| CPC H04L 63/08 (2013.01) [H04L 67/12 (2013.01)] | 6 Claims |
|
1. An identity authentication system for distributed Internet of vehicles (IoV), comprising a core cloud, a plurality of edge clouds, a plurality of road side units (RSUs) and a plurality of terminal vehicles, wherein
the core cloud establishes a wired communication connection with each of the edge clouds, each of the edge clouds establishes a wired communication connection with the plurality of RSUs, and each of the RSUs establishes a wireless communication connection with the plurality of terminal vehicles, a wired connection being established between the edge clouds;
the core cloud stores registration information about the terminal vehicles and the RSUs, and the core cloud shares the registration information about the terminal vehicle and the RSUs to the edge clouds;
the terminal vehicle sends an identity authentication request for IoV to the RSU; the RSU acquires the registration information about the terminal vehicle from the edge cloud; the RSU verifies identity information about the terminal vehicle according to the registration information; after the verification is passed, the RSU initiates an identity authentication request to the edge cloud; the edge cloud performs identity verification on the RSU according to the registration information; after the identity verification of the RSU is passed, the edge cloud backs up the identity information about the terminal vehicle among all the edge clouds and generates a temporary shared session key; and the edge cloud sends the temporary shared session key to the RSU, the RSU sends the temporary shared session key to the terminal vehicle, and the terminal vehicle, the RSU and the edge cloud establish encrypted communication between each other according to the temporary shared session key to provide a network communication service for the terminal vehicle;
the edge cloud is arranged with a Cybertwin edge server, and the Cybertwin edge server is used for acquiring and recording behavior data of authenticated terminal vehicles within a signal range of the edge cloud in real time, and quickly backing up and migrating the behavior data among all the edge clouds;
the Cybertwin edge server detects, in real time, a vehicle density of terminal vehicles establishing authentication communication with the RSU within the signal range of the edge cloud, and sets a vehicle density threshold value according to the vehicle density; and when a vehicle density in a certain RSU within the signal range of the edge cloud exceeds the vehicle density threshold value, the Cybertwin edge server performs proxy authentication on terminal vehicles in the RSU;
Cybertwin representing network twinning;
the Cybertwin edge server sets a proxy selection factor δm according to the vehicle density threshold value, and selects the terminal vehicle within the signal range of the edge cloud to perform proxy authentication according to the proxy selection factor, an expression of the proxy selection factor δm being:
 where α1, α2, α3, α4∈[0,1] represent natural numbers and α1+α2+3+α4=1; dm,l represents a Euclidean distance between a terminal vehicle vm and a terminal vehicle vl; N represents a total number of vehicles within a communication range of an edge cloud; Dmax, Cmax, and Repmax represent a maximum communication distance, a maximum computing power, and a maximum credit score of the terminal vehicle, respectively; Cm represents a computing power of the terminal vehicle vm; and Repm represents a credit score of the terminal vehicle vm; and
the system further comprising an authentication proxy vehicle, used for selecting, by the Cybertwin edge server, a terminal vehicle within a signal range as a dynamic authentication proxy vehicle to perform identity verification for IoV on other terminal vehicles according to a proxy factor when a vehicle density in a certain RSU in an edge cloud range to which the RSU belongs exceeds the vehicle density threshold value.
|