CN106790034B - A kind of method of internet of things equipment certification and secure accessing - Google Patents

A kind of method of internet of things equipment certification and secure accessing Download PDF

Info

Publication number
CN106790034B
CN106790034B CN201611162053.9A CN201611162053A CN106790034B CN 106790034 B CN106790034 B CN 106790034B CN 201611162053 A CN201611162053 A CN 201611162053A CN 106790034 B CN106790034 B CN 106790034B
Authority
CN
China
Prior art keywords
internet
things
information
cloud server
awareness apparatus
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201611162053.9A
Other languages
Chinese (zh)
Other versions
CN106790034A (en
Inventor
范科峰
徐荣茂
刘贤刚
李琳
姚相振
周睿康
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Institute Of Electronic Technology Standardization (ministry Of Industry And Information Technology Electronic Industry Standardization Institute) (ministry Of Industry And Information Technology Electronic Fourth Research Institute)
Original Assignee
China Institute Of Electronic Technology Standardization (ministry Of Industry And Information Technology Electronic Industry Standardization Institute) (ministry Of Industry And Information Technology Electronic Fourth Research Institute)
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Institute Of Electronic Technology Standardization (ministry Of Industry And Information Technology Electronic Industry Standardization Institute) (ministry Of Industry And Information Technology Electronic Fourth Research Institute) filed Critical China Institute Of Electronic Technology Standardization (ministry Of Industry And Information Technology Electronic Industry Standardization Institute) (ministry Of Industry And Information Technology Electronic Fourth Research Institute)
Priority to CN201611162053.9A priority Critical patent/CN106790034B/en
Publication of CN106790034A publication Critical patent/CN106790034A/en
Application granted granted Critical
Publication of CN106790034B publication Critical patent/CN106790034B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Power Engineering (AREA)
  • Health & Medical Sciences (AREA)
  • General Health & Medical Sciences (AREA)
  • Medical Informatics (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Computer And Data Communications (AREA)

Abstract

The invention discloses a kind of methods of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X;In registration step A, the characteristic information that awareness apparatus D passes through factory number, generate the first authentication information Q1, in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server into Cloud Server 7, in authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, it is sent to Internet of Things administrative center, in authenticating step B, acquired new information is matched with the information in registration step B, the operational order data that will be received using sensor, data deciphering and signature verification are carried out by intelligent chip, it obtains correct, complete operational order, in addition, by establishing authentication center to the equipment authentication protocol of sensor, to establish the certification of Internet of Things infrastructure, data are complete and the information safety system of secrecy transmission.

Description

A kind of method of internet of things equipment certification and secure accessing
Technical field
The present invention relates to a kind of method of equipment certification and secure accessing, specially a kind of internet of things equipment certification and safety The method of access, belongs to internet of things field.
Background technique
Internet of Things is one based on the information carriers such as internet, conventional telecommunications net, and allowing all can be independently addressable Physical object realizes the network to interconnect, using communication technologys such as localized network or internets sensor, controller, machine Device, personnel and object etc. are linked togather by new mode, are formed people and are connected with object, object and object, realize information-based, long-range management control System and intelligentized network, with the rise of Internet of Things industry, Internet of Things awareness apparatus accesses the safety problem that cloud platform faces It is also increasingly prominent with efficiency loading problem, at present in the safe internet of things field of Industry Control, have much for cloud platform and sense Know the authentication method that real time communication is carried out between equipment, but these method efficiency and safety can only intelligently guarantee first, Internet of Things Net equipment access authentication procedure is too simple, and the characteristic information of equipment is easy to be forged, and safety is not guaranteed really, If high-volume awareness apparatus carries out certification transmission simultaneously, the problem of be easy to causeing authentication efficiency to reduce.
Summary of the invention
The object of the invention is that providing a kind of certification of internet of things equipment and secure accessing to solve the above-mentioned problems Method, meet requirement under complex work environment.
The present invention is achieved through the following technical solutions above-mentioned purpose, a kind of side of internet of things equipment certification and secure accessing Method, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with Machine number R2, sensing data M, management platform, which searches management platform allocation table X1, whether there is, if it does not exist then authentification failure, if depositing It whether there is then searching the equipment that number is K, if it does not exist, then authentification failure, will then obtain characteristic information C2 hair if it exists Give the X Cloud Server of cloud processing center.
Step c, cloud processing center, whether comparison C1==C2 is true, authenticates success if setting up, otherwise authentification failure.
Preferably, in the registration step A, awareness apparatus D generates the first certification letter by the characteristic information of factory number Cease Q1.
Preferably, in the registration step B, Cloud Server X is that Cloud Server 0 loads low cloud clothes into Cloud Server 7 Business device.
Preferably, in the authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, sends Give Internet of Things administrative center.
Preferably, in the authenticating step B, acquired new information is matched with the information in registration step B.
The beneficial effects of the present invention are: this kind of internet of things equipment certification and the method preparation of secure accessing are that sensor will be adopted The information collected is digitally signed and is sent to after encrypting network data center, network data center is again by intelligent chip Data deciphering and signature verification are carried out by authentication center, obtains the information of complete, believable sensor acquisition, in network data The heart will be sent to the operational order of sensor side, and sensor is sent to after being digitally signed and encrypt by authentication center, pass The operational order data that sensor will receive carry out data deciphering and signature verification by intelligent chip, obtain correct, complete behaviour It instructs, in addition, by establishing authentication center to the equipment authentication protocol of sensor, to establish recognizing for Internet of Things infrastructure It demonstrate,proves, data are complete and the information safety system of secrecy transmission.
Detailed description of the invention
Fig. 1 is internet of things equipment of the present invention registration and security authentication process schematic diagram;
Fig. 2 is internet of things equipment of the present invention certification and secure accessing structural schematic diagram.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other Embodiment shall fall within the protection scope of the present invention.
Embodiment one:
A kind of method of internet of things equipment certification and secure accessing as shown in Figure 1:, including awareness apparatus D, Internet of Things management Platform, management platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with Machine number R2, sensing data M, management platform search management platform allocation table X1 if it does not exist, then authentification failure, needs to re-register Certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7 In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step In B, acquired new information is matched with the information in registration step B.
Embodiment two:
A kind of method of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management Platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and continue to search whether the equipment that number is K deposits If it does not exist, then authentification failure, needs to re-register certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7 In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step In B, acquired new information is matched with the information in registration step B.
Embodiment three:
A kind of method of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management Platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and continue to search the equipment that number is K and exist, Acquisition characteristic information C2 is then sent to the X Cloud Server of cloud processing center.
Step c, cloud processing center, comparison C1==C2 is invalid, then authentification failure, needs to re-register certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7 In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step In B, acquired new information is matched with the information in registration step B.
As shown in Figure 2: the operational order data that will be received using sensor carry out data deciphering and label by intelligent chip Name verifying, obtains correct, complete operational order, provides the guarantor of safety and efficiency to internet of things equipment access cloud platform Card.
It is obvious to a person skilled in the art that invention is not limited to the details of the above exemplary embodiments, Er Qie In the case where without departing substantially from spirit or essential attributes of the invention, the present invention can be realized in other specific forms.Therefore, no matter From the point of view of which point, the present embodiments are to be considered as illustrative and not restrictive, and the scope of the present invention is by appended power Benefit requires rather than above description limits, it is intended that all by what is fallen within the meaning and scope of the equivalent elements of the claims Variation is included within the present invention.Any reference signs in the claims should not be construed as limiting the involved claims.
In addition, it should be understood that although this specification is described in terms of embodiments, but not each embodiment is only wrapped Containing an independent technical solution, this description of the specification is merely for the sake of clarity, and those skilled in the art should It considers the specification as a whole, the technical solutions in the various embodiments may also be suitably combined, forms those skilled in the art The other embodiments being understood that.

Claims (1)

1. a kind of method of internet of things equipment certification and secure accessing, which is characterized in that this method comprises the following steps:
1) it registers:
Step A, Internet of Things awareness apparatus D generates the first authentication information Q1 according to apparatus characteristic information C1, and the first registration is believed Breath is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Yun Chu The lower Cloud Server X of central loading is managed, and adds awareness apparatus letter in the Cloud Server of management platform distribution table numbering X It ceases and number K, generates random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D;
2) it authenticates:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is numbered according to characteristic information C2, cloud platform server X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center;
Step b, Internet of Things administrative center obtains characteristic information C2, cloud platform server number X1, random number according to authentication information R2, sensing data M, management platform, which searches management platform allocation table X1, whether there is, if it does not exist then authentification failure, if it exists then Searching the equipment that number is K whether there is, and if it does not exist, then authentification failure, will then obtain characteristic information C2 if it exists and be sent to The X Cloud Server of cloud processing center;
Step c, cloud processing center, whether comparison C1==C2 is true, authenticates success if setting up, otherwise authentification failure;
Awareness apparatus D generates the first authentication information Q1 by the characteristic information of factory number in the registration step A;The note Cloud Server X is that Cloud Server 0 loads low Cloud Server into Cloud Server 7 in volume step B;Feel in the authenticating step A Know that equipment D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center;The authenticating step B is by institute New information is acquired to be matched with the information in registration step B.
CN201611162053.9A 2016-12-15 2016-12-15 A kind of method of internet of things equipment certification and secure accessing Expired - Fee Related CN106790034B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611162053.9A CN106790034B (en) 2016-12-15 2016-12-15 A kind of method of internet of things equipment certification and secure accessing

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611162053.9A CN106790034B (en) 2016-12-15 2016-12-15 A kind of method of internet of things equipment certification and secure accessing

Publications (2)

Publication Number Publication Date
CN106790034A CN106790034A (en) 2017-05-31
CN106790034B true CN106790034B (en) 2019-04-19

Family

ID=58892630

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611162053.9A Expired - Fee Related CN106790034B (en) 2016-12-15 2016-12-15 A kind of method of internet of things equipment certification and secure accessing

Country Status (1)

Country Link
CN (1) CN106790034B (en)

Families Citing this family (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109756451B (en) 2017-11-03 2022-04-22 华为技术有限公司 Information interaction method and device
CN108803431A (en) * 2018-07-09 2018-11-13 江苏恒宝智能系统技术有限公司 A kind of more equipment power supply management devices, connection method and system
CN109376507B (en) * 2018-09-03 2020-07-03 视联动力信息技术股份有限公司 Data security management method and system
CN110944055A (en) * 2019-12-02 2020-03-31 广州中科永信科技有限公司 Wireless networking protocol security protection method, device and storage medium
CN111585771B (en) * 2020-05-20 2021-07-06 浙江大学 Centralized authentication system of Internet of things equipment based on U2F physical token
CN112422549B (en) * 2020-11-12 2022-08-30 成都渊数科技有限责任公司 Access method and system of edge server iot equipment
CN112469034B (en) * 2020-11-25 2022-07-15 中国科学技术大学 Internet of things gateway device capable of safely authenticating physical sensing equipment and access method thereof
US11956324B2 (en) 2021-01-07 2024-04-09 Stmicroelectronics S.R.L. Sensor device, system and method
CN113865023B (en) * 2021-09-26 2023-05-30 青岛海信日立空调系统有限公司 Multi-split air conditioning system
CN113949583B (en) * 2021-10-26 2022-12-23 重庆忽米网络科技有限公司 Security verification method for access of Internet of things equipment

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105471858A (en) * 2015-11-20 2016-04-06 西安电子科技大学 Internet-of-things-sensing-equipment-based cloud platform authentication system and method

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105471858A (en) * 2015-11-20 2016-04-06 西安电子科技大学 Internet-of-things-sensing-equipment-based cloud platform authentication system and method

Also Published As

Publication number Publication date
CN106790034A (en) 2017-05-31

Similar Documents

Publication Publication Date Title
CN106790034B (en) A kind of method of internet of things equipment certification and secure accessing
CN104811433B (en) The distributed Internet of things system and implementation method of a kind of C/S frameworks
CN105337949B (en) A kind of SSO authentication method, web server, authentication center and token verify center
CN107210916A (en) Condition, which is logged in, to be promoted
CN107528856A (en) Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds
CN104539598B (en) A kind of improvement Tor secure anonymous network communicating system and method
CN106341372A (en) Terminal authentication processing method and device, and terminal authentication method, device and system
CN106230594B (en) A method of user authentication is carried out based on dynamic password
CN103347020B (en) A kind of system and method across application authorization access
CN108111473A (en) Mixed cloud Explore of Unified Management Ideas, device and system
CN108880822A (en) A kind of identity identifying method, device, system and a kind of intelligent wireless device
CN101626369A (en) Method, device and system for single sign-on
CN103259800A (en) Internet login system based on face recognition and internet login method
CN110024347A (en) Safety building network structure
CN109067785A (en) Cluster authentication method, device
CN104935548B (en) Auth method, apparatus and system based on intelligent equipment of tatooing
CN106060097B (en) A kind of management system and management method of information security contest
CN106533894B (en) A kind of instant messaging system of completely new safety
CN103384249B (en) Network access verifying method, Apparatus and system, certificate server
CN109302397A (en) A kind of network safety managing method, platform and computer readable storage medium
CN108400989A (en) A kind of safety certificate equipment of shared resource authentication, method and system
CN106209735A (en) A kind of information processing method, device and Electronic Health Record system
CN104994086B (en) A kind of control method and device of data-base cluster permission
CN104703180A (en) Implicit multiple authentication method based on mobile Internet and intelligent terminal
CN104869142A (en) Link sharing method based on social platform, system and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20190419

Termination date: 20191215

CF01 Termination of patent right due to non-payment of annual fee