SESSION KEY ESTABLISHMENT METHOD BASED ON TRUSTED EXECUTION ENVIRONMENT

摘要

The present invention relates to a method for establishing an encryption session key between a first device and a second device of an infotainment system including a trusted execution environment. The method comprises: a step in which a first device and a second device transmit a cryptogram encrypted with a private key of a public key infrastructure and a plain text, respectively, and a device that receives the cryptogram performs mutual authentication by decrypting the cryptogram with the other party′s public key and comparing the decrypted cryptogram with the plain text; a step in which the second device generates a first session key to be used for encryption communication between security areas of a trusted execution environment and a second session key to be used for encryption communication between general areas of the trusted execution environment based on information transmitted from the first device and information about the second device, and divides a security area of the first device; and a step in which the first device and the second device that establish the session key for the encryption communication between security areas of the first and second devices transmit the second session key to a general area of each device so as to establish a session key for encryption communication between the general areas. According to the present invention, a session key is established using a public key-based key exchange algorithm, and thus, communication between devices can be performed in a safe manner.