CN102546569A - Method for opening permission device - Google Patents
Method for opening permission device Download PDFInfo
- Publication number
- CN102546569A CN102546569A CN2010106176042A CN201010617604A CN102546569A CN 102546569 A CN102546569 A CN 102546569A CN 2010106176042 A CN2010106176042 A CN 2010106176042A CN 201010617604 A CN201010617604 A CN 201010617604A CN 102546569 A CN102546569 A CN 102546569A
- Authority
- CN
- China
- Prior art keywords
- turn
- opened
- service device
- equipment
- mac address
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Landscapes
- Small-Scale Networks (AREA)
Abstract
The invention relates to a method for opening a permission device; the method comprises the following steps: an opened device sends an opening request message comprising a device serial number to an opening server; after the opening server receives the opening request message, the irreversible encryption processing is carried out on the device serial number, and a check code is generated; a new unused MAC ((Media Access Control) address is picked out from a standby MAC address pool; the opening server sends an opening response message comprising the generated check code and a new distributive MAC address to the opened device; after the opened device receives the opening response message, the check code and the new distributive MAC address are analyzed; the data being composed of the new distributive MAC address and the device serial number is encrypted by using an encryption algorithm identical to the opening server, if the obtained data is identical to the received check code, the opened device stores the check code and the new distributive MAC address, and the opened device is opened to be used; and simultaneously, the message that the device is opened is sent, and the opening server sets the state of the MAC address as 'used', and the opening process is finished.
Description
Technical field
The present invention relates to a kind of method of opening permitted device; Specifically; The present invention relates to a kind of be applicable to that manufacturer uses, simple to operate, production efficiency is high, fail safe is good opens by the method for permitted device, this method can prevent effectively equipment by imitated, plagiarize.
Background technology
Current, the new equipment/product of coming out of developing of some companies, for example voice gateways, IP phone etc. are very easy to by pirate.Tracing it to its cause, is because hardware circuit is simple relatively on the one hand, plagiarizes easily and duplicates, and on the other hand, software generally is disclosed, has a lot of channels to be easy to obtain.
For the benefit damage of the company of taking precautions against, general product all can be opened mechanism by designing apparatus.For example, equipment can not directly use after dispatching from the factory from manufacturer, must open processing through the developer, and product just can formally come into operation.
If the mode of opening is open-minded through the mode that adopts software algorithm; Common this software can not be given manufacturer; But control by developer oneself, the technical staff through the developer operates the open-minded of the equipment of completion, otherwise this " open-minded " just lost meaning.Yet because the new equipment/product quantity of listing is huge, open-minded if every equipment is operated by developer technical staff one by one, its workload is very big, and efficient is low.
The present invention is from enhancing productivity and preventing pirate angle; Develop a kind of opening by the method for permitted device; This method not only can be opened by permitted device; Guarantee that opening process cannot duplicate, and the method that can relievedly equipment be opened gives manufacturer's operation, thereby enhance productivity greatly.
Summary of the invention
In view of the foregoing, the purpose of this invention is to provide a kind of method of opening permitted device, it is simple that this method is opened operating process; Do not need the advanced techniques personnel to go to carry out; The common laborer of manufacturer just can operate, and this method of opening permitted device can not be replicated; Be not easy to be cracked, fail safe is good.
For realizing above-mentioned purpose, the present invention adopts following technical scheme: the method that the present invention opens permitted device is following:
1, will be opened equipment promptly is placed in the local area network (LAN) by permitted device and turn up service device;
2, whether opened equipment and at first send handshake request message (UDP) to the turn up service device, confirming has the turn up service device in the local area network (LAN);
If the turn up service device is online, then the turn up service device is opened equipment to quilt and is sent handshake response message, gets into next step; If it is online that the turn up service device does not have, the equipment of then being opened constantly sends handshake request message to the turn up service device, till finding the turn up service device;
3, opened after the device discovery turn up service device; Send to the turn up service device and to open request message, open and comprise Equipment Serial Number in the request message, this Equipment Serial Number comprises information such as device identification, hardware main chip sign; This Equipment Serial Number guarantees that the whole world is unique, can not repeat;
4, the turn up service device is received and is opened after the solicited message, and Equipment Serial Number is encrypted, and generates check code, and AES guarantees that process is irreversible; Then, from subsequent use MAC Address pond, select a new untapped MAC Address;
5, the turn up service device is opened the equipment transmission to quilt and is opened response message, and this opens check code and the newly assigned MAC Address that comprises generation in the response message;
6, by the equipment of opening receive that the turn up service device sends open response message after, parse check code and newly assigned MAC Address; Utilize the AES identical that the data of newly assigned MAC Address and Equipment Serial Number composition are done encryption with the turn up service device;
If the data that obtain are identical with the check code of receiving, explain that check code and newly assigned MAC Address that the turn up service device sends are safely and effectively, the equipment of then being opened is preserved this check code and newly assigned MAC Address, is opened equipment can come into operation;
If the data that obtain are inequality with the check code of receiving, finish opening process, equipment is opened failure;
7, opened equipment and opened completion message, comprised the MAC Address of equipment in the message to the transmission of turn up service device;
8, after the turn up service device was received this message, the state of this MAC was set to " using ", and opening process is accomplished.
Description of drawings
Fig. 1 opens the flow chart of permitted device for the present invention.
Embodiment
For realizing goal of the invention of the present invention, as shown in Figure 1, the method that the present invention opens permitted device is following:
1, will be opened equipment promptly is placed in the local area network (LAN) by permitted device and turn up service device;
2, whether opened equipment and at first send handshake request message (UDP) to the turn up service device, confirming has the turn up service device in the local area network (LAN);
If the turn up service device is online, then the turn up service device is opened equipment to quilt and is sent handshake response message, gets into next step; If it is online that the turn up service device does not have, the equipment of then being opened constantly sends handshake request message to the turn up service device, till finding the turn up service device;
3, opened after the device discovery turn up service device; Send to the turn up service device and to open request message, open and comprise Equipment Serial Number in the request message, this Equipment Serial Number comprises information such as device identification, hardware main chip sign; This Equipment Serial Number guarantees that the whole world is unique, can not repeat;
4, the turn up service device is received and is opened after the solicited message, and Equipment Serial Number is encrypted, and generates check code, and AES guarantees that process is irreversible; Then, from subsequent use MAC Address pond, select a new untapped MAC Address;
5, the turn up service device is opened the equipment transmission to quilt and is opened response message, and this opens check code and the newly assigned MAC Address that comprises generation in the response message;
6, by the equipment of opening receive that the turn up service device sends open response message after, parse check code and newly assigned MAC Address; Utilize the AES identical that the data of newly assigned MAC Address and Equipment Serial Number composition are done encryption with the turn up service device;
If the data that obtain are identical with the check code of receiving, explain that check code and newly assigned MAC Address that the turn up service device sends are safely and effectively, the equipment of then being opened is preserved this check code and newly assigned MAC Address, is opened equipment can come into operation;
If the data that obtain are inequality with the check code of receiving, finish opening process, equipment is opened failure;
7, opened equipment and opened completion message, comprised the MAC Address of equipment in the message to the transmission of turn up service device;
8, after the turn up service device was received this message, the state of this MAC was set to " using ", and opening process is accomplished.
Because the present invention opens the process of permitted device and can only between by permitted device and turn up service device, move, and can not move on computers, is difficult for being replicated so open the software of permitted device.
The code that the Equipment Serial Number of opening permitted device promptly comprises information such as device identification, hardware main chip sign is globally unique; And the AES that uses in the opening process is irreversible, so, promoted the fail safe of activating method greatly, activating method can't be duplicated.
When equipment is opened, the MAC Address of equipment is reconfigured, and open need not manual intervention, improved production efficiency widely, make the opening process operation simpler, convenient easy-to-use.
Be example (preserving MAC Address in the FLASH of voice gateways) to open voice gateways below, describe the step that the present invention opens permitted device in detail:
1, will be that voice gateways and turn up service device are placed in the local area network (LAN) by the equipment of opening;
2, opened equipment and at first send handshake request message to the turn up service device, message content is " TTT:equip " character string, and whether confirm has the turn up service device in the local area network (LAN);
If the turn up service device is online, then the turn up service device is opened equipment to quilt and is sent handshake response message, and message content is empty, gets into next step; If it is online that the turn up service device does not have, the equipment of then being opened constantly sends handshake request message to the turn up service device, till finding the turn up service device;
3, opened after the device discovery turn up service device; Open request message to the transmission of turn up service device; Open and comprise Equipment Serial Number in the request message; Equipment Serial Number=product mark+FLASH sequence number, totally 20 bytes are as 0,100 0,101 1,101 1,011 1,100 1,010 1,000 0,010 1,101 1,110 1,001 11,111,001 1,011 0,100 0,100 0,001 1,101 0,011 0001; This Equipment Serial Number guarantees that the whole world is unique, can not repeat;
4, the turn up service device is received and is opened after the solicited message; Obtain Equipment Serial Number; Equipment Serial Number is adopted irreversible AES; Generate check code, as 0,100 0,101 1,101 1,011 1,100 1,010 10,000,010 1,101 1,110 1,001 1,111 1,101 0,111 1,011 0,011 1,001 1,011 0,100 0100; Then, from subsequent use MAC Address pond, select a new untapped MAC Address;
5, the turn up service device is opened the equipment transmission to quilt and is opened response message, and this opens check code and the newly assigned MAC Address that comprises generation in the response message;
6, by the equipment of opening receive that the turn up service device sends open response message after, parse check code and newly assigned MAC Address; Utilize the AES identical that the data of newly assigned MAC Address and Equipment Serial Number composition are done encryption with the turn up service device;
If the data that obtain are identical with the check code of receiving, explain that check code and newly assigned MAC Address that the turn up service device sends are safely and effectively, the equipment of then being opened is preserved this check code and newly assigned MAC Address, is opened equipment can come into operation;
If the data that obtain are inequality with the check code of receiving, finish opening process, equipment is opened failure;
7, opened equipment and opened completion message, comprised the MAC Address of equipment in the message to the transmission of turn up service device;
8, after the turn up service device was received this message, the state of this MAC was set to " using ", and opening process is accomplished.
More than be preferred embodiment of the present invention, above-mentioned preferred embodiment only illustrates, and is not to be used to limit interest field of the present invention.Anyly do not break away from spirit of the present invention and category, and, all should be contained in accompanying the application's claim its equivalent modifications of carrying out or change.
Claims (1)
1. method of opening permitted device, this method may further comprise the steps:
A, the equipment of will being opened promptly are placed in the local area network (LAN) by permitted device and turn up service device;
B, the equipment of being opened at first send handshake request message to the turn up service device, and whether confirm has the turn up service device in the local area network (LAN);
If the turn up service device is online, then the turn up service device is opened equipment to quilt and is sent handshake response message, gets into next step; If it is online that the turn up service device does not have, the equipment of then being opened constantly sends handshake request message to the turn up service device, till finding the turn up service device;
C, quilt are opened after the device discovery turn up service device; Send to the turn up service device and to open request message, open and comprise Equipment Serial Number in the request message, this Equipment Serial Number comprises device identification, hardware main chip identification information; This Equipment Serial Number guarantees that the whole world is unique, can not repeat;
D, turn up service device are received and are opened after the solicited message, and Equipment Serial Number is encrypted, and generate check code, and AES guarantees that process is irreversible; Then, from subsequent use MAC Address pond, select a new untapped MAC Address;
E, turn up service device are opened the equipment transmission to quilt and are opened response message, and this opens check code and the newly assigned MAC Address that comprises generation in the response message;
F, by the equipment of opening receive that the turn up service device sends open response message after, parse check code and newly assigned MAC Address; Utilize the AES identical that the data of newly assigned MAC Address and Equipment Serial Number composition are done encryption with the turn up service device;
If the data that obtain are identical with the check code of receiving, explain that check code and newly assigned MAC Address that the turn up service device sends are safely and effectively, the equipment of then being opened is preserved this check code and newly assigned MAC Address, is opened equipment can come into operation;
If the data that obtain are inequality with the check code of receiving, finish opening process, equipment is opened failure;
G, the equipment of being opened send to the turn up service device opens completion message, comprises the MAC Address of equipment in the message;
After H, turn up service device were received this message, the state of this MAC was set to " using ", and opening process is accomplished.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010106176042A CN102546569A (en) | 2010-12-31 | 2010-12-31 | Method for opening permission device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN2010106176042A CN102546569A (en) | 2010-12-31 | 2010-12-31 | Method for opening permission device |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN102546569A true CN102546569A (en) | 2012-07-04 |
Family
ID=46352538
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN2010106176042A Pending CN102546569A (en) | 2010-12-31 | 2010-12-31 | Method for opening permission device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102546569A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104363361A (en) * | 2014-11-24 | 2015-02-18 | 中国联合网络通信集团有限公司 | Method and device for activating terminal |
| CN107094079A (en) * | 2016-02-17 | 2017-08-25 | 阿里巴巴集团控股有限公司 | A kind of method for opening termination function, device and equipment |
Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030101282A1 (en) * | 2001-11-26 | 2003-05-29 | Schneider Automation Inc. | Method and apparatus for assigning a network node address |
| US20040071164A1 (en) * | 2002-01-08 | 2004-04-15 | Baum Robert T. | Methods and apparatus for protecting against IP address assignments based on a false MAC address |
| CN1578276A (en) * | 2003-07-03 | 2005-02-09 | 阿尔卡特公司 | Method and apparatus for dynamic change of MAC address |
| CN1674579A (en) * | 2004-07-20 | 2005-09-28 | 华为技术有限公司 | Method for supporting PPPoA on wideband switch-in equipment |
| US20070073882A1 (en) * | 2005-09-27 | 2007-03-29 | Microsoft Corporation | Distributing and arbitrating media access control addresses on ethernet network |
| CN1968129A (en) * | 2006-08-31 | 2007-05-23 | 华为技术有限公司 | Equipment configuration method and its system |
| CN101237466A (en) * | 2008-02-29 | 2008-08-06 | 华为技术有限公司 | Network configuration method, device and system for terminal |
| CN101534202A (en) * | 2008-03-12 | 2009-09-16 | 株式会社日立制作所 | Software update system for information equipment |
| CN101674303A (en) * | 2009-07-31 | 2010-03-17 | 厦门敏讯信息技术股份有限公司 | Embedded network product programming equipment and method thereof |
-
2010
- 2010-12-31 CN CN2010106176042A patent/CN102546569A/en active Pending
Patent Citations (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20030101282A1 (en) * | 2001-11-26 | 2003-05-29 | Schneider Automation Inc. | Method and apparatus for assigning a network node address |
| US20040071164A1 (en) * | 2002-01-08 | 2004-04-15 | Baum Robert T. | Methods and apparatus for protecting against IP address assignments based on a false MAC address |
| CN1578276A (en) * | 2003-07-03 | 2005-02-09 | 阿尔卡特公司 | Method and apparatus for dynamic change of MAC address |
| CN1674579A (en) * | 2004-07-20 | 2005-09-28 | 华为技术有限公司 | Method for supporting PPPoA on wideband switch-in equipment |
| US20070073882A1 (en) * | 2005-09-27 | 2007-03-29 | Microsoft Corporation | Distributing and arbitrating media access control addresses on ethernet network |
| CN1968129A (en) * | 2006-08-31 | 2007-05-23 | 华为技术有限公司 | Equipment configuration method and its system |
| CN101237466A (en) * | 2008-02-29 | 2008-08-06 | 华为技术有限公司 | Network configuration method, device and system for terminal |
| CN101534202A (en) * | 2008-03-12 | 2009-09-16 | 株式会社日立制作所 | Software update system for information equipment |
| CN101674303A (en) * | 2009-07-31 | 2010-03-17 | 厦门敏讯信息技术股份有限公司 | Embedded network product programming equipment and method thereof |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104363361A (en) * | 2014-11-24 | 2015-02-18 | 中国联合网络通信集团有限公司 | Method and device for activating terminal |
| CN107094079A (en) * | 2016-02-17 | 2017-08-25 | 阿里巴巴集团控股有限公司 | A kind of method for opening termination function, device and equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107959715B (en) | Remote terminal information identification software method based on wireless telecommunications | |
| CN103144447B (en) | Based on 3D printer family expenses system and its implementation of cloud platform | |
| CN109753809B (en) | Power grid data block segmentation method based on cloud storage system | |
| US10135763B2 (en) | System and method for secure and efficient communication within an organization | |
| CN103957580B (en) | A kind of WIFI quickly networkings matching method and module for Intelligent hardware | |
| CN204350029U (en) | Data interaction system | |
| CN105553934B (en) | Based on SAAS layers of omnipotent decoding methods of EAB of cloud platform | |
| CN104506580B (en) | A kind of method and system of uniform client version | |
| CN105094506A (en) | Screen unlocking method for intelligent terminal, intelligent terminal and operating platform | |
| CN107277066A (en) | Account management method, portable electric appts and account management system | |
| CN105162756A (en) | Method for implementing government virtual office platform | |
| CN109213790A (en) | A kind of data circulation analysis method and system based on block chain | |
| CN106385506A (en) | Information notification management method and device | |
| CN103873353A (en) | Mobile office method, device and system based on Wechat platform | |
| CN104506346A (en) | Method and device for equipment operation and maintenance | |
| CN106067906B (en) | A kind of method and monitoring device of reconnect | |
| US20130202018A1 (en) | Power line communcation method and power line communication system | |
| WO2019223178A1 (en) | Cross-platform task scheduling method and system, computer device, and storage medium | |
| WO2019091071A1 (en) | Railway signal security encryption method and system | |
| US20130067072A1 (en) | Monitoring remote access to an enterprise network | |
| CN105101203A (en) | Method and device for processing information of wireless local area network | |
| CN105007268B (en) | A kind of group restoration methods of user cipher | |
| CN102546569A (en) | Method for opening permission device | |
| CN109218290A (en) | Industrial product quality management platform and its working method based on big data | |
| CN106452730B (en) | Md5 encryption authentication method and system based on Light Directory Access Protocol |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20120704 |