CN113656841A - Trustzone-based block chain terminal security guarantee system - Google Patents

Trustzone-based block chain terminal security guarantee system Download PDF

Info

Publication number
CN113656841A
CN113656841A CN202110853377.1A CN202110853377A CN113656841A CN 113656841 A CN113656841 A CN 113656841A CN 202110853377 A CN202110853377 A CN 202110853377A CN 113656841 A CN113656841 A CN 113656841A
Authority
CN
China
Prior art keywords
data
module
security
block chain
account
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202110853377.1A
Other languages
Chinese (zh)
Inventor
陈鑫溢
环宇翔
邹卓
郑立荣
崔建军
贡力
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fudan University
Original Assignee
Fudan University
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fudan University filed Critical Fudan University
Priority to CN202110853377.1A priority Critical patent/CN113656841A/en
Publication of CN113656841A publication Critical patent/CN113656841A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3827Use of message hashing
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q40/00Finance; Insurance; Tax strategies; Processing of corporate or income taxes
    • G06Q40/04Trading; Exchange, e.g. stocks, commodities, derivatives or currency exchange

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • General Business, Economics & Management (AREA)
  • Health & Medical Sciences (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Development Economics (AREA)
  • Economics (AREA)
  • Marketing (AREA)
  • Technology Law (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

The invention belongs to the technical field of a block chain Internet of things, and particularly relates to a trustzone-based block chain terminal security guarantee system. According to the safety guarantee system, the block chain account is deployed on the terminal equipment of the Internet of things to realize the integration of acquisition, encryption and transmission, and safety guarantee is performed on three levels of kernel, transmission and data; at the kernel level, the terminal equipment of the Internet of things is divided into a safe area and a non-safe area based on trustzone, and a private key management module is arranged in the safe area to ensure the safety of an account; network access security authentication is carried out at a transmission level, different levels of encryption are selected according to data tamper resistance and peep-proof characteristics, and transmission security is guaranteed; and deploying block chain functions on the Internet of things terminal equipment at a data level, wherein the block chain functions comprise block chain account creation, inquiry, account transfer and the like. The method and the system solve the problems of security and privacy, main body cooperation and communication compatibility in a supply chain system, and realize the credible uplink of data.

Description

Trustzone-based block chain terminal security guarantee system
Technical Field
The invention belongs to the technical field of block chain Internet of things, and particularly relates to a trustzone-based block chain terminal security guarantee system.
Background
In recent years, with the popularization and development of the interconnection of everything, the industrial internet of things obtains application results in various fields, and the production of manufacturing enterprises is more automated and information is disclosed. The desire of the public to understand the product supply chain is also becoming stronger. In the process of upgrading and transforming industry, enterprises need to supervise, store and disclose raw materials, production processes, production equipment, workers, transportation and the like in many aspects.
By means of various sensors, positioning systems, recognition devices and the like of the Internet of things terminal equipment, the Internet of things and even the Internet of people are achieved in the world, and the system is widely applied to the fields of industrial production, agricultural monitoring, traffic supervision, logistics recognition, safety guarantee and the like, so that the industrial intelligence is greatly promoted, and the production and the life of people are facilitated.
The existing product supply chain management mode is basically the management of equipment management mixed personnel, the automatic recording data is limited, and the real-time monitoring is difficult, such as collecting workshop production data by means of a production field RFID reader-writer and identifying and acquiring workpiece information. And transmitting the collected information to an MES system, managing and controlling production, and feeding back to an administrator.
However, the following problems are bound to be brought about by simply exchanging information through network interconnection to realize tracking and monitoring of the object.
(1) Security and privacy problems: the server is easy to be attacked and paralyzed by DDOS, personal data is easy to leak, the identity of the Internet of things is easy to forge, information is easy to be distorted and the like
(2) Subject collaboration problem: multiple main bodies are not mutually trusted, and a wide identity identification and information disclosure mechanism needs to be established to establish the identity identification capability of other main bodies.
(3) The problem of communication compatibility: the vigorous development of the internet of things promotes the fact that a plurality of branches are independent, the communication is incompatible, the language is not uniform, the platform is diversified, and the data needs to be intelligently processed.
Therefore, the information obtained by tracing the supply chain data cannot guarantee the authenticity. The production process can be really transparent only by ensuring that the information of each link on the supply chain is real, effective and not tampered.
Disclosure of Invention
The invention aims to provide a trustzone-based block chain terminal security guarantee system which is integrated with acquisition, encryption and transmission of block chain accounts deployed on terminal equipment of the Internet of things.
The invention provides a trustzone-based block chain terminal security guarantee system which guarantees security at three levels of kernel, transmission and data and realizes credible uplink of data, and specifically comprises the following steps: kernel level safety guarantee module, transmission level safety guarantee module, data level safety guarantee module, wherein:
the kernel level security guarantee module is based on trustzone, the terminal equipment of the Internet of things is divided into a security area and a non-security area, the security of an account is guaranteed, and the problem of security and privacy is solved.
The transmission level safety guarantee module selects different encryption modes for the classified data according to the self-carrying encryption characteristic of the communication module, realizes certificate management and network access safety certification, ensures transmission safety and solves the problem of communication compatibility.
The data level safety guarantee module realizes a block chain function on the terminal equipment of the Internet of things, and solves the problem of main body cooperation.
Preferably, the internet of things terminal device is a microcontroller supporting trustzone and is integrated with an acquisition module and a communication module.
Preferably, the kernel level security assurance module is guaranteed by a trustzone technology. Virtualizing each physical core on the processor architecture as two cores: a non-secure kernel running the code of the non-secure area; and the other safety core runs the code of the safety zone.
Preferably, at the kernel level, operations needing to be kept secret are executed in a security zone, and the operations comprise a running key management module, a security classification module and a data transaction management module; the rest operations are executed in the non-secure world, including the operation of a user management module and a data transaction management module. The non-secure world has access to only the interface functions allowed by the secure world.
Preferably, the transmission level security guarantee module includes a communication module, a data encryption module and a network access authentication module which operate in an insecure area.
Preferably, the data hierarchy security assurance module is guaranteed by a block chain deployed by the terminal.
Preferably, the terminal deploys a blockchain function, including: registering a blockchain account, inquiring blockchain account information, linking local data of the blockchain account, linking transaction data of the blockchain account, inquiring historical records of the blockchain account transaction data and the like.
Preferably, the acquisition module supports, but is not limited to, rs485, rs232, uart, spi, IIC, and other common data interfaces.
Preferably, the communication module includes two types, namely a communication module with an encryption mechanism and a communication module without an encryption mechanism, the communication module without an encryption mechanism supports but is not limited to communication technologies such as bluetooth, WIFI, 4G, and the like, and the communication module with an encryption mechanism supports but is not limited to communication technologies such as ZigBee, LoraWAN, ethernet, and the like.
Preferably, a key management module is run in the secure area, and stores the private key related to the block chain account.
Preferably, the security classification module is operated in the security zone and is divided into two stages, namely, 1 stage and 2 stages according to the data non-tampering characteristic and the non-snooping characteristic.
Preferably, a data transaction management module is run in the secure area, and the private key is used to encrypt the summary data of the blockchain transaction.
Preferably, the user management module is operated in the non-secure area, and is used for managing the user login blockchain account.
Preferably, the data transaction management module is operated in the non-safety area, manages the collected data and exchanges the data with the data transaction management module in the safety area.
Preferably, the communication module is operated in a non-safety area, the communication module is divided into two authentication modes according to whether an encryption mechanism is provided or not, a communication mode without the encryption mechanism is carried out according to the grades of two-grade json data packets, the plaintext and digital signature processing is carried out on the 1-grade json data packets through the data encryption module, and the plaintext encryption is carried out on the 2-grade json data packets into ciphertext processing by using a key exchange algorithm; and the communication mode with the encryption mechanism directly transmits two-stage json data packets.
Preferably, the network access authentication module is operated in the non-secure area, and the validity of channel transmission is ensured by verifying the key.
Preferably, the function of registering the blockchain account realizes acquiring the identity of the blockchain legal, which is expressed as an application account and a private key. And the local data chaining function of the block chain account realizes the data chaining of the terminal acquisition module, and the data chaining is represented as self-transaction. And the block chain account transaction data chaining function realizes statistics data chaining and alarm data chaining, shows mutual transaction and sends a transaction application to the upstream account.
Advantageous effects
The trustzone-based security guarantee system integrating acquisition, encryption and transmission of the block chain account is deployed on the terminal equipment of the Internet of things. The security is guaranteed through three levels of kernel, transmission and data, the security privacy problem, the main body cooperation problem and the communication compatibility problem in a supply chain system are solved, and the credible uplink of the data is realized.
Drawings
In order to more clearly illustrate the technical solutions provided by the embodiments of the present invention, the drawings needed to be used in the embodiments will be briefly described below, and it is apparent that the drawings in the following description are only some embodiments of the present invention, and it is obvious for those skilled in the art that other drawings can be obtained according to the structures shown in the drawings without inventive labor.
Fig. 1 is a design diagram of a trustzone-based block chain terminal security system according to an embodiment of the present invention.
Fig. 2 is a schematic diagram of kernel-level data encryption of a trustzone-based block chain terminal security system according to an embodiment of the present invention.
Fig. 3 is a transmission level data transmission flow chart of the trustzone-based block chain terminal security system according to the embodiment of the present invention.
Fig. 4 is a schematic diagram of a data level blockchain function of the trustzone-based blockchain terminal security assurance system according to the embodiment of the present invention.
Detailed Description
It should be understood that the described embodiments are only some embodiments of the invention, and not all embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
As shown in fig. 1, the invention provides a trustzone-based integrated security system for collecting, encrypting and transmitting a block chain account deployed on an internet of things terminal device. The security is guaranteed at three levels of data, kernel and transmission, and the credible uplink of the data is realized. Wherein the content of the first and second substances,
the kernel level is safe, and the terminal equipment of the Internet of things is divided into a safe area and a non-safe area based on trustzone, so that the account safety is ensured.
And the transmission level is safe, different encryption modes are selected for the classified data according to the self-carrying encryption characteristics of the communication module, certificate management and network access safety authentication are realized, and the transmission safety is ensured.
The data hierarchy is safe, and the function of a block chain is realized on the terminal equipment of the Internet of things.
The terminal equipment of the Internet of things is a microcontroller supporting trustzone, and integrates an acquisition module and a communication module. The acquisition module supports but is not limited to rs485, rs232, uart, spi, IIC and other universal data interfaces. The communication module comprises an encryption mechanism and a communication module without the encryption mechanism, the communication module without the encryption mechanism supports but is not limited to communication technologies such as Bluetooth, WIFI and 4G, and the communication module with the encryption mechanism supports but is not limited to communication technologies such as ZigBee, LoraWAN and Ethernet.
As shown in fig. 2, the kernel level security is implemented in the present invention, and is ensured by the trustzone technology of the terminal device. Virtualizing each physical core into two cores, one non-secure core, on a processor architecture, and running codes of the non-secure area; and another security kernel running the code of the security zone. At the kernel level, operations needing to be kept secret are executed in a security zone, and a key management module, a security grading module and a data transaction management module are operated; and the rest operations are executed in the non-secure world, and a user management module and a data transaction management module are operated. The non-secure world has access to only the interface functions allowed by the secure world. The specific process is as follows:
after the data are acquired by the non-safety area acquisition module, the data enter the data transaction management module of the non-safety area, at the moment, the data are interacted with the data transaction management module of the safety area through an interface between the safety area and the non-safety area, the data are classified in the safety classification module of the safety area, and the data are divided into two stages, namely 1 stage and 2 stages according to the data non-tampering characteristic and the non-snooping characteristic. And after grading is finished, returning the data to the data transaction management module in the safe area, and encrypting the abstract data of the block chain transaction by using a block chain account private key stored by the key management module in the safe area to form a level 1/level 2 encrypted json data packet and outputting the level 1/level 2 encrypted json data packet to the data transaction management module in the non-safe area for temporary storage.
As shown in fig. 3, the implementation of the transmission level security in the present invention realizes secure transmission through the communication module, the data encryption module and the network access authentication module operating in the non-secure area. The specific process is as follows:
the communication module operating in the non-safety area is divided into two authentication modes according to whether an encryption mechanism is provided or not, a communication mode without the encryption mechanism is according to the grade of two-grade json data packets, and the plaintext and digital signature processing is carried out on the 1-grade json data packets through the data encryption module, for example, when WiFi transmission is adopted, the 1-grade json data packets need to be digitally signed at the terminal and transmitted through a WiFi channel; and encrypting the plain text of the 2-level json data packet by using a key exchange algorithm to obtain a ciphertext, for example, when WiFi transmission is adopted, a block chain account needs to negotiate a key with a block chain upper level, and the 2-level json data packet is encrypted and then transmitted through a WiFi channel. The two-stage json data packets are directly transmitted in a communication mode with an encryption mechanism, for example, when the lorawan protocol is adopted for transmission, because the lorawan protocol terminal equipment has AES encryption after being accessed to the network, repeated encryption operation is not needed any more, and the json data packets are directly transmitted in a channel.
The processed data packet passes through the network access authentication module, and the validity of channel transmission is ensured by the verification key. For example, for WiFi channel transmission, the json data packet is obtained after the block chain upper-level account is decrypted, and the data packet is analyzed to determine that the uplink identity is legal, and the uplink is granted. For example, for a lorawan protocol OTAA (over the air activation mode) networking transmission json data packet, after three parameters of DevEUI, AppEUI and AppKey are prepared, a terminal sends a networking command after initiating a networking join process, NS (network server) makes a networking reply to the terminal after confirming no error, a network address DevAddr is distributed, the two parties generate session keys NwkSKey and AppSKey by using related information in the networking reply and AppKey, the session keys NwkSKey and AppSKey are used for encrypting and verifying data, after the verification is passed, the data packet is analyzed to determine that the uplink identity is legal, and the uplink is agreed.
As shown in fig. 4, the implementation of data level security in the present invention solves the subject collaboration problem by deploying blockchain functionality at the termination. The terminal deployment block chain function comprises block chain account registration, block chain account information inquiry, block chain account local data uplink, block chain account transaction data historical record inquiry and the like. The specific process is as follows:
when the terminal equipment is used for the first time, the block chain account and the private key are automatically applied to the block chain server and stored in the local, and then the block chain account is automatically logged in each restart. The account function is mainly divided into an inquiry function and a transaction function. The inquiry account information such as account hash value, etc. may be operated for the inquiry function, or the account transaction information such as uplink data history, etc. may be operated for the inquiry function. For the transaction function, self-transaction and chain-up can be carried out on common collected data, mutual transaction and chain-up can be carried out on alarm data, and meanwhile, the terminal block chain account superior can process and feed back the mutual transaction data so as to distinguish data types. All commands are eventually transmitted in json packets.
The above description is only for the specific embodiment of the present invention, but the scope of the present invention is not limited thereto, and any changes or substitutions that can be easily conceived by those skilled in the art within the technical scope of the present invention are included in the scope of the present invention. Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (8)

1. The utility model provides a block chain terminal security guarantee system based on trustzone, is characterized in that, carries out the security guarantee at kernel, transmission, three grades of data, realizes the credible cochain of data, specifically includes: kernel level safety guarantee module, transmission level safety guarantee module, data level safety guarantee module, wherein:
the kernel level security guarantee module is used for dividing the Internet of things terminal equipment into a security area and a non-security area based on the trustzone technology, so that the security of an account is ensured, and the problem of security and privacy is solved;
the transmission level safety guarantee module selects different encryption modes for the classified data according to the self-carrying encryption characteristic of the communication module, realizes certificate management and network access safety certification, and ensures transmission safety so as to solve the problem of communication compatibility;
the data level security guarantee module is used for deploying a block chain function on the terminal equipment of the Internet of things so as to solve the problem of main body cooperation;
the terminal equipment of the Internet of things is a microcontroller supporting trustzone and is integrated with an acquisition module and a communication module.
2. The system according to claim 1, wherein the kernel-level security assurance module, guaranteed by trustzone technology, virtualizes each physical core as two cores on a processor architecture: a non-secure kernel running the code of the non-secure area; another security kernel running the code of the security zone;
at the kernel level, operations needing to be kept secret are executed in a security zone, and the operations comprise an operation key management module, a security grading module and a data transaction management module; the rest operations are executed in the non-secure world, including operating a user management module and a data transaction management module; the non-secure world has access to only the interface functions allowed by the secure world.
3. The system according to claim 2, wherein the transport-level security module comprises a communication module operating in an unsecured area, a data encryption module, and a network access authentication module.
4. The system according to claim 3, wherein the data-level security module is guaranteed by a terminal-deployed blockchain; the block chain function deployed by the terminal comprises: registering a blockchain account, inquiring blockchain account information, linking local data of the blockchain account, linking transaction data of the blockchain account, and inquiring historical records of the blockchain account transaction data.
5. The blockchain terminal security assurance system of one of claims 1 to 4, wherein:
the acquisition module supports rs485, rs232, uart, spi and a universal data interface;
the communication module comprises a communication module with an encryption mechanism and a communication module without the encryption mechanism, wherein the communication module without the encryption mechanism supports Bluetooth, WIFI and 4G communication technologies, and the communication module with the encryption mechanism supports ZigBee, LoraWAN and Ethernet communication technologies.
6. The blockchain terminal security assurance system of claim 5, wherein:
the key management module runs in a safe area and stores a private key related to the block chain account;
the security classification module which operates in the security zone is divided into two stages, namely a stage 1 and a stage 2, according to the data non-tampering characteristic and the non-snooping characteristic;
and the data transaction management module runs in the security area and uses the private key to encrypt the summary data of the blockchain transaction.
7. The blockchain terminal security assurance system of claim 6, wherein:
the user management module is operated in the non-safety area and is used for managing a user login block chain account;
the data transaction management module operates in the non-safety area, manages the acquired data and exchanges the data with the data transaction management module in the safety area;
the communication module operating in the non-safety area is divided into two authentication modes according to whether an encryption mechanism is provided or not, a communication mode without the encryption mechanism is according to the grades of two-grade json data packets, the plaintext and digital signature processing is carried out on the 1-grade json data packets through the data encryption module, and the plaintext encryption is carried out on the 2-grade json data packets by using a key exchange algorithm to obtain ciphertext; directly transmitting two-stage json data packets in a communication mode with an encryption mechanism;
and the network access authentication module running in the non-safety area verifies the validity of the key to ensure channel transmission.
8. The blockchain terminal security assurance system of claim 7, wherein:
the function of registering the blockchain account realizes the acquisition of a blockchain legal identity which is expressed as an application account and a private key;
the local data chaining function of the block chain account realizes the data chaining of the terminal acquisition module, and the data chaining is represented as self-transaction;
and the block chain account transaction data chaining function realizes statistics data chaining and alarm data chaining, shows mutual transaction and sends a transaction application to the upstream account.
CN202110853377.1A 2021-07-28 2021-07-28 Trustzone-based block chain terminal security guarantee system Pending CN113656841A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202110853377.1A CN113656841A (en) 2021-07-28 2021-07-28 Trustzone-based block chain terminal security guarantee system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202110853377.1A CN113656841A (en) 2021-07-28 2021-07-28 Trustzone-based block chain terminal security guarantee system

Publications (1)

Publication Number Publication Date
CN113656841A true CN113656841A (en) 2021-11-16

Family

ID=78490712

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202110853377.1A Pending CN113656841A (en) 2021-07-28 2021-07-28 Trustzone-based block chain terminal security guarantee system

Country Status (1)

Country Link
CN (1) CN113656841A (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109447647A (en) * 2018-11-19 2019-03-08 上海趣链信息科技有限公司 A kind of safety payment system based on block chain
WO2019052281A1 (en) * 2017-09-12 2019-03-21 京信通信系统(中国)有限公司 Block chain-based mobile terminal authentication management method and apparatus, and corresponding mobile terminal
CN110492990A (en) * 2018-05-15 2019-11-22 华为技术有限公司 Private key management method, apparatus and system under block chain scene
CN111431993A (en) * 2020-03-20 2020-07-17 山东大学 Method for realizing IoT equipment heartbeat communication based on TrustZone technology

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2019052281A1 (en) * 2017-09-12 2019-03-21 京信通信系统(中国)有限公司 Block chain-based mobile terminal authentication management method and apparatus, and corresponding mobile terminal
CN110492990A (en) * 2018-05-15 2019-11-22 华为技术有限公司 Private key management method, apparatus and system under block chain scene
CN109447647A (en) * 2018-11-19 2019-03-08 上海趣链信息科技有限公司 A kind of safety payment system based on block chain
CN111431993A (en) * 2020-03-20 2020-07-17 山东大学 Method for realizing IoT equipment heartbeat communication based on TrustZone technology

Similar Documents

Publication Publication Date Title
Abir et al. Iot-enabled smart energy grid: Applications and challenges
CN109922162B (en) Flat building equipment Internet of things monitoring system and method based on block chain
CN101094056B (en) Security system of wireless industrial control network, and method for implementing security policy
CN103338188B (en) A kind of dynamic authentication method of client side being applicable to mobile cloud
CN110012015A (en) A kind of internet of things data sharing method and system based on block chain
CN104754582B (en) Safeguard the client and method of BYOD safety
CN107911370A (en) A kind of data ciphering method and device, data decryption method and device
DE112019003309T5 (en) DEVICE FOR SECURE RECEIVING OF SHIPMENTS WITH DELEGATING CHAIN
CN108965215A (en) A kind of dynamic security method and system of more fusion coordination and responses
CN106780893A (en) A kind of internet intelligent door lock and system
CN113254947B (en) Vehicle data protection method, system, equipment and storage medium
CN110474921B (en) Perception layer data fidelity method for local area Internet of things
CN105610837A (en) Method and system for identity authentication between master station and slave station in SCADA (Supervisory Control and Data Acquisition) system
US20200274866A1 (en) Method for implementing client side credential control to authorize access to a protected device
CN110611661A (en) Acquired information sharing method and system based on double-authentication multiple-protection measures
CN113569213A (en) Industrial park application safety support system and method based on 5G technology
CN109890009A (en) A kind of vehicle communication system
CN112862487A (en) Digital certificate authentication method, equipment and storage medium
CN103152732A (en) Cloud password system and operation method thereof
CN113542339A (en) Electric power Internet of things safety protection design method
CN111352999A (en) National data circulation and data right confirming method and platform based on block chain
CN114448654B (en) Block chain-based distributed trusted audit security evidence storing method
CN114866245A (en) Block chain-based power data acquisition method and system
CN1703023A (en) CHINAMDN based wireless transparent D2D system transmission method
WO2021137753A1 (en) Electronic authentication system and process using the same

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination