CN106790034B - A kind of method of internet of things equipment certification and secure accessing - Google Patents
A kind of method of internet of things equipment certification and secure accessing Download PDFInfo
- Publication number
- CN106790034B CN106790034B CN201611162053.9A CN201611162053A CN106790034B CN 106790034 B CN106790034 B CN 106790034B CN 201611162053 A CN201611162053 A CN 201611162053A CN 106790034 B CN106790034 B CN 106790034B
- Authority
- CN
- China
- Prior art keywords
- internet
- things
- information
- cloud server
- awareness apparatus
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Health & Medical Sciences (AREA)
- General Health & Medical Sciences (AREA)
- Medical Informatics (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
- Computer And Data Communications (AREA)
Abstract
The invention discloses a kind of methods of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X;In registration step A, the characteristic information that awareness apparatus D passes through factory number, generate the first authentication information Q1, in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server into Cloud Server 7, in authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, it is sent to Internet of Things administrative center, in authenticating step B, acquired new information is matched with the information in registration step B, the operational order data that will be received using sensor, data deciphering and signature verification are carried out by intelligent chip, it obtains correct, complete operational order, in addition, by establishing authentication center to the equipment authentication protocol of sensor, to establish the certification of Internet of Things infrastructure, data are complete and the information safety system of secrecy transmission.
Description
Technical field
The present invention relates to a kind of method of equipment certification and secure accessing, specially a kind of internet of things equipment certification and safety
The method of access, belongs to internet of things field.
Background technique
Internet of Things is one based on the information carriers such as internet, conventional telecommunications net, and allowing all can be independently addressable
Physical object realizes the network to interconnect, using communication technologys such as localized network or internets sensor, controller, machine
Device, personnel and object etc. are linked togather by new mode, are formed people and are connected with object, object and object, realize information-based, long-range management control
System and intelligentized network, with the rise of Internet of Things industry, Internet of Things awareness apparatus accesses the safety problem that cloud platform faces
It is also increasingly prominent with efficiency loading problem, at present in the safe internet of things field of Industry Control, have much for cloud platform and sense
Know the authentication method that real time communication is carried out between equipment, but these method efficiency and safety can only intelligently guarantee first, Internet of Things
Net equipment access authentication procedure is too simple, and the characteristic information of equipment is easy to be forged, and safety is not guaranteed really,
If high-volume awareness apparatus carries out certification transmission simultaneously, the problem of be easy to causeing authentication efficiency to reduce.
Summary of the invention
The object of the invention is that providing a kind of certification of internet of things equipment and secure accessing to solve the above-mentioned problems
Method, meet requirement under complex work environment.
The present invention is achieved through the following technical solutions above-mentioned purpose, a kind of side of internet of things equipment certification and secure accessing
Method, including awareness apparatus D, Internet of Things management platform, management platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to
Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set
Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with
Machine number R2, sensing data M, management platform, which searches management platform allocation table X1, whether there is, if it does not exist then authentification failure, if depositing
It whether there is then searching the equipment that number is K, if it does not exist, then authentification failure, will then obtain characteristic information C2 hair if it exists
Give the X Cloud Server of cloud processing center.
Step c, cloud processing center, whether comparison C1==C2 is true, authenticates success if setting up, otherwise authentification failure.
Preferably, in the registration step A, awareness apparatus D generates the first certification letter by the characteristic information of factory number
Cease Q1.
Preferably, in the registration step B, Cloud Server X is that Cloud Server 0 loads low cloud clothes into Cloud Server 7
Business device.
Preferably, in the authenticating step A, awareness apparatus D generates authentication information I by other characteristic information, sends
Give Internet of Things administrative center.
Preferably, in the authenticating step B, acquired new information is matched with the information in registration step B.
The beneficial effects of the present invention are: this kind of internet of things equipment certification and the method preparation of secure accessing are that sensor will be adopted
The information collected is digitally signed and is sent to after encrypting network data center, network data center is again by intelligent chip
Data deciphering and signature verification are carried out by authentication center, obtains the information of complete, believable sensor acquisition, in network data
The heart will be sent to the operational order of sensor side, and sensor is sent to after being digitally signed and encrypt by authentication center, pass
The operational order data that sensor will receive carry out data deciphering and signature verification by intelligent chip, obtain correct, complete behaviour
It instructs, in addition, by establishing authentication center to the equipment authentication protocol of sensor, to establish recognizing for Internet of Things infrastructure
It demonstrate,proves, data are complete and the information safety system of secrecy transmission.
Detailed description of the invention
Fig. 1 is internet of things equipment of the present invention registration and security authentication process schematic diagram;
Fig. 2 is internet of things equipment of the present invention certification and secure accessing structural schematic diagram.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on
Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall within the protection scope of the present invention.
Embodiment one:
A kind of method of internet of things equipment certification and secure accessing as shown in Figure 1:, including awareness apparatus D, Internet of Things management
Platform, management platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to
Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set
Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with
Machine number R2, sensing data M, management platform search management platform allocation table X1 if it does not exist, then authentification failure, needs to re-register
Certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number
It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, acquired new information is matched with the information in registration step B.
Embodiment two:
A kind of method of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management
Platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to
Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set
Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with
Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and continue to search whether the equipment that number is K deposits
If it does not exist, then authentification failure, needs to re-register certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number
It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, acquired new information is matched with the information in registration step B.
Embodiment three:
A kind of method of internet of things equipment certification and secure accessing, including awareness apparatus D, Internet of Things management platform, management
Platform allocation table, Cloud Server X, steps are as follows for control method:
Registration:
Step A, Internet of Things awareness apparatus D is according to apparatus characteristic information C1, generates the first authentication information Q1, and by the first note
Volume information is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to
Cloud processing center loads lower Cloud Server X, and adds the perception in the Cloud Server of management platform distribution table numbering X and set
Standby information and number K, generate random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D.
Certification:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is according to characteristic information C2, cloud platform server
Number X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center.
Step b, Internet of Things administrative center is according to authentication information, obtain characteristic information C2, cloud platform server number X1, with
Machine number R2, sensing data M, management platform are searched management platform allocation table X1 and are existed, and continue to search the equipment that number is K and exist,
Acquisition characteristic information C2 is then sent to the X Cloud Server of cloud processing center.
Step c, cloud processing center, comparison C1==C2 is invalid, then authentification failure, needs to re-register certification.
In the registration step A, awareness apparatus D generates the first authentication information Q1, institute by the characteristic information of factory number
It states in registration step B, Cloud Server X is that Cloud Server 0 loads low Cloud Server, the authenticating step A into Cloud Server 7
In, awareness apparatus D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center, the authenticating step
In B, acquired new information is matched with the information in registration step B.
As shown in Figure 2: the operational order data that will be received using sensor carry out data deciphering and label by intelligent chip
Name verifying, obtains correct, complete operational order, provides the guarantor of safety and efficiency to internet of things equipment access cloud platform
Card.
It is obvious to a person skilled in the art that invention is not limited to the details of the above exemplary embodiments, Er Qie
In the case where without departing substantially from spirit or essential attributes of the invention, the present invention can be realized in other specific forms.Therefore, no matter
From the point of view of which point, the present embodiments are to be considered as illustrative and not restrictive, and the scope of the present invention is by appended power
Benefit requires rather than above description limits, it is intended that all by what is fallen within the meaning and scope of the equivalent elements of the claims
Variation is included within the present invention.Any reference signs in the claims should not be construed as limiting the involved claims.
In addition, it should be understood that although this specification is described in terms of embodiments, but not each embodiment is only wrapped
Containing an independent technical solution, this description of the specification is merely for the sake of clarity, and those skilled in the art should
It considers the specification as a whole, the technical solutions in the various embodiments may also be suitably combined, forms those skilled in the art
The other embodiments being understood that.
Claims (1)
1. a kind of method of internet of things equipment certification and secure accessing, which is characterized in that this method comprises the following steps:
1) it registers:
Step A, Internet of Things awareness apparatus D generates the first authentication information Q1 according to apparatus characteristic information C1, and the first registration is believed
Breath is sent to Internet of Things management platform;
Step B, Internet of Things management platform obtains apparatus characteristic information C1 according to the first registration information Q1 and sends it to Yun Chu
The lower Cloud Server X of central loading is managed, and adds awareness apparatus letter in the Cloud Server of management platform distribution table numbering X
It ceases and number K, generates random number R 1;
Step C, Internet of Things manages platform for Cloud Server number X and the random number R of generation, is sent to awareness apparatus D;
2) it authenticates:
Step a, Internet of Things awareness apparatus carries out access authentication, and awareness apparatus D is numbered according to characteristic information C2, cloud platform server
X1, random number R 2, sensing data M generate authentication information I, are sent to Internet of Things administrative center;
Step b, Internet of Things administrative center obtains characteristic information C2, cloud platform server number X1, random number according to authentication information
R2, sensing data M, management platform, which searches management platform allocation table X1, whether there is, if it does not exist then authentification failure, if it exists then
Searching the equipment that number is K whether there is, and if it does not exist, then authentification failure, will then obtain characteristic information C2 if it exists and be sent to
The X Cloud Server of cloud processing center;
Step c, cloud processing center, whether comparison C1==C2 is true, authenticates success if setting up, otherwise authentification failure;
Awareness apparatus D generates the first authentication information Q1 by the characteristic information of factory number in the registration step A;The note
Cloud Server X is that Cloud Server 0 loads low Cloud Server into Cloud Server 7 in volume step B;Feel in the authenticating step A
Know that equipment D generates authentication information I by other characteristic information, is sent to Internet of Things administrative center;The authenticating step B is by institute
New information is acquired to be matched with the information in registration step B.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611162053.9A CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611162053.9A CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106790034A CN106790034A (en) | 2017-05-31 |
CN106790034B true CN106790034B (en) | 2019-04-19 |
Family
ID=58892630
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611162053.9A Expired - Fee Related CN106790034B (en) | 2016-12-15 | 2016-12-15 | A kind of method of internet of things equipment certification and secure accessing |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106790034B (en) |
Families Citing this family (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109756451B (en) | 2017-11-03 | 2022-04-22 | 华为技术有限公司 | Information interaction method and device |
CN108803431A (en) * | 2018-07-09 | 2018-11-13 | 江苏恒宝智能系统技术有限公司 | A kind of more equipment power supply management devices, connection method and system |
CN109376507B (en) * | 2018-09-03 | 2020-07-03 | 视联动力信息技术股份有限公司 | Data security management method and system |
CN110944055A (en) * | 2019-12-02 | 2020-03-31 | 广州中科永信科技有限公司 | Wireless networking protocol security protection method, device and storage medium |
CN111585771B (en) * | 2020-05-20 | 2021-07-06 | 浙江大学 | Centralized authentication system of Internet of things equipment based on U2F physical token |
CN112422549B (en) * | 2020-11-12 | 2022-08-30 | 成都渊数科技有限责任公司 | Access method and system of edge server iot equipment |
CN112469034B (en) * | 2020-11-25 | 2022-07-15 | 中国科学技术大学 | Internet of things gateway device capable of safely authenticating physical sensing equipment and access method thereof |
US11956324B2 (en) | 2021-01-07 | 2024-04-09 | Stmicroelectronics S.R.L. | Sensor device, system and method |
CN113865023B (en) * | 2021-09-26 | 2023-05-30 | 青岛海信日立空调系统有限公司 | Multi-split air conditioning system |
CN113949583B (en) * | 2021-10-26 | 2022-12-23 | 重庆忽米网络科技有限公司 | Security verification method for access of Internet of things equipment |
Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105471858A (en) * | 2015-11-20 | 2016-04-06 | 西安电子科技大学 | Internet-of-things-sensing-equipment-based cloud platform authentication system and method |
-
2016
- 2016-12-15 CN CN201611162053.9A patent/CN106790034B/en not_active Expired - Fee Related
Patent Citations (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105471858A (en) * | 2015-11-20 | 2016-04-06 | 西安电子科技大学 | Internet-of-things-sensing-equipment-based cloud platform authentication system and method |
Also Published As
Publication number | Publication date |
---|---|
CN106790034A (en) | 2017-05-31 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106790034B (en) | A kind of method of internet of things equipment certification and secure accessing | |
CN104811433B (en) | The distributed Internet of things system and implementation method of a kind of C/S frameworks | |
CN105337949B (en) | A kind of SSO authentication method, web server, authentication center and token verify center | |
CN107210916A (en) | Condition, which is logged in, to be promoted | |
CN107528856A (en) | Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds | |
CN104539598B (en) | A kind of improvement Tor secure anonymous network communicating system and method | |
CN106341372A (en) | Terminal authentication processing method and device, and terminal authentication method, device and system | |
CN106230594B (en) | A method of user authentication is carried out based on dynamic password | |
CN103347020B (en) | A kind of system and method across application authorization access | |
CN108111473A (en) | Mixed cloud Explore of Unified Management Ideas, device and system | |
CN108880822A (en) | A kind of identity identifying method, device, system and a kind of intelligent wireless device | |
CN101626369A (en) | Method, device and system for single sign-on | |
CN103259800A (en) | Internet login system based on face recognition and internet login method | |
CN110024347A (en) | Safety building network structure | |
CN109067785A (en) | Cluster authentication method, device | |
CN104935548B (en) | Auth method, apparatus and system based on intelligent equipment of tatooing | |
CN106060097B (en) | A kind of management system and management method of information security contest | |
CN106533894B (en) | A kind of instant messaging system of completely new safety | |
CN103384249B (en) | Network access verifying method, Apparatus and system, certificate server | |
CN109302397A (en) | A kind of network safety managing method, platform and computer readable storage medium | |
CN108400989A (en) | A kind of safety certificate equipment of shared resource authentication, method and system | |
CN106209735A (en) | A kind of information processing method, device and Electronic Health Record system | |
CN104994086B (en) | A kind of control method and device of data-base cluster permission | |
CN104703180A (en) | Implicit multiple authentication method based on mobile Internet and intelligent terminal | |
CN104869142A (en) | Link sharing method based on social platform, system and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20190419 Termination date: 20191215 |
|
CF01 | Termination of patent right due to non-payment of annual fee |