CN104579639B - The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it - Google Patents
The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it Download PDFInfo
- Publication number
- CN104579639B CN104579639B CN201410753531.8A CN201410753531A CN104579639B CN 104579639 B CN104579639 B CN 104579639B CN 201410753531 A CN201410753531 A CN 201410753531A CN 104579639 B CN104579639 B CN 104579639B
- Authority
- CN
- China
- Prior art keywords
- secret key
- control
- mobile device
- authorization
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Landscapes
- Mobile Radio Communication Systems (AREA)
- Telephonic Communication Services (AREA)
Abstract
The system of controlled in wireless is moved the present invention relates to a kind of realization of multi-party collaborative authorization secret key and with it, this method is on the basis of setting system management backstage, by the independent authorization License Info of the Internet of Things control device owner, the independent authorization key of equipment operation management side, the user's registration ID of user's mobile device and the MAC Address code of mobile device, two or more information gathering of the MAC codes of the control of secret key device is to System Management Daemon, the information of above-mentioned collection is write dynamic secret key generation program by System Management Daemon, the multi-party collaborative authorization secret key of Program Generating is generated by dynamic secret key.The shortcomings that present invention can effectively prevent common secret key to be easily cracked, steal and lose, increase security.
Description
Technical field
It is the present invention relates to a kind of implementation method of multi-party authorization secret key and using what the secret key carried out subordinate equipment control
System, belongs to Internet of Things security control field.
Background technology
The control application of mobile device intelligent things, controlled in wireless is directed to, but the security of wireless telecommunications control is also
Need to be lifted.
Existing Internet of Things control technology is substantially carries out controlled in wireless using wifi and bluetooth, and security protocol is all to use state
The border universal standard, the communication modes of both standards have the shortcomings that directly being stolen and cracked, and one, wifi modes are normal at present
What is seen is that 64 WEP encryptions and 128 WEP are encrypted, and the especially 64 WEP encryptions of both modes is cracked now,
It is very universal;Secondly, bluetooth standard now also have substantial amounts of Bluetooth 2.0+EDR standards, equally have be cracked it is a variety of
Method, the shortcomings that being cracked;
Existing wifi and bluetooth password matching method are substantially using independent pin mode, i.e. password is had by one
The people of authority completes the setting of password, and this mode is easily stolen.
In addition to the password of wireless standard, existing intelligent radio control secret key is all using an independent authority people oneself
Generation, that is, people oneself can determine the secret key content or method of controlled in wireless completely, as long as this people does not have
Secret key is taken good care of, security risk just occurs.
Wifi passwords and the control extension mode of bluetooth password pairing, loaded down with trivial details in user experience, especially bluetooth
Mode is on actual popular mobile device, and in order to save battery, general bluetooth is caused and want every time with shifting all in closed mode
It is required for increasing the opening process of bluetooth when dynamic equipment control operation, Consumer's Experience is loaded down with trivial details, directly affects Related product
Usage experience.
The application that intelligent radio control is suitable for is very more, and including but not limited to household electrical appliance, gate inhibition, security protection etc. are set
It is standby, wherein many controlled in wireless applications have been required for control extension mode more more preferable than general control, except the dynamic of secret key is given birth to
Into outside technology, more preferable secret key generating mode is taken more can effectively to lift the security of existing control secret key.
The content of the invention
The technical problem to be solved in the present invention is to provide a kind of reality of high, the easy to use multi-party authorization secret key of level of security
Existing method and the system that subordinate equipment control is carried out using the secret key, can be with overcome the deficiencies in the prior art.
The technical scheme is that:The implementation method of multi-party collaborative authorization secret key is the base in setting system management backstage
On plinth, by the independent authorization License Info of the Internet of Things control device owner, the independent authorization key of equipment operation management side, user
The user's registration ID of mobile device and the MAC Address code of mobile device, the control of secret key device MAC codes two or more letter
Breath collection is to System Management Daemon, and the information of above-mentioned collection is write dynamic secret key generation program by System Management Daemon, by dynamic
Secret key generates the multi-party collaborative authorization secret key of Program Generating.
The implementation method of above-mentioned multi-party collaborative authorization secret key is that the described equipment owner and equipment O&M side are one
Or more than one.
The implementation method of foregoing multi-party collaborative authorization secret key is that System Management Daemon owns provided with Internet of Things control device
Person, equipment operation management side, user's mobile device and the control of secret key device independent authority entrance or automatically extract the original of mode
Raw code, and match the software and hardware for realizing multi-party authorization mechanism.
The system for moving controlled in wireless using multi-party collaborative authorization secret key, it is included with lower unit:
Multi-party collaborative authorization secret key, according to multi-party independent authorization code, dynamic generation control secret key, can effectively it prevent close
The shortcomings that spoon is easily cracked, steals and lost;Multi-party collaborative authorization secret key can pass through the control on user's mobile device
Special App obtains to System Management Daemon;
The special App of control on user's mobile device, including collecting unit and memory cell, collecting unit is realized and user
The docking of mobile device simultaneously obtains the MAC Address code of the user's registration ID on user's mobile device and mobile device and sent to being
Management backstage of uniting is used for the generation of multi-party collaborative authorization secret key;Memory cell receives the multi-party association of dynamic secret key generation Program Generating
Same authorization key, and realize the checking with the MAC Address code of mobile device;The special App of control on user's mobile device is obtained
The control of secret key device need to be connected in wifi or the range of signal of bluetooth when using first time after multi-party collaborative authorization secret key, is entered
Row is once matched, and multi-party collaborative authorization secret key is sent in the memory cell of the control of secret key device and realizes matching, is completed to close
The control of spoon controller control device;
The control of secret key device, on controlled device, controlled device can be controlled to act, the hardware of the control of secret key device contains
Have:Central processing module, wifi and bluetooth communication module, time driving plate, dynamic encryption memory, power module, control are defeated
Go out unit;Software contains:Wifi and bluetooth firmware, computing and secret key firmware, time and control judge firmware, mobile device Android
With ios platform clients, control management backstage;The control of secret key device itself carries unique MAC codes, and central processing module verification is dynamic
Whether the new receive information of state encrypted memory is correct, sends and orders to controlled device processed after correct.
The system that the multi-party collaborative authorization secret key of foregoing utilization moves controlled in wireless is that the control of secret key device possesses dynamic
Contrast conting processing function after AES processing, only multi-party collaborative authorization secret key content include correct the control of secret key device
MAC when just store and enable secret key.
The system that the multi-party collaborative authorization secret key of foregoing utilization moves controlled in wireless is the control on user's mobile device
Make special App dynamics and judge the control of secret key device signal intensity, and carry out site setup, by setting on mobile device
Special App is controlled to define the time of origin of the control of secret key device action according to the distance with the control of secret key device.
Compared with the prior art, security major embodiment of the invention is in the following areas;
1 using at least tripartite's above independent authorization, including:The controlled device owner, system equipment O&M side and equipment
User.Mandate is respectively adopted:Equipment owner mandate, the equipment MAC of mobile device user and number of registration mandate, controller are solid
Part mandate and the multi-party authorization of equipment O&M side, the multi-party independent authorization code more than, dynamic generation control secret key.Can have
The shortcomings that effect prevents common secret key to be easily cracked, steal and lose, increase security.
2nd, can be controlled by the App of the mobile devices such as mobile phone, control instruction communication modes are used except using logical
With outside wifi and bluetooth communication encryption standard, more judged and control using from the multi-party authorization secret key being defined, only simultaneously
More than having met after two layers of encryption matching, can just instruction be sent to the equipment that rear end controls.
Brief description of the drawings
Fig. 1 is the multi-party authorization secret key generating principle figure of the present invention;
Fig. 2 is the band multi-party authorization the control of secret key device process for using figure of the present invention;
Fig. 3 is this bright band multi-party authorization the control of secret key device structure chart.
Embodiment
The implementation method of multi-party collaborative authorization secret key is that System Management Daemon is set on the basis of setting system management backstage
Have the Internet of Things control device owner, equipment operation management side, user's mobile device and the control of secret key device independent authority entrance or
Person automatically extracts the native code of mode, and matches the software and hardware for realizing multi-party authorization mechanism.Internet of Things control device is owned
The independent authorization License Info of person, the independent authorization key of equipment operation management side, user's mobile device user's registration ID and
Two or more information gathering of the MAC Address code of mobile device, the MAC codes of the control of secret key device to System Management Daemon,
The information of above-mentioned collection is write dynamic secret key generation program by System Management Daemon, is assisted in many ways by dynamic secret key generation Program Generating
Same authorization key, it is one or more according to the level of security equipment owner and equipment O&M side.
The system for moving controlled in wireless using multi-party collaborative authorization secret key, it is included with lower unit:
Multi-party collaborative authorization secret key, according to multi-party independent authorization code, dynamic generation control secret key, can effectively it prevent close
The shortcomings that spoon is easily cracked, steals and lost;Multi-party collaborative authorization secret key can pass through the control on user's mobile device
Special App obtains to System Management Daemon;
The special App of control on user's mobile device, including collecting unit and memory cell, collecting unit is realized and user
The docking of mobile device simultaneously obtains the MAC Address code of the user's registration ID on user's mobile device and mobile device and sent to being
Management backstage of uniting is used for the generation of multi-party collaborative authorization secret key;Memory cell receives the multi-party association of dynamic secret key generation Program Generating
Same authorization key, and realize the checking with the MAC Address code of mobile device;The special App of control on user's mobile device is obtained
The control of secret key device need to be connected in wifi or the range of signal of bluetooth when using first time after multi-party collaborative authorization secret key, is entered
Row is once matched, and multi-party collaborative authorization secret key is sent in the memory cell of the control of secret key device and realizes matching, is completed to close
The control of spoon controller control device;
The control of secret key device, on controlled device, controlled device can be controlled to act, the hardware of the control of secret key device contains
Have:Central processing module, wifi and bluetooth communication module, time driving plate, dynamic encryption memory, power module, control are defeated
Go out unit;Software contains:Wifi and bluetooth firmware, computing and secret key firmware, time and control judge firmware, mobile device Android
With ios platform clients, control management backstage;The control of secret key device itself carries unique MAC codes, and central processing module verification is dynamic
Whether the new receive information of state encrypted memory is correct, sends and orders to controlled device processed after correct.
The system that the multi-party collaborative authorization secret key of foregoing utilization moves controlled in wireless is that the control of secret key device possesses dynamic
Contrast conting processing function after AES processing, only multi-party collaborative authorization secret key content include correct the control of secret key device
MAC when just store and enable secret key.
The system that the multi-party collaborative authorization secret key of foregoing utilization moves controlled in wireless is the control on user's mobile device
Make special App dynamics and judge the control of secret key device signal intensity, and carry out site setup, by setting on mobile device
Special App is controlled to define the time of origin of the control of secret key device action according to the distance with the control of secret key device.
Specific implementation 1, take multi-party independent authorization, including Internet of Things control device equipment institute person+equipment operation management side+
User's mobile device MAC and the registration ID+ present invention the control of secret key device MAC, multi-party independent authorization, provide independent authority and enter respectively
Mouth or the native code for automatically extracting mode, match the software and hardware development of multi-party authorization mechanism.
In System Management Daemon, Mobile solution(App)In embedded firmware, respectively independent authorization code, mobile device
MAC Address code and controller MAC Address code are written in dynamic password generation program, to generate in a manner of dynamic encryption
Multi-party collaborative authorization secret key.
2nd, System Management Daemon uses Cloud Server mode, can be with the realization of quick and convenient multi-party authorization, as long as user obtains
After the independent authorization authority for the system of obtaining, as long as being connected to internet, it is possible to generated at any time into the secret key source code of personal authority
Manager, do corresponding mandate.
3rd, the control of secret key device is made up of 7 functional units, is s1 respectively as shown in Figure 3:Wifi or bluetooth radio module,
s2:Time drive module, s3:Memory module, s4:Secret key, s5:Central processing module, s6:Power module, s7:Control signal is defeated
Go out module.
4th, the special App of control on user's mobile device, it is the journey for supporting two Mobile operating systems of IOS and Android
Sequence, is realized and the mobile terminal licencing key of the matching of controller, part initial setting up, including wireless secret key is survived and transmission, nothing
Line signal strength defines, completes control to being controlled by a controller equipment.
Whether the control of secret key device, the signal intensity that can be sent by gathering the mobile device shaken hands perform come interpretation
Control operation.It is slight that the control of secret key device compares the handshaking information collected in real time, by central processing module, using in system
Algorithms carry out calculating comparison, it is possible to achieve the control in specified signal strength range, while avoid other unnecessary mistakes
Control by mistake.
Uniqueness match, the control of secret key device to the secret key of shaking hands of mobile device inside, bound unique mobile device MAC
Address so that mobile device has uniqueness, i.e., the secret key of each mobile device, which can be only installed in this equipment, to be used, same
Secret key can only use on the unique mobile device of mandate.
Secret key flow, the first step are close in System Management Daemon dynamic generation after generation secret key uses multi-party independent authorization
Spoon, wherein user's mobile device are after independent authorization code is sent to backstage, after it is determined that its other party mandate generates careful spoon from the background,
Overall secret key can be fetched.Second step, user use the mobile terminal App for getting secret key, for the first time in use, arriving controller
Controller is connected in wifi or the range of signal of bluetooth, is once matched, secret key is sent to the memory cell of controller
In.3rd step, mobile subscriber directly control related equipment by controller with App cans.
Gate inhibition's implementation example:Applied to the control of cell unit door, user passes through the management of system developer before use
The special App of control on user's mobile device is downloaded on smart mobile phone for cloud platform, it is necessary to control on user's mobile device
Special App is interior to determine that bundling the mobile phone is used for opening unit door mandate, will be No. MAC and use of this mobile phone after binding
The ID of family registration is uniquely corresponded to, and by being sent to system development after the special App dynamic encryptions of control on user's mobile device
The management cloud platform of person;The System Management Daemon that the management cloud platform of system developer is bought to the service department of the cell again is only
Special account is opened in vertical mandate, can carry out secret key mandate to the community user of mandate in the account, the generation of secret key is:Should
User's cell property management receives the binding information of user's submission, after determining user identity, after the system administration of service department purchase
Platform existence secret key, the secret key is general to encrypt the controller MAC of cell gate with cell number by AES, and property management is independently awarded
After the cryptographic keys common cryptographic that the secret key of power and user upload, obtained secret key opens to application user, the sheet only applied
The mobile phone of people's binding could fetch the secret key that property management ultimately produces from app.And the MAC of controller is by manager's root of cloud platform
There is provided according to hardware Product archives.The independent authorization of cloud platform manager, property management side and the aspect of user side three are so achieved that, and
The result that the certain tripartite of last secret key authorizes jointly.
Claims (3)
- A kind of 1. system for moving controlled in wireless using multi-party collaborative authorization secret key, it is characterised in that:It is included to place an order Member:Multi-party collaborative authorization secret key, according to multi-party independent authorization code, dynamic generation control secret key, it can effectively prevent that secret key is easy The shortcomings that being cracked, steal and losing;Multi-party collaborative authorization secret key can be special by the control on user's mobile device App obtains to System Management Daemon;The special App of control on user's mobile device, including collecting unit and memory cell, collecting unit is realized to be moved with user The docking of equipment simultaneously obtains the user's registration ID on user's mobile device and mobile device MAC Address code and sent to system Management backstage is used for the generation of multi-party collaborative authorization secret key;Memory cell receives the multi-party collaboration of dynamic secret key generation Program Generating Authorization key, and realize the checking with the MAC Address code of mobile device;The special App of control on user's mobile device obtains more The control of secret key device need to be connected in wifi or the range of signal of bluetooth when using first time after square collaborative authorization secret key, is carried out Once match, multi-party collaborative authorization secret key is sent in the memory cell of the control of secret key device and realizes matching, is completed to by secret key The control of controller control device;The control of secret key device, on controlled device, controlled device can be controlled to act, the hardware of the control of secret key device contains: Central processing module, wifi and bluetooth communication module, time driving plate, dynamic encryption memory, power module, control output are single Member;Software contains:Wifi and bluetooth firmware, computing and secret key firmware, the time and control judge firmware, mobile device Android and Ios platform clients, control management backstage;The control of secret key device itself carries unique MAC codes, central processing module verification dynamic Whether the new receive information of encrypted memory is correct, sends and orders to controlled device processed after correct.
- 2. the system according to claim 1 for moving controlled in wireless using multi-party collaborative authorization secret key, its feature exist In:The control of secret key device possesses the contrast conting processing function after dynamic encryption algorithm processing, in only multi-party collaborative authorization secret key Appearance just stores when including the control of secret key device MAC and enables secret key.
- 3. the system according to claim 1 or 2 for moving controlled in wireless using multi-party collaborative authorization secret key, its feature It is:The special App dynamics of control on user's mobile device judge the control of secret key device signal intensity, and carry out site setup, By setting the special App of control on mobile device to define the control of secret key according to the distance with the control of secret key device The time of origin of device action.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410753531.8A CN104579639B (en) | 2014-12-11 | 2014-12-11 | The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410753531.8A CN104579639B (en) | 2014-12-11 | 2014-12-11 | The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104579639A CN104579639A (en) | 2015-04-29 |
| CN104579639B true CN104579639B (en) | 2018-02-16 |
Family
ID=53094926
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410753531.8A Expired - Fee Related CN104579639B (en) | 2014-12-11 | 2014-12-11 | The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104579639B (en) |
Families Citing this family (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105785876A (en) * | 2016-04-06 | 2016-07-20 | 陈昊 | Unmanned aerial vehicle authorization system and authorization method thereof |
| CN106686104B (en) * | 2017-01-04 | 2020-08-18 | 上海上讯信息技术股份有限公司 | Method and equipment for operation and maintenance of target server |
| CN110474891B (en) * | 2019-07-29 | 2023-08-22 | 聚好看科技股份有限公司 | Service access control method and device based on multi-system intelligent equipment |
| CN113362147B (en) * | 2021-05-17 | 2023-02-10 | 杭州师范大学 | Traceable electronic auction method based on multiple authorization centers under Internet of things |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1514573A (en) * | 2003-04-24 | 2004-07-21 | 徐文祥 | Identity authentication method and its identity authentication system |
| CN102682506A (en) * | 2012-05-25 | 2012-09-19 | 北京华大信安科技有限公司 | Intelligent Bluetooth door access control method and device based on symmetric cryptographic technique |
| CN103021045A (en) * | 2011-09-25 | 2013-04-03 | 边高伟 | Intelligent entrance guard system for mobile terminal user verification |
| CN103544746A (en) * | 2012-07-08 | 2014-01-29 | 上海博路信息技术有限公司 | Electronic access control system of dynamic bar code |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20050129240A1 (en) * | 2003-12-15 | 2005-06-16 | Palo Alto Research Center Incorporated | Method and apparatus for establishing a secure ad hoc command structure |
-
2014
- 2014-12-11 CN CN201410753531.8A patent/CN104579639B/en not_active Expired - Fee Related
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1514573A (en) * | 2003-04-24 | 2004-07-21 | 徐文祥 | Identity authentication method and its identity authentication system |
| CN103021045A (en) * | 2011-09-25 | 2013-04-03 | 边高伟 | Intelligent entrance guard system for mobile terminal user verification |
| CN102682506A (en) * | 2012-05-25 | 2012-09-19 | 北京华大信安科技有限公司 | Intelligent Bluetooth door access control method and device based on symmetric cryptographic technique |
| CN103544746A (en) * | 2012-07-08 | 2014-01-29 | 上海博路信息技术有限公司 | Electronic access control system of dynamic bar code |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104579639A (en) | 2015-04-29 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2017177435A1 (en) | Identity authentication method, terminal and server | |
| CN103888265B (en) | A kind of application login system and method based on mobile terminal | |
| CN107959686B (en) | A kind of Internet of Things security certification system and authentication method | |
| CN106533861A (en) | Security control system and authentication method of smart home Internet of Things | |
| CN103747012B (en) | Safe verification method, the apparatus and system of network trading | |
| CN103401880B (en) | The system and method that a kind of industrial control network logs in automatically | |
| CN108809914A (en) | Access control method, device, terminal and Internet of Things house system | |
| CN104636777B (en) | ID card information obtains system | |
| CN105069864A (en) | Door lock control secure communication scheme based on NFC (near field communication) function of smart phone | |
| CN106330442A (en) | Identity authentication method, device and system | |
| CN104579639B (en) | The realization of multi-party collaborative authorization secret key and move the system of controlled in wireless with it | |
| CN103400269A (en) | Smart community home gateway-based safety payment method | |
| CN106027250B (en) | A kind of ID card information safe transmission method and system | |
| US20160381011A1 (en) | Network security method and network security system | |
| CN101944216A (en) | Two-factor online transaction safety authentication method and system | |
| CN108848503B (en) | A kind of smart home dynamic encryption means of communication and system transmitted using merogenesis | |
| CN110163998A (en) | A kind of intelligent door lock application method of intelligent door lock system and offline authentication | |
| CN107958155A (en) | A kind of system initialization method and device | |
| CN105187382A (en) | Multi-factor identity authentication method for preventing library collision attacks | |
| CN110932951B (en) | Intelligent household control method and device | |
| Jeong et al. | Utilizing a Bluetooth remote lock system for a smartphone | |
| CN104361667B (en) | A kind of access control system and its entrance guard authorization method based on 4G communications | |
| CN202206419U (en) | Network security terminal and interactive system based on terminal | |
| CN108650219B (en) | User identity identification method, related device, equipment and system | |
| CN104299133A (en) | On-line mobile payment system based on somatosensory network and credibility authentication method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| CF01 | Termination of patent right due to non-payment of annual fee |
Granted publication date: 20180216 Termination date: 20191211 |
|
| CF01 | Termination of patent right due to non-payment of annual fee |