CN109992286A - Device updating method, server and computer readable storage medium - Google Patents
Device updating method, server and computer readable storage medium Download PDFInfo
- Publication number
- CN109992286A CN109992286A CN201910265370.0A CN201910265370A CN109992286A CN 109992286 A CN109992286 A CN 109992286A CN 201910265370 A CN201910265370 A CN 201910265370A CN 109992286 A CN109992286 A CN 109992286A
- Authority
- CN
- China
- Prior art keywords
- iot
- iot equipment
- version number
- facility information
- software
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 55
- 238000009434 installation Methods 0.000 claims abstract description 11
- 238000013507 mapping Methods 0.000 claims description 16
- 230000005540 biological transmission Effects 0.000 claims description 12
- 238000004891 communication Methods 0.000 claims description 11
- 238000004590 computer program Methods 0.000 claims description 9
- 238000010586 diagram Methods 0.000 description 7
- 230000006870 function Effects 0.000 description 4
- 239000000284 extract Substances 0.000 description 3
- 238000012545 processing Methods 0.000 description 3
- 101100217298 Mus musculus Aspm gene Proteins 0.000 description 2
- 125000004122 cyclic group Chemical group 0.000 description 2
- 238000013478 data encryption standard Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 238000012795 verification Methods 0.000 description 2
- OTZZZISTDGMMMX-UHFFFAOYSA-N 2-(3,5-dimethylpyrazol-1-yl)-n,n-bis[2-(3,5-dimethylpyrazol-1-yl)ethyl]ethanamine Chemical compound N1=C(C)C=C(C)N1CCN(CCN1C(=CC(C)=N1)C)CCN1C(C)=CC(C)=N1 OTZZZISTDGMMMX-UHFFFAOYSA-N 0.000 description 1
- 241001441724 Tetraodontidae Species 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000011156 evaluation Methods 0.000 description 1
- 238000012544 monitoring process Methods 0.000 description 1
- 238000011160 research Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/602—Providing cryptographic facilities or services
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/60—Software deployment
- G06F8/65—Updates
Abstract
The invention discloses a kind of device updating method, server and storage medium, method includes: to generate the key pair including public key and private key using rivest, shamir, adelman;Recent software is encrypted using the private key of the cipher key pair, to generate the recent software of digital signature and encryption;Receive the facility information including current software version number that Internet of Things IOT equipment is sent;According to the current software version number in the facility information, judge whether IOT equipment needs to upgrade;When determining that IOT equipment needs to upgrade, upgrade notification is sent to IOT equipment, so that IOT equipment determines whether to upgrade;When receiving the determination upgrade information of IOT equipment feedback, the software information including public key is sent to IOT equipment, so that installation is decrypted according to the digital signature and public key that get after getting the recent software of digital signature and encryption in IOT equipment.The present invention solves multiple equipment when needing to same software upgrading, and server needs the technical issues of repeatedly encrypting to same software.
Description
Technical field
The present invention relates to internet of things field more particularly to device updating methods, server and computer readable storage medium.
Background technique
IOT (Internet ofThings, Internet of Things), is the important component of generation information technology, realizes object object
Connected internet is extension and extension on the basis of conventional internet, is the most popular research side of current internet industry
One of to.IOT equipment is after installing corresponding program, it usually needs continue software upgrading, with solve firmware defect or
Person increases new function.Usual server needs the key provided using IOT equipment when providing upgrading software to IOT equipment
Upgrading software is encrypted.But since the key that different IOT equipment provide is different, server is set receiving each IOT
When for same software upgrade requirement, require repeatedly to encrypt same upgrading software.
Above content is only used to facilitate the understanding of the technical scheme, and is not represented and is recognized that above content is existing skill
Art.
Summary of the invention
The main purpose of the present invention is to provide a kind of device updating method, server and computer readable storage medium,
When aiming to solve the problem that multiple equipment is needed to same software upgrading, server needs the technology repeatedly encrypted to same software to ask
Topic.
To achieve the above object, the application provides a kind of device updating method, comprising steps of
The key pair including public key and private key is generated using rivest, shamir, adelman;
Recent software is encrypted using the private key of the cipher key pair, to generate the newest soft of digital signature and encryption
Part;
Receive the facility information including current software version number that Internet of Things IOT equipment is sent;
According to the current software version number in the facility information, judge whether IOT equipment needs to upgrade;
When determining that IOT equipment needs to upgrade, upgrade notification is sent to IOT equipment, so that IOT equipment determines whether to rise
Grade;
When receiving the determination upgrade information of IOT equipment feedback, software information of the transmission including public key to IOT equipment,
So that IOT equipment is solved after getting the recent software of digital signature and encryption according to the digital signature and public key that get
Close installation.
Optionally, described that recent software is encrypted using the private key of cipher key pair, to generate digital signature and encryption
Recent software the step of include:
The eap-message digest of recent software is extracted using preset digest algorithm;
The eap-message digest and recent software are encrypted respectively using the private key of cipher key pair, generate number with corresponding
The recent software of signature and encryption.
Optionally, the facility information further includes IOT device id and IOT device model;
The current software version number according in the facility information, judges whether IOT equipment needs the step of upgrading
Before, further includes:
Judge whether IOT equipment is legal according to the IOT device id in the facility information;
When the IOT equipment is legal, step is executed: according to the current software version number in the facility information, judgement
Whether IOT equipment, which needs, upgrades;
The current software version number according in the facility information, judges whether IOT equipment needs the step of upgrading
Include:
According to the IOT device model and current software version number in the facility information, judge whether IOT equipment needs to rise
Grade.
Optionally, the IOT device id according in the facility information judges the whether legal step packet of IOT equipment
It includes:
The IOT device id in the facility information is sent to IOT device management server, so that IOT equipment management service
Device judges whether IOT equipment is legal according to the IOT device id in the facility information;
When receiving the IOT equipment legal information of IOT device management server feedback, determine that IOT equipment is legal.
Optionally, the IOT device id according in the facility information judges the whether legal step packet of IOT equipment
It includes:
Preset lawful registration device id list is traversed, is set with inquiring in lawful registration device id list with the presence or absence of described
IOT device id in standby information;
When there are the IOT device id in the facility information, determining that the IOT equipment closes in lawful registration device id list
Method.
Optionally, described when the IOT equipment is legal, according to the IOT device model in the facility information and currently
Software version number judges whether IOT equipment needs the step of upgrading to include:
According to the IOT device model in the facility information, the IOT device model obtained in the facility information is corresponding
Recent software version number;
Judge whether the recent software version number is greater than the current software version number whether being equal in the facility information;
When recent software version number is greater than the current software version number in the facility information, determine that the IOT equipment needs
Upgrade.
Optionally, described according to the IOT device model in the facility information, obtains the IOT in the facility information
The step of device model corresponding recent software version number includes:
Call the mapping table between preset IOT device model and recent software version number;
The mapping table between preset IOT device model and recent software version number is traversed, preset IOT equipment is obtained
It is corresponding with the IOT device model in the facility information newest soft in mapping table between model and recent software version number
Part version number.
Optionally, the software information further includes software download address;
It is described when receiving the determination upgrade information of IOT equipment feedback, sending includes that the software information of public key is set to IOT
It is standby so that IOT equipment after getting the recent software of digital signature and encryption according to the digital signature that gets and public key into
Row decryption installation the step of include:
When receiving the determination upgrade information of IOT equipment feedback, the software information including download address and public key is sent
To IOT equipment, so that IOT equipment is obtained according to basis after the recent software of the download address downloading digital signature and encryption that receive
Installation is decrypted in the digital signature and public key got.
In addition, to achieve the above object, the present invention also provides a kind of server, the server includes: communication module, deposits
Reservoir, processor and it is stored in the computer program that can be run on the memory and on the processor, the computer
The step of program realizes device updating method as described above when being executed by the processor.
In addition, to achieve the above object, it is described computer-readable the present invention also provides a kind of computer readable storage medium
Computer program is stored on storage medium, the computer program realizes device upgrade as described above when being executed by processor
The step of method.
A kind of device updating method, server and the computer readable storage medium that the embodiment of the present invention proposes, by making
The key pair including public key and private key is generated with rivest, shamir, adelman;Using the cipher key pair private key to recent software into
Row encryption, to generate the recent software of digital signature and encryption;Receive the transmission of Internet of Things IOT equipment includes current software version
Number facility information;According to the current software version number in the facility information, judge whether IOT equipment needs to upgrade;When true
When determining IOT equipment and needing to upgrade, upgrade notification is sent to IOT equipment, so that IOT equipment determines whether to upgrade;When receiving IOT
When the determination upgrade information of equipment feedback, the software information including public key is sent to IOT equipment, so that IOT equipment is being got
Installation is decrypted according to the digital signature and public key that get after digital signature and the recent software of encryption.To receive
Before IOT device software determines upgrade information, need to only primary encryption be carried out to recent software, receive each IOT equipment after encryption
When determining upgrade information to the software, public key is directly issued into each IOT equipment, so that IOT equipment obtains digital signature and encryption
Recent software after installation is decrypted according to digital signature and public key, complete software upgrading.
Detailed description of the invention
Fig. 1 is the structural schematic diagram for the hardware running environment that the embodiment of the present invention is related to;
Fig. 2 is the flow diagram of security upgrading method first embodiment of the present invention;
Fig. 3 is the refinement flow diagram of step S20 in security upgrading method second embodiment of the present invention;
Fig. 4 is the refinement flow diagram of step S70 in security upgrading method fourth embodiment of the present invention;
Fig. 5 is the refinement flow diagram of step S70 in the 5th embodiment of security upgrading method of the present invention;
Fig. 6 is the refinement flow diagram of step S41 in security upgrading method sixth embodiment of the present invention.
The embodiments will be further described with reference to the accompanying drawings for the realization, the function and the advantages of the object of the present invention.
Specific embodiment
It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not intended to limit the present invention.
Fig. 1 is please referred to, Fig. 1 is the hardware structural diagram of server provided in each embodiment of the present invention, described
Server includes the components such as communication module 10, memory 20 and processor 30.It will be understood by those skilled in the art that institute in Fig. 1
The server shown can also include perhaps combining certain components or different components than illustrating more or fewer components
Arrangement.Wherein, the processor 30 is connect with the memory 20 and the communication module 10 respectively, is deposited on the memory 20
Computer program is contained, the computer program is executed by processor 30 simultaneously.
Communication module 10 can be connect by network with external equipment.Communication module 10 can receive external equipment sending
Data, also transmittable data, instruction and information to the external equipment.The external equipment can be IOT (Internet
OfThings, Internet of Things) electronic equipments such as equipment, IOT management server.
Memory 20 can be used for storing software program and various data.Memory 20 can mainly include storing program area
The storage data area and, wherein storing program area application program (can judge IOT needed for storage program area, at least one function
Whether equipment, which needs, upgrades) etc.;Storage data area, which can be stored, uses created data or information etc. according to server.This
Outside, memory 20 may include high-speed random access memory, can also include nonvolatile memory, for example, at least a magnetic
Disk storage device, flush memory device or other volatile solid-state parts.
Processor 30 is the control centre of server, utilizes each portion of various interfaces and the entire server of connection
Point, by running or execute the software program and/or module that are stored in memory 20, and calls and be stored in memory 20
Data, the various functions of execute server and processing data, to carry out integral monitoring to server.Processor 30 may include
One or more processing units;Preferably, processor 30 can integrate application processor and modem processor, wherein application
The main processing operation system of processor, user interface and application program etc., modem processor mainly handles wireless communication.It can
With understanding, above-mentioned modem processor can not also be integrated into processor 30.
Although Fig. 1 is not shown, above-mentioned server can also include that circuit control module is realized for being electrically connected with city
Power supply control, guarantees the normal work of other component.
It will be understood by those skilled in the art that server architecture shown in Fig. 1 does not constitute the restriction to server, it can
To include perhaps combining certain components or different component layouts than illustrating more or fewer components.
According to above-mentioned hardware configuration, each embodiment of the method for the present invention is proposed.
Referring to Fig. 2, in the first embodiment of security upgrading method of the present invention, the security upgrading method comprising steps of
Step S10 generates the key pair including public key and private key using rivest, shamir, adelman;
Step S20 encrypts recent software using the private key of the cipher key pair, to generate digital signature and encryption
Recent software;
When in the present solution, server receives recent software, will use rivest, shamir, adelman generate include public key and
The key pair of private key, rivest, shamir, adelman can be RSA cryptographic algorithms, Elgamal algorithm, knapsack algorithm, Miller
Rabin algorithm, Diffie-Hellman algorithm or ECC algorithm (Elliptic Curves Cryptography, elliptic curve
Encryption).The private key for the cipher key pair that server is generated by using rivest, shamir, adelman encrypts recent software, thus
The recent software of digital signature and encryption is obtained, wherein digital signature is the source for IOT equipment to the recent software of encryption
It is verified.
It should be noted that rivest, shamir, adelman can also be used to combine symmetrical when server receives recent software
Encryption Algorithm encrypts recent software, to generate the recent software and digital signature of encryption.The process is specifically to service
Device uses rivest, shamir, adelman to generate key pair first and generates key using symmetric encipherment algorithm, then using preset
Digest algorithm extracts the summary info of recent software, then generates the private key of cipher key pair to abstract using rivest, shamir, adelman
Information carries out encryption and obtains digital signature, is encrypted, is added using the key pair recent software that symmetric encipherment algorithm generates
Close recent software, the private key encryption symmetric encipherment algorithm of the cipher key pair generated using rivest, shamir, adelman generate close
Key obtains the key of encryption, and the recent software of the key of encryption and encryption is packaged into a file.Subsequent server can will be non-
The text of the recent software of cipher key pair public key, digital signature and key and encryption including encryption that symmetric encipherment algorithm generates
The download address of part is sent to IOT equipment, so that the key that IOT equipment uses public key decryptions to encrypt, obtains key, and then utilize
The recent software of key decryption encryption, obtains recent software.Wherein symmetric encipherment algorithm can be DES algorithm (Data
Encrytion Standard, Data Encryption Standard), TDEA algorithm (Triple Data Encryption
Algorithm, triple data encryption algorithm), Blowfish algorithm, RC5 block cipher, IDEA algorithm
(International Data Encryption Algorithm, international data encryption algorithm) or aes algorithm
(Advanced Encryption Standard, Advanced Encryption Standard).Digest algorithm can be CRC algorithm (Cyclic
Redundancy Check, cyclic redundancy check), MD algorithm (Message Digest Algorithm, Message Digest 5),
SHA algorithm (Secure Hash Algorithm, secure hash algorithm) and RIPEMD (RACE Integrity Primitives
Evaluation Message Digest, RACE raw integrity verification message abstract) etc., wherein CRC algorithm includes again
CRC8, CRC16 and CRC32, MD algorithm include MD2, MD4 and MD5, SHA algorithm include SHA1, SHA256, SHA384 and
SHA512。
Step S30 receives the facility information including current software version number that Internet of Things IOT equipment is sent;
Server and IOT equipment can be by using IOT platform access protocol, the http protocol (HyperText of standard
Transfer Protocol, hypertext transfer protocol) or Transmission Control Protocol (Transmission Control Protocol, biography
Transport control protocol view) communication connection is established, the IOT platform access protocol of Plays can be the MQTT for being proposed and being developed by IBM
Agreement (Message Queuing Telemetry Transport, message queue telemetering transmission) or IETF (The
Internet Engineering Task Force, Internet engineering task force) CoRE working group propose based on
The CoAP agreement (The Constrained Application Protocol, restricted application protocol) of REST framework.
After server and IOT equipment establish communication connection, IOT equipment can directly will include in real time or at regular intervals
The facility information of IOT equipment current software version number is sent to server or after server receives new version software, sends
It obtains facility information to request to IOT equipment, so that IOT equipment sends the equipment letter including current version number after receiving the request
It ceases to server.It can also include IOT device model, IOT device id in addition to including current version number in facility information.
It should be noted that before IOT equipment sending device information, server, which can first be sent, to be made after establishing communication connection
The public key of the cipher key pair generated with asymmetric arithmetic gives IOT equipment, and IOT equipment uses the public key received from server to packet
The information for including IOT device model, IOT device id and current software version number is encrypted, and then sends out the facility information of encryption
Server is given, after server receives the facility information of the encryption, is decrypted using the facility information of private key pair encryption,
Obtain IOT device model, IOT device id and current software version number.
Step S40 judges whether IOT equipment needs to upgrade according to the current software version number in the facility information;
After server receives current software version number, it can be obtained most according to current software version number and server
New software version number is compared, to judge whether IOT equipment needs to upgrade.
It should be noted that IOT equipment can also include Current software version in the upgrade request with active transmission upgrade request
This number, can also include IOT device signal and IOT device id.After server receives the upgrade request of IOT equipment transmission, meeting
According to the current software version number of IOT equipment, judge whether IOT equipment needs to upgrade.
Step S50 sends upgrade notification to IOT equipment, so that IOT equipment determines when determining that IOT equipment needs to upgrade
Whether upgrade;
Step S60 sends the software information including public key extremely when receiving the determination upgrade information of IOT equipment feedback
IOT equipment, so that IOT equipment is after getting the recent software of digital signature and encryption according to the digital signature and public affairs got
Installation is decrypted in key.
When server determines that IOT equipment needs to upgrade, upgrade notification can be sent and give IOT equipment.When IOT equipment receives clothes
The upgrade notification that business device is sent, IOT equipment can feed back the information for determining upgrading to server, and it is anti-that server receives IOT equipment
When the determination upgrade information of feedback, the software information including public key can be sent to IOT equipment by the communication connection channel established,
IOT equipment can be after getting the recent software of digital signature and encryption, according to the public key received to the recent software of encryption
It is decrypted, the recent software after being decrypted, the recent software after decryption is verified further according to the digital signature of acquisition,
It after being verified, is installed using recent software, to cover legacy software, completes the upgrading of IOT equipment.IOT equipment obtains
The method for the recent software that must be encrypted can by server by the recent software download address of encryption together with one starting of public key
IOT equipment is given, so that IOT equipment downloads the recent software of digital signature and encryption, the downloading of IOT equipment according to download address
Operation can use http protocol or Transmission Control Protocol, directly download number from server side by the interface channel temporarily created
The recent software of signature and encryption.
It should be noted that the method that IOT equipment obtains the recent software of encryption can also be by server by encryption
Recent software is sent to IOT equipment together with digital signature and public key, so that IOT equipment directly obtains the recent software of encryption.
The present embodiment generates the key pair including public key and private key by using rivest, shamir, adelman;Use the key
The private key of centering encrypts recent software, to generate the recent software of digital signature and encryption;Receive Internet of Things IOT equipment
The facility information including current software version number sent;According to the current software version number in the facility information, IOT is judged
Whether equipment, which needs, upgrades;When determining that IOT equipment needs to upgrade, upgrade notification is sent to IOT equipment, so that IOT equipment is true
It is fixed whether to upgrade;When receiving the determination upgrade information of IOT equipment feedback, software information of the transmission including public key to IOT is set
It is standby so that IOT equipment after getting the recent software of digital signature and encryption according to the digital signature that gets and public key into
Row decryption installation.To which only primary encryption need to be carried out to recent software before receiving IOT device software and determining upgrade information,
After encryption when receiving the determination upgrade information that each IOT equipment is sent, public key is directly issued into each IOT equipment, so that each IOT
Installation is decrypted according to digital signature and public key after equipment acquisition digital signature and the recent software of encryption, completes software liter
Grade.
Further, referring to Fig. 3, the application safety upgrade is proposed according to the first embodiment of the application security upgrading method
The second embodiment of method, in the present embodiment, the step S20 includes:
Step S21 extracts the eap-message digest of recent software using preset digest algorithm;
Step S22 encrypts the eap-message digest and recent software using the private key of cipher key pair, respectively with correspondence
Generate the recent software of digital signature and encryption.
In the present solution, server generates the key pair including private key and public key using rivest, shamir, adelman, wherein non-
Symmetric encipherment algorithm includes RSA cryptographic algorithms, Elgamal algorithm, knapsack algorithm, Miller Rabin algorithm, Diffie-
Hellman algorithm, ECC algorithm.When server receives recent software, it will use preset digest algorithm and extract recent software
Eap-message digest, the private key of the cipher key pair then generated again using rivest, shamir, adelman to eap-message digest and recent software into
Row encryption, to obtain the recent software of digital signature and encryption.
It should be noted that digest algorithm can be CRC algorithm, MD algorithm, SHA algorithm and RIPEMD etc., wherein CRC is calculated
Method includes CRC8, CRC16 and CRC32 again, and MD algorithm includes MD2, MD4 and MD5, SHA algorithm include SHA1, SHA256,
SHA384 and SHA512.
The present embodiment proposes a kind of strategy for being encrypted and being signed to recent software using rivest, shamir, adelman, thus really
Protect IOT equipment obtain recent software safety, and server by utilizing generated self by rivest, shamir, adelman it is close
The private key of key centering is encrypted and is signed, and by public key be sent to upgrading in need IOT equipment, therefore only need to be to newest soft
Part carries out primary encryption.
Further, the of the application security upgrading method is proposed according to the first embodiment of the application security upgrading method
Three embodiments, in the present embodiment, after the step S30, further includes:
Step S70 judges whether IOT equipment is legal according to the IOT device id in the facility information;If so, executing
Step S40.
Furthermore when the present embodiment executes, the step S40 includes:
Step S41 judges that IOT equipment is according to the IOT device model and current software version number in the facility information
It is no to need to upgrade.
When server receives in the facility information that IOT equipment is sent except when preceding software version number, further includes IOT equipment
ID and model before whether server can need upgrading before judging IOT equipment, first carry out IOT equipment according to the ID of IOT equipment
Validity judgement after determining that IOT equipment is legal, just can judge that IOT equipment is according to IOT device model and current software version number
It is no to need to upgrade, however, it is determined that after IOT equipment is illegal, server can directly transmit an equipment illegally warning letter without upgrading authority
Breath terminates subsequent whether upgrade judgement to the IOT equipment.
After the whether legal specific method that judges IOT equipment can be the ID that server receives IOT equipment, according to service
The pre-stored lawful registration device id list query of device is to whether there is ID identical with the ID of IOT equipment, to judge IOT
Whether equipment is legal.Judge that legal method is also possible to server and the ID of the IOT equipment received is transmitted to concrete management
The server of IOT equipment is stored with lawful registration device id list on the IOT device management server, is taken by IOT equipment management
Business device judges whether the IOT equipment is legal according to the ID of IOT equipment, and judging result is fed back to server, thus server
Judge whether IOT equipment is legal according to the feedback result received.It should be noted that lawful registration device id list can be real-time
It updates.
After server determines that the IOT equipment is legal, the list of preset recent software version number is called, is set in the list
There are mapping relations for standby model and recent software version number.According to the IOT device model received, from preset recent software version
The corresponding recent software version number of IOT device signal is inquired in this number list, according to the recent software version number inquired and is worked as
Preceding software version number is compared, if recent software version number is greater than current software version number, it is determined that IOT equipment needs to carry out
Upgrading.If recent software version number is less than or equal to current software version number, it is determined that IOT equipment does not need to be upgraded, meeting
Feedback software is not necessarily to the information upgraded to IOT equipment.
It should be noted that server can the list of real-time update recent software version number.That is when server receives
When to recent software, the version number of the software and the device model that the software is applicable are obtained from the recent software received,
According to the device model of acquisition, the list of recent software version number is traversed, if it does not exist the device model, then by the model and correspondence
The version number of software be added in recent software version list.If there are the device model in the list of recent software version number,
The corresponding software version number of the device model is obtained from the list, and is compared with the version number of the recent software just received
Compared with if the recent software version number just received is greater than software version number in list, by the version of the recent software received
Original software version number in number covering recent software version number list, completes the update of recent software version number list.
The present embodiment proposes a kind of strategy for first judging IOT equipment validity and judging whether IOT equipment needs to upgrade again,
So that it is guaranteed that server provide upgrade service equipment be it is legal, prevent personation or IOT equipment of poor quality pretend to be it is legal
IOT equipment carries out software upgrading.
Further, referring to Fig. 4, the application safety upgrade is proposed according to the first embodiment of the application security upgrading method
The fourth embodiment of method, in the present embodiment, the step S70 includes:
Step S71 sends the IOT device id in the facility information to IOT device management server, so that IOT equipment
Management server judges whether IOT equipment is legal according to the IOT device id in the facility information;
Step S72 determines that IOT equipment is closed when receiving IOT device management server feedback IOT equipment legal information
Method.
In the present solution, the not stored lawful registration device id list for having each legal IOT equipment in server, works as server
After the ID for receiving the transmission of IOT equipment, the ID of IOT equipment can be transmitted to IOT device management server, IOT equipment management clothes
Business device stores the lawful registration device id list of the ID including all legal IOT equipment, and IOT device management server receives
After the ID of the IOT equipment sent to server, lawful registration device id list can be traversed, to inquire the legal of IOT equipment
Registering device id list whether there is in the lawful registration device id list, if there are IOT in the lawful registration device id list
When the ID of equipment, IOT device management server can feed back the legal result of IOT equipment to server, when server receives IOT
After the legal result of equipment, server determines that IOT equipment is legal.If IOT equipment is not present in the lawful registration device id list
ID when, IOT device management server can feed back the illegal result of IOT equipment to server, when server receives IOT equipment
After illegal result, server can determine whether that IOT equipment is illegal and sends the legal message being verified and give IOT equipment.It needs
Bright, IOT device management server can be to lawful registration device id list real-time update.
The present embodiment proposes a kind of strategy of legitimacy that IOT equipment is verified by IOT device management server;To
Before server is sent to IOT device software information data, it is ensured that IOT equipment be it is legal, prevent personation or IOT of poor quality
Equipment pretends to be legal IOT equipment to carry out software upgrading.
Further, referring to Fig. 5, the application safety upgrade is proposed according to the first embodiment of the application security upgrading method
5th embodiment of method, in the present embodiment, the step S70 includes:
Whether step S73 traverses preset lawful registration device id list, deposited with inquiring in lawful registration device id list
IOT device id in the facility information;
Step S74, described in, there are the IOT device id in the facility information, being determined in lawful registration device id list
IOT equipment is legal.
In the present solution, in the present solution, being stored with the lawful registration device id column of each legal IOT equipment in server
Table can traverse lawful registration device id list, to inquire IOT equipment after server receives the ID of IOT equipment transmission
Lawful registration device id list with the presence or absence of in the lawful registration device id list, if being deposited in the lawful registration device id list
In the ID of IOT equipment, server determines that IOT equipment is legal.If there is no IOT equipment in the lawful registration device id list
When ID, server can confirm that IOT equipment is illegal, and send the legal unacceptable message of verifying and give IOT equipment.
The present embodiment proposes a kind of plan of legitimacy by preset lawful registration device id list verification IOT equipment
Slightly, thus before server is sent to IOT device software information data, it is ensured that IOT equipment be it is legal, prevent personation or pseudo-
Bad IOT equipment pretends to be legal IOT equipment to carry out software upgrading.
Further, referring to Fig. 6, the application safety upgrade is proposed according to the first embodiment of the application security upgrading method
The sixth embodiment of method, in the present embodiment, the step S41 includes:
Step S411 calls the mapping table between preset IOT device model and recent software version number;
Step S412 traverses the mapping table between preset IOT device model and recent software version number, is preset
IOT device model and recent software version number mapping table in recent software version corresponding with the IOT device model
Number;
Step S413, judges whether the recent software version number is greater than the current software version in the facility information
Number;
Step S414, when recent software version number be greater than the facility information in current software version number, determine described in
IOT equipment needs to upgrade.
In the present solution, after server determines that the IOT equipment is legal, call preset IOT device model with it is newest
Software version number mapping table.According to the IOT device model received, from preset IOT device model and recent software version
The corresponding recent software version number of IOT device signal is inquired in this number mapping table, according to the recent software version inquired
Number and current software version number be compared, if recent software version number be greater than current software version number, it is determined that IOT equipment need
Upgraded.If recent software version number is less than or equal to current software version number, it is determined that IOT equipment does not need to be risen
Grade, meeting feedback software are not necessarily to the information upgraded to IOT equipment.
It should be noted that server can the preset IOT device model of real-time update and recent software version number mapping pass
It is table.That is when server receives recent software, the version number of the software is obtained from the recent software received
And the device model that the software is applicable in traverses preset IOT device model and recent software version according to the device model of acquisition
This number mapping table, the version number of the model and corresponding software, then be added to preset by the device model if it does not exist
In IOT device model and recent software version number mapping table.If preset IOT device model is reflected with recent software version number
It penetrates in relation table there are the device model, the corresponding software version number of the device model is obtained from the list, and and just receive
To the version number of recent software be compared, if the recent software version number just received is greater than software version number in list,
Then by software version number original in version number's covering recent software version number list of the recent software received, complete default
IOT device model and recent software version number mapping table update.
The present embodiment proposes a kind of strategy for judging whether IOT equipment needs to upgrade according to software version number, thus
Ensure that IOT equipment needs upgrade before sending recent software related data, prevents the IOT for being mounted with recent software from setting
It is standby to repeat installation software.
The present invention also proposes a kind of computer readable storage medium, is stored thereon with computer program.The computer can
Reading storage medium can be the memory 20 in the server of Fig. 1, be also possible to as ROM (Read-Only Memory, it is read-only to deposit
Reservoir)/RAM (Random Access Memory, random access memory), magnetic disk, at least one of CD, the calculating
Machine readable storage medium storing program for executing includes that several information are used so that server executes method described in each embodiment of the present invention.
It should be noted that, in this document, the terms "include", "comprise" or its any other variant are intended to non-row
His property includes, so that the process, method, article or the system that include a series of elements not only include those elements, and
And further include other elements that are not explicitly listed, or further include for this process, method, article or system institute it is intrinsic
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including being somebody's turn to do
There is also other identical elements in the process, method of element, article or system.
The serial number of the above embodiments of the invention is only for description, does not represent the advantages or disadvantages of the embodiments.
Through the above description of the embodiments, those skilled in the art can be understood that above-described embodiment side
Method can be realized by means of software and necessary general hardware platform, naturally it is also possible to by hardware, but in many cases
The former is more preferably embodiment.
The above is only a preferred embodiment of the present invention, is not intended to limit the scope of the invention, all to utilize this hair
Equivalent structure or equivalent flow shift made by bright specification and accompanying drawing content is applied directly or indirectly in other relevant skills
Art field, is included within the scope of the present invention.
Claims (10)
1. a kind of device updating method, which is characterized in that it is applied to server, comprising steps of
The key pair including public key and private key is generated using rivest, shamir, adelman;
Recent software is encrypted using the private key of the cipher key pair, to generate the recent software of digital signature and encryption;
Receive the facility information including current software version number that Internet of Things IOT equipment is sent;
According to the current software version number in the facility information, judge whether IOT equipment needs to upgrade;
When determining that IOT equipment needs to upgrade, upgrade notification is sent to IOT equipment, so that IOT equipment determines whether to upgrade;
When receiving the determination upgrade information of IOT equipment feedback, software information of the transmission including public key to IOT equipment, so that
Peace is decrypted according to the digital signature and public key that get after getting the recent software of digital signature and encryption in IOT equipment
Dress.
2. device updating method as described in claim 1, which is characterized in that the private key using cipher key pair is to newest soft
The step of part is encrypted, recent software to generate digital signature and encryption include:
The eap-message digest of recent software is extracted using preset digest algorithm;
The eap-message digest and recent software are encrypted respectively using the private key of cipher key pair, generate digital signature with corresponding
With the recent software of encryption.
3. device updating method as claimed in claim 2, which is characterized in that the facility information further include IOT device id and
IOT device model;
The current software version number according in the facility information, before judging whether IOT equipment needs the step of upgrading,
Further include:
Judge whether IOT equipment is legal according to the IOT device id in the facility information;
When the IOT equipment is legal, executes step: according to the current software version number in the facility information, judging that IOT is set
It is standby whether to need to upgrade;
The current software version number according in the facility information judges whether IOT equipment needs the step of upgrading to include:
According to the IOT device model and current software version number in the facility information, judge whether IOT equipment needs to upgrade.
4. device updating method as claimed in claim 3, which is characterized in that the IOT according in the facility information is set
Standby ID judges IOT equipment, and whether legal step includes:
The IOT device id in the facility information is sent to IOT device management server, so that IOT device management server root
Judge whether IOT equipment is legal according to the IOT device id in the facility information;
When receiving the IOT equipment legal information of IOT device management server feedback, determine that IOT equipment is legal.
5. device updating method as claimed in claim 3, which is characterized in that the IOT according in the facility information is set
Standby ID judges IOT equipment, and whether legal step includes:
Preset lawful registration device id list is traversed, is believed with inquiring in lawful registration device id list with the presence or absence of the equipment
IOT device id in breath;
When, there are the IOT device id in the facility information, determining that the IOT equipment is legal in lawful registration device id list.
6. device updating method as described in any one in claim 1-5, which is characterized in that described when the IOT equipment is legal
When, according to the IOT device model and current software version number in the facility information, judge what whether IOT equipment needed to upgrade
Step includes:
According to the IOT device model in the facility information, the IOT device model obtained in the facility information is corresponding newest
Software version number;
Judge whether the recent software version number is greater than the current software version number whether being equal in the facility information;
When recent software version number be greater than the facility information in current software version number, determine that IOT equipment needs to upgrade.
7. device updating method as claimed in claim 6, which is characterized in that the IOT according in the facility information is set
Standby model, the step of obtaining the corresponding recent software version number of the IOT device model in the facility information include:
Call the mapping table between preset IOT device model and recent software version number;
The mapping table between preset IOT device model and recent software version number is traversed, preset IOT device model is obtained
Recent software version corresponding with the IOT device model in the facility information in mapping table between recent software version number
This number.
8. device updating method as claimed in claim 7, which is characterized in that the software information further includes software download
Location;
It is described when receiving the determination upgrade information of IOT equipment feedback, send include public key software information to IOT equipment,
So that IOT equipment is solved after getting the recent software of digital signature and encryption according to the digital signature and public key that get
The step of close installation includes:
When receiving the determination upgrade information of IOT equipment feedback, the software information including download address and public key is sent to IOT
Equipment, so that IOT equipment is got according to basis after the recent software of the download address downloading digital signature and encryption that receive
Digital signature and public key installation is decrypted.
9. a kind of server, which is characterized in that the server includes: communication module, memory, processor and is stored in described
It is real when the computer program is executed by the processor on memory and the computer program that can run on the processor
Now such as the step of device updating method described in any item of the claim 1 to 8.
10. a kind of computer readable storage medium, which is characterized in that be stored with computer on the computer readable storage medium
Program realizes such as device updating method described in any item of the claim 1 to 8 when the computer program is executed by processor
The step of.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910265370.0A CN109992286A (en) | 2019-04-02 | 2019-04-02 | Device updating method, server and computer readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201910265370.0A CN109992286A (en) | 2019-04-02 | 2019-04-02 | Device updating method, server and computer readable storage medium |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109992286A true CN109992286A (en) | 2019-07-09 |
Family
ID=67132248
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201910265370.0A Pending CN109992286A (en) | 2019-04-02 | 2019-04-02 | Device updating method, server and computer readable storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109992286A (en) |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110457908A (en) * | 2019-08-13 | 2019-11-15 | 山东爱德邦智能科技有限公司 | A kind of firmware upgrade method of smart machine, device, equipment and storage medium |
| CN110621014A (en) * | 2019-09-18 | 2019-12-27 | 深圳市元征科技股份有限公司 | Vehicle-mounted equipment, program upgrading method thereof and server |
| CN111258615A (en) * | 2019-12-26 | 2020-06-09 | 北京威努特技术有限公司 | Industrial control host, method and device for upgrading software of industrial control host and mobile storage medium |
| CN113299018A (en) * | 2021-06-22 | 2021-08-24 | 上海和数软件有限公司 | ATM software remote upgrading method |
| CN113765950A (en) * | 2020-06-02 | 2021-12-07 | 富泰华工业(深圳)有限公司 | Internet of things equipment, server and software updating method |
| CN113840262A (en) * | 2020-06-23 | 2021-12-24 | 京东方科技集团股份有限公司 | Over-the-air updating method, updating server, terminal equipment and Internet of things system |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105656859A (en) * | 2014-11-18 | 2016-06-08 | 航天信息股份有限公司 | Secure online upgrade method and system for tax control equipment software |
| CN105893093A (en) * | 2016-03-31 | 2016-08-24 | 北京奇艺世纪科技有限公司 | Application program upgrading method and device |
| CN108958771A (en) * | 2018-07-03 | 2018-12-07 | 百度在线网络技术(北京)有限公司 | Update method, device, server and the storage medium of application program |
| CN109460247A (en) * | 2018-12-17 | 2019-03-12 | 深圳创维数字技术有限公司 | Software packet upgrade method, software client, storage medium and device |
-
2019
- 2019-04-02 CN CN201910265370.0A patent/CN109992286A/en active Pending
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105656859A (en) * | 2014-11-18 | 2016-06-08 | 航天信息股份有限公司 | Secure online upgrade method and system for tax control equipment software |
| CN105893093A (en) * | 2016-03-31 | 2016-08-24 | 北京奇艺世纪科技有限公司 | Application program upgrading method and device |
| CN108958771A (en) * | 2018-07-03 | 2018-12-07 | 百度在线网络技术(北京)有限公司 | Update method, device, server and the storage medium of application program |
| CN109460247A (en) * | 2018-12-17 | 2019-03-12 | 深圳创维数字技术有限公司 | Software packet upgrade method, software client, storage medium and device |
Cited By (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110457908A (en) * | 2019-08-13 | 2019-11-15 | 山东爱德邦智能科技有限公司 | A kind of firmware upgrade method of smart machine, device, equipment and storage medium |
| CN110621014A (en) * | 2019-09-18 | 2019-12-27 | 深圳市元征科技股份有限公司 | Vehicle-mounted equipment, program upgrading method thereof and server |
| CN110621014B (en) * | 2019-09-18 | 2022-06-17 | 深圳市元征科技股份有限公司 | Vehicle-mounted equipment, program upgrading method thereof and server |
| CN111258615A (en) * | 2019-12-26 | 2020-06-09 | 北京威努特技术有限公司 | Industrial control host, method and device for upgrading software of industrial control host and mobile storage medium |
| CN113765950A (en) * | 2020-06-02 | 2021-12-07 | 富泰华工业(深圳)有限公司 | Internet of things equipment, server and software updating method |
| CN113765950B (en) * | 2020-06-02 | 2023-11-14 | 富泰华工业(深圳)有限公司 | Internet of things equipment, server and software updating method |
| CN113840262A (en) * | 2020-06-23 | 2021-12-24 | 京东方科技集团股份有限公司 | Over-the-air updating method, updating server, terminal equipment and Internet of things system |
| WO2021259310A1 (en) * | 2020-06-23 | 2021-12-30 | 京东方科技集团股份有限公司 | Over-the-air updating method, update server, terminal device, and internet of things system |
| CN113299018A (en) * | 2021-06-22 | 2021-08-24 | 上海和数软件有限公司 | ATM software remote upgrading method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109992286A (en) | Device updating method, server and computer readable storage medium | |
| CN108235806B (en) | Method, device and system for safely accessing block chain, storage medium and electronic equipment | |
| JP4993733B2 (en) | Cryptographic client device, cryptographic package distribution system, cryptographic container distribution system, and cryptographic management server device | |
| JP5100286B2 (en) | Cryptographic module selection device and program | |
| CN107659406B (en) | Resource operation method and device | |
| EP2743827A1 (en) | Software upgrading system and method, and server and client | |
| US20050120203A1 (en) | Methods, systems and computer program products for automatic rekeying in an authentication environment | |
| WO2016118523A1 (en) | Systems and methods for trusted path secure communication | |
| JP4758095B2 (en) | Certificate invalidation device, communication device, certificate invalidation system, program, and recording medium | |
| WO2007110598A1 (en) | Electronic data communication system | |
| JP2004304304A (en) | Electronic signature generating method, electronic signature authenticating method, electronic signature generating request program and electronic signature authenticate request program | |
| JP2004280284A (en) | Control processor, electronic equipment, and program starting method for electronic equipment, and system module updating method for electronic equipment | |
| JP6967449B2 (en) | Methods for security checks, devices, terminals and servers | |
| CN109495429B (en) | Authentication method, terminal and server | |
| CN111447276A (en) | Encryption continuous transmission method with key agreement function | |
| JP2007053569A (en) | Electronic mail security device and system therefor | |
| KR101839048B1 (en) | End-to-End Security Platform of Internet of Things | |
| CN107888615B (en) | Safety authentication method for node registration | |
| CN108924161A (en) | A kind of encrypted transaction data communication means and system | |
| CN105656995A (en) | Data sharing method and system based on distributed processing | |
| JP2009212689A (en) | Automatic common key distribution system, client, third-person certification body side server, and automatic common key sharing method | |
| CN110166460B (en) | Service account registration method and device, storage medium and electronic device | |
| CN116599719A (en) | User login authentication method, device, equipment and storage medium | |
| CN108848094A (en) | Data security validation method, device, system, computer equipment and storage medium | |
| CN114553542A (en) | Data packet encryption method and device and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190709 |
|
| RJ01 | Rejection of invention patent application after publication |