CN104365056B - 用于操作权的远程授予的安全方法和设备 - Google Patents

用于操作权的远程授予的安全方法和设备 Download PDF

Info

Publication number
CN104365056B
CN104365056B CN201380018278.5A CN201380018278A CN104365056B CN 104365056 B CN104365056 B CN 104365056B CN 201380018278 A CN201380018278 A CN 201380018278A CN 104365056 B CN104365056 B CN 104365056B
Authority
CN
China
Prior art keywords
lock
key device
key
message
lock device
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201380018278.5A
Other languages
English (en)
Chinese (zh)
Other versions
CN104365056A (zh
Inventor
V.伊里马蒂莫
M.科卡洛
J.朱奧佩里
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Tosibox Oy
Original Assignee
Tosibox Oy
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Tosibox Oy filed Critical Tosibox Oy
Publication of CN104365056A publication Critical patent/CN104365056A/zh
Application granted granted Critical
Publication of CN104365056B publication Critical patent/CN104365056B/zh
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3263Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements
    • H04L9/3268Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving certificates, e.g. public key certificate [PKC] or attribute certificate [AC]; Public key infrastructure [PKI] arrangements using certificate validation, registration, distribution or revocation, e.g. certificate revocation list [CRL]
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/33User authentication using certificates
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/44Program or device authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/2803Home automation networks
    • H04L12/2816Controlling appliance services of a home automation network by calling their functionalities
    • H04L12/2818Controlling appliance services of a home automation network by calling their functionalities from a device located outside both the home and the home network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/02Network architectures or network communication protocols for network security for separating internal from external traffic, e.g. firewalls
    • H04L63/0272Virtual private networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • H04L63/0442Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload wherein the sending and receiving network entities apply asymmetric encryption, i.e. different keys for encryption and decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/12Applying verification of the received information
    • H04L63/126Applying verification of the received information the source of the received data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0853Network architectures or network communication protocols for network security for authentication of entities using an additional device, e.g. smartcard, SIM or a different communication terminal

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Theoretical Computer Science (AREA)
  • Computing Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Software Systems (AREA)
  • Automation & Control Theory (AREA)
  • Lock And Its Accessories (AREA)
  • Selective Calling Equipment (AREA)
  • Mobile Radio Communication Systems (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)
  • Computer And Data Communications (AREA)
CN201380018278.5A 2012-04-05 2013-04-03 用于操作权的远程授予的安全方法和设备 Active CN104365056B (zh)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FI20120110 2012-04-05
FI20120110A FI124237B (fi) 2012-04-05 2012-04-05 Tietoturvallinen etäyhteydellä suoritettava toimintaoikeuden myöntömenettely
PCT/FI2013/050362 WO2013150186A1 (en) 2012-04-05 2013-04-03 Secure method for remote grant of operating rights

Publications (2)

Publication Number Publication Date
CN104365056A CN104365056A (zh) 2015-02-18
CN104365056B true CN104365056B (zh) 2017-11-24

Family

ID=49300050

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201380018278.5A Active CN104365056B (zh) 2012-04-05 2013-04-03 用于操作权的远程授予的安全方法和设备

Country Status (15)

Country Link
US (1) US9385870B2 (https=)
EP (1) EP2834938B1 (https=)
JP (1) JP5795696B2 (https=)
KR (1) KR101524659B1 (https=)
CN (1) CN104365056B (https=)
AU (1) AU2013244872B2 (https=)
BR (1) BR112014024934A2 (https=)
CA (1) CA2869110C (https=)
DK (1) DK2834938T3 (https=)
ES (1) ES2635556T3 (https=)
FI (1) FI124237B (https=)
IN (1) IN2014DN09022A (https=)
MX (1) MX352041B (https=)
PL (1) PL2834938T3 (https=)
WO (1) WO2013150186A1 (https=)

Families Citing this family (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9124434B2 (en) * 2013-02-01 2015-09-01 Microsoft Technology Licensing, Llc Securing a computing device accessory
KR101983481B1 (ko) * 2014-08-25 2019-08-28 가부시키가이샤 리코 전자 디바이스 및 접속 방법
EP3197101B1 (en) * 2014-09-19 2021-11-03 Panasonic Intellectual Property Management Co., Ltd. Connection method, connection system, portable terminal, and program
US10674339B2 (en) * 2015-10-27 2020-06-02 Sony Corporation Information processing device and information processing method
CN105931331A (zh) * 2016-04-20 2016-09-07 上海斐讯数据通信技术有限公司 一种基于光通信的智能锁及开锁方法
CN108667780B (zh) * 2017-03-31 2021-05-14 华为技术有限公司 一种身份认证的方法、系统及服务器和终端
US12231892B2 (en) 2017-09-27 2025-02-18 Ubiquiti Inc. Systems for automatic secured remote access to a local network
US11258764B2 (en) * 2017-09-27 2022-02-22 Ubiquiti Inc. Systems for automatic secured remote access to a local network
US10796029B2 (en) 2017-11-30 2020-10-06 International Business Machines Corporation Software controlled port locking mechanisms
CN109949461B (zh) * 2019-03-15 2021-01-01 北京深思数盾科技股份有限公司 开锁方法及装置
CN113347168B (zh) * 2021-05-26 2022-10-11 北京威努特技术有限公司 一种基于零信任模型的防护方法及系统
US12407512B2 (en) 2022-12-21 2025-09-02 Microsoft Technology Licensing, Llc Securing a computing device accessory

Family Cites Families (27)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
NO314530B1 (no) * 2000-02-25 2003-03-31 Ericsson Telefon Ab L M Trådlös reservering, innsjekking, tilgangskontroll, utsjekking og betaling
JP4389366B2 (ja) * 2000-08-11 2009-12-24 株式会社デンソー 電子制御装置
CA2324679A1 (en) * 2000-10-26 2002-04-26 Lochisle Inc. Method and system for physical access control using wireless connection to a network
US6854010B1 (en) * 2001-04-05 2005-02-08 Bluecube Software, Inc. Multi-location management system
US7389530B2 (en) * 2003-09-12 2008-06-17 International Business Machines Corporation Portable electronic door opener device and method for secure door opening
JP2005123996A (ja) * 2003-10-17 2005-05-12 National Institute Of Information & Communication Technology デバイス間において認証用情報を委譲する情報処理方法及び情報処理システム
US20050120204A1 (en) * 2003-12-01 2005-06-02 Gary Kiwimagi Secure network connection
JP4648148B2 (ja) * 2005-09-30 2011-03-09 富士通株式会社 接続支援装置
US20080048826A1 (en) * 2006-08-10 2008-02-28 Kavita Agrawal System and method for controlling, configuring, and disabling devices in a healthcare system
US20080103813A1 (en) * 2006-10-12 2008-05-01 Kavita Agrawal System and method for portable safeguard context in a patient's room
US8387124B2 (en) * 2007-03-15 2013-02-26 Palo Alto Research Center Incorporated Wormhole devices for usable secure access to remote resource
US7391298B1 (en) 2007-05-09 2008-06-24 Gewa, Llc Wireless system for monitoring and reacting to events at a remote location
US20090030718A1 (en) * 2007-09-28 2009-01-29 Rick Robert Bengson System and method for automatic acquisition and distribution of information in a real estate context
CA2990331C (en) * 2007-12-31 2020-06-16 Schlage Lock Company Mesh network security system gateway and method
JP2010086175A (ja) * 2008-09-30 2010-04-15 Dainippon Printing Co Ltd リモートアクセス管理システム及び方法
US20100125894A1 (en) * 2008-11-19 2010-05-20 At&T Intellectual Property I, L.P. Systems, methods and computer program products that facilitate remote access of devices in a subscriber network
JP2010134749A (ja) * 2008-12-05 2010-06-17 Mitsubishi Electric Corp アクセス制御システムおよびアクセス制御方法
GB2466071B (en) * 2008-12-15 2013-11-13 Hewlett Packard Development Co Associating a signing key with a software component of a computing platform
US8120460B1 (en) * 2009-01-05 2012-02-21 Sprint Communications Company L.P. Electronic key provisioning
US11042816B2 (en) * 2009-10-30 2021-06-22 Getaround, Inc. Vehicle access control services and platform
EP2393266A1 (en) * 2010-06-02 2011-12-07 Deutsche Telekom AG Method and system for providing a user equipment with acces control to a remotely controllable device
CN103026682A (zh) 2010-06-16 2013-04-03 德尔斐系统有限公司 无线装置启动锁定系统
US8670752B2 (en) * 2010-09-24 2014-03-11 At&T Intellectual Property I, L.P. Providing integrated service-entity premium communication services
US8972746B2 (en) * 2010-12-17 2015-03-03 Intel Corporation Technique for supporting multiple secure enclaves
CN102255730A (zh) * 2011-07-11 2011-11-23 吴沙林 数字证书安全锁装置、数字证书认证系统及方法
US8947200B2 (en) * 2011-11-17 2015-02-03 Utc Fire & Security Corporation Method of distributing stand-alone locks
US9710982B2 (en) * 2011-12-23 2017-07-18 Microsoft Technology Licensing, Llc Hub key service

Also Published As

Publication number Publication date
CA2869110C (en) 2015-11-03
PL2834938T3 (pl) 2017-11-30
EP2834938A4 (en) 2015-12-02
AU2013244872B2 (en) 2014-12-11
IN2014DN09022A (https=) 2015-05-22
EP2834938B1 (en) 2017-05-31
DK2834938T3 (en) 2017-08-28
JP5795696B2 (ja) 2015-10-14
WO2013150186A1 (en) 2013-10-10
FI20120110L (fi) 2013-10-06
KR20140138351A (ko) 2014-12-03
MX352041B (es) 2017-11-07
CA2869110A1 (en) 2013-10-10
BR112014024934A2 (pt) 2017-07-11
JP2015518316A (ja) 2015-06-25
AU2013244872A1 (en) 2014-10-23
ES2635556T3 (es) 2017-10-04
CN104365056A (zh) 2015-02-18
US20150341177A1 (en) 2015-11-26
FI124237B (fi) 2014-05-15
EP2834938A1 (en) 2015-02-11
MX2014012002A (es) 2014-12-05
KR101524659B1 (ko) 2015-06-01
US9385870B2 (en) 2016-07-05

Similar Documents

Publication Publication Date Title
CN104365056B (zh) 用于操作权的远程授予的安全方法和设备
CN106576096B (zh) 用于对具有不等能力的设备的认证的装置、方法及介质
FI125972B (fi) Laitejärjestely ja menetelmä kiinteistöjen etähallinnassa käytettävän tiedonsiirtoverkon luomiseksi
US12075246B2 (en) Securing transmission paths in a mesh network
KR102396528B1 (ko) 컨트롤러 기반 네트워크 접속을 제어하기 위한 시스템 및 그에 관한 방법
JP7395211B2 (ja) 端末のネットワーク接続を認証及び制御するためのシステム及びそれに関する方法
JP2005509977A5 (https=)
CN102859968B (zh) 用于操作、观察和/或配置技术设备的自动化系统的方法
CN109005179A (zh) 基于端口控制的网络安全隧道建立方法
JP5687388B2 (ja) 建物の遠隔制御を実施するためのデバイス構成
CN103460669B (zh) 用于现场设备数据通信的密码保护的方法和通信装置
EP3206423A1 (en) Device and method for connecting devices to a network
US10587432B2 (en) Hardware component and method for a remote terminal to access a local network, corresponding service gateway, access authorization method and computer program
CN115769203A (zh) 用于将设备并入到局域网中的装置和方法
RU2575689C1 (ru) Безопасный способ удаленного предоставления прав на функционирование
US12604165B2 (en) Communication control method and communication device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant