Summary of the invention
An object of the present invention is for above-mentioned deficiency, a kind of Intelligent electric energy meter based on Internet of Things information security management module is provided, with problems such as the information security management of expecting to solve various types of Intelligent electric energy meter based on Internet of Things and management system thereof in prior art can not be guaranteed, thus eliminate the risk of information security management in Utilities Electric Co.'s operation.
For solving above-mentioned technical problem, the present invention by the following technical solutions:
A kind of Intelligent electric energy meter based on Internet of Things information security management module provided by the present invention, described information security management module comprises processor, the first data-interface, the second data-interface and FLASH memory, described processor accesses the first data-interface, the second data-interface and FLASH memory respectively, wherein:
Described first data-interface communicates with the unique data of data transmission module for performing Intelligent electric energy meter based on Internet of Things, and transmits it to processor when receiving and coming from external data that data transmission module receives from Internet of Things;
Described FLASH memory is for storing control in information security management module and documentor;
Described second data-interface is for performing the data communication between processor and Intelligent electric energy meter based on Internet of Things terminal master controller, and described Intelligent electric energy meter based on Internet of Things terminal master controller is used for performing the operation of corresponding table end according to the instruction of processor;
Described processor is used for when receiving the external data coming from the first data-interface, authentication is carried out to the Internet of Things remote control terminal sending external data, judge whether to obtain the encrypted packets in this external data, and send corresponding operational order by the second data-interface to Intelligent electric energy meter based on Internet of Things terminal master controller according to the affairs comprised in data.
As preferably, further technical scheme is: described processor is used for when receiving the external data coming from the first data-interface, according to external data, authentication is carried out to Internet of Things remote control terminal, when authentication result is judged as legal, then encrypted packets is decrypted and completeness check, on the contrary the initial condition that then resets;
After data integrity verifying passes through, the validity of data is verified, on the contrary the initial condition that then resets;
After Validation of Data is passed through, preliminary treatment is carried out to the affairs comprised in data, and from Intelligent electric energy meter based on Internet of Things terminal master controller, obtain corresponding return information by the second data-interface, data transmission module is returned to by the first data-interface by after described return information encryption, then pre-processed results approved after effectively being confirmed and stored relevant operation information, and to Intelligent electric energy meter based on Internet of Things terminal master controller transmit operation instruction; Otherwise then abandon pre-processed results or make caching process.
Further technical scheme is: preset agreement restrictive condition and multiple different cipher key procedures in described FLASH memory, for when information security management module carries out exchanges data from different Internet of Things remote control terminals respectively, processor according to the encryption key of external data compared with multiple cipher key procedures preset in FLASH memory, thus the identity of certification Internet of Things remote control terminal, and after encrypted packets deciphering and completeness check are passed through, according to the validity of agreement restrictive condition verification msg under current identity, judge whether to carry out preliminary treatment to the affairs in data,
Described first data-interface also accesses IC card information Switching Module, for transmitting it to processor when receiving the external data coming from IC card information Switching Module, processor performs the verification identical with the external data coming from data transmission module to described external data.
Further technical scheme is: also comprise eeprom memory in described information security management module, described eeprom memory also accesses processor, for the associative operation information of storage of processor to Intelligent electric energy meter based on Internet of Things terminal master controller, and processor is to the pre-processed results of affairs in external data.
Further technical scheme is: described processor is central processing unit or the single-chip microcomputer that can perform cryptographic algorithm; Described data transmission module is network communication module or bus communication module.
Further technical scheme is: the first described data-interface is network communication interface or bus interface.
Further technical scheme is: described network communication interface be at least in the middle of RF module interface, Zigbee module interface, WiFi module interface, bluetooth module interface or Optical Fiber Transmission interface, data line transfer interface, power line transmission interface any one; Described bus interface be at least in the middle of Mbus bus interface, RS485 bus interface, CAN interface any one.
Further technical scheme is: the second described data-interface be at least in the middle of USART serial line interface, SPI serial line interface or I2C serial line interface any one.
Further technical scheme is: described information security management module also comprises encrypting module, described encrypting module access processor, for the multistage encryption and decryption to information security management module and Internet of Things remote control terminal, Intelligent electric energy meter based on Internet of Things terminal master controller exchanges data, and the data encryption key that auxiliary processor obtains Internet of Things remote control terminal carries out authentication.
Further technical scheme is: described encrypting module is by the Advanced Encryption Standard in AES(cryptography, the abbreviation of English AdvancedEncryptionStandard) or the triple DEA of 3DES(, English TripleDataEncryptionAlgorithm) mode carry out data encrypting and deciphering.
Compared with prior art, one of beneficial effect of the present invention is: information security management module carries out authentication when carrying out exchanges data by data transmission module and Internet of Things remote control terminal, ensure that the legitimacy of both communication, Intelligent electric energy meter based on Internet of Things terminal master controller could must be communicated with outside by information security management module; Utilize different keys can realize the priority assignation of Utilities Electric Co.'s differentiated control, and adopt 3DES/AES multi-level encryption mode, make the fail safe of key higher, and by upgrade key during download program cause for gossip in information security management module, avoid the risk that key exposure brings; By built-in data verifying program, ensure that the data of transmission are true, accurate, complete.A kind of Intelligent electric energy meter based on Internet of Things information security management modular structure provided by the present invention is simple simultaneously, can embed in various types of Intelligent electric energy meter based on Internet of Things, by multiple communication transmission technology and bus interface compatible Intelligent electric energy meter based on Internet of Things terminal master controller, and seamless access power supply management system, realize Intelligent electric energy meter based on Internet of Things dispersion to manufacture, unified management, range of application is wide, and ensure the independence of Utilities Electric Co. on electric energy meter controls, and not by extraneous restriction.
Embodiment
Below in conjunction with accompanying drawing, the present invention is further elaborated.
Shown in figure 1, one embodiment of the present of invention are a kind of Intelligent electric energy meter based on Internet of Things information security management modules, described information security management module comprises processor, the first data-interface, the second data-interface and FLASH memory, described processor accesses the first data-interface, the second data-interface and FLASH memory respectively, wherein:
The effect of above-mentioned first data-interface performs Intelligent electric energy meter based on Internet of Things to communicate with the unique data of data transmission module, and transmit it to processor when receiving and coming from external data that data transmission module receives from Internet of Things;
The effect of above-mentioned FLASH memory stores control in information security management module and documentor;
Shown in figure 2, the effect of above-mentioned second data-interface performs the data communication between processor and Intelligent electric energy meter based on Internet of Things terminal master controller, and the effect of Intelligent electric energy meter based on Internet of Things terminal master controller performs the operation of respective table end according to the instruction of processor;
The effect of above-mentioned processor is when receiving the external data coming from the first data-interface, authentication is carried out to the Internet of Things remote control terminal sending external data, judge whether to obtain encrypted packets in this external data, and send corresponding operational order by the second data-interface to Intelligent electric energy meter based on Internet of Things terminal master controller according to the affairs comprised in data.
According to above-mentioned technical scheme, the technical problem that the present embodiment solves is the information security management module by above-mentioned composition structure, data retransmission is carried out between Multi-stage transmission transfer device in Intelligent electric energy meter based on Internet of Things terminal master controller and Internet of Things, Internet of Things remote control terminal, and give certification and encryption and decryption when forwarding, thus coordinate the intelligent electric energy meter of Utilities Electric Co. to terminal to manage, to eliminate the risk of information security management in Utilities Electric Co.'s operation.
And the Oscillator module shown in Fig. 1 and pin XIN, XOUT provide clock signal to information security management module; RAM memory is used for the operating ephemeral data of memory module; VCC and VSS two pins provides working power for information security management module, and this power supply should be continued power and can not be provided by Intelligent electric energy meter based on Internet of Things terminal master controller pin.
Shown in Fig. 1, in the embodiment that the present invention is more preferably for technical solution problem, the concrete mode that a kind of above-mentioned processor performs the authentication of Internet of Things remote control terminal and affairs is provided, namely when processor receives the external data coming from the first data-interface, according to external data, authentication is carried out to Internet of Things remote control terminal, when authentication result is judged as legal, then encrypted packets is decrypted and completeness check, on the contrary the initial condition that then resets;
After data integrity verifying passes through, the validity of data is verified, on the contrary the initial condition that then resets;
After Validation of Data is passed through, preliminary treatment is carried out to the affairs comprised in data, and from Intelligent electric energy meter based on Internet of Things terminal master controller, obtain corresponding return information by the second data-interface, data transmission module is returned to by the first data-interface by after described return information encryption, then pre-processed results approved after effectively being confirmed and stored relevant operation information, and to Intelligent electric energy meter based on Internet of Things terminal master controller transmit operation instruction; Such as, otherwise then abandon pre-processed results or make caching process, namely do not receive the confirmation result of data transmission module within the time preset, do not receive the confirmation of data transmission module in three minutes, then reset initial condition; Aforesaid caching process refers to keeps in pre-processed results instruction, when processor is again waken up and receives the confirmation of data transmission module, then in the same way to Intelligent electric energy meter based on Internet of Things terminal master controller transmit operation instruction.
The whole flow process of the present embodiment peripheral data from the authentication of Internet of Things remote control terminal to the affairs external data performed by processor is further comprises in above-mentioned technical scheme, by the programming of above-mentioned flow process, further enhance in information security management module the fail safe receiving information and executing.And the above-mentioned processor reset initial condition repeatedly mentioned, be resetting processor and perform the state before any one operation above-mentioned, it is resting state that such as processor carried out the state of authentication before receiving external data, be waken up by resting state when receiving external data, but when being judged as illegal to the authentication of Internet of Things remote control terminal, processor then recovers resting state, do not carry out any operation, in other step, the situation of processor reset also substantially as hereinbefore, when failing the authentication, operation note can be stored by processor.Above-mentioned mentioned Internet of Things remote control terminal is various different communication object in Internet of Things simultaneously, and different communication objects is finally connected to management system for selling power.
And it is same, in another embodiment of the invention, for realizing being managed information security management module by different rights, need in above-mentioned FLASH memory preset agreement restrictive condition and multiple different cipher key procedures, it act as when information security management module carries out exchanges data from different Internet of Things remote control terminals respectively, processor according to the encryption key of external data compared with multiple cipher key procedures preset in FLASH memory, thus the identity of certification Internet of Things remote control terminal, and after encrypted packets deciphering and completeness check are passed through, according to the validity of agreement restrictive condition verification msg under current identity, judge whether to carry out preliminary treatment to the affairs in data,
Shown in figure 2, for meeting the internal structure of Internet of Things electric energy meter mostly at present, above-mentioned first data-interface also accesses IC card information Switching Module, for transmitting it to processor when receiving the external data coming from IC card information Switching Module, processor performs the verification identical with the external data coming from data transmission module to described external data.
According to another embodiment of the present invention, as mentioned here above, for ease of the buffer memory of processor pre-processed results, in information security management module, also relatively independent eeprom memory can be set, and eeprom memory is also accessed processor, for the associative operation information of storage of processor to Intelligent electric energy meter based on Internet of Things terminal master controller, processor is to the pre-processed results of affairs in external data, and the failure record of processor checking, and in FLASH memory, be also provided with other program that can be utilized by processor, namely processor to the associative operation information of Intelligent electric energy meter based on Internet of Things terminal master controller once be stored to after in eeprom memory, by unsuppressible-suppression and amendment, to make the running status of information security management module leave complete record.
Shown in Fig. 2, Intelligent electric energy meter based on Internet of Things information security management module in above-described embodiment in actual applications, between access Internet of Things intelligent electric meter terminal master controller and data transmission module, and the internal structure of ammeter and existing Internet of Things intelligent electric meter are as good as, Internet of Things intelligent electric meter itself is containing several functions module, as pulse counter module, memory module, display module, relay control module, surplus reminding module etc., these modules are by being connected with Internet of Things intelligent electric meter terminal master controller, complete the correlation function of Internet of Things intelligent electric meter, measure as completed power consumption with pulse counter module, display module shows power consumption and dump energy, relay control module is as power on/off switch, surplus reminding module is before institute's purchase of electricity is about to be finished, power purchase operation etc. should be carried out as early as possible by buzzer prompting prompting user.
And according to above-mentioned principle, this Internet of Things intelligent electric meter information safety management module can directly Integrated predict model in the Internet of Things intelligent electric meter of routine, networked by the upper strata such as data acquisition unit, data concentrator multistage communication device and Internet of Things remote control terminal constituent, GradeNDivision data area, and then carry out signal distribution by the Internet and integrate, ensure the stability of Signal transmissions in Internet of Things; And in addition, the improvement application going back adaptability carries out the metering device of telemanagement in other by electronic information.
The processor that above-described embodiment is mentioned is the core of information security management module, for performing corresponding program and data encryption, in another embodiment of the present invention, above-mentioned processor is directly adopt the central processing unit or single-chip microcomputer that can perform cryptographic algorithm in prior art, such as EFM32 etc.
Based on data communication mode required in above-described embodiment, inventor is with reference to prior art, to select in prior art the communication that the transmission technology of part realizes between processor and interface, wherein data transmission module can adopt network communication module or bus communication module, and corresponding with aforesaid data transmission module, the first data-interface for carrying out unique communication with data transmission module in above-described embodiment can adopt network communication interface or bus interface.
Further, above-mentioned network communication interface can adopt wireless or wired form, radio network interface can adopt in the middle of RF module interface, Zigbee module interface, WiFi module interface and bluetooth module interface one or more, wired network interface can adopt in the middle of Optical Fiber Transmission interface, data line transfer interface and power line transmission interface one or more; In the middle of above-mentioned bus interface Mbus bus interface, RS485 bus interface, CAN interface one or more.
And it is corresponding, the second data-interface that in above-described embodiment, processor and Intelligent electric energy meter based on Internet of Things terminal master controller carry out communicating preferably matches with conventional master controller, the serial line interfaces such as such as USART interface, SPI interface or I2C interface, to increase the compatibility on information security management module integration and intelligent electric energy meter.
Shown in Fig. 1, for the fail safe of data encryption and deciphering in the administration module that ensures information security further, preferably independently encrypting module is set therein, and by this independently encrypting module access processor, for to information security management module and Internet of Things remote control terminal, the multistage encryption and decryption of Intelligent electric energy meter based on Internet of Things terminal master controller exchanges data, and the data encryption key that auxiliary processor obtains Internet of Things remote control terminal carries out authentication, and the cipher mode that in reference prior art, fail safe is higher, Advanced Encryption Standard in preferred employing AES(cryptography, the abbreviation of English AdvancedEncryptionStandard) or the triple DEA of 3DES(, English TripleDataEncryptionAlgorithm) encryption and decryption is carried out to the data of coming and going in information security management module.
Shown in Fig. 3, after the integrated above-mentioned information security management module of Intelligent electric energy meter based on Internet of Things that multiple different vendor produces, the outside all communication datas of electric energy meter are all by forwarding after information security management module encryption and decryption, and the internal processes of information security management module is unique, therefore information security management module can be considered as terminal by management system for selling power, intelligent electric energy meter is managed by Internet of Things, namely with the compatible various brand of a management system for selling power, the intelligent electric energy meter of type is managed concentratedly, effective reduction Utilities Electric Co. is to different brands in region, the difficulty of the intelligent electric energy meter integration management of type.As shown in Figure 3, the exchanges data path of Intelligent electric energy meter based on Internet of Things and management system for selling power is: data, by upper strata multistage communication device, by Internet network (the Internet), arrive management system for selling power.And table end equipment user is by Internet network access intelligent electric energy meter total management system.
Than that described above, also it should be noted that spoken of in this manual " embodiment ", " another embodiment ", " embodiment " etc., refer to the specific features, structure or the feature that describe in conjunction with this embodiment and be included at least one embodiment of the application's generality description.Multiple place occurs that statement of the same race is not necessarily refer to same embodiment in the description.Furthermore, when describing specific features, structure or a feature in conjunction with any embodiment, what advocate is also fall within the scope of the invention to realize this feature, structure or feature in conjunction with other embodiments.
Although with reference to multiple explanatory embodiment of the present invention, invention has been described here, but, should be appreciated that, those skilled in the art can design a lot of other amendment and execution mode, these amendments and execution mode will drop within spirit disclosed in the present application and spirit.More particularly, in the scope of, accompanying drawing open in the application and claim, multiple modification and improvement can be carried out to the building block of subject combination layout and/or layout.Except the modification of carrying out building block and/or layout is with except improvement, to those skilled in the art, other purposes also will be obvious.