in the electronic wallet.
  3. A method for sharing cryptographic keys between a DID-based car infotainment system and a server, wherein, in claim 1 or 2, the electronic wallet creation process generates a private key and a public key using the 'Ed25519' cryptographic algorithm.
  4. A method for sharing cryptographic keys between a DID-based car infotainment system and a server, characterized in that, in the user authentication process, the car infotainment system performs DID authentication from the user's electronic wallet and generates a verifiable presentation (VP) and transmits it to the server.
  5. In claim 4, the cryptographic key sharing process is characterized by performing DID authentication from an electronic wallet via a QR code. A method for sharing cryptographic keys between a DID-based car infotainment system and a server.
  6. In paragraph 1, the cryptographic key sharing process is, A DID-based method for sharing cryptographic keys between a car infotainment system and a server, characterized in that, upon successful authentication, the server generates a key pair and transmits the public key to the car infotainment system, generates a car infotainment key pair and uses the received server's public key and the car infotainment system's private key to generate a cryptographic key and transmits the public key to the server, and the server generates and records a cryptographic key using the private key and the car infotainment system's public key.
  7. A method for sharing cryptographic keys between a DID-based car infotainment system and a server, characterized in that the cryptographic key in claim 6 is an ECDH cryptographic key.

Description

DID-based car infotainment and server-to-server encryption key sharing method The present invention relates to a method for sharing cryptographic keys between a car infotainment system installed in a vehicle and a server using a DID-based user electronic wallet that manages the user's private key and public key, Decentralized IDentity (DID), Verifiable Credential (VC), and Verifiable Presentation (VP). With the widespread application of computing technology within automobiles, performance improvements for passengers, including drivers, are rapidly progressing. Furthermore, due to recent technological advancements such as the Internet of Things, Car Infotainment services are being provided, which offer not only driving-related information like navigation but also entertainment elements for users. In other words, the aforementioned car infotainment system is equipped with a platform for utilizing applications that enables music and video playback and an internet environment; recent car infotainment development is proceeding in a direction that connects not only artificial intelligence, voice recognition, and IoT, but also big data and the cloud. This signifies that the role of car infotainment is expanding within the major development trend of autonomous vehicles, moving beyond the provision of traditional information and entertainment to serve as a hub for various mobile communication services, including finance and e-commerce. In particular, the advent of the autonomous driving era utilizing new technologies, including artificial intelligence, signifies a transformation of the automobile from a means of transportation into a work and cultural space. As the field of car infotainment expands in this way, the importance of security is further strengthened, and user authentication is required to implement the aforementioned services. In other words, since vehicle occupants receive cloud-based services from a server outside the vehicle using a car infotainment device, authentication to determine service usage rights and security to protect data from unauthorized intrusion by a third party may be required during the process of receiving the said services. Tokens and encryption/decryption keys can generally be used for authentication and security. A mutually agreed-upon security format and encryption/decryption keys may exist between the vehicle and the server. Additionally, a token enabling access to the server may be delivered to the vehicle. The occupant of the vehicle can use this token to access the server after undergoing an authentication process. The authenticated occupant can request the provision of cloud-based services from the server. During this process, the token received from the server may be stored in the vehicle and kept for a certain period. In this case, a third party without service usage rights may obtain the token from the vehicle without authorization. The third party may access the server using the stolen token and use the service without permission. In this regard, the present embodiment aims to provide a technology that prevents unauthorized use of the service even if an unauthorized third party steals and possesses a token. Meanwhile, as the application fields of blockchain technology have recently expanded, research on identity verification and authentication for entities handling information is also actively underway. An example is the decentralized identifier (DID) system, also referred to as decentralized identity verification. In the case of distributed identifier systems, unlike existing identity verification methods, they are not controlled by a central system, and individuals have complete control over their own information. DID systems do not require storing data on a central server or managing servers for authentication and maintaining data integrity; instead, they store and process data based on a blockchain system. FIG. 1 is a diagram illustrating a method for sharing encryption keys between a DID-based car infotainment system and a server according to the present invention. Examples of the present invention are described below. The method for sharing cryptographic keys between a DID-based car infotainment system and a server according to the present invention comprises: a wallet creation process in which a DID server creates a DID-based user electronic wallet using data transmitted through a user terminal; a user authentication process in which the car infotainment system performs DID authentication from the user's electronic wallet through communication with the user terminal to obtain a cryptographic key for communicating with the server and the user's identity information; and a cryptographic key sharing process in which, if authentication is successful, the server and the car infotainment system create and record a cryptographic key to be shared. The process of creating an electronic wallet is explained in detail above. When an electronic wallet is first created, a priv