KR20090027092A - Protocol authenticating apparatus for network device - Google Patents

Protocol authenticating apparatus for network device Download PDF

Info

Publication number
KR20090027092A
KR20090027092A KR1020070092298A KR20070092298A KR20090027092A KR 20090027092 A KR20090027092 A KR 20090027092A KR 1020070092298 A KR1020070092298 A KR 1020070092298A KR 20070092298 A KR20070092298 A KR 20070092298A KR 20090027092 A KR20090027092 A KR 20090027092A
Authority
KR
South Korea
Prior art keywords
protocol
test case
network device
authentication
data
Prior art date
Application number
KR1020070092298A
Other languages
Korean (ko)
Inventor
이지은
Original Assignee
엘지전자 주식회사
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 엘지전자 주식회사 filed Critical 엘지전자 주식회사
Priority to KR1020070092298A priority Critical patent/KR20090027092A/en
Publication of KR20090027092A publication Critical patent/KR20090027092A/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L1/00Arrangements for detecting or preventing errors in the information received
    • H04L1/24Testing correct operation
    • H04L1/242Testing correct operation by comparing a transmitted test signal with a locally generated replica
    • H04L1/244Testing correct operation by comparing a transmitted test signal with a locally generated replica test sequence generators
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/03Protocol definition or specification 

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer And Data Communications (AREA)

Abstract

A protocol authenticating apparatus of a network device is provided to check that a corresponding protocol is normally applied to a network device. A spec management unit manages spec data(14) of a protocol service according to a specific protocol applied to a network device(20) which is an authentication target. A test case management unit manages test case data(15) for authenticating the network device about the specific protocol. A communication interface(11) is connected to the device which is an authentication target to transmit a packet or receive a response packet according to the test case data. An authentication determining unit compares a received response packet with a forecast response packet according to the test case data. The authentication determining unit determines authentication success or authentication failure of the network device.

Description

PROTOCOL AUTHENTICATING APPARATUS FOR NETWORK DEVICE}

The present invention relates to an apparatus for authenticating a protocol of a network device. More particularly, the present invention relates to an apparatus for authenticating a protocol of a network device that performs authentication for a network device to which a specific protocol is applied.

The home network connects network devices in the home to enable communication between people and people, people and devices, devices and devices.This makes it easier to control devices in the home without the limitations of space and devices, and to provide a wider variety of information and information. It is a cutting-edge technology that provides services.

Recently, network devices with network functions such as TVs, refrigerators, and computers can exchange data between products, and also remotely control home network devices such as lighting and gas valves through mobile phones or the Internet. Network devices using PLCs are emerging.

PLC (PLC) refers to a technology for communicating through a power line wired at home, rather than using a dedicated communication line. In addition, the PLC is equipped with a high-frequency signal of hundreds of K ~ dozens of MHz on the power line to communicate with the current power line is distributed to all households, there is an advantage that can be easily installed, because no separate wiring is required. In other words, if you plug in the power outlet, you can communicate.

In addition, PLC was originally developed to control home appliances based on low-speed communication, but recently, high-speed power line communication technology has been developed to receive high-speed Internet service without using an existing communication network, and to automatically check power, flow rate, and gas. . In addition, home network, information appliances, power network management, etc. are possible. In particular, high-speed access technology using PLC and low-speed control technology through home network are attracting attention as next generation communication technology.

In general, in order to perform wired or wireless communication such as PLC, RF communication, infrared communication, etc., a modem, which is a communication interface for modulating / demodulating an electric signal of a network device into a communication signal, should be provided. In addition, a modem, which is such a communication interface, is applied with a specification according to a specific protocol to perform communication through a corresponding communication medium. The specification according to the protocol is provided in a communication interface or a network device (an apparatus having a communication interface) in software, so that communication according to a specific protocol can be performed.

When the specific protocol is applied to the network device, the network device may not be able to create the software program due to the difference in the software program creation method, the application method, and the type (or function) of the network device according to the manufacturer of each network device. It is necessary to perform authentication or verification as to whether the operation according to the present invention can be stably performed.

An object of the present invention is to provide an apparatus for authenticating a protocol of a network device which confirms the performance of a network device to which a specific protocol is applied and performs protocol authentication for the network device.

In addition, the present invention provides a specification of the protocol service, protocol service information, and the like of a specific protocol to perform authentication according to test cases corresponding to the specification and service information, and to generate and verify various case cases by a user. An object of the present invention is to provide an apparatus for authenticating a protocol of a network device.

In addition, an object of the present invention is to provide an apparatus for authenticating a protocol of a network device capable of variably setting the authentication range of a protocol, and which can adjust the degree of authentication according to the network device.

An apparatus for authenticating a protocol of a network device according to the present invention includes a specification manager for managing specification data of a protocol service according to a specific protocol applied to a network device to be authenticated, and a test case manager for managing test case data for authentication of a network device for a specific protocol. And a communication interface that connects to the device to be authenticated and transmits a packet based on the test case data to the network device, or receives a response packet from the network device, compares the expected response packet according to the test case data with the received response packet. And an authentication determination unit for determining authentication success and authentication failure of the network device.

In addition, the specification data of the protocol service is preferably associated with the test case data.

In addition, the specification data of the protocol service preferably includes packet specification information including at least one of a request packet, a response packet corresponding to the request packet, and an event packet.

In addition, the test case management unit preferably receives the specification data of the protocol service to generate test case data.

In addition, the protocol authentication device preferably has a user interface that allows a user to change the specification data or test case data of the protocol service.

In addition, the protocol authentication device preferably includes a comparison target setting unit that can variably set the range of the comparison target between the expected response packet according to the test case data and the received response packet.

The present invention of such a configuration has the effect of confirming the operation of the network device to which a specific protocol is applied, by authenticating the protocol for the network device, so that the user or manufacturer can confirm that the protocol is normally applied to the network device.

In addition, the present invention provides a specification of the protocol service, protocol service information, and the like of a specific protocol to perform authentication according to test cases corresponding to the specification and service information, and to generate and verify various case cases by a user. In this way, the authentication is performed under various conditions, thereby improving the reliability and stability of the authentication.

In addition, the present invention can be set to vary the authentication range of the protocol, by adjusting the authentication degree according to the network device, there is an effect of satisfying the reliability and stability according to the characteristics of each network device or the characteristics of the protocol service.

In the following, the invention is explained in detail on the basis of the embodiments of the invention and the accompanying drawings.

1 is a block diagram of a protocol authentication apparatus of a network device according to the present invention. In FIG. 1, a network device 20 to which a specific protocol has been applied, and a protocol authentication device 10 capable of communicating via the network device 20 and the network 30 are shown.

First, the network device 20 refers to an electric device including a washing machine, a lamp, a refrigerator, a television, a gas control valve, a window opening device, and the like, and an electric device capable of communicating through the network 30. The network device 20 includes a communication interface (not shown) to which a specific protocol is applied, so that communication according to a specific protocol is performed through the network 30. The communication interface includes not only a device such as a modem that actually performs communication, but also storage means for storing standard information or the like according to a specific protocol, and control means for performing data communication by a packet or the like.

In addition, although the network 30 is shown in FIG. 1 as a wired communication medium, it should be recognized that the network 30 is not limited to the wired communication medium and includes a wireless communication medium.

Next, the protocol authentication apparatus 10 communicates with the communication unit 11 performing communication with the network device 20 through the network 30, inputting, transmitting and changing the specification data, and inputting and changing the test case data. An input unit 12 for allowing a user to perform, a display unit 13 for displaying specification data, test case data, and authentication results, specification data 14 including specifications of standard protocol services of a specific protocol, a network For the authentication of the device 20, a test case data 15 including a packet transmitted to the network device 20, an expected response packet, and the like, an expected response packet of the test case data 15, and the network device 20. And a control unit 18 for comparing the response packets of the network) to determine the authentication failure or the authentication success of the network device 20 for the specific protocol. The protocol authentication device 10 may be implemented in software or hardware or firmware alone or in a combination thereof in a data processing device such as a general personal computer, notebook computer, or the like.

First, the communication unit 11 is a communication means corresponding to the communication medium of the network 30 so as to enable communication through the network 30, and performs communication by a packet depending on the specification data.

The input unit 12 is an input means for enabling input by a user, a command, and the like, and may be implemented as a device such as a keyboard, a mouse, a touch pad, and the like.

In addition, the display unit 13 is a display device for displaying specification data, test case data, authentication results, and the like managed by the protocol authentication device 10.

Next, the specification data includes a product group, a product model, and a service group. This product group relates to the performance function of the product, and is intended to manage the network device 20 separately by a switch control device, a laundry device, a refrigeration device, and the like.

The product model is about the network function of the product and contains basic information. The network function of this product indicates that the network device 20 has one of a master device, a slave device, and a hybrid device (a device which performs a master function and a slave function together). Basic information includes the product code, product name, product model name, version of the protocol applied, and the name of the manufacturer.

The service group also relates to a protocol service performed by the corresponding network device 20. This service group contains the service name, service code, type (request-response message, request message, event message, etc.), and description (eg, 'power on', etc.).

In addition, the specification data 14 includes a specification of a specific protocol service applied or implemented in the network device 20 to be authenticated, and this specification corresponds to the definition of each protocol service. In the case of specification of protocol service according to a specific protocol, common functions or common services (for example, product name confirmation command, manufacturer confirmation command, model name confirmation command, etc.) applicable to all network devices in general, and the specification of each network device It can be divided into general functions or general services (for example, washing instructions, valve status check instructions, etc.) applicable to functions.

In addition, the specification includes at least a packet structure, an ACK response packet structure, and a NAK response packet structure according to the type of the corresponding protocol service.

Next, the test case data 15 is associated with the specification data and includes corresponding information. That is, the test case data 15 includes the above-described product group, a product model, and a service group, and the user or the control unit 18 copies the specification data 14 and stores the test data as the test case data 15. Case data 15 may also be generated.

In addition, the test case data 15 may include a test case including an input packet structure for performing authentication processing of the network device 20 and an expected response packet structure that is an expected output, corresponding to the specification of the specification data 14. Contains information. This input packet structure corresponds to the packet structure of the specification data 14 described above, but the user may change the structure through the input unit 12. In addition, the expected response packet structure is reference data for determining whether the network device 20 performs an operation according to a specific protocol and transmits a response packet accordingly. When the response packet corresponds to the expected response packet structure, the controller It is possible for 18 to determine that the protocol authentication for the network device 20 is successful. In particular, the expected response packet structure of the test case information includes an area (comparable range) compared with the response packet received from the network device 20 when the control unit 18 determines the authentication success or authentication failure, This comparison target range may be fixed or may be variably set by the user.

The expected response packet structure also corresponds to the ACK response packet or NAK response packet structure of the specification data 14 described above, but the user may change the structure through the input unit 12. The user or the control unit 18 may copy the specification of the specification data 14 and store it as test case information of the test case data 15 to generate the test case data 15.

In addition, the test case data 15 includes precondition information for managing an environment setting that is dependent upon performing the authentication procedure before performing the authentication procedure by the test case. This precondition information includes, for example, the number of times a packet is repeatedly transmitted and a response packet is received according to a specific test case.

The above-mentioned specification data 14 and test case data 15 are stored in a storage means (not shown), and are managed by the control unit 18.

Next, the control unit 18 manages the specification data 14 and the test case data 15, transfers by copying from the specification data 14 to the test case data 15, and the user from the input unit 12. The generation and change of the specification data 14 and the test case data 15 by the input are performed.

In addition, the controller 18 may display an explorer or other user input menu on the display unit 13 so that a user can easily perform an operation such as generating, copying, or changing the specification data 14 and the test case data 15. Display it on the screen.

In addition, the control unit 18 may receive and store specification data from an external device through the communication unit 11, or may include a reading unit (not shown) of a storage medium to store the specification data from a storage medium such as a removable storage medium or a compact disc. Can also be read and stored.

In addition, the controller 18 generates a packet according to the input packet structure included in the test case data 15 by a user command through the input unit 12 or by a predetermined order or the like, and then through the communication unit 11. Transmit to network device 20. Subsequently, the control unit 18 receives the response packet from the network device 20 through the communication unit 11, compares the received response packet with the expected response packet structure of the test case data 15, and matches the response packet. To determine the success or failure of the test case or the success or failure of authentication.

For example, if the input packet being a test case is a request-response message type, a response packet should be received, but if it is an event message type or a request message type, it is normal that no response packet is received. The control unit 18 recognizes and processes. In addition, in the case of a request-response message type, when a response packet is not received, it may be determined as an authentication failure or a failure of a task case.

In the authentication decision process by the control unit 18, the comparison target range set in the expected response packet structure of the test case data 15 and the field values in the corresponding response packet are compared with each other, for example, Success can only be judged if all matches.

In addition, since the test case data 15 may perform verification or authentication according to the plurality of test case information, the control unit 18 may perform, for example, authentication or verification of 30 protocol services, and thus, 90% or more. If this is successful, the protocol authentication for the network device 20 may be determined to be successful, and if less, the protocol authentication may be determined to be failed.

In addition, the controller 18 displays the verification or authentication result according to the test case information performed to the user through a separate information screen, so that the user or inspector can easily recognize the authentication result of the network device 20. .

2 is an embodiment of specification data of a protocol service. As shown in Fig. 2, the specification data includes service information, for example, in the case of a request-response message, a request packet structure, an ACK response packet structure, and a NAK response packet structure.

The request packet structure includes a preamble field, a device address field, a packet length field, a packet type field, a command code field, and an operation. Field (the value at the time of performing the operation according to the instruction code), the checksum field, and the trailer field. This operation field is, for example, 'whole light off function setting' for '0' and 'whole light off function' for '1'.

In addition, the controller 18 includes a selector ('HEX Code View' button) for displaying a request packet structure, an ACK response packet structure, and a NAK response packet structure in the form of a HEX code.

In addition, the specification data 15 includes a selection space for allowing a user to select a natural language display (eg, Korean description sentence, English description sentence, etc.) for the corresponding field.

3 through 5 are examples of test case data.

In FIG. 3, test case information of the test case data 15, service information, and precussion information are displayed. In particular, the precussion information includes environment setting information such as an interval of execution of a test operation such as the transmission of a packet to the test case information, the number of repetitions, and the like.

4 shows an input packet structure among test case information of the test case data 15. This input packet structure has the same form as the request packet structure of the specification data 14.

In particular, the controller 18 displays a selector ('LNCP specification' button) for allowing a user to receive a specification of the corresponding specification data 14 and store the test case information in order to generate test case information. (13).

5 shows a structure of an expected response packet or an expected output packet among test case information of the test case data 15.

This expected response packet structure includes a preamble field, a device address field, a packet length field, a packet type field, a command code field, and a state ( It consists of a status field, a checksum field, and a trailer field.

In particular, the expected response packet structure has a comparison field which allows the user to variably set the comparison target range to be compared by the control unit 18, so that the user selects (field marked 'V') or does not select (empty space) Field indicated by) to set the comparison target range. Accordingly, the controller 18 compares the expected response packet with the received response packet with respect to the value of the selected field, and determines success or failure of the test case, and through the at least one test case, the network device 20 The protocol authentication procedure for.

For example, in the case of a field belonging to a range to be compared, the controller 18 compares the expected response packet and a corresponding portion of the received response packet to each other. Is determined to be successful, and if any one of them does not match, it is determined that the test case is a failure. In this way, the controller 18 performs verification or authentication of the network device 20 via at least one test case.

6 is an embodiment of an authentication result.

As shown in FIG. 6, the controller 18 may perform the above-described authentication procedure to calculate an authentication result for the network device 20 and display it on the display unit 13. These certification results include test intervals, test results, and judgment (certification failure, authentication success) information.

In addition, the authentication result is displayed using a chart, so that the user can visually easily recognize the authentication result of the authentication target network device 20.

In addition, the controller 18 may convert the authentication result into a specific document form (for example, an Excel file) and store the converted result.

The above-described protocol authentication apparatus generally performs protocol authentication for individual network devices in that communication according to a specific protocol is reliably performed even when network devices manufactured by various manufacturers are connected to a home network. Have the manufacturer or user confirm the stability and reliability of the network device.

In the above, the present invention has been described in detail based on the embodiments of the present invention and the accompanying drawings. However, the scope of the present invention is not limited by the above embodiments and drawings, and the scope of the present invention will be limited only by the contents described in the claims below.

1 is a block diagram of a protocol authentication apparatus of a network device according to the present invention.

2 is an embodiment of specification data of a protocol service.

3 through 5 are examples of test case data.

6 is an embodiment of an authentication result.

<Explanation of symbols for the main parts of the drawings>

10: protocol authentication device 20: network device

30: network

Claims (6)

A specification manager which manages specification data of a protocol service according to a specific protocol applied to a network device to be authenticated; A test case manager which manages test case data for authentication of a network device for a specific protocol; A communication interface connected to a device to be authenticated to transmit a packet according to the test case data to a network device or to receive a response packet from the network device; And an authentication determination unit for comparing the expected response packet according to the test case data with the received response packet to determine authentication success and authentication failure of the network device. The method of claim 1, And specification data of the protocol service is associated with the test case data. The method according to claim 1 or 2, The specification data of the protocol service includes packet specification information including at least one of a request packet, a response packet corresponding to the request packet, and an event packet. The method of claim 3, And a test case manager generates test case data by receiving specification data of a protocol service. The method of claim 4, wherein The protocol authentication device is a protocol authentication device for a network device, characterized in that it has a user interface for allowing a user to change the specification data or test case data of the protocol service. The method of claim 1, The protocol authentication apparatus includes a comparison target setting unit that can variably set the range of the comparison target between the expected response packet according to the test case data and the received response packet.
KR1020070092298A 2007-09-11 2007-09-11 Protocol authenticating apparatus for network device KR20090027092A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020070092298A KR20090027092A (en) 2007-09-11 2007-09-11 Protocol authenticating apparatus for network device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020070092298A KR20090027092A (en) 2007-09-11 2007-09-11 Protocol authenticating apparatus for network device

Publications (1)

Publication Number Publication Date
KR20090027092A true KR20090027092A (en) 2009-03-16

Family

ID=40694844

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020070092298A KR20090027092A (en) 2007-09-11 2007-09-11 Protocol authenticating apparatus for network device

Country Status (1)

Country Link
KR (1) KR20090027092A (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20200083214A (en) * 2018-12-28 2020-07-08 한국과학기술원 Dynamic security analysis method for control plane and system therefore
KR20220063807A (en) * 2020-11-09 2022-05-18 한국전자통신연구원 Apparatus and Method for Testing Industrial Wireless Protocol Robustness

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20200083214A (en) * 2018-12-28 2020-07-08 한국과학기술원 Dynamic security analysis method for control plane and system therefore
KR20220063807A (en) * 2020-11-09 2022-05-18 한국전자통신연구원 Apparatus and Method for Testing Industrial Wireless Protocol Robustness

Similar Documents

Publication Publication Date Title
CN100483966C (en) Control device and method for automatic household system
KR100529876B1 (en) Home network system&#39;s operating method
KR100442256B1 (en) Method and apparatus for compatible a standard of home network system
CN106648669B (en) Product equipment remote firmware upgrading method and system
US7135982B2 (en) Home network system and control method for the same
KR20050014628A (en) Home network system and its configuration system
CN105263141A (en) Household electrical appliance and control method thereof
JP4966393B2 (en) Terminal equipment
US8484323B2 (en) Network system connected with multiple master devices and method for operating the same
JP5496393B1 (en) Home equipment and remote control system
KR100442281B1 (en) Method for controlling of Home Network System
KR100421895B1 (en) method for setting product address of home network system
US20150215272A1 (en) Communication adapter, identification code generation method, program, and network system
US9934680B2 (en) Managing the control of an electrical device controllable by infrared control signals
KR20090027092A (en) Protocol authenticating apparatus for network device
KR100504610B1 (en) Method for Setting Home Code of Home Network System
CN114356673A (en) Mainboard test method and device
KR100486502B1 (en) Device status display method for home network system
KR19990066368A (en) Integrated operating device of distributed system
JP4162236B2 (en) Heat source machine communication system
KR102288432B1 (en) System for Providing of Opening Platform Using Service Module
KR101549431B1 (en) Boiler control error signal method for using a smartphone
KR20060076645A (en) Upgrade system of home network controller
KR20050025549A (en) Reservation information processing apparatus for mobile home network system
KR101416759B1 (en) Home server and controlling method thereof

Legal Events

Date Code Title Description
WITN Withdrawal due to no request for examination