ISO 15118标准定义了电动汽车(EV)与充电桩间的数据通信协议,该通信协议需要可靠的公钥基础设施(PKI)作为基础.PKI的建立过程涉及ISO 15118之外的其他策略和设计方案的选择,对此不同国家的相关组织均出台了相应的指导文件.然而,指导文件存在两个问题:一是无法对证书进行可靠的离线认证;二是离线状态下独立的证书配置服务会加重充电桩的证书管理负担.鉴于此,提出一种EV充电桩的离线证书签发和认证方案,通过在原始的授权证书上增加额外的供应商ID标识,实现各种PKI构建方式的离线认证.通过对中间证书的交叉签名,实现无中立根CA时离线状态下充电桩功能的正常使用,减轻了充电桩的证书管理负担,修复了既存的两个问题.
Research on Offline Certificate Issuance and Authentication of Electric Vehicle Charging Pile
The ISO 15118 defines a data communication protocol between EV and charging piles,which requires a reliable public key infrastructure(PKI)as a foundation.The establishment of PKI involves the selection of other policies and design schemes,besides those specified in ISO 15118.Relevant organizations in different countries have issued corresponding guidelines.How-ever,there are two issues in these guidelines.One is that the certificate cannot be reliably authenticated offline.Second,inde-pendent certificate provisioning service increases the burden of certificate management for charging piles.In view of these is-sues,an offline certificate issuance and authentication scheme for EV charging piles is proposed.Offline authentication of vari-ous PKI structures is realized by adding additional vendor ID to the original certificate.The cross-signature of intermediate cer-tificates realizes the normal function of the charging piles offline without neutral root CA,reduces the burden of certificate man-agement of the charging piles repairs the two existing problems.
EV charging pilepublic key infrastructurecertificate authorizationoffline authentication
万方数据
维普
