CN115987491A - Encryption and decryption algorithm updating method and device for equipment group - Google Patents

Encryption and decryption algorithm updating method and device for equipment group Download PDF

Info

Publication number
CN115987491A
CN115987491A CN202211177068.8A CN202211177068A CN115987491A CN 115987491 A CN115987491 A CN 115987491A CN 202211177068 A CN202211177068 A CN 202211177068A CN 115987491 A CN115987491 A CN 115987491A
Authority
CN
China
Prior art keywords
equipment
encryption
plaintext
new version
decryption algorithm
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202211177068.8A
Other languages
Chinese (zh)
Inventor
于洋
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Zhejiang Supor Electrical Appliances Manufacturing Co Ltd
Original Assignee
Zhejiang Supor Electrical Appliances Manufacturing Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Zhejiang Supor Electrical Appliances Manufacturing Co Ltd filed Critical Zhejiang Supor Electrical Appliances Manufacturing Co Ltd
Priority to CN202211177068.8A priority Critical patent/CN115987491A/en
Publication of CN115987491A publication Critical patent/CN115987491A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • YGENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
    • Y02TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
    • Y02DCLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
    • Y02D30/00Reducing energy consumption in communication networks
    • Y02D30/70Reducing energy consumption in communication networks in wireless communication networks

Landscapes

  • Mobile Radio Communication Systems (AREA)

Abstract

The specification provides an encryption and decryption algorithm updating method and device for a device group, wherein the method comprises the following steps: the method comprises the steps that first equipment obtains a plaintext of a new version encryption and decryption algorithm and sends a version inquiry signal in a broadcasting mode; the first equipment determines whether a feedback confirmation signal of second equipment is received, and when the feedback confirmation signal of the second equipment is not received, a preset updating process aiming at the second equipment is triggered; wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment. The method can realize the upgrade and update with strong reliability for the encryption and decryption algorithm of the equipment group with the encryption and decryption requirements.

Description

Encryption and decryption algorithm updating method and device for equipment group
Technical Field
The present disclosure relates to the field of communications technologies, and in particular, to a method and an apparatus for updating an encryption/decryption algorithm of a device group.
Background
In consideration of data security, during communication between devices in the same device group, communication data plaintext is encrypted into communication data ciphertext according to an encryption algorithm in a preset encryption and decryption algorithm and then transmitted, and correspondingly, the received communication data ciphertext is decrypted according to a decryption algorithm in the encryption and decryption algorithm. In order to avoid malicious devices outside the device group from cracking the encryption and decryption algorithms of the device group, the encryption and decryption algorithms of the device group need to be updated at intervals.
It is currently the practice to set some devices in a device group as first devices and to set other devices in the device group than the first devices as second devices. When the old version encryption and decryption algorithm of the equipment group needs to be updated to the new version encryption and decryption algorithm, the first equipment acquires the plaintext of the new version encryption and decryption algorithm, the first equipment encrypts the plaintext of the new version encryption and decryption algorithm by using the old version encryption and decryption algorithm to obtain the ciphertext of the new version encryption and decryption algorithm, and sends the ciphertext of the new version encryption and decryption algorithm to the second equipment, so that the second equipment decrypts the ciphertext of the new version encryption and decryption algorithm by using the old version decryption algorithm to obtain the plaintext of the new version encryption and decryption algorithm, and local algorithm updating is completed.
However, the reliability of the update scheme of the encryption and decryption algorithms of the existing device group is not high.
Disclosure of Invention
In view of the above, the embodiments of the present disclosure provide a method and an apparatus for updating an encryption and decryption algorithm of at least one device group.
Specifically, the embodiments of the present specification are realized by the following technical solutions:
in a first aspect, a method for updating an encryption and decryption algorithm of a device group is provided, where the method includes:
the first equipment acquires a plaintext of a new version encryption and decryption algorithm and sends a version inquiry signal in a broadcasting mode;
the first equipment determines whether a feedback confirmation signal of second equipment is received, and when the feedback confirmation signal of the second equipment is not received, a preset updating flow aiming at the second equipment is triggered;
wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment.
In the technical scheme of the first aspect, in the process of updating the encryption and decryption algorithms of the device group, the first device broadcasts a version inquiry signal to at least one second device, confirms whether the second device locally stores an old version decryption algorithm according to a confirmation signal fed back by the second device, and judges whether the communication connection between the first device and the second device is smooth according to whether a feedback confirmation signal of the second device is received, and a preset updating flow can be found and triggered for the second device which is not smooth in communication connection or does not locally store the old version decryption algorithm, so that the encryption and decryption algorithms of the device group with encryption and decryption requirements can be updated with high reliability; after the preset updating process is triggered, the user terminal transmits the new version encryption and decryption algorithm plaintext through the NFC connection which is high in safety and not easy to intercept, and the new version encryption and decryption algorithm cannot be leaked while the second device is guaranteed to be capable of updating the encryption and decryption algorithm version.
Further: the first device has a bluetooth module; the broadcast version query signal, comprising: broadcasting the version inquiry signal through the Bluetooth module.
The Wi-Fi module is expensive, the Wi-Fi module is configured for each device in the device group to receive broadcast signals, so that the cost is too high, the Bluetooth module with lower cost is used for broadcasting version inquiry signals, the data volume of the version inquiry signals is small, the version inquiry signals can be transmitted quickly, the version inquiry signals do not contain information of a new version encryption and decryption algorithm, even if the Bluetooth broadcast can indiscriminately send signals to any devices with the Bluetooth modules around, the confidentiality is poor, and the information leakage of the encryption and decryption algorithm cannot be caused.
Further, the method comprises the following steps: the method further comprises the following steps:
the first device determines a second device which sends a feedback confirmation signal as an automatic updating device, establishes Bluetooth connection with the automatic updating device, and transmits a new version encryption and decryption algorithm ciphertext encrypted by using an old version encryption algorithm to the automatic updating device through the Bluetooth connection, so that the automatic updating device decrypts the new version encryption and decryption algorithm plaintext by using the old version decryption algorithm to obtain the new version encryption and decryption algorithm plaintext.
The first device and the automatic updating device establish Bluetooth connection, the new version encryption and decryption algorithm ciphertext encrypted by using the old version encryption algorithm is transmitted to the automatic updating device through the Bluetooth connection, the Bluetooth pairing connection can further improve the transmission safety of the encryption and decryption algorithm, and the data transmission success can be confirmed after the data transmission success.
Further: the first device has a wireless network communication Wi-Fi module;
the first device acquires a plaintext of a new version of encryption and decryption algorithm, and comprises the following steps:
and the first equipment acquires a new version encryption and decryption algorithm plaintext issued by the server through the Wi-Fi module.
The Wi-Fi module is expensive, each device in the device group is configured with the Wi-Fi module to receive the encryption and decryption algorithm of a new version, so that the cost is high, the Wi-Fi module is only configured on the first device, and the encryption and decryption algorithms of other second devices are updated through communication between the first device and the other second devices, so that the cost can be saved.
Further: the non-reception of the feedback confirmation signal of the second device includes:
any signal that the second device has not received feedback, and/or the received signal that the second device has locally stored no old version decryption algorithm.
The second device may not feed back any signal or feed back a signal indicating that the old version decryption algorithm is not stored locally because the old version decryption algorithm is not stored locally; it is also possible that the second device has the old version decryption algorithm stored locally, but the second device does not receive the version query signal broadcast by the first device due to a failure of the communication connection between the second device and the first device, or the second device receives the version query signal broadcast by the first device but the feedback confirmation signal is not sent to the first device due to a poor communication connection. At this time, the first device does not receive any signal fed back by the second device, and it is determined that the second device does not feed back any signal. The second device which does not have the old version decryption algorithm or cannot be automatically updated due to poor communication with the first device can be confirmed by the non-feedback confirmation signal.
Further: sending the plaintext of the new version encryption algorithm to the user terminal, wherein the sending of the plaintext of the new version encryption algorithm comprises the following steps:
and the first equipment sends information containing the identification of the second equipment to a server, so that the server sends the plaintext of the new version encryption algorithm and the identification of the second equipment to the user terminal in response to receiving the information containing the identification of the second equipment sent by the first equipment.
The server sends the plaintext of the new version encryption algorithm and the identifier of the second device to the user terminal, so that the security is stronger, and the user terminal does not need to worry about interception.
Further: the preset updating process further comprises:
and after the user terminal successfully transmits the plaintext of the new version encryption algorithm, the user terminal sends a signal that the second equipment is successfully updated to the server.
And feeding back a signal that the second equipment is successfully updated to the server so that the server records the equipment information successfully updated and does not send a prompt to the user terminal.
In a second aspect, an apparatus for updating encryption and decryption algorithms of a device group is provided, and the apparatus is applied to the first device and includes:
an update preparation module to: acquiring a plaintext of a new version encryption and decryption algorithm, and transmitting a version inquiry signal in a broadcasting manner;
a preset update module to: determining whether a feedback confirmation signal of second equipment is received, and triggering a preset updating process aiming at the second equipment when the feedback confirmation signal of the second equipment is not received;
wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment.
In a third aspect, an electronic device is provided, which includes a memory for storing computer instructions executable on a processor, and the processor is configured to implement a cryptographic algorithm update method for a device group according to any embodiment of the present specification when executing the computer instructions.
In a fourth aspect, a computer-readable storage medium is provided, on which a computer program is stored, where the program is executed by a processor to implement a method for updating an encryption/decryption algorithm of a device group according to any one of the embodiments of the present specification.
Drawings
In order to more clearly illustrate one or more embodiments of the present specification or technical solutions in the related art, the drawings needed to be used in the description of the embodiments or the related art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments described in one or more embodiments of the present specification, and other drawings can be obtained by those skilled in the art without inventive exercise.
Fig. 1 is a flow diagram illustrating a method for updating encryption and decryption algorithms for a device group, according to at least one embodiment of the present disclosure;
FIG. 2 is a flow diagram illustrating interaction of information between devices in accordance with at least one embodiment of the present description;
fig. 3 is a block diagram illustrating an encryption/decryption algorithm updating apparatus for a device group according to at least one embodiment of the present disclosure;
fig. 4 is a block diagram illustrating an encryption/decryption algorithm updating apparatus of another device group according to at least one embodiment of the present specification;
fig. 5 is a schematic diagram illustrating a hardware structure of an electronic device according to at least one embodiment of the present disclosure.
Detailed Description
Reference will now be made in detail to the exemplary embodiments, examples of which are illustrated in the accompanying drawings. When the following description refers to the accompanying drawings, like numbers in different drawings represent the same or similar elements unless otherwise indicated. The embodiments described in the following exemplary embodiments do not represent all embodiments consistent with the present specification. Rather, they are merely examples of apparatus and methods consistent with certain aspects of the specification, as detailed in the appended claims.
The terminology used in the description herein is for the purpose of describing particular embodiments only and is not intended to be limiting of the description. As used in this specification and the appended claims, the singular forms "a", "an", and "the" are intended to include the plural forms as well, unless the context clearly indicates otherwise. It should also be understood that the term "and/or" as used herein refers to and encompasses any and all possible combinations of one or more of the associated listed items.
It should be understood that although the terms first, second, third, etc. may be used herein to describe various information, these information should not be limited to these terms. These terms are only used to distinguish one type of information from another. For example, the first information may also be referred to as second information, and similarly, the second information may also be referred to as first information, without departing from the scope of the present specification. The word "if," as used herein, may be interpreted as "at … …" or "at … …" or "in response to a determination," depending on the context.
When the encryption and decryption algorithm of the device group is updated, some second devices sometimes cannot realize automatic encryption and decryption algorithm updating due to the limitation of network factors or the limitation of version information.
Wherein, the limitation of the network factors includes: the first device and the second device cannot communicate with each other due to hardware, software failure, too far distance, or other reasons.
The limitation of the version information means: the encryption and decryption algorithm to be updated is sent as a message, and the message itself needs to be encrypted, where the message can be encrypted by using the old version encryption algorithm before the version update, so that the second device needs to decrypt the message first to be able to upgrade the version of the encryption and decryption algorithm by using the information in the message (i.e., the new version encryption and decryption algorithm). Therefore, the version of the encryption/decryption algorithm of the second device determines whether the message can be decrypted, and if the second device does not locally have the old version decryption algorithm corresponding to the old version encryption algorithm used by the first device when encrypting the message, the new version encryption/decryption algorithm cannot be obtained, and thus, automatic updating of the encryption/decryption algorithm cannot be realized. In practical applications, since devices may be newly added to a device group or the configuration of a device may be modified, a situation that an old version of a decryption algorithm does not exist locally in the device often occurs.
Therefore, when the encryption and decryption algorithms are updated by the device group, it cannot be guaranteed that each device in the device group is updated, and communication confusion among the device groups is caused when the encryption and decryption algorithms of one part of devices are a new version and the encryption and decryption algorithms of the other part of devices are not the new version.
In order to improve reliability of updating an encryption/decryption algorithm of an equipment group, at least one embodiment of the present specification provides an encryption/decryption algorithm updating method for an equipment group, which can update an encryption/decryption algorithm version of a second device that cannot be automatically updated due to limitation of network factors or limitation of version information, so that an encryption/decryption algorithm of an equipment group requiring encryption/decryption can be updated with high reliability, and meanwhile, security of new version of encryption/decryption algorithm information is maintained.
As shown in fig. 1, fig. 1 is a flowchart illustrating a method for updating an encryption/decryption algorithm of a device group according to at least one embodiment of the present specification, where the device group may include at least a first device and at least a second device, for example, the device group includes a first device and a plurality of second devices, and the method includes the following steps:
in step 102, the first device obtains a plaintext of a new version of the encryption and decryption algorithm and transmits a version inquiry signal in a broadcast manner.
The version inquiry signal is used for enabling any device receiving the version inquiry signal to send a feedback confirmation signal to the first device under the condition that the device confirms that the old version decryption algorithm is locally stored.
In this embodiment, the devices in the device group refer to devices that can communicate with each other in a certain application place, for example, various household electrical appliances, which are not limited to refrigerators, televisions, floor sweeping robots, cooking electrical appliances, and the like; or a plurality of devices used in offices, business places, and industrial places.
It should be noted that the first device and the second device in the device group are not strictly divided, and any device in the device group that acquires the plaintext of the new version encryption/decryption algorithm may become the first device.
In this embodiment, the manner in which the first device obtains the plaintext of the new version of the encryption/decryption algorithm is not limited, for example, the first device may automatically and periodically generate the new version of the encryption/decryption algorithm according to a set program, and for example, a user may set the new version of the encryption/decryption algorithm on the first device.
In one example, the first device has a Wi-Fi (wireless network communication) module; the first device acquires a plaintext of a new version of encryption and decryption algorithm, and comprises the following steps: and the first equipment acquires a new version encryption and decryption algorithm plaintext transmitted by the server through the Wi-Fi module.
After the server generates a new version of the encryption and decryption algorithm, the new version of the encryption and decryption algorithm plaintext is transmitted to the wireless router in the place where the first device is located through the network, and the first device receives the new version of the encryption and decryption algorithm plaintext sent by the wireless router through the Wi-Fi module. Generally speaking, the Wi-Fi module is expensive, and it is too costly to configure the Wi-Fi module for each device in the device group to receive a new version of the encryption/decryption algorithm, in this example, the Wi-Fi module may be configured only on the first device, and then the encryption/decryption algorithms of other second devices are updated through communication between the first device and other second devices, so that the cost may be saved.
In other examples, the first device may also obtain a new version encryption and decryption algorithm ciphertext issued by the server through the Wi-Fi module, and then decrypt the ciphertext according to the locally stored decryption algorithm to obtain a new version encryption and decryption algorithm plaintext, where the ciphertext may be encrypted by updating an old version encryption algorithm used by the first device before.
After the first device obtains the plaintext of the new version of the encryption/decryption algorithm, the first device broadcasts the version inquiry signal, or the first device may broadcast the version inquiry signal first and then obtain the plaintext of the new version of the encryption/decryption algorithm. The version inquiry signal is transmitted in a broadcast manner and can be received by devices within the broadcast range of the first device.
In one example, each device in the device group has a bluetooth module; the first device broadcasts the version inquiry signal through the bluetooth module.
The communication mode of the bluetooth broadcast is low in secrecy, and the devices in the device group within the broadcast area and other devices in the device group which are not in the broadcast area can receive the version inquiry signal of the bluetooth broadcast. The old version encryption and decryption algorithm is an algorithm used by the devices in the device group before version updating, and other devices outside the device group do not have the algorithm, so that the second device in all the devices receiving the version inquiry signal sends a feedback confirmation signal to the first device under the condition that the second device confirms that the old version decryption algorithm is locally stored.
The version inquiry signal is used to confirm whether an old version decryption algorithm exists in the second device. The data size of the version query signal is very small, and the embodiment does not limit the specific information contained in the version query signal. Several versions of the query signal are exemplified as follows:
for example, the version inquiry signal may carry a flag bit identifying the old version decryption algorithm, so that the second device sends a feedback confirmation signal to the first device based on whether the old version decryption algorithm is stored after checking the flag bit. That is, after the second device verifies the flag bit, it confirms that the old version decryption algorithm is locally stored, and sends a feedback confirmation signal to the first device; in case it is confirmed that the old version decryption algorithm is not stored locally, no feedback confirmation signal or feedback negative confirmation signal is sent.
For example, the version query signal may be encrypted into a ciphertext using an old version encryption algorithm, so that the second device, storing the old version decryption algorithm, can decrypt the ciphertext of the version query signal and send a feedback confirmation signal to the first device. Otherwise, when the second device does not store the old version decryption algorithm, the encrypted version inquiry signal cannot be identified, and a feedback confirmation signal is not sent to the first device, or information that the version inquiry signal cannot be identified is fed back to the first device.
In step 104, the first device determines whether a feedback confirmation signal of a second device is received, and when the feedback confirmation signal of the second device is not received, a preset updating process for the second device is triggered; wherein the preset updating process comprises: and sending the plaintext of the new version encryption algorithm to a user terminal, so that the user terminal transmits the plaintext of the new version encryption algorithm to the second device through Near Field Communication (NFC) connection between the user terminal and the second device.
Wherein the receiving of the feedback confirmation signal of the second device comprises: any signal fed back by the second device is not received and/or the received signal fed back indicates that the second device has no old version decryption algorithm stored locally.
For a second device that does not feed back an acknowledgement signal, the following may exist:
case one, the second device does not locally store the old version decryption algorithm. At this point, the second device may or may not feed back any signal indicating that the local storage does not have an old version of the decryption algorithm.
In case two, the second device locally stores the old version decryption algorithm, but due to a failure of the communication connection between the second device and the first device, the second device does not receive the version inquiry signal broadcast by the first device, or the second device receives the version inquiry signal broadcast by the first device, but the feedback confirmation signal is not sent to the first device due to a poor communication connection. At this time, the first device does not receive any signal fed back by the second device, and it is determined that the second device does not feed back any signal.
For any reason, the second device that does not send the feedback confirmation signal cannot establish a reliable connection with the first device and receive the new version encryption/decryption algorithm ciphertext encrypted according to the old version encryption algorithm for decryption, and thus cannot perform automatic updating.
Therefore, the first device determines whether a feedback confirmation signal of the second device is received, and triggers a preset updating process for the second device when the feedback confirmation signal of the second device is not received. And when the encryption algorithm is updated manually, the user terminal with the NFC module used by the user transmits the plaintext of the new version encryption algorithm to the second equipment through the NFC connection with strong confidentiality, so that the second equipment can still obtain the new version encryption and decryption algorithm under the condition that the old version decryption algorithm does not exist or the communication with the first equipment is not smooth. The user terminal can be a mobile phone, a tablet or a central control screen and the like and is provided with an NFC module. In this embodiment, the second device has an NFC module.
The user terminal can obtain the plaintext of the new version of the encryption algorithm from the server, and can also obtain the plaintext of the new version of the encryption algorithm from the first device.
In one example, sending the plaintext of the new version of the encryption algorithm to the user terminal includes:
and the first equipment sends information containing the identification of the second equipment to a server, so that the server sends the plaintext of the new version encryption algorithm and the identification of the second equipment to the user terminal in response to receiving the information containing the identification of the second equipment sent by the first equipment.
In this example, the user terminal receives the plaintext of the new version encryption algorithm and the identifier of the second device, which are sent by the server.
For example, when a feedback confirmation signal of a certain second device is not received, the first device may send the identifier of the second device to the server to notify the server that the second device cannot be automatically upgraded, and the server sends the plaintext of the new version encryption and decryption algorithm and the identifier of the second device to be updated to the mobile phone application of the user, or sends the ciphertext of the new version encryption and decryption algorithm and the identifier of the second device to be updated to the mobile phone application under the condition that the mobile phone application has a corresponding decryption algorithm.
And after the mobile phone application acquires the plaintext of the new version of the encryption and decryption algorithm, prompting the user to update the encryption and decryption algorithm of the second equipment corresponding to the identifier in an NFC mode. When a user uses the mobile phone to perform the NFC touch-touch operation on the second device according to the prompt of the application of the mobile phone, the new version encryption and decryption algorithm plaintext is written into the NFC module of the second device through the NFC connection between the NFC module of the mobile phone and the NFC module of the second device, so that the second device performs the version update of the encryption and decryption algorithm according to the new version encryption and decryption algorithm plaintext in the NFC module.
Or, the server firstly sends a manual update message containing the identifier of the second device to the mobile phone of the user to prompt the user to perform manual update, when the user selects to update, the server sends a new version of encryption and decryption algorithm plaintext to the mobile phone, and the user uses the mobile phone to touch the second device corresponding to the update identifier through NFC.
The reason why the device group encrypts the new version of the encryption and decryption algorithm when updating the encryption and decryption algorithm is that: non-NFC connections (such as bluetooth connections) are easy to intercept in transmitting algorithm data and therefore need to be transmitted after encryption, which also creates a need to update the encryption and decryption algorithms. In the manual updating, the advantage of using the NFC connection is that the data transmitted by the NFC connection is not intercepted, so that the plaintext can be transmitted, and the second device does not need to have an old version decryption algorithm.
In other examples, in addition to the NFC connection, the user terminal may also transmit the new version of the encryption algorithm to the second device in plaintext by using another secure connection manner. For example, the user terminal and the second device may be connected by a data line.
In one example, the preset updating process further includes: and after the user terminal successfully transmits the plaintext of the new version encryption algorithm, the user terminal sends a signal that the second equipment is successfully updated to the server.
For example, after the user mobile phone is successfully upgraded by the NFC manually, a signal that the second device has been successfully updated is fed back to the server, so that the server records the device information that the upgrade is successful, and does not send a prompt to the user mobile phone any more, otherwise, in response to not receiving the signal that the second device has been successfully updated within a preset time, the new version encryption algorithm plaintext and the identifier of the second device are sent to the user terminal again.
Information interaction among the server, the first device, the second device and the user terminal in the above embodiment is shown in fig. 2.
In one embodiment, for a second device that has a legacy version of the decryption algorithm stored locally and that feeds back an acknowledgement signal to the first device, the following automatic update procedure may be performed: the first device determines a second device which sends a feedback confirmation signal as an automatic updating device, establishes Bluetooth connection with the automatic updating device, and transmits a new version encryption and decryption algorithm ciphertext encrypted by using an old version encryption algorithm to the automatic updating device through the Bluetooth connection, so that the automatic updating device decrypts the new version encryption and decryption algorithm plaintext by using the old version decryption algorithm to obtain the new version encryption and decryption algorithm plaintext.
The first equipment determines second equipment capable of automatically updating the encryption and decryption algorithms as automatic updating equipment, establishes Bluetooth connection with the automatic updating equipment through Bluetooth pairing, transmits a new version encryption and decryption algorithm ciphertext through the Bluetooth connection, decrypts the ciphertext through the automatic updating equipment, and then updates the encryption and decryption algorithms of the first equipment.
And after the encryption and decryption algorithm is updated to the new version through the new version encryption and decryption algorithm plaintext, the automatic updating device sends an automatic updating success signal to the first device to inform the first device that the automatic updating device is updated successfully. In an example, in response to that the first device does not receive the confirmation signal, the automatic update device may be determined as a device to be manually updated, and the preset update process is triggered, or the automatic update process may be repeatedly executed, so as to ensure reliability of updating the encryption and decryption algorithms by the devices in the device group.
In the method for updating the encryption and decryption algorithms of the device group provided by this embodiment, in the process of updating the encryption and decryption algorithms of the device group, the first device broadcasts a version inquiry signal to at least one second device, determines whether the second device locally stores an old version decryption algorithm according to a confirmation signal fed back by the second device, and further determines whether the communication connection between the first device and the second device is smooth according to whether the confirmation signal of the second device is received, and the second device with the poor communication connection or locally not storing the old version decryption algorithm can discover and trigger a preset updating process, so that the encryption and decryption algorithms of the device group with encryption and decryption requirements can be upgraded and updated with high reliability, and the security of the new version encryption and decryption algorithm is ensured.
As shown in fig. 3, fig. 3 is a block diagram of an encryption and decryption algorithm updating apparatus for a device group shown in at least one embodiment of this specification, where the device group includes at least a first device and at least a second device, and the apparatus is applied to the first device, and the apparatus includes:
an update preparation module 31 for: acquiring a plaintext of a new version encryption and decryption algorithm, and transmitting a version inquiry signal in a broadcasting manner;
a preset update module 32, configured to: determining whether a feedback confirmation signal of second equipment is received, and triggering a preset updating process aiming at the second equipment when the feedback confirmation signal of the second equipment is not received;
wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment.
In an alternative embodiment, the first device has a bluetooth module;
the update preparation module 31, when configured to send the version query signal in a broadcast manner, is specifically configured to: broadcasting the version inquiry signal through the Bluetooth module.
In an alternative embodiment, as shown in fig. 4, the apparatus further comprises: an automatic update module 33 for:
the first device determines a second device which sends a feedback confirmation signal as an automatic updating device, establishes Bluetooth connection with the automatic updating device, and transmits a new version encryption and decryption algorithm ciphertext encrypted by using an old version encryption algorithm to the automatic updating device through the Bluetooth connection, so that the automatic updating device decrypts the new version encryption and decryption algorithm plaintext by using the old version decryption algorithm to obtain the new version encryption and decryption algorithm plaintext.
In an optional embodiment, the first device has a wireless network communication Wi-Fi module; the first device acquires a plaintext of a new version of encryption and decryption algorithm, and comprises the following steps: and the first equipment acquires a new version encryption and decryption algorithm plaintext transmitted by the server through the Wi-Fi module.
In an optional implementation manner, the preset updating module 32, which does not receive the feedback confirmation signal of the second device, includes: any signal that the second device has not received feedback, and/or the received signal that the second device has locally stored no old version decryption algorithm.
In an optional implementation manner, the sending the plaintext of the new version of the encryption algorithm to the user terminal includes: and the first equipment sends information containing the identification of the second equipment to a server, so that the server sends the plaintext of the new version encryption algorithm and the identification of the second equipment to the user terminal in response to receiving the information containing the identification of the second equipment sent by the first equipment.
In an optional implementation manner, the preset updating process further includes:
and after the user terminal successfully transmits the plaintext of the new version encryption algorithm, the user terminal sends a signal that the second equipment is successfully updated to the server.
The implementation process of the functions and actions of each module in the above device is specifically described in the implementation process of the corresponding step in the above method, and is not described herein again.
The present specification further provides an electronic device, as shown in fig. 5, the electronic device includes a memory 51, and a processor 52, where the memory 51 is used to store computer instructions executable on the processor, and the processor 52 is used to implement a cryptographic algorithm updating method for a device group according to any embodiment of the present disclosure when executing the computer instructions.
The embodiments of the present specification also provide a computer program product, which includes a computer program/instruction, when executed by a processor, to implement the encryption and decryption algorithm updating method for a device group according to any one of the embodiments of the present specification.
The embodiments of the present specification further provide a computer-readable storage medium on which a computer program is stored, where the computer program, when executed by a processor, implements the encryption and decryption algorithm updating method for a device group according to any one of the embodiments of the present specification.
For the device embodiment, since it basically corresponds to the method embodiment, reference may be made to the partial description of the method embodiment for relevant points. The above-described embodiments of the apparatus are merely illustrative, wherein the modules described as separate parts may or may not be physically separate, and the parts displayed as modules may or may not be physical modules, may be located in one place, or may be distributed on a plurality of network modules. Some or all of the modules can be selected according to actual needs to achieve the purpose of the solution in the present specification. One of ordinary skill in the art can understand and implement without inventive effort.
The foregoing description of specific embodiments has been presented for purposes of illustration and description. Other embodiments are within the scope of the following claims. In some cases, the actions or steps recited in the claims may be performed in a different order than in the embodiments and still achieve desirable results. In addition, the processes depicted in the accompanying figures do not necessarily require the particular order shown, or sequential order, to achieve desirable results. In some embodiments, multitasking and parallel processing may also be possible or may be advantageous.
Other embodiments of the present description will be apparent to those skilled in the art from consideration of the specification and practice of the invention disclosed herein. This specification is intended to cover any variations, uses, or adaptations of the specification following, in general, the principles of the specification and including such departures from the present disclosure as come within known or customary practice within the art to which the specification pertains. It is intended that the specification and examples be considered as exemplary only, with a true scope and spirit of the specification being indicated by the following claims.
It will be understood that the present description is not limited to the precise arrangements described above and shown in the drawings, and that various modifications and changes may be made without departing from the scope thereof. The scope of the present description is limited only by the appended claims.
The above description is only a preferred embodiment of the present disclosure, and should not be taken as limiting the present disclosure, and any modifications, equivalents, improvements, etc. made within the spirit and principle of the present disclosure should be included in the scope of the present disclosure.

Claims (10)

1. An encryption and decryption algorithm updating method for a device group, the method comprising:
the method comprises the steps that first equipment obtains a plaintext of a new version encryption and decryption algorithm and sends a version inquiry signal in a broadcasting mode;
the first equipment determines whether a feedback confirmation signal of second equipment is received, and when the feedback confirmation signal of the second equipment is not received, a preset updating process aiming at the second equipment is triggered;
wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment.
2. The method of claim 1,
the first device has a bluetooth module;
the transmitting of the version inquiry signal in a broadcast manner includes: and transmitting the version inquiry signal in a Bluetooth broadcasting mode through the Bluetooth module.
3. The method of claim 2, further comprising:
the first equipment determines second equipment which sends a feedback confirmation signal as automatic updating equipment, establishes Bluetooth connection with the automatic updating equipment, and transmits a new version encryption and decryption algorithm ciphertext encrypted by using an old version encryption algorithm to the automatic updating equipment through the Bluetooth connection, so that the automatic updating equipment decrypts the new version encryption and decryption algorithm plaintext by using the old version decryption algorithm to obtain the new version encryption and decryption algorithm plaintext.
4. The method of claim 1,
the first device has a wireless network communication Wi-Fi module;
the method for acquiring the plaintext of the new version of the encryption and decryption algorithm by the first equipment comprises the following steps:
and the first equipment acquires a new version encryption and decryption algorithm plaintext transmitted by the server through the Wi-Fi module.
5. The method of claim 1,
the non-reception of the feedback confirmation signal of the second device includes:
any signal that the second device has not received feedback, and/or the received signal that the second device has locally stored no old version decryption algorithm.
6. The method of claim 1,
the sending of the new version encryption algorithm plaintext to the user terminal includes:
and the first equipment sends information containing the identification of the second equipment to a server, so that the server sends the plaintext of the new version encryption algorithm and the identification of the second equipment to the user terminal in response to receiving the information containing the identification of the second equipment sent by the first equipment.
7. The method according to any one of claims 1 to 6,
the preset updating process further comprises:
and after the user terminal successfully transmits the plaintext of the new version encryption algorithm, the user terminal sends a signal that the second equipment is successfully updated to the server.
8. An apparatus for updating encryption and decryption algorithms of a device group, the apparatus being applied to a first device and comprising:
an update preparation module to: acquiring a plaintext of a new version encryption and decryption algorithm, and transmitting a version inquiry signal in a broadcasting manner;
a preset update module to: determining whether a feedback confirmation signal of second equipment is received, and triggering a preset updating process aiming at the second equipment when the feedback confirmation signal of the second equipment is not received;
wherein the preset updating process comprises: and sending the new version encryption algorithm plaintext to a user terminal so that the user terminal transmits the new version encryption algorithm plaintext to the second equipment through NFC connection between the user terminal and the second equipment.
9. An electronic device, comprising a memory for storing computer instructions executable on a processor, the processor being configured to implement the method of any one of claims 1 to 7 when executing the computer instructions.
10. A computer-readable storage medium, on which a computer program is stored, which, when being executed by a processor, carries out the method of any one of claims 1 to 7.
CN202211177068.8A 2022-09-26 2022-09-26 Encryption and decryption algorithm updating method and device for equipment group Pending CN115987491A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211177068.8A CN115987491A (en) 2022-09-26 2022-09-26 Encryption and decryption algorithm updating method and device for equipment group

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211177068.8A CN115987491A (en) 2022-09-26 2022-09-26 Encryption and decryption algorithm updating method and device for equipment group

Publications (1)

Publication Number Publication Date
CN115987491A true CN115987491A (en) 2023-04-18

Family

ID=85963562

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211177068.8A Pending CN115987491A (en) 2022-09-26 2022-09-26 Encryption and decryption algorithm updating method and device for equipment group

Country Status (1)

Country Link
CN (1) CN115987491A (en)

Similar Documents

Publication Publication Date Title
US10516988B2 (en) Profile processing method, profile processing apparatus, user terminal, and eUICC
EP3358805B1 (en) Systems and methods for provisioning a camera with a dynamic qr code and a ble connection
WO2018201998A1 (en) Home appliance network configuration method, home appliance, and user terminal
CN106572148B (en) Network distribution method and network distribution system of intelligent product
US20130227645A1 (en) Terminal and method for access point verification
CN107041171B (en) Low-power-consumption Bluetooth BLE device, data updating system and method
CN110249585B (en) Apparatus and method for information request and/or information provision
CN110740424A (en) networking method and system, readable storage medium and device
CN110912880A (en) Network distribution method and device, electronic equipment and storage medium
CN112219384B (en) Method and apparatus for installing and managing configuration files using a messaging service
CN105101465B (en) Wireless network configuration method and radio network configuration system
JP2004297814A (en) Management of authentication and encryption of user information in digital user terminal
CN113099440A (en) Network configuration method, device, equipment and system
KR20180020917A (en) Wireless audio device provisioning
CN109495885B (en) Authentication method, mobile terminal, management system and Bluetooth IC card
CN112040484A (en) Password updating method and device, storage medium and electronic device
EP3314935B1 (en) A method of replacing at least one authentication parameter for authenticating a security element and corresponding security element
CN112512064B (en) Wireless distribution network method, wireless gateway and equipment to be accessed
CN111787514B (en) Method and device for acquiring equipment control data, storage medium and electronic device
US20170099289A1 (en) Temporary Mac Address-Based Access Method, Apparatus, and System
CN115987491A (en) Encryption and decryption algorithm updating method and device for equipment group
US20230328806A1 (en) Relay device, terminal, and relay method
EP4029215A1 (en) Ecosystem-based wireless network setup
US20090323939A1 (en) Data transmission method and terminal
CN114338132B (en) Secret-free login method, client application, operator server and electronic equipment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination