CN104994158A - Method for safely controlling household appliance through centralized gateway - Google Patents
Method for safely controlling household appliance through centralized gateway Download PDFInfo
- Publication number
- CN104994158A CN104994158A CN201510385788.7A CN201510385788A CN104994158A CN 104994158 A CN104994158 A CN 104994158A CN 201510385788 A CN201510385788 A CN 201510385788A CN 104994158 A CN104994158 A CN 104994158A
- Authority
- CN
- China
- Prior art keywords
- gateway
- control terminal
- household electrical
- electrical appliances
- security
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 32
- 238000005538 encapsulation Methods 0.000 claims description 4
- 230000005540 biological transmission Effects 0.000 claims 1
- 238000004891 communication Methods 0.000 abstract description 12
- 230000007246 mechanism Effects 0.000 abstract description 5
- 230000008859 change Effects 0.000 abstract description 3
- 230000008569 process Effects 0.000 description 6
- 238000007726 management method Methods 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 230000004927 fusion Effects 0.000 description 2
- 230000004044 response Effects 0.000 description 2
- 238000004378 air conditioning Methods 0.000 description 1
- 238000012550 audit Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000001276 controlling effect Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000001105 regulatory effect Effects 0.000 description 1
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
- H04L67/025—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP] for remote control or remote monitoring of applications
-
- G—PHYSICS
- G05—CONTROLLING; REGULATING
- G05B—CONTROL OR REGULATING SYSTEMS IN GENERAL; FUNCTIONAL ELEMENTS OF SUCH SYSTEMS; MONITORING OR TESTING ARRANGEMENTS FOR SUCH SYSTEMS OR ELEMENTS
- G05B19/00—Programme-control systems
- G05B19/02—Programme-control systems electric
- G05B19/418—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS] or computer integrated manufacturing [CIM]
- G05B19/4185—Total factory control, i.e. centrally controlling a plurality of machines, e.g. direct or distributed numerical control [DNC], flexible manufacturing systems [FMS], integrated manufacturing systems [IMS] or computer integrated manufacturing [CIM] characterised by the network communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/66—Arrangements for connecting between networks having differing types of switching systems, e.g. gateways
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/104—Peer-to-peer [P2P] networks
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- General Engineering & Computer Science (AREA)
- Manufacturing & Machinery (AREA)
- Quality & Reliability (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Automation & Control Theory (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- Telephonic Communication Services (AREA)
- Selective Calling Equipment (AREA)
Abstract
The invention discloses a method for safely controlling a household appliance through a centralized gateway. The method comprises the following steps that: A, a control terminal sends a calling request to the gateway according to a permission list of the control terminal in order to request operation of a household appliance to be controlled; B, the gateway determines a permission for the control terminal to control the household appliance to be controlled to execute the operation according to the permission list of the control terminal and an access control list of the household appliance to be controlled; and C, when the control terminal has the permission of controlling the household appliance to be controlled to execute the operation, the household appliance to be controlled executes the operation requested by the control terminal. In a mode in which the centralized gateway manages the household appliance, safe control of household appliance service interface access can be realized. Moreover, a safety mechanism design based on an original point-to-point communication mode is adopted, so that an ordinary safety strategy scheme can be directly adopted in the household appliance without change, and high compatibility is achieved.
Description
Technical field
The present invention relates to intelligent appliance field, particularly relate to a kind of method by centralized gateway security control household electrical appliances.
Background technology
At present, based on user terminal/server framework equipment between point-to-point communication framework as shown in Figure 1, be made up of bus finger daemon and terminal node.Bus finger daemon is responsible for the Message routing between terminal node, the functions such as service discovery; Terminal node refers to the application program on the equipment of operating in, and needs to be connected on bus finger daemon after startup.
Bus finger daemon can be regarded as operation bus sectionalization on different devices.The bus finger daemon of equipment couples together and just constitutes the bus of point to point network system be communicated with.Bus be distributed system provide one fast, the mode of lightweight carrys out pass-along message sequence.Its target allows two methods program communicate exactly, and without the need to the details of Treated Base mechanism.
User can be each application configuration certificate in above-mentioned point to point network and security strategy by security manager.Usual application is divided into control end and controlled terminal two kinds of roles.User arranges access control policy to control end application program, allows it to access which controlled terminal interface according to the function setting of control end application program.Security manager configures application permission inventory by user after finding to control application.Security manager obtains the right list configuration template of application, submits to user, is authorized by user.A similar example is the authority of configurating mobile application, and whether user can accessing address list, short message or geographical position etc. according to this application of functional configuration of mobile phone application.User configures complete, and the right list configured is arranged on control end application by security manager.
User arranges access control policy to controlled terminal application, and this strategy, in the mode of Access Control List (ACL), specifies controlled terminal interface to be had the control end application access of particular certificate.
Control end application and controlled terminal set up session between applying, first also should be set up the session path of safety by certification, both sides exchange right list and ACL (Access Control List, Access Control List (ACL)) afterwards, produce session key, finally exchange certificate.
When control end sends control command to controlled terminal, the right list that first control end is first arranged according to user judges that can this instruction send to target controlled terminal, if passable, then control end sends instruction.The ACL access control policy that can arrange according to user after controlled terminal receives instruction and the certificate of control end judge that can this instruction access controlled terminal data, if can, then controlled terminal performs this instruction.
In order to make the above-mentioned communication technology better support Intelligent household scene, Smart Home service proposes the concept of centralized management, and namely Smart Home service operation is on gateway, the service that other home appliance provides to gateway registration oneself.The general-purpose interface that control appliance is provided by gateway realizes calling household electrical appliances service interface, thus is centralized communication pattern by point-to-point distributed communication mode expansion.Take mobile phone as control end be example, in centralized communication pattern, mobile phone controls the method flow of household electrical appliances as shown in Figure 2.
As long as the general-purpose interface that gateway realizes can make control appliance by the input such as the corresponding interface title, method name, parameter of target household electrical appliances, the call instruction to this home appliance just can be translated into.
But inventor finds when realizing of the present invention, the communication pattern of Smart Home services set Chinese style introduces this intermediate equipment of gateway, and control end carries out centralized control by gateway to controlled terminal.Because control end and the mutual object of controlled terminal have all become gateway, the two is direct interaction no longer, and therefore original access control safety mechanism cannot ensure the fail safe of integrated system.
Summary of the invention
The technical problem to be solved in the present invention is to provide a kind of method by centralized gateway security control household electrical appliances, cannot ensure the problem of the safety of centralized management system in order to solve prior art in the household electrical appliances centerized fusion scene of being undertaken by gateway.
For solving the problems of the technologies described above, the invention provides a kind of method by centralized gateway security control household electrical appliances, said method comprising the steps of:
A, control terminal send call request according to the right list of control terminal to gateway, ask to operate controlled household electrical appliances;
B, described gateway, according to the Access Control List (ACL) of the right list of control terminal and controlled household electrical appliances, determine that described control terminal controls the authority that described controlled household electrical appliances perform described operation;
C, when described control terminal have control described controlled household electrical appliances perform the authority of described operation time, described controlled household electrical appliances perform the operation of described control terminal request.
Further, described steps A specifically comprises:
The service interface instruction of the described controlled household electrical appliances of described control terminal encapsulation and parameter;
Check whether the right list of described control terminal allows to send equipment calls request to gateway;
When described control terminal allows to send equipment calls request to described gateway, described control terminal sends call request to the general-purpose interface of described gateway.
Further, described step B specifically comprises:
B1, described gateway determine the authority of described control terminal access general-purpose interface according to gateway certificate;
B2, when described control terminal has the authority of access general-purpose interface, described gateway determines the authority of service interface of the described controlled household electrical appliances of described control terminal access.
Further, described step B2 specifically comprises:
B21, described gateway parse the service interface information of described controlled household electrical appliances;
B22, right list according to described control terminal, judge whether described control terminal has and control the authority that described controlled household electrical appliances perform described operation;
If the described control terminal of B23 has control the authority that described controlled household electrical appliances perform described operation, described gateway searches the Access Control List (ACL) of described controlled household electrical appliances, and check the certificate of described control terminal, judge whether described certificate meets the requirement of the service interface of accessing described controlled household electrical appliances.
Further, described step C specifically comprises:
C1, when the certificate of described control terminal meets the requirement of the service interface of accessing described controlled household electrical appliances, the request of described control terminal is sent to described controlled household electrical appliances by described gateway;
C2, described controlled household electrical appliances judge described gateway whether service interface described in Internet access according to the certificate of gateway;
C3, when described in described gateway Internet access during service interface, described controlled household electrical appliances perform the operation of described control terminal request, and return execution result to described gateway;
Described execution result is returned to described control terminal by C4, described gateway.
Further, before described steps A, also comprise the step of the right list configuring described control terminal, specifically comprise:
M, configured the security strategy of described gateway and the security strategy of described controlled household electrical appliances by security manager;
N, security strategy according to described gateway, configure the right list of described control terminal by security manager.
Further, described step M specifically comprises:
M1, described security manager obtain the right list configuration template of gateway and feed back to user;
M2, user, according to the function of described gateway, the right list configuration template of described gateway configure the right list of described gateway;
M3, user, by the Access Control List (ACL) of controlled household electrical appliances, specify the service interface of described controlled household electrical appliances can only to be accessed by the control terminal with particular certificate.
Further, described step M also comprises: configure described gateway allow legal control terminal call its interface carry out device discovery and send call request.
Further, described step N specifically comprises:
N1, described security manager send the request obtaining right list configuration template to described control terminal;
N2, described control terminal obtain the right list configuration template of described gateway;
N3, described control terminal merge the right list configuration template of its initial rights inventory configuration template and described gateway, obtain the final right list configuration template of described control terminal and feed back to described security manager;
The final right list configuration template of described control terminal shows to user by N4, described security manager, and user, according to the function of described control terminal, the final right list configuration template of described control terminal configures the right list of described control terminal.
Further, described security manager operates on intelligent terminal or the webserver.
Beneficial effect of the present invention is as follows:
The present invention, under the pattern by centralized gateway management home appliance, can realize the security control to the access of household electrical appliances service interface.And the present invention is the Security Mechanism Design based on initial point peer communications mode, home appliance directly can adopt former security strategy scheme and without the need to making a change, have good compatibility.
Accompanying drawing explanation
Fig. 1 be prior art a kind of equipment based on user terminal/server framework between point-to-point communication frame diagram;
Fig. 2 is the method flow diagram of a kind of mobile phone control household electrical appliances in centralized communication pattern of prior art;
Fig. 3 is a kind of flow chart configuring the right list of control terminal of the embodiment of the present invention;
Fig. 4 is the flow chart of a kind of method by centralized gateway security control household electrical appliances of the embodiment of the present invention.
Embodiment
The problem of the safety of centralized management system cannot be ensured in the household electrical appliances centerized fusion scene of being undertaken by gateway in order to solve prior art, the invention provides a kind of method by centralized gateway security control household electrical appliances, below in conjunction with accompanying drawing and embodiment, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, do not limit the present invention.
A kind of method by centralized gateway security control household electrical appliances of the present invention comprises the following steps: first, control terminal sends call request according to the right list of control terminal to gateway, asks to operate controlled household electrical appliances; Then, described gateway, according to the Access Control List (ACL) of the right list of control terminal and controlled household electrical appliances, determines that described control terminal controls the authority that described controlled household electrical appliances perform described operation; Finally, when described control terminal has the described controlled household electrical appliances of control to perform the authority of described operation, described controlled household electrical appliances perform the operation of described control terminal request.
In the present invention, control terminal sends call request according to the right list of control terminal to gateway, asks to carry out operating detailed process to controlled household electrical appliances to be: the service interface instruction of the described controlled household electrical appliances of first described control terminal encapsulation and parameter; Then check whether the right list of described control terminal allows to send equipment calls request to gateway; Finally when described control terminal allows to send equipment calls request to described gateway, described control terminal sends call request to the general-purpose interface of described gateway.
In the present invention, described gateway, according to the Access Control List (ACL) of the right list of control terminal and controlled household electrical appliances, determines that described control terminal controls the process that described controlled household electrical appliances perform the authority of described operation as follows: first described gateway determines the authority of described control terminal access general-purpose interface according to gateway certificate; Then, when described control terminal has the authority of access general-purpose interface, described gateway determines the authority of the service interface of the described controlled household electrical appliances of described control terminal access.
In the present invention, determine that the process of the authority of the service interface of the described controlled household electrical appliances of described control terminal access is specially: first described gateway parses the service interface information of described controlled household electrical appliances; Then according to the right list of described control terminal, judge whether described control terminal has and control the authority that described controlled household electrical appliances perform described operation; If last described control terminal has control the authority that described controlled household electrical appliances perform described operation, described gateway searches the Access Control List (ACL) of described controlled household electrical appliances, and check the certificate of described control terminal, judge whether described certificate meets the requirement of the service interface of accessing described controlled household electrical appliances.
In the present invention, the detailed process that described controlled household electrical appliances perform the operation of described control terminal request is:, when the certificate of described control terminal meets the requirement of the service interface of accessing described controlled household electrical appliances, the request of described control terminal is sent to described controlled household electrical appliances by described gateway; Described controlled household electrical appliances judge described gateway whether service interface described in Internet access according to the certificate of gateway; When described in described gateway Internet access during service interface, described controlled household electrical appliances perform the operation of described control terminal request, and return execution result to described gateway; Described execution result is returned to described control terminal by described gateway.
Before described control terminal request operates controlled household electrical appliances, also comprise the step of the right list configuring described control terminal, first configure the security strategy of described gateway and the security strategy of described controlled household electrical appliances by security manager, described security manager operates on intelligent terminal or the webserver; Then according to the security strategy of described gateway, the right list of described control terminal is configured by security manager.Its detailed process is as follows:
Described security manager obtains the right list configuration template of gateway and feeds back to user; User, according to the function of described gateway, the right list configuration template of described gateway configures the right list of described gateway, and configure described gateway allow legal control terminal call its interface carry out device discovery and send call request; User, by the Access Control List (ACL) of controlled household electrical appliances, specifies the service interface of described controlled household electrical appliances can only to be accessed by the control terminal with particular certificate; Described security manager sends the request obtaining right list configuration template to described control terminal; Described control terminal obtains the right list configuration template of described gateway; Described control terminal merges the right list configuration template of its initial rights inventory configuration template and described gateway, obtains the final right list configuration template of described control terminal and feeds back to described security manager; The final right list configuration template of described control terminal shows to user by described security manager, and user, according to the function of described control terminal, the final right list configuration template of described control terminal configures the right list of described control terminal.
By centralized gateway, television set is controlled for mobile phone as control terminal below, the present invention is specifically described.
In the present embodiment, in the home network of a point-to-point communication, there is a gateway, the mobile phone of television set and user is all connected to gateway.The present embodiment installs the opening/closing, switching channels, adjustment volume etc. that an application program controls television set on mobile phone.
First, user is come for gateway and television set configuration security strategy by a security manager.Security manager may operate on the intelligent terminal such as computer, mobile phone, also may operate on the webserver; After security manager connection device, certificate, access strategy etc. can be arranged on equipment.Detailed process is as follows: described security manager obtains the right list configuration template of gateway and feeds back to user; User, according to the function of described gateway, the right list configuration template of described gateway configures the right list of described gateway; User, by the Access Control List (ACL) of television set, specifies the service interface of described television set can only to be accessed by the control terminal with particular certificate.In the present embodiment, television set allows gateway access switch and regulates volume functions, and gateway is allowed to can control television set switch and regulate volume, and controls other home appliances such as air-conditioning, refrigerator.Further, gateway allows its interface of legal application call carry out device discovery and send these operations such as call instruction.
Then be configured mobile phone application, its layoutprocedure as shown in Figure 3.User installs the application program controlling television set by mobile phone-downloaded after, open application program, first this application program finds gateway.After finding gateway, application and gateway connect.Application sends security configuration notification message, is received by the security manager in network.Security manager reminding user configuring application program authority, user starts configuring application program right list.After security manager receives user instruction, send the configuration template that instruction obtains mobile phone application.After application program of mobile phone receives the instruction of security manager, send instructions and obtain the configuration template of gateway to gateway.After gateway receives request, mobile phone is sent to apply configuration template.
After mobile phone application receives the configuration template of gateway, be merged into the configuration template of self, form the final configuration template submitting user to.Such as, the configuration template of application program of mobile phone is as shown in table 1:
Table 1
The configuration template of gateway is as shown in table 2:
Table 2
Final masterplate is formed as shown in table 3 after then merging:
Table 3
Configuration template after merging is returned to security manager by mobile phone application.Masterplate is submitted to user to audit and is requested for permission by security manager.User selects to allow or forbid to each authority according to applying possible service condition, and the right list forming mobile phone application is as shown in table 4:
Table 4
The right list that user ratifies is arranged in application program of mobile phone by security manager.Mobile phone application uses this right list to carry out safe access control.
As shown in Figure 4, in the present embodiment, user controls television set by mobile phone to a kind of method by centralized gateway security control household electrical appliances of the embodiment of the present invention.Mobile phone connects gateway, sets up secured session, exchanges right list, ACL and certificate.Similarly, gateway and television set also connect, and exchange right list, ACL and certificate.
The service interface instruction of mobile phone application encapsulation television set and parameter, the general-purpose interface to gateway sends call request.Before sending out request, mobile phone can check whether right list allows to send equipment calls request to gateway, is to allow in the present embodiment.After gateway receives the request that mobile phone sends, judge whether gateway has the right to access general-purpose interface according to gateway certificate.Allow in the present embodiment, therefore gateway return state is the response of OK; If do not allow, then gateway sends this request of response reject.
Afterwards, gateway parses the service interface information of household electrical appliances, judges that this request will control television set, as regulated the volume of television set.Gateway, according to the right list exchanging the mobile phone application got, judges whether the application of this mobile phone has corresponding authority.If mobile phone application lack of competence (such as the target controlled is TV frequency channel switching or regulates air-conditioner temperature), then gateway refusal performs and returns without performing permission error to mobile phone.
In the present embodiment, mobile phone application has permission adjustment tv volume, therefore gateway continues to search the ACL exchanging the tv volume adjustment interface got, check the certificate exchanging the mobile phone application got simultaneously, judge whether this certificate meets the ACL requirement of this interface of access.If according to ACL, mobile phone application does not allow to access this interface, then refusal performs and returns without performing permission error to mobile phone.
If the volume adjusting interface of the certificate Internet access television set had applied by mobile phone, then this request is sent to television set by gateway.After television set receives request, judge gateway whether Internet access volume interface according to the certificate of gateway.If so, then executable operations returning results.Result is returned to mobile phone after receiving the execution result of television set by gateway.
The present invention, under the pattern by centralized gateway management home appliance, can realize the security control to the access of household electrical appliances service interface.And the present invention is the Security Mechanism Design based on initial point peer communications mode, home appliance directly can adopt former security strategy scheme and without the need to making a change, have good compatibility.
Although be example object, disclose the preferred embodiments of the present invention, it is also possible for those skilled in the art will recognize various improvement, increase and replacement, and therefore, scope of the present invention should be not limited to above-described embodiment.
Claims (10)
1., by a method for centralized gateway security control household electrical appliances, it is characterized in that, said method comprising the steps of:
A, control terminal send call request according to the right list of control terminal to gateway, ask to operate controlled household electrical appliances;
B, described gateway, according to the Access Control List (ACL) of the right list of control terminal and controlled household electrical appliances, determine that described control terminal controls the authority that described controlled household electrical appliances perform described operation;
C, when described control terminal have control described controlled household electrical appliances perform the authority of described operation time, described controlled household electrical appliances perform the operation of described control terminal request.
2., as claimed in claim 1 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described steps A specifically comprises:
The service interface instruction of the described controlled household electrical appliances of described control terminal encapsulation and parameter;
Check whether the right list of described control terminal allows to send equipment calls request to gateway;
When described control terminal allows to send equipment calls request to described gateway, described control terminal sends call request to the general-purpose interface of described gateway.
3., as claimed in claim 1 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described step B specifically comprises:
B1, described gateway determine the authority of described control terminal access general-purpose interface according to gateway certificate;
B2, when described control terminal has the authority of access general-purpose interface, described gateway determines the authority of service interface of the described controlled household electrical appliances of described control terminal access.
4., as claimed in claim 3 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described step B2 specifically comprises:
B21, described gateway parse the service interface information of described controlled household electrical appliances;
B22, right list according to described control terminal, judge whether described control terminal has and control the authority that described controlled household electrical appliances perform described operation;
If the described control terminal of B23 has control the authority that described controlled household electrical appliances perform described operation, described gateway searches the Access Control List (ACL) of described controlled household electrical appliances, and check the certificate of described control terminal, judge whether described certificate meets the requirement of the service interface of accessing described controlled household electrical appliances.
5., as claimed in claim 4 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described step C specifically comprises:
C1, when the certificate of described control terminal meets the requirement of the service interface of accessing described controlled household electrical appliances, the request of described control terminal is sent to described controlled household electrical appliances by described gateway;
C2, described controlled household electrical appliances judge described gateway whether service interface described in Internet access according to the certificate of gateway;
C3, when described in described gateway Internet access during service interface, described controlled household electrical appliances perform the operation of described control terminal request, and return execution result to described gateway;
Described execution result is returned to described control terminal by C4, described gateway.
6. the method by centralized gateway security control household electrical appliances as described in any one of claim 1 to 5, is characterized in that, before described steps A, also comprises the step of the right list configuring described control terminal, specifically comprises:
M, configured the security strategy of described gateway and the security strategy of described controlled household electrical appliances by security manager;
N, security strategy according to described gateway, configure the right list of described control terminal by security manager.
7., as claimed in claim 6 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described step M specifically comprises:
M1, described security manager obtain the right list configuration template of gateway and feed back to user;
M2, user, according to the function of described gateway, the right list configuration template of described gateway configure the right list of described gateway;
M3, user, by the Access Control List (ACL) of controlled household electrical appliances, specify the service interface of described controlled household electrical appliances can only to be accessed by the control terminal with particular certificate.
8. the method by centralized gateway security control household electrical appliances as claimed in claim 7, it is characterized in that, described step M also comprises: configure described gateway and allow legal control terminal to call its interface to carry out device discovery and transmission call request.
9., as claimed in claim 8 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described step N specifically comprises:
N1, described security manager send the request obtaining right list configuration template to described control terminal;
N2, described control terminal obtain the right list configuration template of described gateway;
N3, described control terminal merge the right list configuration template of its initial rights inventory configuration template and described gateway, obtain the final right list configuration template of described control terminal and feed back to described security manager;
The final right list configuration template of described control terminal shows to user by N4, described security manager, and user, according to the function of described control terminal, the final right list configuration template of described control terminal configures the right list of described control terminal.
10., as claimed in claim 6 by the method for centralized gateway security control household electrical appliances, it is characterized in that, described security manager operates on intelligent terminal or the webserver.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510385788.7A CN104994158B (en) | 2015-06-30 | 2015-06-30 | Method for safely controlling household appliances through centralized gateway |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510385788.7A CN104994158B (en) | 2015-06-30 | 2015-06-30 | Method for safely controlling household appliances through centralized gateway |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104994158A true CN104994158A (en) | 2015-10-21 |
| CN104994158B CN104994158B (en) | 2021-05-14 |
Family
ID=54305909
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510385788.7A Active CN104994158B (en) | 2015-06-30 | 2015-06-30 | Method for safely controlling household appliances through centralized gateway |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104994158B (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106656695A (en) * | 2016-11-30 | 2017-05-10 | 海尔优家智能科技(北京)有限公司 | Method for controlling intelligent household electrical appliance, intelligent gateway and cloud platform |
| CN107153359A (en) * | 2016-03-03 | 2017-09-12 | 阿姆Ip有限公司 | What configuration was set accesses in limited time |
| CN110071921A (en) * | 2019-04-19 | 2019-07-30 | 广东中安金狮科创有限公司 | Platform of internet of things cut-in method, device, computer readable storage medium and system |
| CN111695150A (en) * | 2020-05-15 | 2020-09-22 | 浙江信网真科技股份有限公司 | Dynamic granularity self-polymerization safe filtering method and device |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120239498A1 (en) * | 2005-09-14 | 2012-09-20 | Jorey Ramer | Mobile dynamic advertisement creation and placement |
| CN103067340A (en) * | 2011-10-20 | 2013-04-24 | 中兴通讯股份有限公司 | Authentication method for remote control network information domestic appliance, and system and internet domestic gateway |
| CN103136827A (en) * | 2013-01-21 | 2013-06-05 | 九阳股份有限公司 | Authority limit control method of network household appliance system |
| CN104468630A (en) * | 2014-12-31 | 2015-03-25 | 北京海尔广科数字技术有限公司 | Access control method and device of intelligent household electrical appliances |
-
2015
- 2015-06-30 CN CN201510385788.7A patent/CN104994158B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20120239498A1 (en) * | 2005-09-14 | 2012-09-20 | Jorey Ramer | Mobile dynamic advertisement creation and placement |
| CN103067340A (en) * | 2011-10-20 | 2013-04-24 | 中兴通讯股份有限公司 | Authentication method for remote control network information domestic appliance, and system and internet domestic gateway |
| CN103136827A (en) * | 2013-01-21 | 2013-06-05 | 九阳股份有限公司 | Authority limit control method of network household appliance system |
| CN104468630A (en) * | 2014-12-31 | 2015-03-25 | 北京海尔广科数字技术有限公司 | Access control method and device of intelligent household electrical appliances |
Cited By (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107153359A (en) * | 2016-03-03 | 2017-09-12 | 阿姆Ip有限公司 | What configuration was set accesses in limited time |
| CN106656695A (en) * | 2016-11-30 | 2017-05-10 | 海尔优家智能科技(北京)有限公司 | Method for controlling intelligent household electrical appliance, intelligent gateway and cloud platform |
| CN110071921A (en) * | 2019-04-19 | 2019-07-30 | 广东中安金狮科创有限公司 | Platform of internet of things cut-in method, device, computer readable storage medium and system |
| CN111695150A (en) * | 2020-05-15 | 2020-09-22 | 浙江信网真科技股份有限公司 | Dynamic granularity self-polymerization safe filtering method and device |
| CN111695150B (en) * | 2020-05-15 | 2023-07-28 | 浙江信网真科技股份有限公司 | Dynamic granularity self-polymerization safe filtering method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104994158B (en) | 2021-05-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109150568B (en) | Network management method, device, system, equipment and storage medium | |
| KR100681625B1 (en) | A method to realize dynamic networking and resource sharing among equipments | |
| EP3195526B1 (en) | Layered management server delegation | |
| CN102113405B (en) | Method for personal network service configuration and system for personal network service configuration | |
| CN110169089A (en) | System and method for application friendly protocol Data Unit session management | |
| CN106656547B (en) | Method and device for updating network configuration of household electrical appliance | |
| CN108833181A (en) | NG-CN network slice systems and network are sliced selection method | |
| WO2018082491A1 (en) | Method for extending network slice instance, network devices, and network architecture | |
| CN105471686A (en) | Terminal control method, terminal control apparatus and system | |
| CN105007164B (en) | Centralized safety control method and device | |
| CN104994158A (en) | Method for safely controlling household appliance through centralized gateway | |
| CN105516960A (en) | Non-perceptual authentication method system, management method and system based on the method system | |
| US20190289490A1 (en) | Controlled connection of a wireless device to a network | |
| WO2016201913A1 (en) | Data transmission method, device and system, and computer storage medium | |
| CN105703985A (en) | Method for realizing quick network access of intelligent device and device interconnection | |
| CN107872345A (en) | A kind of ability open implementation method and device | |
| CN105306320A (en) | Method and device for binding clients to intelligent device | |
| US20160157091A1 (en) | Terminal Peripheral Control Method, M2M Gateway, and Communications System | |
| US20120210399A1 (en) | Location-enabled access control lists for real-world devices | |
| WO2013167070A2 (en) | Method for authentication of terminal cooperation and equipment middleware thereof | |
| JP5327896B2 (en) | Wireless LAN access point and wireless terminal connection maintaining method | |
| CN103489023A (en) | Barcode-based data exchange method | |
| US8924520B2 (en) | Method, remote access server and system for configuring a quality of service parameter | |
| JP2023514959A (en) | Security information discovery method, security information placement method and equipment | |
| CN108076459B (en) | Network access control method, related equipment and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |