Patent Grant
9270463
The present invention relates to an unauthorized connection detecting device, an unauthorized connection detecting system, and an unauthorized connection detecting method for detecting whether or not a power storage device connectable to a charge/discharge device for charging or discharging with power is an unauthorized power storage device or whether or not the charge/discharge device is an unauthorized charge/discharge device.
In recent years, secondary batteries are used for various purposes such as electric vehicles. The secondary batteries are included in a device (hereinafter referred to as power storage device), such as an electric vehicle. The power storage device is connected to a charge/discharge device to be charged or discharged. In relation to the above technique, some conventional techniques have been proposed to prevent a connection to an unauthorized power storage device or an unauthorized charge/discharge device (see Patent Literatures 1 and 2, for example).
Japanese Patent No. 4407753
Japanese Unexamined Patent Application Publication No. 2010-200528
The above conventional techniques have a problem in that the techniques cannot detect such an unauthorized power storage device or an unauthorized charge/discharge device, and thus fail to prevent the connection to the unauthorized power storage device or the unauthorized charge/discharge device.
The present invention provides an unauthorized connection detecting device, an unauthorized connection detecting system, and an unauthorized connection detecting method which are capable of detecting an unauthorized power storage device or an unauthorized charge/discharge device that have a cryptographic module of an authentic product introduced thereinto in an unauthorized manner.
An unauthorized connection detecting device according to an aspect of the present invention detects whether or not a power storage device that is connectable to a charge/discharge device for charging or discharging with power is an unauthorized power storage device. The unauthorized connection detecting device includes: a communications unit which receives first charge/discharge information in which first identification information and first connection information are associated each other, the first identification information being information for identifying an encryption key of the power storage device used for mutual authentication between the charge/discharge device and the power storage device connectable to the charge/discharge device, and the first connection information being information on the power storage device and obtained when the power storage device is connected to the charge/discharge device; and an unauthorization detecting unit which detects whether or not the power storage device connected to the charge/discharge device is the unauthorized power storage device, by determining, using the first identification information and the first connection information included in the received first charge/discharge information, whether or not two or more power storage devices associated with a single first identification information item are present.
It is noted that such a general and specific aspect may be implemented in the form of a system, a method, an integrated circuit, a computer program, or a non-transitory computer-readable recording medium such as a CD-ROM, or any combination of systems, methods, integrated circuits, computer programs, or computer-readable recording media.
The present invention successfully implements an unauthorized connection detecting device which is capable of detecting an unauthorized power storage device or an unauthorized charge/discharge device that have a cryptographic module of an authentic product introduced thereinto in an unauthorized manner.
[Underlying Knowledge Forming Basis of the Present Invention]
In the case where a power storage device or a charge/discharge device is not an authentic one but unauthorized one, such unauthorized devices could have performance problems, burst into flame, and cause electric leakage, and could be misused for theft of electricity. Moreover, when the unauthorized power storage device and the unauthorized charge/discharge device are connected with each other, information may be exchanged therebetween. The exchange could cause the leakage of the information.
In relation to the above problems, some conventional techniques have been proposed to prevent a connection to an unauthorized power storage device or an unauthorized charge/discharge device (see Patent Literatures 1 and 2, for example). In order to prevent an unauthorized connection, the techniques involve mutual authentication between a power storage device and a charge/discharge device to determine whether the charge/discharge device can or cannot charge the power storage device.
However, the inventor has found out that the above conventional techniques have the after-described problem. Specifically, the problem is that the above conventional techniques are unable to detect an unauthorized power storage device or an unauthorized charge/discharge device, and thus might not be able to prevent a connection to the unauthorized power storage device or the unauthorized charge/discharge device.
In other words, when a cloned cryptographic module (a secret key and a public key certificate) of an authentic product is introduced into an unauthentic power storage device or an unauthentic charge/discharge device in an unauthorized manner, the clone allows the unauthentic power storage device or charge/discharge device to receive mutual authentication. As a result, the unauthentic power storage device or charge/discharge device cannot be detected. Hence, the conventional techniques cannot prevent a connection to the unauthentic and unauthentic power storage device or charge/discharge device.
In order to solve the above problems, an unauthorized connection detecting device according to an implementation of the present invention detects whether or not a power storage device that is connectable to a charge/discharge device for charging or discharging with power is an unauthorized power storage device. The unauthorized connection detecting device includes: a communications unit which receives first charge/discharge information in which first identification information and first connection information are associated each other, the first identification information being information for identifying an encryption key of the power storage device used for mutual authentication between the charge/discharge device and the power storage device connectable to the charge/discharge device, and the first connection information being information on the power storage device and obtained when the power storage device is connected to the charge/discharge device; and an unauthorization detecting unit which detects whether or not the power storage device connected to the charge/discharge device is the unauthorized power storage device, by determining, using the first identification information and the first connection information included in the received first charge/discharge information, whether or not two or more power storage devices associated with a single first identification information item are present.
Hence, the unauthorized connection detecting device detects whether or not a power storage device is an unauthorized power storage device by (i) receiving the first charge/discharge information in which the first identification information for identifying a secret key of a power storage device and the first connection information on a power storage device are associated each other, and (ii) determining, based on the first charge/discharge information, whether or not two or more power storage devices associated with a single first identification information are present. Here, on authentic power storage devices, a single first identification information item is assigned to one power storage device. When a cryptographic module of an authentic product is introduced in an unauthorized manner, however, two or more power storage devices associated with a single first identification information item are to be present. Hence, in the case where two or more power storage devices associated with a single first identification information are present, the unauthorized connection detecting device 100 can determine that any one or more of the power storage devices are unauthorized ones. Thus, the unauthorized connection detecting device can detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the first charge/discharge information in which the first identification information and the first connection information are associated each other, the first connection information including information indicating a time and a position when and where the power storage device was charged or discharged, and the unauthorization detecting unit may detect whether or not the power storage device connected to the charge/discharge device is the unauthorized power storage device, by determining, based on a relationship between times and positions included in a first connection information item associated with a single first identification information item, whether or not two or more power storage devices associated with the single first identification information item are present, the first connection information item being included in the first connection information, and the first connection information item and the single first identification information item being included in the received first charge/discharge information.
Thus, the unauthorized connection detecting device detects whether or not a power storage device is an unauthorized power storage device by determining, based on a relationship between times and positions associated with a single first identification information item, whether or not two or more power storage devices associated with the single first identification information item are present. In other words, in the case where there is an unnatural relationship between times and positions associated with a single first identification information item, the unauthorized connection detecting device determines that two or more power storage devices associated with the single first identification information item are present. For example, in the case where a power storage device cannot possibly travel a distance between two positions within a time period between two times when the two positions and the two times are associated with a single first identification information item, the unauthorized connection detecting device determines that two or more power storage devices associated with the single first identification information item are present. Thus, the unauthorized connection detecting device can detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the first charge/discharge information in which the first identification information, time information, and position information are associated one another, the time information indicating a time when the charge/discharge device charged or discharged the power storage device, and the position information indicating a position where the charge/discharge device was.
Information on a time included in the first charge/discharge information received by the unauthorized connection detecting device is time information indicating the time at which a charge/discharge device charges or discharges a power storage device. Information on a position is position information such as global positioning system (GPS) information indicating a position of the charge/discharge device. Since the above features allow the unauthorized connection detecting device to receive easily created first charge/discharge information, the unauthorized connection detecting device can easily detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
An unauthorized connection detecting device according to an implementation of the present invention detects whether or not a charge/discharge device that is connectable with a power storage device and charges or discharges the power storage device is an unauthorized charge/discharge device. The unauthorized connection detecting device may include: a communications unit which receives second charge/discharge information in which second identification information and second connection information are associated each other, the second identification information being information for identifying an encryption key of the charge/discharge device used for mutual authentication between the power storage device and the charge/discharge device connectable with the power storage device, and the second connection information being information on the charge/discharge device and obtained when the charge/discharge device is connected with the power storage device; and an unauthorization detecting unit which detects whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining, using the second identification information and the second connection information included in the received second charge/discharge information, whether or not two or more charge/discharge devices associated with a single second identification information item are present.
Thus, the unauthorized connection detecting device detects whether or not a charge/discharge device is an unauthorized charge/discharge device, by (i) receiving the second charge/discharge information in which the second identification information and the second connection information are associated each other, and (ii) determining, using the second charge/discharge information, whether or not two or more charge/discharge devices associated with a single second identification information are present. The second identification information is for identifying the encryption key of the charge/discharge device, and the second connection information is on the charge/discharge device. Here, on authentic charge/discharge devices, a single second identification information item is assigned to one charge/discharge device. When a cryptographic module of an authentic product is introduced in an unauthorized manner, however, two or more charge/discharge devices associated with a single second identification information item are to be present. Hence, in the case where two or more charge/discharge devices associated with a single second identification information are present, the unauthorized connection detecting device 100 can determine that any one or more of the power storage devices are unauthorized ones. Thus, the unauthorized connection detecting device can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the second charge/discharge information in which the second identification information and the second connection information are associated each other, the second connection information including charge/discharge device identification information identifying the charge/discharge device, and the unauthorization detecting unit may detect whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining whether or not two or more charge/discharge device identification information items, included in a second connection information item associated with a single second identification information item, indicate mutually different charge/discharge devices, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present, the two or more charge/discharge device identification information items being included in the charge/discharge device identification information, the second connection information item being included in the second connection information, and the second connection information item and the single second identification item being included in the received second charge/discharge information.
Thus, the unauthorized connection detecting device detects whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not two or more charge/discharge device identification information items associated with a single second identification information item indicate mutually different charge/discharge devices, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. In other words, in the case where two or more charge/discharge device identification information items associated with a single second identification information item indicate different charge/discharge devices, the unauthorized connection detecting device determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the second charge/discharge information in which the second identification information and the second connection information are associated each other, the second connection information including, as the charge/discharge device identification information, position information indicating a position of the charge/discharge device, and the unauthorization detecting unit may detect whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining whether or not two or more position information items, included in a second connection information item associated with a single second identification information item, indicate mutually different positions, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present, the two or more position information items being included in the position information, the second connection information item being included in the second connection information, and the second connection information item and the single second identification information item being included in the received second charge/discharge information.
Thus, the charge/discharge device identification information included in the second charge/discharge information received by the unauthorized connection detecting device is position information indicating the position of a charge/discharge device. The unauthorized connection detecting device detects whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not two or more position information items associated with a single second identification information item indicate mutually different positions, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. The two or more position information items are included in the position information. Here, the charge/discharge device is provided at a predetermined position, and never found at two or more places. Hence, in the case where two or more position information items associated with a single second identification information item indicate different positions each other, the unauthorized connection detecting device determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the second charge/discharge information in which the second identification information and the second connection information are associated each other, the second connection information including direct current information indicating, as the charge/discharge device identification information, a fluctuation of a direct current provided from the charge/discharge device, and the unauthorization detecting unit may detect whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining whether or not two or more direct current information items, included in a second connection information item associated with a single second identification information item, indicate mutually different fluctuations, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item, the two or more direct current information items being included in the direct current information, the second connection information item being included in the second connection information, and the second connection information item and the single second identification information item being included in the received second charge/discharge information.
Thus, the charge/discharge device identification information included in the second charge/discharge information received by the unauthorized connection detecting device may be direct current information indicating a fluctuation of a direct current provided from a charge/discharge device. The unauthorized connection detecting device may detect whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not two or more direct current information items associated with a single second identification information item indicate mutually different fluctuations, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. The two or more direct current information items are included in the direct current information. Here, a direct current provided from a charge/discharge device has fluctuation which is unique to the charge/discharge device itself. Through the analysis of the fluctuation using a phase sample of the direct current, the charge/discharge device can be identified. Hence, in the case where two or more direct current information items associated with a single second identification information item indicate different fluctuations each other, the unauthorized connection detecting device determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive the second charge/discharge information in which the second identification information and the second connection information are associated each other, the second connection information including the power storage device identification information identifying the power storage device connected to the charge/discharge device, and the unauthorization detecting unit may detect whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining whether or not the number of power storage devices, identified by two or more power storage device identification information items included in a second connection information item associated with a single second identification information item, is larger than or equal to a predetermined threshold, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present, the two or more power storage device identification information items being included in the power storage device identification information, the second connection information item being included in the second connection information, and the second connection information item and the single second identification information item being included in the received second charge/discharge information.
Thus, the unauthorized connection detecting device detects whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not the number of power storage devices, identified by two or more power storage device identification information items associated with a single second identification information item, is larger than or equal to a predetermined threshold, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more power storage device identification information items being included in the power storage device identification information. Here, the number of power storage devices to be connected to one charge/discharge device is limited. In the case where the number of the connected power storage devices is larger than or equal to a predetermined threshold, two or more charge/discharge devices associated with a single second identification information item are to be present. In other words, in the case where the number of power storage devices associated with a single second identification information item is larger than or equal to a predetermined threshold, the unauthorized connection detecting device 100 determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
For example, the communications unit may receive information via one of a communications network connected with a charge station for charging the power storage device when the power storage device is connected and a communications network connected to the charge/discharge device.
Thus, the unauthorized connection detecting device receives information via the communications network connected either with the charging station or a charge/discharge device. In other words, when a power storage device is either charged at the charging station or one of charged and discharged by a charge/discharge device, the unauthorized connection detecting device can easily receive the information. Thus, the unauthorized connection detecting device can easily obtain information and detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
It is noted that the present invention can be implemented not only as the unauthorized connection detecting device but also as (i) an unauthorized connection detecting system including a charge/discharge device and an unauthorized connection detecting device which detects whether or not a power storage device connectable to the charge/discharge device is an unauthorized power storage device or (ii) a power storage device and an unauthorized connection detecting device which detects whether or not a charge/discharge device for charging or discharging the power storage device is an unauthorized charge/discharge device.
In addition, the present invention can be implemented in the form of an unauthorized connection detecting method including characteristic processing carried out by the unauthorized connection detecting device or the unauthorized connection detecting system as steps. Moreover, the steps included in the unauthorized connection detecting method may be implemented in the form of a program to be executed by a computer and a computer-readable recording medium in which the program is stored. As a matter of course, the program may be distributed via a recording medium such as a CD-ROM and a transmission medium such as the Internet. In addition, the present invention may be implemented in the form of an integrated circuit having characteristic processing units included in the unauthorized connection detecting device. The present invention may be implemented in the form of any given combinations of the device, the method, the integrated circuit, the computer program, and the recording medium.
Described hereinafter is an embodiment with reference to the drawings. It is noted that the embodiment below shows general or specific examples. The numerical values, shapes, materials, constituent elements, arrangement positions and connecting schemes of the constituent elements, steps, and an order of steps all described in the embodiment are mere examples, and shall not limit the scope of the present invention. Among the constituent elements in the embodiment, constituent elements not recited in any one of the independent claims are described as arbitrary constituent elements.
As shown in
The unauthorized connection detecting device 100 detects one of (i) whether or not a power storage device connectable to the charge/discharge device 200 is an unauthorized power storage device and (ii) whether or not a charge/discharge device connected to the power storage device 300 is an unauthorized charge/discharge device. It is noted that the unauthorized connection detecting device 100 may be either a general-purpose computer or a computer especially for detecting the unauthorized charge/discharge device or the unauthorized power storage device. The unauthorized connection detecting device 100 shall be detailed later.
The charge/discharge device 200 is connected with a power storage device, such as the power storage device 300, and charges or discharges the power storage device with power. Here, the charge/discharge device 200 is an authentic one and could be connected with an unauthorized power storage device. Furthermore, the charge/discharge device 200 is connected to a distribution board in a house 400, and supplies power to a load for use in the house 400 and receives power from the house 400.
In addition, the charge/discharge device 200 is connected to the unauthorized connection detecting device 100 via the house 400 and a communications network 600. The charge/discharge device 200 can transmit the information held in itself to the unauthorized connection detecting device 100. The charge/discharge device 200 shall be detailed later.
The power storage device 300 is connected to a charge/discharge device, such as the charge/discharge device 200. The power storage device 300 receives power from and discharges power to the charge/discharge device 200. Here, the power storage device 300 is an authentic one and could be connected to an unauthorized charge/discharge device. In the embodiment, the power storage device 300 is an electric vehicle including a secondary battery such as a lithium-ion secondary battery; however, the power storage device 300 shall not be limited to an electric vehicle.
When connected to the charging station 500, the power storage device 300 can be charged by the charging station 500 with power. Here, when connected to the charging station 500, the power storage device 300 is connected to the unauthorized connection detecting device 100 via the charging station 500 and the communications network 600. Then, the power storage device 300 can transmit the information held in itself to the unauthorized connection detecting device 100. The power storage device 300 shall be detailed later.
The charging station 500 is a facility to charge a power storage device, such as the power storage device 300, with power. Moreover, following an instruction of the unauthorized connection detecting device 100, the charging station 500 transmits the information held in the power storage device 300 to the unauthorized connection detecting device 100.
Described next is a detailed structure of the unauthorized connection detecting device 100.
As shown in
Through the communications network 600, the communications unit 110 transmits and receives information to and from the charge/discharge device 200 connected to the house 400 or the power storage device 300 connected to the charging station 500. Specifically, the communications unit 110 receives the first charge/discharge information in which first identification information and first connection information are associated each other. In other words, the communications unit 110 receives the later-described first charge/discharge information 273 from the charge/discharge device 200 via the communications network 600 with which the charge/discharge device 200 is connected. Then, the first charge/discharge information 273 received by the communications unit 110 is stored by the control unit 130 in the first charge/discharge information 143 in the storage unit 140.
As shown in
Here, the first identification information is information for identifying an encryption key of a power storage device used for mutual authentication between the charge/discharge device 200 and the power storage device connectable to the charge/discharge device 200. Specifically, in the embodiment, the first identification information is ID information of a public key certificate, so that the ID information is used for identifying the public key certificate of a power storage device connectable to the charge/discharge device 200.
Furthermore, the first connection information is information on a power storage device and obtained when the power storage device is connected to the charge/discharge device 200. Specifically, the first connection information includes information indicating a time and a position when and where the power storage device was charged or discharged. In other words, the communications unit 110 receives the first charge/discharge information 273 in which the first identification information and the first connection information are associated each other. Here, the first connection information includes information indicating a time and a position when and where a power storage device was charged or discharged.
More specifically, the first connection information includes (i) time information indicating a time at which the charge/discharge device 200 charged or discharged the power storage device and (ii) position information indicating where the charge/discharge device 200 was. Here the position information may be, for example, GPS information of the charge/discharge device 200. It is noted that, in the case where address information of the charge/discharge device 200 is previously registered in the unauthorized connection detecting device 100, the position information may be the ID information of the charge/discharge device 200 to identify the charge/discharge device 200.
Hence, the communications unit 110 receives from the charge/discharge device 200 the first charge/discharge information 273 in which the first identification information, the time information, and the position information are associated one another. Here, the time information indicates a time when the charge/discharge device 200 charged or discharged a power storage device, and the position information indicates a position where the charge/discharge device 200 was. Then, the first charge/discharge information 273 is stored by the control unit 130 on the first charge/discharge information 143 in the storage unit 140.
As shown in
As shown in
Here, the second identification information is information for identifying the encryption key of a charge/discharge device used for mutual authentication between the power storage device 300 and the charge/discharge device connectable with the power storage device 300. Specifically, in the embodiment, the second identification information is ID information of a public key certificate, so that the ID information is used for identifying the public key certificate of a charge/discharge device connectable to the power storage device 300.
Furthermore, the second connection information is information on a charge/discharge device and obtained when charge/discharge device is connected with the power storage device 300. Specifically, the second connection information includes charge/discharge device identification information for identifying the charge/discharge device and power storage device identification information for identifying the power storage device 300 connected to the charge/discharge device.
Here, the charge/discharge device identification information is position information, such as GPS information indicating the position of the charge/discharge device. It is noted that the charge/discharge device identification information may be position information, such as GPS information, indicating the position of the power storage device 300 obtained when the power storage device 300 was connected to a charge/discharge device.
Moreover, the charge/discharge device identification information shall not be limited to the above-described position information; instead, the charge/discharge device identification information may be, for example, direct current information which can identify a charge/discharge device. In other words, a direct current provided from a charge/discharge device has fluctuation which is unique to the charge/discharge device itself. Through the analysis of the fluctuation using a phase sample of the direct current, the charge/discharge device identification information can identify a charge/discharge device.
Furthermore, the power storage device identification information is, for example, ID information on a power storage device for identifying the power storage device 300. It is noted that any information may be used as the power storage device identification information as far as the information can identify the power storage device. The information includes ID information of a public key certificate, so that the ID information is used for identifying the public key certificate of the power storage device 300.
Hence, the communications unit 110 receives the second charge/discharge information 373 from the power storage device 300. Here, the second charge/discharge information 373 associates the second identification information with the second connection information that includes (i) the charge/discharge device identification information for identifying a charge/discharge device and (ii) the power storage device identification information for identifying the power storage device 300 connected to the charge/discharge device. Then, the second charge/discharge information 373 received by the communications unit 110 is stored by the control unit 130 on the second charge/discharge information 144 in the storage unit 140.
As shown in
Specifically, the unauthorization detecting unit 120 detects whether or not a power storage device connected to the charge/discharge device 200 is an unauthorized power storage device, by determining, based on a relationship between times and positions included in a first connection information item associated with a single first identification information item, whether or not two or more power storage devices associated with the single first identification information item are present. Here, the first connection information item is included in the first connection information, and the first connection information item and the single first identification information item are included in the first charge/discharge information.
In addition, the unauthorization detecting unit 120 detects whether or not a charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining, using the second identification information and the second connection information included in the second charge/discharge information received by the communications unit 110, whether or not two or more charge/discharge devices associated with a single second identification information item are present. In other words, the unauthorization detecting unit 120 reads through the control unit 130 the second charge/discharge information 144 stored in the storage unit 140, and performs the above detection.
Specifically, the unauthorization detecting unit 120 detects whether or not the charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining whether or not two or more charge/discharge device identification information items, included in a second connection information item associated with a single second identification information item, indicate mutually different charge/discharge devices, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more charge/discharge device identification information items are included in the charge/discharge device identification information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification item are included in the second charge/discharge information.
To be more specific, the unauthorization detecting unit 120 detects whether or not the charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining whether or not two or more position information items, included in a second connection information item associated with a single second identification information item, indicate mutually different positions, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more position information items are included in the position information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification information item are included in the single second identification information.
Moreover, the unauthorization detecting unit 120 detects whether or not the charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining whether or not the number of the power storage devices 300, identified by two or more power storage device identification information items included in a second connection information item associated with a single second identification information item, is larger than or equal to a predetermined threshold, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more power storage device identification information items are included in the power storage device identification information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification information item are included in the second charge/discharge information
The control unit 130 gives an instruction to and controls the communications unit 110 and the unauthorization detecting unit 120.
For example, the control unit 130 (i) writes, in the first charge/discharge information 143 in the storage unit 140, the first charge/discharge information 273 received by the communications unit 110 from the charge/discharge device 200, and (ii) writes, in the second charge/discharge information 144 in the storage unit 140, the second charge/discharge information 373 received by the communications unit 110 from the power storage device 300.
In addition, the control unit 130 reads the first charge/discharge information 143 or the second charge/discharge information 144 stored in the storage unit 140, and provides the read first charge/discharge information 143 or the second charge/discharge information 144 to the unauthorization detecting unit 120.
Furthermore, the control unit 130 is also capable of creating a list of cryptographic modules of an unauthorized power storage device or an unauthorized charge/discharge device detected by the unauthorization detecting unit 120.
It is noted that the secret key data 141 and the public key certificate 142 stored in the storage unit 140 are used for mutual authentication when the communications unit 110 receives information from the charge/discharge device 200 or the power storage device 300.
Described next is a detailed structure of the charge/discharge device 200.
As shown in
The communications unit 210 transmits and receives information to and from one of the unauthorized connection detecting device 100 and a power storage device. Specifically, the communications unit 210 transmits the first charge/discharge information 273 that is stored in the storage unit 270 to the unauthorized connection detecting device 100 via the house 400 and the communications network 600.
Here, the first charge/discharge information 273 is created when the power storage device is connected to the charge/discharge device 200. Similar to the first charge/discharge information 143 shown in
The first identification information is ID information of a public key certificate, so that the ID information is used for identifying the public key certificate of the power storage device connected to the charge/discharge device 200. The first identification information is obtained by the certificate information obtaining unit 220 when the power storage device is connected to the charge/discharge device 200. In other words, the certificate information obtaining unit 220 obtains the ID information of the public key certificate from the power storage device via the communications unit 210 when the power storage device is connected to the charge/discharge device 200, and stores the information in the first charge/discharge information 273 in the storage unit 270.
In addition, the time information in the first connection information indicates a time when the charge/discharge device 200 charged or discharged the power storage device. The time information is obtained by the time information detecting unit 240 when the power storage device is connected to the charge/discharge device 200. In other words, the time information detecting unit 240 obtains the time information when the power storage device is connected to the charge/discharge device 200, and stores the information in the first charge/discharge information 273 in the storage unit 270.
Moreover, the position information in the first connection information includes GPS information indicating the position of the charge/discharge device 200. The position information is obtained by the position information detecting unit 250 when the power storage device is connected to the charge/discharge device 200. In other words, the position information detecting unit 250 obtains the position information when the power storage device is connected to the charge/discharge device 200, and stores the information in the first charge/discharge information 273 in the storage unit 270.
It is noted that in the case where address information of the charge/discharge device 200 is previously registered in the unauthorized connection detecting device 100, the position information may be the ID information of the charge/discharge device 200 for identifying the charge/discharge device 200. Here, the ID information of the charge/discharge device 200 is obtained by the position information detecting unit 250 when the power storage device is connected to the charge/discharge device 200.
When a power storage device is connected to the charge/discharge device 200, the certificate verification unit 230 performs mutual authentication between the power storage device and the charge/discharge device 200 using the secret key data 271 and the public key certificate 272 stored in the storage unit 270. A specific description of how the certificate verification unit 230 performs the mutual authentication shall be described later.
The control unit 260 controls the communications unit 210, the certificate information obtaining unit 220, the certificate verification unit 230, the time information detecting unit 240, and the position information detecting unit 250.
Specifically, when a power storage device is connected to the charge/discharge device 200, the control unit 260 causes the certificate information obtaining unit 220 to obtain first identification information, the time information detecting unit 240 to obtain time information, and the position information detecting unit 250 to obtain position information. Then, the control unit 260 stores the obtained information in the first charge/discharge information 273 in the storage unit 270. In addition, the control unit 260 causes the communications unit 210 to read the first charge/discharge information 273 from the storage unit 270 and to transmit the read first charge/discharge information 273 to the unauthorized connection detecting device 100.
Moreover, when a power storage device is connected to the charge/discharge device 200, the control unit 260 causes the certificate verification unit 230 to perform, via the communications unit 210, mutual authentication between the power storage device and the charge/discharge device 200.
Described next is a detailed structure of the power storage device 300.
As shown in
The communications unit 310 transmits and receives information to and from one of the unauthorized connection detecting device 100 and a charge/discharge device power storage device. Specifically, the communications unit 310 transmits the second charge/discharge information 373, which is stored in the storage unit 370, to the unauthorized connection detecting device 100 via the charging station 500 and the communications network 600.
Here, the second charge/discharge information 373 is created when the power storage device 300 is connected to the charge/discharge device. Similar to the second charge/discharge information 144 shown in
The second identification information is ID information of a public key certificate, so that the ID information is used for identifying the public key certificate of the charge/discharge device connected with the power storage device 300. The first identification information is obtained by the certificate information obtaining unit 320 when the charge/discharge device is connected to the power storage device 300. In other words, the certificate information obtaining unit 320 obtains the ID information of the public key certificate from the charge/discharge device via the communications unit 310 when the charge/discharge device is connected to the power storage device 300, and stores the information in the second charge/discharge information 373 in the storage unit 370.
Moreover, the charge/discharge device identification information in the second connection information is, for example, capable of identifying a charge/discharge device, such as GPS information indicating a position of the charge/discharge device. The charge/discharge device identification information is obtained by the power storage device identification information obtaining unit 350 when the charge/discharge device is connected to the power storage device 300. In other words, the power storage device identification information obtaining unit 350 obtains the charge/discharge device identification information when the charge/discharge device is connected to the power storage device 300, and stores the information in the second charge/discharge information 373 in the storage unit 370.
In addition, the power storage device identification information in the second connection information is, for example, capable of identifying a power storage device 300, such as ID information for identifying the power storage device 300. The power storage device identification information is obtained by the charge/discharge device identification information obtaining unit 340 when the charge/discharge device is connected with the power storage device 300. In other words, the charge/discharge device identification information obtaining unit 340 obtains the charge/discharge device identification information when the charge/discharge device is connected with the power storage device 300, and stores the information in the second charge/discharge information 373 in the storage unit 370.
When a charge/discharge device is connected with the power storage device 300, the certificate verification unit 330 performs mutual authentication between the charge/discharge device and the power storage device 300 using the secret key data 371 and the public key certificate 372 stored in the storage unit 370. A specific description of how the certificate verification unit 330 performs the mutual authentication shall be described later.
The control unit 360 controls the communications unit 310, the certificate information obtaining unit 320, the certificate verification unit 330, the charge/discharge device identification information obtaining unit 340, and the power storage device identification information obtaining unit 350.
Specifically, when a charge/discharge device is connected with the power storage device 300, the control unit 360 causes the certificate information obtaining unit 320 to obtain second identification information, the charge/discharge device identification information obtaining unit 340 to obtain charge/discharge device identification information, and the power storage device identification information obtaining unit 350 to obtain power storage device identification information. Then, the control unit 360 stores the information in the second charge/discharge information 373 in the storage unit 370. In addition, the control unit 360 causes the communications unit 310 to read the second charge/discharge information 373 from the storage unit 370 and to transmit the read second charge/discharge information 373 to the unauthorized connection detecting device 100.
Moreover, when a charge/discharge device is connected to the power storage device 300, the control unit 360 causes the certificate verification unit 330 to perform, via the communications unit 310, mutual authentication between the charge/discharge device and the power storage device 300.
Described next is processing performed by the charge/discharge device 200.
As shown in
Hence, the certificate verification unit 230 performs mutual authentication between the power storage device and the charge/discharge device 200, using the secret key data 271 and the public key certificate 272 stored in the storage unit 270 (S104). A specific description of how the certificate verification unit 230 performs the mutual authentication shall be described later.
Then, when the mutual authentication is properly performed, the processing proceeds to the next step. Here, even though the connected power storage device is an unauthorized one, the mutual authentication could be properly performed between the unauthorized power storage device and the charge/discharge device 200, in the case where a cryptographic module of the authentic power storage device 300 is analyzed in an unauthorized manner and the analyzed module is cloned and fraudulently introduced into the unauthorized power storage device.
Then, through the communications unit 210, the certificate information obtaining unit 220 obtains the first identification information from the power storage device connected to the charge/discharge device 200 (S106). Specifically, the certificate information obtaining unit 220 obtains ID information of the public key certificate of the power storage device.
In addition, the time information detecting unit 240 obtains time information and the position information detecting unit 250 obtains position information, so that the charge/discharge device 200 obtains first connection information including the time information and the position information (S108). It is noted that, in the case where address information of the charge/discharge device 200 is previously registered in the unauthorized connection detecting device 100, the position information may be the ID information of the charge/discharge device 200 to identify the charge/discharge device 200. Here, the ID information of the charge/discharge device 200 may be obtained by the position information detecting unit 250 when the power storage device is connected to the charge/discharge device 200.
Then, the control unit 260 stores in the first charge/discharge information 273 in the storage unit 270 the first identification information and the first connection information obtained by the communications unit 210, the certificate information obtaining unit 220, and the time information detecting unit 240 (S110).
Then, the control unit 260 determines whether or not the communications unit 210 can transmit (upload) the first charge/discharge information 273 to the unauthorized connection detecting device 100 (S112). For example, when the charge/discharge device 200 is connected to the unauthorized connection detecting device 100 via the communications network 600, the control unit 260 determines that the communications unit 210 can upload the first charge/discharge information 273 to the unauthorized connection detecting device 100.
Then, in the case where the determination result shows that the communications unit 210 can upload the first charge/discharge information 273 to the unauthorized connection detecting device 100 (S112: Y), the control unit 260 causes the communications unit 210 to read the first charge/discharge information 273 from the storage unit 270, and to transmit the read first charge/discharge information 273 to the unauthorized connection detecting device 100 (S114).
In the case where the determination result shows that the communications unit 210 cannot upload the first charge/discharge information 273 to the unauthorized connection detecting device 100 (S112: N), the control unit 260 finishes processing.
It is noted that the control unit 260 may wait until the communications unit 210 is ready to upload the first charge/discharge information 273 to the unauthorized connection detecting device 100. Upon determining that the communications unit 210 is ready for the upload, the control unit 260 may cause the communications unit 210 to transmit the first charge/discharge information 273 to the unauthorized connection detecting device 100.
Alternatively, the control unit 260 may wait until a predetermined amount of information is accumulated in the first charge/discharge information 273. Then, the control unit 260 may cause the communications unit 210 to transmit the first charge/discharge information 273 to the unauthorized connection detecting device 100.
Hence, the processing performed by the charge/discharge device 200 ends.
Described next is processing performed by the power storage device 300.
As shown in
Then, the certificate verification unit 330 performs mutual authentication between the power storage device 300 and the connected charge/discharge device, using the secret key data 371 and the public key certificate 372 stored in the storage unit 370 (S204). A specific description of how the certificate verification unit 330 performs the mutual authentication shall be described later.
Then, when the mutual authentication is properly performed, the processing proceeds to the next step. Here, even though the connected charge/discharge device is an unauthorized one, the mutual authentication could be properly performed between the unauthorized connected charge/discharge device and the power storage device 300, in the case where a cryptographic module of the authentic charge/discharge device 200 is analyzed in an unauthorized manner and the analyzed module is cloned and fraudulently introduced into the unauthorized charge/discharge device.
Then, through the communications unit 310, the certificate information obtaining unit 320 obtains the second identification information from the charge/discharge device connected with the power storage device 300 (S206). Specifically, the certificate information obtaining unit 320 obtains ID information of the public key certificate of the power storage device.
In addition, the charge/discharge device identification information obtaining unit 340 obtains charge/discharge device identification information and the power storage device identification information obtaining unit 350 obtains power storage device identification information, so that the power storage device 300 obtains second connection information including the charge/discharge device identification information and the power storage device identification information (S208).
Then, the control unit 360 stores in the first charge/discharge information 373 in the storage unit 370 the second identification information and the second connection information obtained by the communications unit 310, the certificate information obtaining unit 320, and the charge/discharge device identification information obtaining unit 340 (S210).
Then, the control unit 360 determines whether or not the communications unit 310 can transmit (upload) the second charge/discharge information 373 to the unauthorized connection detecting device 100 (S212). For example, when the power storage device 300 is connected to the charging station 500, the power storage device 300 is connected to the unauthorized connection detecting device 100 via the communications network 600. Hence, the control unit 360 determines that the communications unit 310 can upload the second charge/discharge information 373 to the unauthorized connection detecting device 100.
Then, in the case where the determination result shows that the communications unit 310 can upload the second charge/discharge information 373 to the unauthorized connection detecting device 100 (S212: Y), the control unit 360 causes the communications unit 310 to read the second charge/discharge information 373 from the storage unit 370, and to transmit the read second charge/discharge information 373 to the unauthorized connection detecting device 100 (S214).
In the case where the determination result shows that the communications unit 310 cannot upload the second charge/discharge information 373 to the unauthorized connection detecting device 100 (S212: N), the control unit 360 finishes processing.
It is noted that the control unit 360 may wait until the communications unit 310 is ready to upload the second charge/discharge information 373 to the unauthorized connection detecting device 100. Upon determining that the communications unit 310 is ready for the upload, the control unit 360 may cause the communications unit 310 to transmit the second charge/discharge information 373 to the unauthorized connection detecting device 100.
Alternatively, the control unit 360 may wait until a predetermined amount of information is accumulated in the second charge/discharge information 373. Then, the control unit 360 may cause the communications unit 310 to transmit the second charge/discharge information 373 to the unauthorized connection detecting device 100.
Hence, the processing performed by the power storage device 300 ends.
Next, described in detail is mutual authentication processing (S104 in
As shown in
Then, the certificate verification unit 230 checks the received certificate (S306). In the case where the certificate is invalid (S310: N), the processing ends. In the case where the certificate is valid (S310: Y), the processing proceeds to the next step.
Moreover, the certificate verification unit 330 also checks the received certificate (S308). In the case where the certificate is invalid (S312: N), the processing ends. In the case where the certificate is valid (S312: Y), the processing proceeds to the next step.
Then, the certificate verification unit 330 creates a random number r1, and transmits the random number r1 to the certificate verification unit 230 (S314). Then, the certificate verification unit 230 receives the random number r1. In response to the random number r1, the certificate verification unit 230 creates a signature Sig(r1) using a secret key SKs described in the secret key data 271, and a random number r2.
Next, the certificate verification unit 230 transmits the random number r2 and the signature Sig(r1) to the certificate verification unit 330 (S316). Then, the certificate verification unit 330 receives the random number r2 and the signature Sig(r1), and checks the signature Sig(r1) using a public key described in the public key certificate 272.
In the case where the certificate verification unit 330 determines that the signature Sig(r1) is valid, the certificate verification unit 330 creates, in response to the random number r2, a signature Sig(r2) using a secret key SK_i described in the secret key data 371. Then, the certificate verification unit 330 transmits the signature Sig(r2) to the certificate verification unit 230 (S318). In the case where the certificate verification unit 330 determines that the signature Sig(r1) is invalid, the certificate verification unit 330 returns NG to the certificate verification unit 230, and breaks off the connections with the charge/discharge device 200.
Then, the certificate verification unit 230 receives the signature Sig(r2), and checks the signature Sig(r2) using a public key described in the public key certificate 372.
Then, in the case where the certificate verification unit 230 determines that the signature Sig(r2) is valid, the certificate verification unit 230 returns OK to the certificate verification unit 330 (S320). In the case where the certificate verification unit 230 determines that the signature Sig(r2) is invalid, the certificate verification unit 230 returns NG to the certificate verification unit 330, and breaks off the connections with the charge/discharge device 300.
Hence, the mutual authentication processing (S104 in
Described next is how the unauthorized connection detecting device 100 detects an unauthorized power storage device.
As shown in
Here, in the case where the charge/discharge device 200 is connected with an authentic power storage apparatus, the communications unit 110 receives first charge/discharge information 273 corresponding to the authentic power storage apparatus. In the case where the charge/discharge device 200 is connected with an unauthorized power storage device, the communications unit 110 receives first charge/discharge information 273 corresponding to the unauthorized power storage device.
Then, using the first identification information and the first connection information included in the first charge/discharge information received by the communications unit 110, the unauthorization detecting unit 120 determines whether or not two or more power storage devices associated with a single first identification information item are present (S404).
In the case where the determination result shows that two or more power storage devices associated with a single first identification information item are present (S404: Y), the unauthorization detecting unit 120 detects that the power storage device connected to the charge/discharge device 200 is an unauthorized one (S406). In other words, the unauthorization detecting unit 120 reads the first charge/discharge information 143 stored in the storage unit 140 to perform the above detection.
Specifically, the unauthorization detecting unit 120 detects whether or not the power storage device connected to the charge/discharge device 200 is an unauthorized power storage device, by determining, based on a relationship between times and positions included in a first connection information item associated with a single first identification information item, whether or not two or more power storage devices associated with the single first identification information item are present. Here, the first connection information item is included in the first connection information, and the first connection information item and the single first identification information item are included in the first charge/discharge information.
For example, the unauthorization detecting unit 120 determines whether or not an unnatural relationship is found between the times and positions (i) included in the first connection information and (ii) associated with a single first identification information item, and determines whether or not two or more power storage devices associated with the single first identification information are present. Here, the unnatural relationship is the case where, for example, a power storage device cannot possibly travel a distance between the positions within a time period between the times. Based on a previously prepared database table, the unauthorization detecting unit 120 can determine whether or not the relationship is unnatural.
It is noted that, in the case where the address information of the charge/discharge device 200 and the ID information of the charge/discharge device 200 for identifying the charge/discharge device 200 are associated each other and previously registered in the unauthorized connection detecting device 100, the information on the positions may be the ID information of the charge/discharge device 200.
Then, the control unit 130 creates a list of cryptographic modules of unauthorized power storage devices detected by the unauthorization detecting unit 120, and stores the list in the storage unit 140.
In the case where the determination result shows that no other power storage device associated with a single first identification information is present (S404: N), the unauthorization detecting unit 120 determines that the power storage device is not an unauthorized one and finishes the processing.
Hence, the unauthorized connection detecting device 100 finishes the processing for detecting an unauthorized power storage device.
Described next is how the unauthorized connection detecting device 100 detects an unauthorized charge/discharge device.
As shown in
Here, in the case where the power storage device 300 is connected to an authentic power storage apparatus, the communications unit 110 receives second charge/discharge information 373 corresponding to the authentic power storage apparatus. In the case where the power storage device 300 is connected to an unauthorized power storage device, the communications unit 110 receives second charge/discharge information 373 corresponding to the unauthorized power storage device.
Then, using the second identification information and the second connection information included in the second charge/discharge information received by the communications unit 110, the unauthorization detecting unit 120 determines whether or not two or more charge/discharge devices associated with a single second identification information item are present (S504).
Then, in the case where the determination result shows that two or more charge/discharge device associated with the single second identification information item are present (S504: Y), the unauthorization detecting unit 120 detects that the charge/discharge device connected with the power storage device 300 is an unauthorized one (S506). In other words, the unauthorization detecting unit 120 reads the second charge/discharge information 144 stored in the storage unit 140 to perform the above detection.
Specifically, the unauthorization detecting unit 120 detects whether or not a charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining whether or not two or more charge/discharge device identification information items, included in a second connection information associated with a single second identification information item, indicate mutually different charge/discharge devices, and thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more charge/discharge device identification information items are included in the charge/discharge device identification information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification item are included in the second charge/discharge information.
To be more specific, the unauthorization detecting unit 120 detects whether or not a charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device, by determining whether or not two or more position information items, included in a second connection information item associated with a single second identification information item, indicate mutually different positions, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more position information items are included in the position information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification information item are included in the single second identification information.
It is noted that the position information items can indicate different positions each other because the owner of the charge/discharge device has moved to a new address. In this case, the unauthorization detecting unit 120 obtains information showing that the charge/discharge device has moved to accurately determine whether or not two or more charge/discharge devices associated with the above single identification information item are present.
Moreover, the unauthorization detecting unit 120 may detect whether or not a charge/discharge device connected with the power storage device 300 is an unauthorized charge/discharge device by determining whether or not the number of the power storage devices 300, identified by two or more power storage device identification information items included in a second connection information item associated with a single second identification information item, is larger than or equal to a predetermined threshold, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more power storage device identification information items are included in the power storage device identification information, the second connection information item is included in the second connection information, and the second connection information item and the single second identification information item are included in the second charge/discharge information
Here, the unauthorization detecting unit 120 may change the above threshold, depending on the kind of a charge/discharge device. In other words, in the case where the charge/discharge device is for a commercial facility or a charging station, the threshold of the unauthorization detecting unit 120 may be set higher than that of the charge/discharge device for the standard home.
Then, the control unit 130 creates a list of cryptographic modules of unauthorized charge/discharge devices detected by the unauthorization detecting unit 120, and stores the list in the storage unit 140.
In the case where the determination result shows that no other charge/discharge device associated with a single second identification information is present (S504: N), the unauthorization detecting unit 120 determines that the charge/discharge device is not an unauthorized one and finishes the processing.
Hence, the unauthorized connection detecting device 100 finishes the processing for detecting an unauthorized charge/discharge device.
[Modification 1]
Described next is a modification of how the unauthorized connection detecting device 100 detects an unauthorized charge/discharge device.
As shown in
Then, the unauthorization detecting unit 120 determines whether or not multiple position information items, included in the second connection information and associated with a single second identification information item included in the second charge/discharge information, indicate different positions each other (S604).
Then, in the case where the determination result shows that the multiple position information items indicate a single position (S604: N), the unauthorization detecting unit 120 determines whether or not the number of power storage devices 300 is larger than or equal to a predetermined threshold (S606). Here, the power storage devices 300 are identified by multiple power storage device identification information items (i) included in the second connection information and (ii) associated with a single second identification information item included in the second charge/discharge information.
Then, in the case where the determination result shows that the multiple position information items indicate different positions each other (S604: Y) or the number of power storage devices 300 identified by the multiple power storage device identification information items is larger than or equal to a predetermined threshold (S606: Y), the unauthorization detecting unit 120 detects that the charge/discharge device connected with the power storage device 300 is an unauthorized one (S608).
Then, the control unit 130 creates a list of cryptographic modules of unauthorized charge/discharge devices, and stores the list in the storage unit 140.
Furthermore, in the case where the determination result shows that the number of the power storage devices 300 identified by the multiple power storage device identification information items is smaller than the predetermined threshold (S606: N), the unauthorization detecting unit 120 determines that the charge/discharge device connected with the power storage device 300 is not an unauthorized one, and finishes the processing.
Here, the unauthorization detecting unit 120 may change the above threshold, depending on the kind of a charge/discharge device. In other words, in the case where the charge/discharge device is for a commercial facility or a charging station, the threshold of the unauthorization detecting unit 120 may be set higher than that of the charge/discharge device for the standard home.
Hence, the unauthorized connection detecting device 100 finishes the processing for detecting an unauthorized charge/discharge device.
[Modification 2]
In the above embodiment and Modification 1, the first identification information is information for identifying a public key certificate of a power storage device connectable to the charge/discharge device 200. In Modification 2, the first identification information is information for identifying a secret key of the power storage device. Moreover, in the above embodiment and Modification 1, the second identification information is information for identifying a public key certificate of a charge/discharge device connectable with the power storage device 300. In Modification 2, the second identification information is information for identifying a secret key of the charge/discharge device.
In other words, the charge/discharge device 200 stores in the storage unit 270 a list of information for identifying a secret key of a power storage device. With reference to the secret key list, the charge/discharge device 200 identifies the secret key of a power storage device connected to the charge/discharge device 200, and stores in the storage unit 270 the first charge/discharge information 273 using the information for identifying the secret key as the first identification information.
Similarly, the power storage device 300 stores in the storage unit 370 a list of information for identifying a secret key of a charge/discharge device. With reference to the secret key list, the power storage device 300 identifies the secret key of a charge/discharge device connected to the power storage device 300, and stores in the storage unit 370 the second charge/discharge information 373 using the information for identifying the secret key as the second identification information.
It is noted that when the unauthorized connection detecting device 100 holds the above secret key list, the charge/discharge device 200 or the power storage device 300 does not have to hold the secret key list. Instead, the charge/discharge device 200 or the power storage device 300 may obtain the list from the unauthorized connection detecting device 100 via the communications network 600. In other words, the charge/discharge device 200 or the power storage device 300 transmits the key ID of a secret key to the unauthorized connection detecting device 100, and obtains information for identifying the secret key. It is noted that, in this case, the unauthorized connection detecting device 100 can prevent an unauthorized connection by performing verification using the received secret key.
Next, described in detail is mutual authentication processing (S104 in
As shown in
Then, with reference to the secret key list stored in the storage unit 270, the charge/discharge device 200 searches for the secret key of the power storage device 300 (S706). With reference to the secret key list stored in the storage unit 370, the power storage device 300 searches for the secret key of the charge/discharge device 200 (S708).
Then, the power storage device 300 creates a random number r1, and transmits the random number r1 to the charge/discharge device 200 (S710). Then, the charge/discharge device 200 encrypts the received random number r1 with a secret key SKp_i, creates the random number r2, and transmits the encrypted random number r1 and the random number r2 (S712).
Then, the power storage device 300 receives the random number r2 and information created of the encrypted random number r1 with the secret key SKp_i, and checks whether the information matches the result of the encryption of the random number r1 with the secret key SKp_i.
Then, in the case where the power storage device 300 determines that the information matches the encryption result, the power storage device 300 encrypts the random number r2 with a secret key SKv_i and transmits the encrypted random number r2 to the charge/discharge device 200 (S714). It is noted that in the case where the information fails to match the encryption result, the power storage device 300 returns NG to the charge/discharge device 200, and breaks off the connections to the charge/discharge device 200.
Then, the charge/discharge device 200 receives the information created of the encrypted random number r2 with the secret key SKv_i, and checks whether the information matches the result of the encryption of the random number r2 with the secret key SKv_i.
Then, in the case where the charge/discharge device 200 determines that the information matches the encryption result, the charge/discharge device 200 returns OK to the power storage device 300 (S716). It is noted that in the case where the information fails to match the encryption result, the charge/discharge device 200 returns NG to the power storage device 300, and breaks off the connections to the power storage device 300.
Hence, the mutual authentication processing (S104 in
As described above, the unauthorized connection detecting device 100 according to the embodiment of the present invention and the modifications thereof detects whether or not a power storage device is an unauthorized power storage device by (i) receiving the first charge/discharge information in which the first identification information for identifying a secret key of a power storage device and the first connection information on a power storage device are associated each other, and (ii) determining, using the first charge/discharge information, whether or not two or more power storage devices associated with a single first identification information are present. Here, on authentic power storage devices, a single first identification information item is assigned to one power storage device. When a cryptographic module of an authentic product is introduced in an unauthorized manner, however, two or more power storage devices associated with a single first identification information item are to be present. Hence, in the case where two or more power storage devices associated with a single first identification information are present, the unauthorized connection detecting device 100 can determine that any one or more of the power storage devices are unauthorized ones. Thus, the unauthorized connection detecting device 100 can detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Furthermore, the unauthorized connection detecting device 100 detects whether or not a power storage device is an unauthorized power storage device by determining, based on a relationship between times and positions associated with a single first identification information item, whether or not two or more power storage devices associated with the single first identification information item are present. In other words, in the case where there is an unnatural relationship between times and positions associated with a single first identification information item, the unauthorized connection detecting device 100 determines that two or more power storage devices associated with the single first identification information item are present. For example, in the case where a power storage device cannot possibly travel a distance between two positions within a time period between two times when the two positions and the two times are associated with a single first identification information item, the unauthorized connection detecting device 100 determines that two or more power storage devices associated with the single first identification information item are present. Thus, the unauthorized connection detecting device 100 can detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
In addition, information on a time included in the first charge/discharge information received by the unauthorized connection detecting device 100 is time information indicating the time at which a charge/discharge device charges or discharges a power storage device. Information on a position is position information such as GPS information indicating a position of the charge/discharge device. Since the above features allow the unauthorized connection detecting device 100 to receive easily created first charge/discharge information, the unauthorized connection detecting device 100 can easily detect an unauthorized power storage device having a cryptographic module of an authentic product introduced in an unauthorized manner.
In addition, the unauthorized connection detecting device 100 detects whether or not a charge/discharge device is an unauthorized charge/discharge device by receiving the second charge/discharge information in which the second identification information and the second connection information are associated each other, and (ii) determining, using the second charge/discharge information, whether or not two or more charge/discharge devices associated with a single second identification information item are present. The second identification information is information for identifying the encryption key of the charge/discharge device, and the second connection information is information on the charge/discharge device. Here, on authentic charge/discharge devices, a single second identification information item is assigned to one charge/discharge device. When a cryptographic module of an authentic product is introduced in an unauthorized manner, however, two or more charge/discharge devices associated with a single second identification information item are to be present. Hence, in the case where two or more charge/discharge devices associated with a single second identification information item are present, the unauthorized connection detecting device 100 can determine that any one or more of the power storage devices are unauthorized ones. Thus, the unauthorized connection detecting device 100 can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Furthermore, the unauthorized connection detecting device 100 detects whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not two or more charge/discharge device identification information items associated with a single second identification information item indicate mutually different charge/discharge devices, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. In other words, in the case where two or more charge/discharge device identification information items associated with a single second identification information item indicate different charge/discharge devices, the unauthorized connection detecting device 100 determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device 100 can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Moreover, the charge/discharge device identification information included in the second charge/discharge information received by the unauthorized connection detecting device 100 is position information indicating the position of a charge/discharge device. The unauthorized connection detecting device 100 detects whether or not a charge/discharge device is an unauthorized charge/discharge device by determining whether or not two or more position information items associated with a single second identification information item indicate different positions each other, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. The two or more position information items are included in the position information. Here, the charge/discharge device is placed at a predetermined position, and never found at two or more sites. Hence, in the case where two or more position information items associated with a single second identification information item indicate different positions each other, the unauthorized connection detecting device 100 determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device 100 can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Furthermore, the charge/discharge device identification information included in the second charge/discharge information received by the unauthorized connection detecting device 100 may be direct current information indicating a fluctuation of a direct current provided from a charge/discharge device. The unauthorized connection detecting device 100 may detect whether or not a charge/discharge device is an unauthorized charge/discharge device, by determining whether or not two or more direct current information items associated with a single second identification information item indicate mutually different fluctuations, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. The two or more direct current information items are included in the direct current information. Here, a direct current provided from a charge/discharge device has fluctuation which is unique to the charge/discharge device itself. Through the analysis of the fluctuation using a phase sample of the direct current, the charge/discharge device can be identified. Hence, in the case where two or more direct current information items associated with a single second identification information item indicate different fluctuations each other, the unauthorized connection detecting device 100 determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device 100 can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Moreover, the unauthorized connection detecting device 100 detects whether or not a charge/discharge device is an unauthorized charge/discharge device by determining whether or not the number of power storage devices, identified by two or more power storage device identification information items associated with a single second identification information item, is larger than or equal to a predetermined threshold, thereby determining whether or not two or more charge/discharge devices associated with the single second identification information item are present. Here, the two or more power storage device identification information items being included in the power storage device identification information. Here, the number of power storage devices to be connected to one charge/discharge device is limited. In the case where the number of the connected power storage devices is larger than or equal to a predetermined threshold, two or more charge/discharge devices associated with a single second identification information item are to be present. In other words, in the case where the number of power storage devices associated with a single second identification information item is larger than or equal to a predetermined threshold, the unauthorized connection detecting device 100 determines that two or more charge/discharge devices associated with the single second identification information item are present. Thus, the unauthorized connection detecting device 100 can detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Furthermore, the unauthorized connection detecting device 100 receives information via the communications network 600 connected either with the charging station 500 or a charge/discharge device. In other words, when a power storage device is either charged at the charging station 500 or one of charged and discharged by a charge/discharge device, the unauthorized connection detecting device 100 can easily receive the information. Thus, the unauthorized connection detecting device 100 can easily obtain information and detect an unauthorized charge/discharge device having a cryptographic module of an authentic product introduced in an unauthorized manner.
Although described in detail above is the unauthorized connection detecting device 100 according to an exemplary embodiment and modifications thereof, those skilled in the art will readily appreciate that various modifications may be made in the exemplary embodiment and the modifications without materially departing from the principles and spirit of the inventive concept, the scope of which is defined in the appended Claims and their equivalents. Moreover, constituent elements in the embodiment and the modifications may be combined each other.
For example, in the present embodiment and the modifications thereof, the unauthorized connection detecting system 10 includes both of the charge/discharge device 200 and the power storage device 300. However, the unauthorized connection detecting device 100 may have only one of the charge/discharge device 200 and the power storage device 300.
Moreover, the unauthorized connection detecting device 100 does not have to include all the constituent features shown in
In addition, the present invention can be implemented in the form of an unauthorized connection detecting method including characteristic processing to be carried out by the unauthorized connection detecting device or the unauthorized connection detecting system as steps. Moreover, the steps included in the unauthorized connection detecting method may be implemented in the form of a program to be executed by a computer and a computer-readable recording medium in which the program is stored. As a matter of course, the program may be distributed via a recording medium such as a CD-ROM and a transmission medium such as the Internet.
In other words, in the embodiment, each of the constituent elements may be formed of dedicated hardware and implemented by executing software which is suitable to each constituent element. For example, each of the constituent elements may be implemented by a program executing unit, such as a CPU or a processor, reading and executing a software program stored in a recording medium such as a hard disc or a semiconductor memory.
In other words, each of the constituent elements in the unauthorized connection detecting device shown in
Moreover, the unauthorized connection detecting method is employed by an unauthorized connection detecting device for detecting whether or not a charge/discharge device that is connectable with a power storage device and charges or discharges the power storage device is an unauthorized charge/discharge device. The unauthorized connection detecting method includes: receiving by the unauthorized connection detecting device second charge/discharge information in which second identification information and second connection information are associated each other, the second identification information being information for identifying an encryption key of the charge/discharge device used for mutual authentication between the power storage device and the charge/discharge device connectable with the power storage device, and the second connection information being information on the charge/discharge device and obtained when the charge/discharge device is connected with the power storage device; and detecting by the unauthorized connection detecting device whether or not the charge/discharge device connected with the power storage device is the unauthorized charge/discharge device, by determining, using the second identification information and the second connection information included in the received second charge/discharge information, whether or not two or more charge/discharge devices associated with a single second identification information item are present.
In addition, each of the processing units included in an unauthorized connection detecting device according to an implementation of the present invention may be implemented in the form of an integrated circuit; namely, the large scale integration (LSI). In other words, each of the processing units included in
Furthermore, here, LSI is mentioned but there are instances where, due to a difference in the degree of integration, the designations IC, LSI, super LSI, and ultra LSI are used.
Furthermore, the means for circuit integration is not limited to the LSI, and implementation in the form of a dedicated circuit or a general-purpose processor is also available. In addition, it is also acceptable to use a Field Programmable Gate Array (FPGA) that is programmable after the LSI has been manufactured, and a reconfigurable processor in which connections and settings of circuit cells within the LSI are reconfigurable.
Furthermore, if an integrated circuit technology that replaces the LSI appears thorough the progress in the semiconductor technology or an other derived technology, that technology can naturally be used to carry out integration of the constituent elements. Biotechnology can be applied to the integrated circuit technology.
The present invention is applicable to an unauthorized connection detecting device which is capable of detecting an unauthorized power storage device or an unauthorized charge/discharge device that have a cryptographic module of an authentic product introduced thereinto in an unauthorized manner.
| Number | Date | Country | Kind |
|---|---|---|---|
| 2012-007476 | Jan 2012 | JP | national |
| Filing Document | Filing Date | Country | Kind |
|---|---|---|---|
| PCT/JP2012/007076 | 11/5/2012 | WO | 00 |
| Publishing Document | Publishing Date | Country | Kind |
|---|---|---|---|
| WO2013/108318 | 7/25/2013 | WO | A |
| Number | Name | Date | Kind |
|---|---|---|---|
| 6490513 | Fish et al. | Dec 2002 | B1 |
| 7667429 | Little | Feb 2010 | B2 |
| 7986126 | Bucci | Jul 2011 | B1 |
| 8278870 | Little | Oct 2012 | B2 |
| 8387113 | Shimada et al. | Feb 2013 | B2 |
| 8525473 | Shimizu et al. | Sep 2013 | B2 |
| 8633801 | Iwai | Jan 2014 | B2 |
| 8639219 | Little | Jan 2014 | B2 |
| 8798852 | Chen et al. | Aug 2014 | B1 |
| 20070123316 | Little | May 2007 | A1 |
| 20090082957 | Agassi | Mar 2009 | A1 |
| 20090125979 | Shimada et al. | May 2009 | A1 |
| 20090234599 | Watanabe | Sep 2009 | A1 |
| 20090278492 | Shimizu et al. | Nov 2009 | A1 |
| 20090313103 | Ambrosio et al. | Dec 2009 | A1 |
| 20090313104 | Hafner et al. | Dec 2009 | A1 |
| 20100076825 | Sato et al. | Mar 2010 | A1 |
| 20100094496 | Hershkovitz | Apr 2010 | A1 |
| 20100148721 | Little | Jun 2010 | A1 |
| 20100194529 | Yamamoto | Aug 2010 | A1 |
| 20100315197 | Solomon et al. | Dec 2010 | A1 |
| 20110022222 | Tonegawa | Jan 2011 | A1 |
| 20110066309 | Matsuoka et al. | Mar 2011 | A1 |
| 20110099111 | Levy et al. | Apr 2011 | A1 |
| 20110144844 | Ishibashi | Jun 2011 | A1 |
| 20110191186 | Levy | Aug 2011 | A1 |
| 20120013301 | Gaul et al. | Jan 2012 | A1 |
| 20120046015 | Little | Feb 2012 | A1 |
| 20120049786 | Kurimoto | Mar 2012 | A1 |
| 20120161925 | Gale | Jun 2012 | A1 |
| 20130079962 | Ishikawa | Mar 2013 | A1 |
| 20130099744 | Falk et al. | Apr 2013 | A1 |
| 20130132270 | Cheung | May 2013 | A1 |
| 20130278225 | Dietze | Oct 2013 | A1 |
| 20130339072 | Touge | Dec 2013 | A1 |
| 20140139354 | Miyazaki | May 2014 | A1 |
| Number | Date | Country |
|---|---|---|
| 1193823 | Sep 1998 | CN |
| 1797895 | Jul 2006 | CN |
| 101356705 | Jan 2009 | CN |
| 10 2010 026 689 | Jan 2012 | DE |
| 1 667 305 | Jun 2006 | EP |
| 2006-331815 | Dec 2006 | JP |
| 2007-305074 | Nov 2007 | JP |
| 2009-171700 | Jul 2009 | JP |
| 4407753 | Feb 2010 | JP |
| 2010-200528 | Sep 2010 | JP |
| 2007041866 | Apr 2007 | WO |
| Entry |
|---|
| International Search Report issued Dec. 25, 2012 in International (PCT) Application No. PCT/JP2012/007076. |
| Office Action issued Oct. 29, 2015 in corresponding Chinese Patent Application No. 201280010615.1 with partial English translation. |
| Extended European Search Report issued Dec. 17, 2015 in corresponding European Patent Application No. 12865737.6. |
| Number | Date | Country | |
|---|---|---|---|
| 20140059350 A1 | Feb 2014 | US |
