V2X ECA DCM METHOD AND APPARATUS FOR MANAGING ENROLLMENT CERTIFICATE BY RELAYING BETWEEN ENROLLMENT CERTIFICATE AUTHORITY AND DEVICE CONFIGURATION MANAGER IN SECURITY CREDENTIAL MANAGEMENT SYSTEM FOR V2X COMMUNICATION
Disclosed are a method and an apparatus for managing an enrollment certificate by relaying between an enrollment certificate authority (ECA) and a device confirmation manager (DCM) in a security certification management system for V2X communication. The method for managing an enrollment certificate...
Saved in:
Main Authors | , , , , , , , , , |
---|---|
Format | Patent |
Language | English Korean |
Published |
02.06.2020
|
Subjects | |
Online Access | Get full text |
Cover
Loading…
Summary: | Disclosed are a method and an apparatus for managing an enrollment certificate by relaying between an enrollment certificate authority (ECA) and a device confirmation manager (DCM) in a security certification management system for V2X communication. The method for managing an enrollment certificate by relaying between an ECA and a DCM includes the following steps of: receiving a message requesting a privilege for creating a certificate signing request (CSR) from a DCM; updating device certification data through a certification lab managing the performance and requirements of a terminal device, and then, verifying the terminal device requesting the DCM for the issue of an enrollment certificate based on the updated device certification data; transmitting response data indicating the privilege for creating the CSR to the DCM based on a verification result; receiving the CSR created in the DCM in accordance with the response data from the DCM; and verifying the received CSR, and then, requesting the ECA for the response data to the CSR based on a verification result.
V2X 통신을 위한 보안 인증 관리 시스템에서 ECA(Enrollment Certificate Authority)와 DCM(Device Configuration Manager) 사이를 중계하여 등록 인증서(Enrollment Certificate)를 관리하기 위한 방법 및 장치가 개시된다. ECA와 DCM 사이를 중계하여 등록 인증서를 관리하기 위한 방법은, DCM으로부터 CSR(Certificate Signing Request, 인증서 발급 요청)을 생성할 수 있는 권한을 요청하는 메시지를 수신하는 단계, 말단 기기의 성능과 요구사항을 관리하는 인증 랩(Certification lab)을 통해 장치 인증 데이터를 갱신하고, 갱신된 장치 인증 데이터를 이용하여 상기 DCM에 등록 인증서 발급을 요청한 말단 기기를 검증하는 단계, 검증 결과를 기초로 상기 DCM에 상기 CSR을 생성할 수 있는 권한을 나타내는 응답 데이터를 전송하는 단계, 상기 DCM에서 상기 응답 데이터에 따라 생성된 CSR을, 상기 DCM으로부터 수신하는 단계 및 수신된 CSR을 검증하고, 검증 결과를 기초로 상기 ECA에 CSR에 대한 응답 데이터를 요청하는 단계를 포함할 수 있다. |
---|---|
Bibliography: | Application Number: KR20180146656 |