Disclosure of Invention
In view of this, in order to solve the problem of security of communication data between an unmanned aerial vehicle and an unmanned aerial vehicle control device, embodiments of the present invention provide a communication method and system, which establish a plurality of communication connections between a server and a plurality of unmanned aerial vehicle control devices, and perform fine-grained authority control on data packets in the plurality of communication connections, so as to implement one-to-one communication between the plurality of unmanned aerial vehicles and the plurality of unmanned aerial vehicle control devices, and improve security of communication between the plurality of unmanned aerial vehicles and the plurality of unmanned aerial vehicle control devices.
According to an aspect of the present invention, there is provided a communication method, which is applied to a server side, and includes:
respectively establishing a plurality of communication connections with a plurality of unmanned aerial vehicle control devices according to login requests of a plurality of first users;
managing the authority of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles, and respectively obtaining a plurality of first type numbers corresponding to a plurality of first data packets which are sent and received by the plurality of first users with the authority;
respectively establishing a plurality of authority filters of the plurality of communication connections based on the plurality of first type numbers; and
based on the plurality of authority filters, one-to-one communication between the plurality of unmanned aerial vehicle control devices and the plurality of unmanned aerial vehicles is realized.
Preferably, the establishing a plurality of communication connections with a plurality of drone control devices according to login requests of a plurality of first users respectively includes:
respectively receiving login requests of the plurality of first users, wherein the login requests of the plurality of first users comprise: a plurality of login data;
and judging whether the plurality of first users are registered users or not based on the plurality of login data.
Preferably, the establishing a plurality of communication connections with a plurality of drone control devices respectively according to login requests of a plurality of first users further includes:
if the plurality of first users are registered users, generating a plurality of first communication tokens corresponding to the plurality of unmanned aerial vehicle control devices and having overdue time efficiency;
saving the plurality of first communication tokens and a plurality of first device numbers of the plurality of drone control devices; and
and transmitting the plurality of first communication tokens and the plurality of first equipment numbers back to the unmanned aerial vehicle control equipment corresponding to each first communication token and the plurality of first equipment numbers.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively includes:
receiving a plurality of second data packets sent by the plurality of unmanned aerial vehicle control devices respectively; and respectively judging whether the plurality of second data packets carry the communication token and the equipment number.
Preferably, the managing the permission of the plurality of first users for operating the corresponding plurality of drones, and obtaining a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have permission to send and receive, respectively, further includes:
if each second data packet does not carry a communication token and a device number, disconnecting the corresponding unmanned aerial vehicle control device;
and if each second data packet carries a communication token and an equipment number, judging whether the communication token and the equipment number carried by each second data packet are consistent with the corresponding first communication token and the corresponding first equipment number of the unmanned aerial vehicle control equipment.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes:
if the communication token and the equipment number carried by each second data packet are not consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, disconnecting the communication token and the equipment number from the corresponding unmanned aerial vehicle control equipment;
and if the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, performing authority verification on the corresponding first user.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes:
if the unmanned aerial vehicle corresponding to the first user unauthorized operation is verified, returning information that the unmanned aerial vehicle is operated by the first user unauthorized to the corresponding unmanned aerial vehicle control equipment and disconnecting the unmanned aerial vehicle control equipment from the corresponding unmanned aerial vehicle control equipment;
the first user can obtain the related authority corresponding to the operation of the unmanned aerial vehicle through applying for the authority.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes:
and if the first user is verified to have the authority to operate the corresponding unmanned aerial vehicle, obtaining the first type numbers corresponding to the first data packets which are sent and received by the first user.
Preferably, said enabling one-to-one communication between said plurality of drone controlling devices and said plurality of drones based on said plurality of authority filters comprises:
receiving the plurality of first data packets sent by the plurality of unmanned aerial vehicle control devices in the plurality of communication connections respectively;
the plurality of authority filters are used for respectively carrying out authority filtering on the plurality of first data packets;
screening and reserving the plurality of first data packets with the corresponding data packet type numbers same as the plurality of first type numbers to obtain a plurality of third data packets;
respectively forwarding the third data packets to the corresponding unmanned planes or the unmanned plane control devices; and
returning the first data packets actively sent out by the UAV control devices and filtered by the permission filters to the corresponding UAV control devices.
Preferably, the establishing of a plurality of communication connections with a plurality of the drone controlling devices according to the login requests of a plurality of first users respectively further includes:
if the plurality of first users are unregistered users, prompting that the plurality of first users are registered in the plurality of unmanned aerial vehicle control devices and obtaining the corresponding related authority of the unmanned aerial vehicle through applying for the authority.
Preferably, the login data comprises at least one of: user name, password, device number, terminal type, and terminal version.
Preferably, the plurality of unmanned aerial vehicle control devices respectively receive and store the plurality of first communication tokens and the plurality of first device numbers returned by the server, and simultaneously, respectively set user login-free time corresponding to the expiration time of the plurality of first communication tokens;
when the login-free time of the users of the first users is out of time, the first users exit the login state.
According to another aspect of the present invention, there is provided a communication system, applied to a server, including:
the user unit is used for respectively establishing a plurality of communication connections with a plurality of unmanned aerial vehicle control devices according to login requests of a plurality of first users;
the permission unit is used for managing the permission of the first users for operating the corresponding unmanned aerial vehicles and respectively obtaining a plurality of first type numbers corresponding to a plurality of first data packets which are sent and received by the first users with permission;
the service unit is used for respectively establishing a plurality of authority filters of the plurality of communication connections based on the plurality of first type numbers; and based on the plurality of authority filters, realizing one-to-one communication between the plurality of unmanned aerial vehicle control devices and the plurality of unmanned aerial vehicles.
Preferably, the establishing a plurality of communication connections with a plurality of drone control devices according to login requests of a plurality of first users respectively includes:
respectively receiving login requests of the plurality of first users, wherein the login requests of the plurality of first users comprise: a plurality of login data;
and judging whether the plurality of first users are registered users or not based on the plurality of login data.
Preferably, the establishing a plurality of communication connections with a plurality of drone control devices respectively according to login requests of a plurality of first users further includes:
if the plurality of first users are registered users, generating a plurality of first communication tokens corresponding to the plurality of unmanned aerial vehicle control devices and having overdue time efficiency;
saving the plurality of first communication tokens and a plurality of first device numbers of the plurality of drone control devices; and
and transmitting the plurality of first communication tokens and the plurality of first equipment numbers back to the unmanned aerial vehicle control equipment corresponding to each first communication token and the plurality of first equipment numbers.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively includes:
receiving a plurality of second data packets sent by the plurality of unmanned aerial vehicle control devices respectively; and respectively judging whether the plurality of second data packets carry the communication token and the equipment number.
Preferably, the managing the authority of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes:
if each second data packet does not carry a communication token and a device number, disconnecting the corresponding unmanned aerial vehicle control device;
and if each second data packet carries a communication token and an equipment number, judging whether the communication token and the equipment number carried by each second data packet are consistent with the corresponding first communication token and the corresponding first equipment number of the unmanned aerial vehicle control equipment.
Preferably, the managing the permission of the plurality of first users for operating the corresponding plurality of drones, and obtaining a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have permission to send and receive, respectively, further includes:
if the communication token and the equipment number carried by each second data packet are not consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, disconnecting the communication token and the equipment number from the corresponding unmanned aerial vehicle control equipment;
and if the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, performing authority verification on the corresponding first user.
Preferably, the managing the permission of the plurality of first users for operating the corresponding plurality of drones, and obtaining a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have permission to send and receive, respectively, further includes:
if the unmanned aerial vehicle corresponding to the first user unauthorized operation is verified, returning the information that the unmanned aerial vehicle is operated by the first user unauthorized operation to the corresponding unmanned aerial vehicle control equipment and disconnecting the unmanned aerial vehicle control equipment from the corresponding unmanned aerial vehicle control equipment;
the first user can obtain the related authority corresponding to the operation of the unmanned aerial vehicle through applying for the authority.
Preferably, the managing the permission of the plurality of first users for operating the corresponding plurality of drones, and obtaining a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have permission to send and receive, respectively, further includes:
and if the unmanned aerial vehicle corresponding to the first user authorized operation is verified, obtaining the first type numbers corresponding to the first data packets which are authorized to be sent and received by the first user.
Preferably, said enabling one-to-one communication between said plurality of drone controlling devices and said plurality of drones based on said plurality of authority filters comprises:
receiving the plurality of first data packets sent by the plurality of unmanned aerial vehicle control devices in the plurality of communication connections respectively;
the plurality of authority filters are used for performing authority filtering on the plurality of first data packets respectively;
screening and reserving the plurality of first data packets with the corresponding data packet type numbers same as the plurality of first type numbers to obtain a plurality of third data packets;
respectively forwarding the third data packets to the corresponding unmanned aerial vehicles or the corresponding unmanned aerial vehicle control devices; and
returning the first data packets that are actively sent out by the UAV devices and screened by the authority filters to the corresponding UAV devices.
Preferably, the establishing of a plurality of communication connections with a plurality of the drone controlling devices according to the login requests of a plurality of first users respectively further includes:
if the plurality of first users are unregistered users, prompting that the plurality of first users are registered in the plurality of unmanned aerial vehicle control devices and obtaining the corresponding related authority of the unmanned aerial vehicle through applying for the authority.
Preferably, the login data comprises at least one of: user name, password, device number, terminal type, and terminal version.
Preferably, the plurality of unmanned aerial vehicle control devices respectively receive and store the plurality of first communication tokens and the plurality of first device numbers returned by the server, and simultaneously, respectively set user login-free time corresponding to the expiration time of the plurality of first communication tokens;
when the login-free time of the users of the first users is out of time, the first users exit the login state.
According to a further aspect of the present invention, there is provided a computer-readable storage medium storing computer instructions which, when executed, implement the communication method as described above.
According to still another aspect of the present invention, there is provided a communication control apparatus including:
a memory for storing computer instructions;
a processor coupled to the memory, the processor configured to perform a method of communication as described above based on computer instructions stored by the memory.
One embodiment of the present invention has the following advantages or benefits: if the first users have the authority to operate the corresponding unmanned aerial vehicles, the server respectively obtains a plurality of first type numbers corresponding to a plurality of first data packets which the first users have the authority to send and receive. In a plurality of communication connections of server and a plurality of unmanned aerial vehicle controlgear, the server establishes a plurality of authority filters corresponding to these a plurality of communication connections according to these a plurality of first type numbers. In a plurality of communication connection of server and a plurality of unmanned aerial vehicle controlgear, the server receives a plurality of first data packets that these a plurality of unmanned aerial vehicle controlgear sent respectively. And the plurality of authority filters are used for respectively carrying out authority filtering on the plurality of first data packets. And screening and reserving a plurality of first data packets of which the corresponding data packet type numbers are the same as the plurality of first type numbers by a plurality of authority filters to obtain a plurality of third data packets. And the server respectively forwards the third data packets to a plurality of corresponding unmanned aerial vehicles or a plurality of unmanned aerial vehicle control devices. Thereby the server carries out fine grit's authority control to the communication data package between a plurality of unmanned aerial vehicle and a plurality of unmanned aerial vehicle controlgear that correspond, has improved the security of communication between unmanned aerial vehicle and the unmanned aerial vehicle controlgear.
One embodiment of the present invention has the following advantages or benefits: the server receives a plurality of second data packets that these a plurality of unmanned aerial vehicle controlgear sent respectively. And the server respectively judges whether the plurality of second data packets carry the communication token and the equipment number. And if each second data packet carries a communication token and a device number, judging whether the communication token and the device number carried by each second data packet are consistent with the first communication token and the first device number of the unmanned aerial vehicle control device corresponding to the second data packet. And if the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the unmanned aerial vehicle control equipment corresponding to the second data packet, the server carries out authority verification on the first user corresponding to the second data packet. And if the first user is verified to have the authority to operate the corresponding unmanned aerial vehicle, the server obtains a plurality of first type numbers corresponding to a plurality of first data packets which are sent and received by the first user. The identity security of a plurality of first users in a plurality of communication connection of server and a plurality of unmanned aerial vehicle controlgear has been improved, the security of communication between unmanned aerial vehicle and the unmanned aerial vehicle controlgear has further been improved.
Detailed Description
The present invention will be described below based on examples, but the present invention is not limited to only these examples. In the following detailed description of the present invention, certain specific details are set forth. It will be apparent to one skilled in the art that the present invention may be practiced without these specific details. Well-known methods, procedures, and procedures have not been described in detail so as not to obscure the present invention. The figures are not necessarily drawn to scale.
Fig. 1 is a schematic flowchart of a communication method according to an embodiment of the present invention, where the communication method is applied to a server side. The method specifically comprises the following steps.
In step S101, a plurality of communication connections with a plurality of drone control devices are established, respectively, in response to login requests of a plurality of first users.
The monitoring and control of the ground drone control devices are required during the flight of the drone. During the flight process of the unmanned aerial vehicle, the unmanned aerial vehicle is connected to the server through TCP, and the unmanned aerial vehicle control equipment is also connected to the server through TCP. The flight data of the unmanned aerial vehicle are uploaded to the server in the form of data packets, and the data packets are forwarded to the unmanned aerial vehicle control equipment by the server. Similarly, the drone controlling device also forwards the transmitted data packets to the drone through the server.
After the user opens the unmanned aerial vehicle control equipment, if the unmanned aerial vehicle control equipment is not in the user login state, the unmanned aerial vehicle control equipment pops up a login window, and then the user login process is started.
In this step, the plurality of first users send login requests to the server through the corresponding plurality of drone controlling devices. The login request comprises: and logging in data. The plurality of first users submit respective login data such as user names, passwords, equipment numbers, terminal types, terminal versions and the like to the server. According to a plurality of login data corresponding to a plurality of first users, the server establishes a plurality of communication connections with a plurality of unmanned aerial vehicle control devices respectively.
In step S102, the authorities of the plurality of first users to operate the corresponding plurality of drones are managed, and a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authorities to transmit and receive are obtained respectively.
After the user is registered, if the user wants to obtain the corresponding authority for operating the corresponding unmanned aerial vehicle, for example, the authority for taking off the unmanned aerial vehicle, the authority for controlling the unmanned aerial vehicle terminal control device by the unmanned aerial vehicle battery information, and the like, corresponding authority maintenance is required.
In this step, the server manages the authority of the plurality of first users establishing connection with the server to manipulate the corresponding plurality of drones. And if the plurality of first users have the authority to operate the corresponding unmanned aerial vehicle, the server respectively obtains a plurality of first type numbers corresponding to a plurality of first data packets which the plurality of first users have the authority to send and receive. The server manages the authority of the first users for operating the corresponding unmanned aerial vehicles by endowing or withdrawing the authority of the first users for transmitting and receiving the first data packets.
In step S103, a plurality of authority filters for the plurality of communication connections are respectively established based on the plurality of first type numbers.
In this step, in a plurality of communication connections between the server and a plurality of drone control devices, the server establishes a plurality of authority filters corresponding to the plurality of communication connections according to the plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive. The plurality of authority filters respectively filter first data packets which are sent and received by a first user without authority in the corresponding plurality of communication connections.
In step S104, based on the plurality of authority filters, one-to-one communication between the plurality of drone controlling devices and the plurality of drones is achieved.
In this step, the server receives a plurality of first packets sent by the plurality of drone control devices, respectively, during a plurality of communication connections between the server and the plurality of drone control devices. And the plurality of authority filters are used for carrying out authority filtering on the plurality of first data packets respectively. And screening and reserving a plurality of first data packets of which the corresponding data packet type numbers are the same as the plurality of first type numbers by a plurality of authority filters to obtain a plurality of third data packets. And the server respectively forwards the third data packets to a plurality of corresponding unmanned aerial vehicles or a plurality of unmanned aerial vehicle control devices. And the plurality of authority filters actively send out the plurality of unmanned aerial vehicle control devices and return the plurality of first data packets screened by the plurality of authority filters to the plurality of unmanned aerial vehicle control devices corresponding to the plurality of unmanned aerial vehicle control devices.
According to the embodiment of the invention, if the plurality of first users have the authority to operate the corresponding unmanned aerial vehicle, the server respectively obtains a plurality of first type numbers corresponding to a plurality of first data packets which the plurality of first users have the authority to send and receive. In a plurality of communication connection of server and a plurality of unmanned aerial vehicle controlgear, the server is according to these a plurality of first type numbers, establishes a plurality of authority filters corresponding to these a plurality of communication connection. In a plurality of communication connection of server and a plurality of unmanned aerial vehicle controlgear, the server receives a plurality of first data packets that these a plurality of unmanned aerial vehicle controlgear sent respectively. And the plurality of authority filters are used for respectively carrying out authority filtering on the plurality of first data packets. And screening and reserving a plurality of first data packets with the corresponding data packet type numbers same as the plurality of first type numbers by a plurality of authority filters to obtain a plurality of third data packets. And the server respectively forwards the third data packets to a plurality of corresponding unmanned aerial vehicles or a plurality of unmanned aerial vehicle control devices. Thereby the server carries out fine grit's authority control to the communication data package between a plurality of unmanned aerial vehicle and a plurality of unmanned aerial vehicle controlgear that correspond, has improved the security of communication between unmanned aerial vehicle and the unmanned aerial vehicle controlgear.
Fig. 2 is an interaction flow diagram of a communication method according to an embodiment of the invention. The interaction flow chart specifically shows steps S101 to S102 in fig. 1, and a plurality of communication connections with a plurality of pieces of unmanned aerial vehicle control equipment are respectively established according to login requests of a plurality of first users; managing the authority of the plurality of first users for operating the corresponding unmanned aerial vehicles, and respectively obtaining the interactive relation among the unmanned aerial vehicle control equipment, the server and the unmanned aerial vehicle during the process that the plurality of first users have the authority to send and receive the plurality of first type numbers corresponding to the plurality of first data packets. The method comprises the following steps:
in step S201, a server receives login requests of the first users respectively, where the login requests of the first users include: a plurality of login data.
In this step, the server receives login requests of a plurality of first users, respectively, where the login requests of the plurality of first users include: a plurality of login data. The login data includes at least one of: user name, password, device number, terminal type, and terminal version.
In step S202, based on the plurality of login data, the server determines whether the plurality of first users are registered users.
In this step, the server determines whether the plurality of first users are registered users based on the plurality of login data. For example, the login data of the plurality of first users is compared with the registered users stored in the server, and the server determines whether the plurality of first users are registered users.
In step S203, if the plurality of first users are unregistered users, the server prompts the plurality of first users to register in the plurality of unmanned aerial vehicle control devices and obtain the related authority of the unmanned aerial vehicle corresponding to the operation by applying for the authority.
In this step, if the plurality of first users are unregistered users, the server prompts the plurality of first users to register in the corresponding plurality of unmanned aerial vehicle control devices and prompts that the related authority for operating the corresponding unmanned aerial vehicle can be obtained by applying for the authority to the server.
In step S204, if the plurality of first users are registered users, the server generates a plurality of first communication tokens corresponding to the plurality of drone control devices and having an expiration time limit, and saves the plurality of first communication tokens and a plurality of first device numbers of the plurality of drone control devices.
In this step, if the plurality of first users are registered users, the server generates a plurality of first communication tokens with an expiration time limit corresponding to the plurality of drone control devices, and saves the plurality of first communication tokens and a plurality of first device numbers of the plurality of drone control devices.
In step S205, the server transmits the plurality of first communication tokens and the plurality of first device numbers back to the drone controlling devices corresponding to each other.
In this step, the server transmits the plurality of first communication tokens and the plurality of first device numbers back to the corresponding drone controlling devices.
In step S206, the multiple pieces of drone controlling equipment respectively receive and store the multiple pieces of first communication tokens and the multiple pieces of first equipment numbers returned by the server, and simultaneously, respectively set a user login-free time corresponding to the expiration time of the multiple pieces of first communication tokens; when the user login-free time of the first users exceeds the time limit, the first users exit the login state.
In this step, the plurality of drone control devices respectively receive and store the plurality of first communication tokens and the plurality of first device numbers returned by the server, and at the same time, the plurality of drone control devices respectively set user login-free times that are the same as the expiration timeliness of the plurality of first communication tokens. And when the login-free time of the users of the first users is over, the first users exit the login state.
In step S207, the server receives the plurality of second data packets sent by the plurality of drone controlling devices, respectively, and determines whether the plurality of second data packets carry the communication token and the device number, respectively.
In this step, the server receives a plurality of second packets sent by the plurality of drone controlling devices, respectively. And the server respectively judges whether the plurality of second data packets carry the communication token and the equipment number.
In step S208, if each of the second data packets does not carry a communication token and a device number, the server is disconnected from the corresponding drone control device.
In this step, if each of the second data packets does not carry the communication token and the device number, the server is disconnected from the drone control device corresponding to the second data packet.
In step S209, if each of the second data packets carries a communication token and an equipment number, it is determined whether the communication token and the equipment number carried by each of the second data packets are consistent with the corresponding first communication token and the corresponding first equipment number of the drone control equipment.
In this step, if each of the second data packets carries a communication token and a device number, it is determined whether the communication token and the device number carried by each of the second data packets are consistent with the first communication token and the first device number of the drone control device corresponding to the second data packet.
In step S2010, if the communication token and the device number carried in each second data packet are not consistent with the first communication token and the first device number of the corresponding drone control device, the drone control device is disconnected from the corresponding drone control device.
In this step, if the communication token and the device number carried by each second data packet are inconsistent with the first communication token and the first device number of the drone control device corresponding to the second data packet, the drone control device corresponding to the second data packet is disconnected.
In step S2011, if the communication token and the device number carried in each second data packet are consistent with the first communication token and the first device number of the corresponding drone control device, the server performs authorization verification on the corresponding first user.
In this step, if the communication token and the device number carried by each second data packet are consistent with the first communication token and the first device number of the drone control device corresponding to the second data packet, the server performs authorization verification on the first user corresponding to the second data packet.
In step S2012, if it is verified that the drone corresponding to the first user unauthorized operation is operated, the server returns information that the drone is operated by the first user unauthorized to the corresponding drone control device and disconnects the drone control device. The first user can obtain the related authority corresponding to the operation of the unmanned aerial vehicle through applying for the authority.
In this step, if it is verified that the first user does not have permission to operate the corresponding drone, the server returns the information that the first user does not have permission to operate the corresponding drone to the corresponding drone control device and disconnects from the corresponding drone control device. The first user can obtain the related authority of the unmanned aerial vehicle corresponding to the operation through applying for the authority.
In step S2013, if it is verified that the first user has the right to operate the corresponding drone, the server obtains the first type numbers corresponding to the first data packets that the first user has the right to send and receive.
In this step, if it is verified that the first user has the authority to operate the corresponding unmanned aerial vehicle, the server obtains a plurality of first type numbers corresponding to a plurality of first data packets that the first user has the authority to send and receive.
According to the embodiment of the invention, the server receives the plurality of second data packets sent by the plurality of unmanned aerial vehicle control devices respectively. And the server respectively judges whether the plurality of second data packets carry the communication token and the equipment number. And if each second data packet carries the communication token and the equipment number, judging whether the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the unmanned aerial vehicle control equipment corresponding to the second data packet. And if the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the unmanned aerial vehicle control equipment corresponding to the second data packet, the server carries out authority verification on the first user corresponding to the second data packet. And if the first user is verified to have the authority to operate the corresponding unmanned aerial vehicle, the server obtains a plurality of first type numbers corresponding to a plurality of first data packets which are sent and received by the first user. The identity security of a plurality of first users in a plurality of communication connection of server and a plurality of unmanned aerial vehicle controlgear has been improved, the security of communication between unmanned aerial vehicle and the unmanned aerial vehicle controlgear has further been improved.
Fig. 3 is an interaction flow diagram of a communication method according to an embodiment of the present invention. The interaction flow chart shows steps S103 to S104 in fig. 1, a plurality of authority filters for the plurality of communication connections are respectively established based on the plurality of first type numbers, and an interaction relationship among the unmanned aerial vehicle control device, the server and three unmanned aerial vehicles is realized in a process of one-to-one communication between the plurality of unmanned aerial vehicle control devices and the plurality of unmanned aerial vehicles based on the plurality of authority filters. The method comprises the following steps:
in step S301, based on the first type numbers, the server establishes a plurality of authority filters for the communication connections, respectively.
This step is identical to step 103 and will not be described further here.
In step S302, the server receives the first data packets a sent by the drone control devices in the communication connections.
In this step, the server receives the plurality of first packets a sent by the plurality of drone control devices, respectively, in a plurality of communication connections between the server and the plurality of drone control devices.
In step S303, the plurality of authority filters perform authority filtering on the plurality of first packets a, respectively. And screening and reserving the first data packets A with the corresponding data packet type numbers same as the first type numbers.
In this step, the plurality of authority filters perform authority filtering on the plurality of first packets a, respectively. The communication token and the equipment number that these a plurality of first data package A carried are unanimous with a plurality of first communication token and a plurality of equipment number of a plurality of unmanned aerial vehicle controlgear that these a plurality of first data package A correspond, and these a plurality of authority filter screening are kept these a plurality of first data package A.
In step S304, the server respectively forwards the first data packets a to the corresponding unmanned aerial vehicles.
In this step, the server forwards the first data packets a to the corresponding drones.
In step S305, the first data packets B sent by the drone control devices are received in the communication connections.
In this step, the server receives the plurality of first packets B transmitted by the plurality of drone control devices, respectively, in a plurality of communication connections between the server and the plurality of drone control devices.
In step S306, the plurality of authority filters perform authority filtering on the plurality of first packets B, respectively. The plurality of authority filters filter the first data packets B which do not pass.
In this step, the plurality of authority filters perform authority filtering on the plurality of first packets B, respectively. The communication tokens and the equipment numbers carried by the first data packets B are inconsistent with the first communication tokens and the first equipment numbers of the unmanned aerial vehicle control equipment corresponding to the first data packets B, and the permission filters filter the first data packets B.
In step S307, the server returns the first data packets B to the corresponding drone control devices.
In this step, the server returns the plurality of first data packets B to the respective plurality of drone controlling devices.
According to the embodiment of the invention, a plurality of authority filters established by the server are used for screening and filtering a plurality of first data packets sent by a plurality of unmanned aerial vehicle control devices. The server forwards the carried communication tokens and the carried equipment numbers and the plurality of first communication tokens and the plurality of first data packets A which are consistent with the plurality of first equipment numbers of the plurality of unmanned aerial vehicle control equipment corresponding to the plurality of first data packets A to the corresponding unmanned aerial vehicles respectively. The server returns the carried communication tokens and the carried first data packets B, which are not the case of the first communication tokens and the first device numbers of the unmanned aerial vehicle control devices, to the corresponding unmanned aerial vehicle control devices. Carry out fine grit's authority control to the information of going upward between unmanned aerial vehicle and the unmanned aerial vehicle controlgear and down the information, further improved the security of communication between unmanned aerial vehicle and the unmanned aerial vehicle controlgear.
Fig. 4 is a schematic structural diagram of a communication system according to an embodiment of the present invention. The communication system is applied to a server side, as shown in fig. 4, the system 40 includes: subscriber unit 401, rights unit 402, service unit 403.
The user unit 401 is configured to establish a plurality of communication connections with a plurality of pieces of drone controlling devices, respectively, according to login requests of a plurality of first users.
An authority unit 402, configured to manage authorities of the multiple first users to operate the corresponding multiple unmanned aerial vehicles, and obtain multiple first type numbers corresponding to multiple first data packets that the multiple first users have authority to send and receive, respectively.
A service unit 403, configured to respectively establish multiple authority filters for the multiple communication connections based on the multiple first type numbers; and based on the plurality of authority filters, realizing one-to-one communication between the plurality of unmanned aerial vehicle control devices and the plurality of unmanned aerial vehicles.
In an embodiment of the present invention, the user unit 401 is configured to establish a plurality of communication connections with a plurality of the drone controlling devices, respectively, according to login requests of a plurality of first users.
An authority unit 402, configured to manage authority of the multiple first users for operating the corresponding multiple unmanned aerial vehicles, and obtain multiple first type numbers corresponding to multiple first data packets that the multiple first users have authority to send and receive, respectively. After the first user has registered, it is necessary to maintain the rights at the rights unit 402 if it wants to obtain the corresponding rights to operate the drone. First, the authority unit 402 needs to maintain corresponding actions, for example, if an instruction for takeoff of the drone requires that the drone control device continuously send three data packets with type numbers msgId =2.4.5, the authority unit 402 maintains a corresponding relationship between the action takeoff and the three IDs. Then, the authority unit 402 needs to maintain a corresponding data set, for example, if the battery information of the drone controls the drone control device and the drone control device needs to receive three data packets with type number msgId =6.9.11, the battery information and the three IDs are maintained in correspondence. Second, a role refers to a class of people that can possess certain several action rights or data rights, and the rights unit 402 creates a role to maintain the corresponding relationship between the role and several actions and data. Finally, the authority unit 402 assigns roles to users, i.e. maintains the correspondence between users and roles. The final rights information depends on the packet type number msgId.
A service unit 403, configured to respectively establish multiple authority filters for the multiple communication connections based on the multiple first type numbers; and based on these a plurality of authority filters, realize the one-to-one communication between these a plurality of unmanned aerial vehicle controlgear and these a plurality of unmanned aerial vehicle.
According to the embodiment of the invention, on the basis of using TCP communication between the unmanned aerial vehicle and the server and between the unmanned aerial vehicle control equipment and the server, a set of authority system is established, each data packet is sorted and marked, a user and a mark of a packet which the user has authority to receive and send are bound to the TCP long connection, and finally the packet without the authority is intercepted through an authority filter, so that the safety of communication between the unmanned aerial vehicle and the unmanned aerial vehicle control equipment is improved.
In an optional embodiment of the present invention, the establishing, according to login requests of a plurality of first users, a plurality of communication connections with a plurality of drone control devices, respectively, includes: respectively receiving login requests of the plurality of first users, wherein the login requests of the plurality of first users comprise: a plurality of login data; and judging whether the plurality of first users are registered users or not based on the plurality of login data.
In an optional embodiment of the present invention, the establishing a plurality of communication connections with a plurality of drone control devices respectively according to login requests of a plurality of first users further includes: if the plurality of first users are registered users, generating a plurality of first communication tokens corresponding to the plurality of unmanned aerial vehicle control devices and having overdue time efficiency; saving the plurality of first communication tokens and a plurality of first device numbers of the plurality of drone control devices; and transmitting the plurality of first communication tokens and the plurality of first device numbers back to the corresponding unmanned aerial vehicle control devices.
In an optional embodiment of the present invention, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively includes: receiving a plurality of second data packets sent by the plurality of unmanned aerial vehicle control devices respectively; and respectively judging whether the plurality of second data packets carry the communication token and the equipment number.
In an optional embodiment of the present invention, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes: if each second data packet does not carry a communication token and a device number, disconnecting the corresponding unmanned aerial vehicle control device; and if each second data packet carries a communication token and an equipment number, judging whether the communication token and the equipment number carried by each second data packet are consistent with the corresponding first communication token and the corresponding first equipment number of the unmanned aerial vehicle control equipment.
In an optional embodiment of the present invention, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes: if the communication token and the equipment number carried by each second data packet are not consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, disconnecting the communication token and the equipment number from the corresponding unmanned aerial vehicle control equipment; and if the communication token and the equipment number carried by each second data packet are consistent with the first communication token and the first equipment number of the corresponding unmanned aerial vehicle control equipment, performing authority verification on the corresponding first user.
In an optional embodiment of the present invention, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes: if the unmanned aerial vehicle corresponding to the first user unauthorized operation is verified, returning information that the unmanned aerial vehicle is operated by the first user unauthorized to the corresponding unmanned aerial vehicle control equipment and disconnecting the unmanned aerial vehicle control equipment from the corresponding unmanned aerial vehicle control equipment; the first user can obtain the related authority corresponding to the operation of the unmanned aerial vehicle through applying for the authority.
In an optional embodiment of the present invention, the managing the authority of the plurality of first users for operating the corresponding plurality of drones to obtain a plurality of first type numbers corresponding to a plurality of first data packets that the plurality of first users have authority to send and receive respectively further includes: and if the first user is verified to have the authority to operate the corresponding unmanned aerial vehicle, obtaining the first type numbers corresponding to the first data packets which are sent and received by the first user.
In an optional embodiment of the present invention, the enabling one-to-one communication between the plurality of drone controlling devices and the plurality of drones based on the plurality of authority filters includes: receiving the plurality of first data packets sent by the plurality of unmanned aerial vehicle control devices in the plurality of communication connections respectively; the plurality of authority filters are used for respectively carrying out authority filtering on the plurality of first data packets; screening and reserving the plurality of first data packets with the corresponding data packet type numbers same as the plurality of first type numbers to obtain a plurality of third data packets; respectively forwarding the third data packets to the corresponding unmanned planes or the unmanned plane control devices; and returning the first data packets which are actively sent out by the unmanned aerial vehicle control devices and screened by the permission filters to the corresponding unmanned aerial vehicle control devices.
In an optional embodiment of the present invention, the establishing, according to login requests of a plurality of first users, a plurality of communication connections with a plurality of drone controlling devices, respectively, further includes: if the plurality of first users are unregistered users, prompting that the plurality of first users are registered in the plurality of unmanned aerial vehicle control devices and obtaining the corresponding related authority of the unmanned aerial vehicle through applying for the authority.
In an optional embodiment of the invention, the login data comprises at least one of: user name, password, device number, terminal type, and terminal version.
In an optional embodiment of the present invention, the plurality of drone control devices respectively receive and store the plurality of first communication tokens and the plurality of first device numbers returned by the server, and simultaneously, respectively set a user login-free time corresponding to an expiration time of the plurality of first communication tokens; when the login-free time of the users of the first users is out of time, the first users exit the login state.
Fig. 5 is a structural diagram of a communication control apparatus according to an embodiment of the present invention. The apparatus shown in fig. 5 is only an example and should not limit the functionality and scope of use of embodiments of the present invention in any way.
Referring to fig. 5, the apparatus includes a processor 501, a memory 502, and an input-output device 503, which are connected by a bus. Memory 502 includes Read Only Memory (ROM) and Random Access Memory (RAM), with various computer instructions and data required to perform system functions being stored in memory 502, and with various computer instructions being read by processor 501 from memory 502 to perform various appropriate actions and processes. An input/output device including an input portion of a keyboard, a mouse, and the like; an output section including a display such as a Cathode Ray Tube (CRT), a Liquid Crystal Display (LCD), and the like, and a speaker; a storage section including a hard disk and the like; and a communication section including a network interface card such as a LAN card, a modem, or the like. The memory 502 also stores the following computer instructions to perform the operations specified in the communication method of the embodiment of the present invention: respectively establishing a plurality of communication connections with a plurality of unmanned aerial vehicle control devices according to login requests of a plurality of first users; managing the authorities of the plurality of first users for operating the corresponding plurality of unmanned aerial vehicles, and respectively obtaining a plurality of first type numbers corresponding to a plurality of first data packets which are sent and received by the plurality of first users with the authorities; respectively establishing a plurality of authority filters of the plurality of communication connections based on the plurality of first type numbers; and based on the plurality of authority filters, realizing one-to-one communication between the plurality of unmanned aerial vehicle control devices and the plurality of unmanned aerial vehicles.
Accordingly, an embodiment of the present invention provides a computer-readable storage medium, which stores computer instructions that, when executed, implement the operations specified in the above communication method.
The flowcharts and block diagrams in the figures and block diagrams illustrate the possible architectures, functions, and operations of the systems, methods, and apparatuses according to the embodiments of the present invention, and may represent a module, a program segment, or merely a code segment, which is an executable instruction for implementing a specified logical function. It should also be noted that the described executable instructions that implement the specified logical functions can be recombined to create new modules and program segments. The blocks of the drawings and the sequence of blocks are thus only intended to better illustrate the processes and steps of the embodiments and should not be taken as limiting the invention itself.
The above description is only a few embodiments of the present invention, and is not intended to limit the present invention, and various modifications and changes may occur to those skilled in the art. Any modification, equivalent replacement, or improvement made within the spirit and principle of the present invention should be included in the protection scope of the present invention.