CN106790034A - A kind of internet of things equipment certification and the method for secure accessing - Google Patents
A kind of internet of things equipment certification and the method for secure accessing Download PDFInfo
- Publication number
- CN106790034A CN106790034A CN201611162053.9A CN201611162053A CN106790034A CN 106790034 A CN106790034 A CN 106790034A CN 201611162053 A CN201611162053 A CN 201611162053A CN 106790034 A CN106790034 A CN 106790034A
- Authority
- CN
- China
- Prior art keywords
- internet
- things
- information
- cloud server
- management platform
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a kind of internet of things equipment certification and the method for secure accessing, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X;In registration step A, the characteristic information that awareness apparatus D passes through factory number, generate the first authentication information Q1, in registration step B, Cloud Server X be Cloud Server 0 to Cloud Server 7 in load low Cloud Server, in authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, it is sent to Internet of Things administrative center, in authenticating step B, gathered new information is matched with the information in registration step B, the operational order data that will be received using sensor, data deciphering and signature verification are carried out by intelligent chip, obtain correct, complete operational order, in addition, by setting up device authentication agreement of the authentication center to sensor, so as to set up the certification of Internet of Things infrastructure, complete and secrecy transmission the information safety system of data.
Description
Technical field
The present invention relates to a kind of device authentication and the method for secure accessing, specially a kind of internet of things equipment certification and safety
The method of access, belongs to internet of things field.
Background technology
Internet of Things be one based on the information carrier such as internet, conventional telecommunications net, allowing all can be independently addressable
Physical object realizes the network for interconnecting, using communication technologys such as localized network or internets sensor, controller, machine
Device, personnel and thing etc. are linked togather by new mode, are formed people and are connected with thing, thing and thing, realize information-based, remote management control
System and intelligentized network, with the rise of Internet of Things industry, Internet of Things awareness apparatus access the safety problem that cloud platform faces
Also increasingly highlighted with efficiency loading problem, at present in the safe Internet of Things field of Industry Control, with much for cloud platform and sense
Know the authentication method that real-time Communication for Power is carried out between equipment, but these method efficiency and security can only intelligently ensure first, Internet of Things
Net equipment access authentication procedure is excessively simple, and the characteristic information of equipment is easily forged, and security does not obtain real guarantee,
If high-volume awareness apparatus are authenticated transmission simultaneously, the problem of authentication efficiency reduction is easily caused.
The content of the invention
The purpose of the present invention is that and provide a kind of internet of things equipment certification and secure accessing in order to solve the above problems
Method, meet use requirement under complex work environment.
The present invention is achieved through the following technical solutions the side of above-mentioned purpose, a kind of internet of things equipment certification and secure accessing
Method, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X, its control method step are as follows:
Registration:
Step A, Internet of Things awareness apparatus D generate the first authentication information Q1 according to apparatus characteristic information C1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtain apparatus characteristic information C1 and send it to according to the first log-on message Q1
Cloud processing center loads relatively low Cloud Server X, and adds the perception in the Cloud Server of management platform allocation table numbering X and set
Standby information and numbering K, generate random number R 1;
Cloud Server numbering X and the random number R of generation are sent to awareness apparatus D by step C, Internet of Things management platform.
Certification:
Step a, Internet of Things awareness apparatus carry out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Numbering X1, random number R 2, sensing data M, generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center according to authentication information, obtain characteristic information C2, cloud platform server numbering X1, with
Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and be whether there is, if the authentification failure in the absence of if, if depositing
Whether there is the equipment that numbering is K is then searched, if not existing, authentification failure is sent out if that will obtain characteristic information C2 in the presence of if
Give the X Cloud Servers of cloud processing center.
Whether step c, cloud processing center, contrast C1==C2 set up, certification success, otherwise authentification failure if setting up.
Preferably, in the registration step A, the characteristic information that awareness apparatus D passes through factory number, generation the first certification letter
Breath Q1.
Preferably, in the registration step B, Cloud Server X takes to load low cloud in Cloud Server 0 to Cloud Server 7
Business device.
Preferably, in the authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, sends
Give Internet of Things administrative center.
Preferably, in the authenticating step B, gathered new information is matched with the information in registration step B.
The beneficial effects of the invention are as follows:Prepared by the method for this kind of internet of things equipment certification and secure accessing is that sensor will be adopted
The information for collecting is digitally signed and network data center is sent to after encrypting by intelligent chip, and network data center is again
Data deciphering and signature verification are carried out by authentication center, the information of complete, believable sensor collection is obtained, in network data
The heart will be sent to the operational order of sensor side, is digitally signed by authentication center and is sent to sensor after encrypting, and pass
The operational order data that sensor will be received, data deciphering and signature verification are carried out by intelligent chip, obtain correct, complete behaviour
Instruct, in addition, by setting up device authentication agreement of the authentication center to sensor, so as to set up recognizing for Internet of Things infrastructure
Complete and secrecy transmission the information safety system of card, data.
Brief description of the drawings
Fig. 1 is internet of things equipment of the present invention registration and security authentication process schematic diagram;
Fig. 2 is internet of things equipment certification of the present invention and secure accessing structural representation.
Specific embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out clear, complete
Site preparation is described, it is clear that described embodiment is only a part of embodiment of the invention, rather than whole embodiments.It is based on
Embodiment in the present invention, it is every other that those of ordinary skill in the art are obtained under the premise of creative work is not made
Embodiment, belongs to the scope of protection of the invention.
Embodiment one:
As shown in Figure 1:A kind of internet of things equipment certification and the method for secure accessing, including the management of awareness apparatus D, Internet of Things
Platform, management platform allocation table, Cloud Server X, its control method step are as follows:
Registration:
Step A, Internet of Things awareness apparatus D generate the first authentication information Q1 according to apparatus characteristic information C1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtain apparatus characteristic information C1 and send it to according to the first log-on message Q1
Cloud processing center loads relatively low Cloud Server X, and adds the perception in the Cloud Server of management platform allocation table numbering X and set
Standby information and numbering K, generate random number R 1;
Cloud Server numbering X and the random number R of generation are sent to awareness apparatus D by step C, Internet of Things management platform.
Certification:
Step a, Internet of Things awareness apparatus carry out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Numbering X1, random number R 2, sensing data M, generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center according to authentication information, obtain characteristic information C2, cloud platform server numbering X1, with
Machine number R2, sensing data M, if management platform is searched management platform allocation table X1 and do not existed, authentification failure is, it is necessary to re-register
Certification.
In the registration step A, the characteristic information that awareness apparatus D passes through factory number generates the first authentication information Q1, institute
In stating registration step B, Cloud Server X is to load low Cloud Server, the authenticating step A in Cloud Server 0 to Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, gathered new information is matched with the information in registration step B.
Embodiment two:
A kind of internet of things equipment certification and the method for secure accessing, including awareness apparatus D, Internet of Things management platform, management
Platform allocation table, Cloud Server X, its control method step are as follows:
Registration:
Step A, Internet of Things awareness apparatus D generate the first authentication information Q1 according to apparatus characteristic information C1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtain apparatus characteristic information C1 and send it to according to the first log-on message Q1
Cloud processing center loads relatively low Cloud Server X, and adds the perception in the Cloud Server of management platform allocation table numbering X and set
Standby information and numbering K, generate random number R 1;
Cloud Server numbering X and the random number R of generation are sent to awareness apparatus D by step C, Internet of Things management platform.
Certification:
Step a, Internet of Things awareness apparatus carry out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Numbering X1, random number R 2, sensing data M, generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center according to authentication information, obtain characteristic information C2, cloud platform server numbering X1, with
Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and it is whether the equipment of K deposits to continue to search for numbering
If not existing, authentification failure is, it is necessary to re-register certification.
In the registration step A, the characteristic information that awareness apparatus D passes through factory number generates the first authentication information Q1, institute
In stating registration step B, Cloud Server X is to load low Cloud Server, the authenticating step A in Cloud Server 0 to Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, gathered new information is matched with the information in registration step B.
Embodiment three:
A kind of internet of things equipment certification and the method for secure accessing, including awareness apparatus D, Internet of Things management platform, management
Platform allocation table, Cloud Server X, its control method step are as follows:
Registration:
Step A, Internet of Things awareness apparatus D generate the first authentication information Q1 according to apparatus characteristic information C1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtain apparatus characteristic information C1 and send it to according to the first log-on message Q1
Cloud processing center loads relatively low Cloud Server X, and adds the perception in the Cloud Server of management platform allocation table numbering X and set
Standby information and numbering K, generate random number R 1;
Cloud Server numbering X and the random number R of generation are sent to awareness apparatus D by step C, Internet of Things management platform.
Certification:
Step a, Internet of Things awareness apparatus carry out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Numbering X1, random number R 2, sensing data M, generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center according to authentication information, obtain characteristic information C2, cloud platform server numbering X1, with
Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and it is that the equipment of K is present to continue to search for numbering,
Acquisition characteristic information C2 is then sent to the X Cloud Servers of cloud processing center.
Step c, cloud processing center, C1==C2 is invalid for contrast, then authentification failure is, it is necessary to re-register certification.
In the registration step A, the characteristic information that awareness apparatus D passes through factory number generates the first authentication information Q1, institute
In stating registration step B, Cloud Server X is to load low Cloud Server, the authenticating step A in Cloud Server 0 to Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, gathered new information is matched with the information in registration step B.
As shown in Figure 2:The operational order data that will be received using sensor, data deciphering and label are carried out by intelligent chip
Name checking, obtains correct, complete operational order, and the guarantor that cloud platform provides security and efficiency is accessed to internet of things equipment
Card.
It is obvious to a person skilled in the art that the invention is not restricted to the details of above-mentioned one exemplary embodiment, Er Qie
In the case of without departing substantially from spirit or essential attributes of the invention, the present invention can be in other specific forms realized.Therefore, no matter
From the point of view of which point, embodiment all should be regarded as exemplary, and be nonrestrictive, the scope of the present invention is by appended power
Profit requires to be limited rather than described above, it is intended that all in the implication and scope of the equivalency of claim by falling
Change is included in the present invention.Any reference in claim should not be considered as the claim involved by limitation.
Moreover, it will be appreciated that although the present specification is described in terms of embodiments, not each implementation method is only wrapped
Containing an independent technical scheme, this narrating mode of specification is only that for clarity, those skilled in the art should
Specification an as entirety, the technical scheme in each embodiment can also be formed into those skilled in the art through appropriately combined
May be appreciated other embodiment.
Claims (5)
1. a kind of method of internet of things equipment certification and secure accessing, it is characterised in that the method comprises the following steps:
1) register:
Step A, Internet of Things awareness apparatus D generate the first authentication information Q1, and the first registration is believed according to apparatus characteristic information C1
Breath is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtain apparatus characteristic information C1 and send it at cloud according to the first log-on message Q1
The relatively low Cloud Server X of reason central loading, and awareness apparatus letter is added in the Cloud Server of management platform allocation table numbering X
Cease and numbering K, generate random number R 1;
Cloud Server numbering X and the random number R of generation are sent to awareness apparatus D by step C, Internet of Things management platform.
2) certification:
Step a, Internet of Things awareness apparatus carry out access authentication, and awareness apparatus D is numbered according to characteristic information C2, cloud platform server
X1, random number R 2, sensing data M, generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center obtain characteristic information C2, cloud platform server numbering X1, random number according to authentication information
R2, sensing data M, management platform are searched management platform allocation table X1 and be whether there is, if the authentification failure in the absence of if, if in the presence of if
Search the equipment that numbering is K whether there is, if not existing, authentification failure is sent to if will obtain characteristic information C2 in the presence of if
The X Cloud Servers of cloud processing center.
Whether step c, cloud processing center, contrast C1==C2 set up, certification success, otherwise authentification failure if setting up.
2. the method for a kind of internet of things equipment certification according to claim 1 and secure accessing, it is characterised in that:The note
The characteristic information that awareness apparatus D passes through factory number in volume step A, generates the first authentication information Q1.
3. the method for a kind of internet of things equipment certification according to claim 1 and secure accessing, it is characterised in that:The note
Cloud Server X is to load low Cloud Server in Cloud Server 0 to Cloud Server 7 in volume step B.
4. the method for a kind of internet of things equipment certification according to claim 1 and secure accessing, it is characterised in that:It is described to recognize
Awareness apparatus D generates authentication information I by other characteristic information in card step A, is sent to Internet of Things administrative center.
5. the method for a kind of internet of things equipment certification according to claim 1 and secure accessing, it is characterised in that:It is described to recognize
Card step B is matched gathered new information with the information in registration step B.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611162053.9A CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611162053.9A CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106790034A true CN106790034A (en) | 2017-05-31 |
CN106790034B CN106790034B (en) | 2019-04-19 |
Family
ID=58892630
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611162053.9A Expired - Fee Related CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106790034B (en) |
Cited By (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109376507A (en) * | 2018-09-03 | 2019-02-22 | 视联动力信息技术股份有限公司 | A kind of data safety control method and system |
CN110058555A (en) * | 2018-07-09 | 2019-07-26 | 江苏恒宝智能系统技术有限公司 | A kind of equipment authentication method and device based on Internet of Things |
CN110944055A (en) * | 2019-12-02 | 2020-03-31 | 广州中科永信科技有限公司 | Wireless networking protocol security protection method, device and storage medium |
CN112422549A (en) * | 2020-11-12 | 2021-02-26 | 成都渊数科技有限责任公司 | Access method and system of edge server iot equipment |
CN112469034A (en) * | 2020-11-25 | 2021-03-09 | 中国科学技术大学 | Internet of things gateway device capable of safely authenticating physical sensing equipment and access method thereof |
WO2021232671A1 (en) * | 2020-05-20 | 2021-11-25 | 浙江大学 | U2f physical token-based centralized authentication system for internet-of-things devices |
CN113865023A (en) * | 2021-09-26 | 2021-12-31 | 青岛海信日立空调系统有限公司 | Multi-split air conditioning system |
CN113949583A (en) * | 2021-10-26 | 2022-01-18 | 重庆忽米网络科技有限公司 | Security verification method for access of Internet of things equipment |
US11647390B2 (en) | 2017-11-03 | 2023-05-09 | Huawei Technologies Co., Ltd. | Information exchange method and apparatus |
US11956324B2 (en) | 2021-01-07 | 2024-04-09 | Stmicroelectronics S.R.L. | Sensor device, system and method |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105471858A (en) * | 2015-11-20 | 2016-04-06 | 西安电子科技大学 | Internet-of-things-sensing-equipment-based cloud platform authentication system and method |
-
2016
- 2016-12-15 CN CN201611162053.9A patent/CN106790034B/en not_active Expired - Fee Related
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105471858A (en) * | 2015-11-20 | 2016-04-06 | 西安电子科技大学 | Internet-of-things-sensing-equipment-based cloud platform authentication system and method |
Cited By (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US11647390B2 (en) | 2017-11-03 | 2023-05-09 | Huawei Technologies Co., Ltd. | Information exchange method and apparatus |
CN110058555A (en) * | 2018-07-09 | 2019-07-26 | 江苏恒宝智能系统技术有限公司 | A kind of equipment authentication method and device based on Internet of Things |
CN109376507A (en) * | 2018-09-03 | 2019-02-22 | 视联动力信息技术股份有限公司 | A kind of data safety control method and system |
CN110944055A (en) * | 2019-12-02 | 2020-03-31 | 广州中科永信科技有限公司 | Wireless networking protocol security protection method, device and storage medium |
WO2021232671A1 (en) * | 2020-05-20 | 2021-11-25 | 浙江大学 | U2f physical token-based centralized authentication system for internet-of-things devices |
CN112422549A (en) * | 2020-11-12 | 2021-02-26 | 成都渊数科技有限责任公司 | Access method and system of edge server iot equipment |
CN112469034A (en) * | 2020-11-25 | 2021-03-09 | 中国科学技术大学 | Internet of things gateway device capable of safely authenticating physical sensing equipment and access method thereof |
US11956324B2 (en) | 2021-01-07 | 2024-04-09 | Stmicroelectronics S.R.L. | Sensor device, system and method |
CN113865023A (en) * | 2021-09-26 | 2021-12-31 | 青岛海信日立空调系统有限公司 | Multi-split air conditioning system |
CN113865023B (en) * | 2021-09-26 | 2023-05-30 | 青岛海信日立空调系统有限公司 | Multi-split air conditioning system |
CN113949583A (en) * | 2021-10-26 | 2022-01-18 | 重庆忽米网络科技有限公司 | Security verification method for access of Internet of things equipment |
Also Published As
Publication number | Publication date |
---|---|
CN106790034B (en) | 2019-04-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106790034A (en) | A kind of internet of things equipment certification and the method for secure accessing | |
CN104811433B (en) | The distributed Internet of things system and implementation method of a kind of C/S frameworks | |
CN105450636B (en) | A kind of cloud computing management system | |
CN107528856A (en) | Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds | |
CN103269332B (en) | Safeguard system for power secondary system | |
CN105991734A (en) | Cloud platform management method and system | |
CN107210916A (en) | Condition, which is logged in, to be promoted | |
CN103942478A (en) | Method and device for identity verification and authority management | |
CN103929411B (en) | Information displaying method, terminal, safety server and system | |
CN102868702B (en) | System login device and system login method | |
CN101626369A (en) | Method, device and system for single sign-on | |
CN103347020B (en) | A kind of system and method across application authorization access | |
CN103905469A (en) | Safety control system and method applied to smart power grid wireless sensor network and cloud computing | |
CN107846414A (en) | A kind of single-point logging method and system, Centralized Authentication System | |
CN104036000A (en) | Database audit method, device and system | |
CN106101054A (en) | The single-point logging method of a kind of multisystem and centralized management system | |
CN103457802A (en) | Information transmission system and method | |
CN110175439A (en) | User management method, device, equipment and computer readable storage medium | |
CN109302397A (en) | A kind of network safety managing method, platform and computer readable storage medium | |
CN106302539A (en) | A kind of embedded type WEB safety certifying method | |
CN102045870A (en) | Business processing device and method based on wireless machine-to-machine protocol (WMMP) | |
CN103138919A (en) | Front-end secret key filling system and method of secret key filling | |
CN206878870U (en) | A kind of safe single-sign-on accesses system | |
CN205354119U (en) | Intellectual property transaction platform | |
CN112287393A (en) | Credible identity authentication method and device based on Internet of things and block chain |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20190419 Termination date: 20191215 |
|
CF01 | Termination of patent right due to non-payment of annual fee |