With the advent of the 5G era and the continuous improvement of the degree of automobile intelligence and network connection, the vehicle terminal T-BOX plays an important role as the information interaction point between the vehicle and the cloud. The upgrading of T-BOX has also brought a lot of convenience to people's travel, but also brought great challenges to information security. It is necessary to strictly ensure the security, encryption and accuracy of its data transmission, in order to promote the further development of vehicle-mounted terminals. develop.

This article will introduce the main functions of T-BOX, as well as the T-BOX application scheme based on Shanghai Aviation Core's main control chip ACM32F403 and security chip S6A/S6B.

What is T-BOX

The full English name of the vehicle T-Box is Telematics-Box. It is a vehicle networking communication terminal. It can remotely connect to the TSP (Telematics Service Provider, content service provider) platform through 3G/4G/5G to realize vehicle remote communication and remote services, as shown in the following figure ( Image source see watermark):


The main functions of T-BOX are as follows:

1. Data collection and storage:

The T-BOX is connected to the DCAN bus through the CAN interface, and data acquisition is performed through the CAN network. It mainly collects and analyzes data such as vehicle information, drive motor information, fuel cell information, engine data, and vehicle location information. After collecting the information, T-BOX will save the collected real-time data in the internal storage medium according to the maximum time interval of no more than 30s. Some collected information is processed and displayed on the display screen of the in-vehicle terminal to improve user experience.

2. Remote query and control:

Users can remotely query the vehicle status through the mobile phone APP, such as the fuel ratio of the vehicle, the closed status of the windows and doors, the mileage, etc.; they can also control the door switch, whistle and flash lights, turn on the air conditioner, start the engine, and locate the vehicle. The operation process is as follows: first, the user sends a command to the TSP background through the APP, and the TSP background sends a monitoring request command to the vehicle T-BOX. After the vehicle obtains the control command, it sends a control message through the CAN bus to realize the control of the vehicle, and finally feedback the operation. The results are sent to the user's mobile APP.

3. Proximity control:

The short-range control mainly serves the operation of the bluetooth key, mainly including bluetooth short-range car search, bluetooth door opening/closing, bluetooth trunk unlocking, bluetooth welcome, etc.

4. Roadside assistance:

This item is mainly designed for driving safety, including roadside rescue assistance, emergency rescue assistance, automatic vehicle alarm, and remote automatic upload of vehicle abnormal information. These functions can ensure the life safety of the car owner, such as the collision automatic help function, after the vehicle collision triggers the airbag, the T-BOX will automatically trigger the passenger car customer rescue hotline number, automatically upload the vehicle location information to the background, and the background will send a message to the All emergency contacts, text messages contain accident location information and event information, so that accident vehicles and personnel can be rescued in time.

5. Remote diagnosis:

When the car starts, it learns the fault information of the car, and uploads the fault code to the data processing center. The system rechecks the fault information without disturbing the owner. After the fault is determined, the remote automatic fault elimination is implemented, and the failure that cannot be eliminated is sent to the owner by SMS, so that the owner can know the fault information of the vehicle in advance and prevent it from happening. It mainly includes self-diagnosis services such as tire pressure detection system, engine management system, transmission control system, auxiliary protection system, etc., and timely feedback vehicle status report (four-door switch status, trunk switch status, four-door glass status, engine compartment cover status, Parking sign, etc.) and remote instrument panel (fuel remaining, remaining power, cruising range, total mileage, fuel consumption per 100 kilometers, vehicle parking location, oil level alarm).

6. Abnormal reminder:

Vehicle abnormal alarm, car towed alarm, anti-theft alarm, stolen vehicle tracking, safety certificate verification, etc.

Application of Security Chip in T-BOX

With the continuous deepening of the concept of Internet of Vehicles and the continuous increase of application scenarios, the role of T-BOX has become particularly special. It is not only responsible for external communication as a communication terminal, but also backs up some important vehicle data and user identity information. Its security Sex is becoming more and more important, and if it suffers from network security threats, it will have a huge impact on the loss of companies and users.

According to EVITA (E-safety vehicle intrusion protected applications, a research project on vehicle safety jointly organized by European automobile-related companies), we can see that T-BOX plays an important role in vehicle information security. The National VI standard also puts forward requirements for the security of remote emission management vehicle terminals, that is, the data stored and transmitted by the vehicle terminal should be encrypted, and an asymmetric encryption algorithm should be used, SM2 algorithm or RSA algorithm can be used, and The private key needs to be strictly protected by hardware.

The following figure is the block diagram of Shanghai Hangxin's T-BOX application solution:


The module is responsible for the application layer business, including the management of the related file system and log system; the MCU is responsible for the underlying business such as power management and network management, and exchanges data through SPI/ISO7816/UART and other communication methods in the middle, and the SE unit is used for storage. Sensitive data and encrypt the transmitted data.

Shanghai Aviation Core ACM32F403 main control chip

The ACM32F403 chip adopts a high-performance core and supports Cortex-M33 and Cortex-M4F instruction sets. The chip core supports a complete set of DSP instructions for digital signal processing, supports single-precision FPU to process floating-point data, and also supports Memory Protection Unit (MPU) for improving application security.

ACM32F403 series chips have a maximum operating frequency of 180MHz, embedded math hardware acceleration, built-in eFlash with a maximum of 512KB and a maximum of 192KB SRAM. The chip integrates a 12-bit multi-channel 2Msps high-precision ADC, a 12-bit 2-channel DAC, up to 3-way op amps, 2-way comparators, 1 advanced timer, 6 general-purpose 16-bit timers, 1 1 general-purpose 32-bit timer, 2 basic 16-bit timers, 1 system watchdog, 1 independent watchdog, a low-power real-time clock (RTC), built-in multi-channel UART, LPUART, SPI, I2C , I2S, CAN, full-speed USB and other rich communication peripherals, built-in AES, CRC, TRNG and other algorithm modules.

Shanghai Aviation Core Security Chip S6A/S6B

The S6A/S6B vehicle-grade ESAM product is a security module independently developed by Shanghai Hangxin. It is a secure access unit with an operating system (COS), which is embedded in a dedicated general-purpose device to complete data encryption and decryption, and two-way identity authentication. , access control, communication line protection, temporary key export, data file storage and other functions. It is specially designed for applications in automotive electronics, automotive smart terminals, automotive T-BOX communications, copyright protection, charging systems and other fields.

Its main features are as follows:

• Security chip with 32-bit CPU core

• Support national secret SM2, SM3, SM4 algorithms

• User area data storage capacity 10Kbytes, 100,000 erasing and writing times

• Support ISO/IEC 7816 T=0 communication protocol

• The ISO/IEC 7816 interface clock is not higher than 7.5MHz, and supports multiple baud rates (9.6kbps~111.6kbps when the external clock frequency is 3.57MHz)

• Support SPI slave interface, the SCK clock of SPI interface is not higher than 16MHz, and supports Mode 1 mode by default (CPOL=0, CPHA=1)

• Supports 8-byte unique serial numbers

• The security chip has reached the second-level certification level of the national secret

• Security chip reaches EAL5+ certification level

• Compliant with automotive grade AEC-Q100 Grade 1 certification

For sales inquiries, please email: [email protected]

Leave a Reply

Your email address will not be published. Required fields are marked *