CN105429985A - MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module - Google Patents
MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module Download PDFInfo
- Publication number
- CN105429985A CN105429985A CN201510855342.6A CN201510855342A CN105429985A CN 105429985 A CN105429985 A CN 105429985A CN 201510855342 A CN201510855342 A CN 201510855342A CN 105429985 A CN105429985 A CN 105429985A
- Authority
- CN
- China
- Prior art keywords
- mac
- wifi module
- encryption
- plaintext
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/14—Network architectures or network communication protocols for network security for detecting or protecting against malicious traffic
- H04L63/1441—Countermeasures against malicious traffic
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses an MAC (Media Access Control) authentication method for a WIFI module. The MAC authentication method comprises the following steps: firstly, receiving plaintext MAC and encrypted MAC information which are transmitted by the WIFI module; secondly, decrypting the encrypted MAC information; and lastly, comparing the decrypted MAC with the plaintext MAC, and indicating pass of authentication and providing services for the WIFI module if the decrypted MAC is the same as the plaintext MAC. The invention also discloses an MAC encryption method for the WIFI module. According to the MAC encryption method, the MAC is encrypted through an application program interface for reading, encrypting and decrypting the MAC according to a preset key corresponding to the MAC. The invention also discloses an MAC authentication device for the WIFI module. The invention also discloses a WIFI module. The MAC authentication method, the authentication device and the MAC encryption method for the WIFI module and the WIFI module are applied to Internet of things smart equipment, low in costs, and easy to implement. Thus, the attacks of pseudo MAC can be avoided rapidly, and safer home appliances are provided for users.
Description
Technical field
The present invention relates to wireless communication field, particularly relate to a kind of WIFI (WIreless-FIdelity, Wireless Fidelity) MAC (MediaAccessControl, the medium access control) authentication method of module, authenticate device, MAC encryption method and WIFI module.
Background technology
Internet of Things is the technological revolution again after the Internet.Internet of Things passes on the plurality of advantages of the Internet, equally also carries many drawbacks of the Internet.Such as fail safe is exactly one of them permanent problem.Product safety is internet industry, one of problem paid close attention to the most.Increasingly burning hot intelligent artifact, is faced with an identical difficult problem equally.The intelligent artifact of Internet of Things industry still belongs to the starting stage, and its fail safe manifests gradually.
Smart machine application is increasingly universal, says from technical standpoint, if the User Agreement that had people to grasp, by camouflage MAC, just can carry out malicious attack to server, and the equipment corresponding to MAC impacts.This is for product safety, is a fatal problem.
Although Internet of Things smart machine is burning hot gradually, still not upper amount, the camouflage MAC for Internet of Things smart machine attacks still not obvious, and corresponding anti-camouflage is also short of to some extent.
Summary of the invention
The technical problem to be solved in the present invention is to provide a kind of MAC authentication method of WIFI module, authenticate device, MAC encryption method and WIFI module, in order to solve the problem that prior art can be attacked server by camouflage MAC.
For solving the problems of the technologies described above, on the one hand, the invention provides a kind of MAC authentication method of WIFI module, said method comprising the steps of:
Receive the plaintext M AC of WIFI module transmission and the MAC information after encrypting;
MAC information after described encryption is decrypted;
MAC after deciphering and described plaintext M AC is contrasted, if the two is identical, then by certification, provides service to described WIFI module.
Further, before the MAC information after the plaintext M AC and encryption of described reception WIFI module transmission, also comprise and obtain the MAC of described WIFI module and the corresponding relation of key from the manufacturer of described WIFI module, and be saved in database.
Further, described the process that is decrypted of MAC information after encryption to be comprised:
From described database, counterpart keys is searched according to described plaintext M AC;
According to described key, call static library and the MAC information after described encryption is decrypted.
Further, the MAC of WIFI module that the MAC of WIFI module in described database and the manufacturer of the corresponding relation of key and described WIFI module provide and the corresponding relation automatic synchronization of key.
Further, if the MAC after deciphering is different from described plaintext M AC, then refuse to provide service to described WIFI module.
On the other hand, the present invention also provides a kind of MAC encryption method of WIFI module, said method comprising the steps of:
According to the preset key corresponding with MAC, by the application programming interfaces reading MAC and encryption and decryption, MAC is encrypted.
Further, the described preset key corresponding with MAC is for before described WIFI module is dispatched from the factory, preset with the form of static library by the manufacturer of described WIFI module.
Further, the application programming interfaces of described reading MAC and encryption and decryption, for before described WIFI module is dispatched from the factory, are provided by the manufacturer of described WIFI module.
Further, describedly to the process that MAC is encrypted be: call the MAC of described static library to described WIFI module by described application programming interfaces and be encrypted.
On the other hand, the present invention also provides a kind of MAC authenticate device of WIFI module, and described device comprises:
Information receiving unit, for receiving the plaintext M AC of WIFI module transmission and the MAC information after encrypting;
Decryption unit, is connected with described information receiving unit, for being decrypted the MAC information after described encryption;
Comparing unit, is connected with described information receiving unit and decryption unit respectively, for contrasting the MAC after deciphering and described plaintext M AC, if the two is identical, then by certification, provides service to described WIFI module.
Further, described device also comprises corresponding relation acquiring unit, is connected with described decryption unit, for obtaining the MAC of described WIFI module and the corresponding relation of key from the manufacturer of described WIFI module, and is saved in database.
On the other hand, the present invention also provides a kind of WIFI module, and described WIFI module comprises:
Key storing unit, for storing the preset key corresponding with MAC;
Application program interface unit, for reading MAC and encryption and decryption.
Further, the described preset key corresponding with MAC is for before described WIFI module is dispatched from the factory, preset with the form of static library by the manufacturer of described WIFI module.
Further, described application programming interfaces, for before described WIFI module is dispatched from the factory, are provided by the manufacturer of described WIFI module.
Beneficial effect of the present invention is as follows:
The present invention is applied in Internet of Things smart machine, and cost is low, easily realize, and can avoid the attack pretending MAC efficiently, provide safer family product to user.
Accompanying drawing explanation
Fig. 1 is the flow chart of the MAC authentication method of a kind of WIFI module in the embodiment of the present invention;
Fig. 2 is the flow chart of the MAC encryption method of a kind of WIFI module in the embodiment of the present invention;
Fig. 3 is a kind of flow chart solving the method for smart machine camouflage MAC in the embodiment of the present invention.
Embodiment
In order to solve the problem that prior art can be attacked server by camouflage MAC, the invention provides a kind of MAC authentication method of WIFI module, authenticate device, MAC encryption method and WIFI module, below in conjunction with accompanying drawing and five embodiments, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, do not limit the present invention.
Embodiment one
The flow process of the MAC authentication method of a kind of WIFI module of the embodiment of the present invention as shown in Figure 1, comprises the following steps:
Step s101, obtains the MAC of WIFI module and the corresponding relation of key from the manufacturer of WIFI module, and is saved in database.In the present embodiment, the MAC of the WIFI module that the manufacturer of the MAC of the WIFI module in described database and the corresponding relation of key and described WIFI module provides and the corresponding relation of key also can automatic synchronizations.
Step s102, receives the plaintext M AC of WIFI module transmission and the MAC information after encrypting.
Step s103, searches counterpart keys according to plaintext M AC from database.
Step s104, according to key, calls static library and is decrypted the MAC information after encryption.
Step s105, contrasts the MAC after deciphering and plaintext M AC, if the two is identical, then goes to step s106; Otherwise go to step s107.
Step s106, by certification, provides service to WIFI module.
Step s107, refuses to provide service to WIFI module.
Embodiment two
As shown in Figure 2, according to the preset key corresponding with MAC, be encrypted MAC by the application programming interfaces reading MAC and encryption and decryption, its detailed process comprises the following steps the flow process of the MAC encryption method of a kind of WIFI module of the embodiment of the present invention:
Step s201, before WIFI module is dispatched from the factory, by the manufacturer of WIFI module with the preset key corresponding with MAC of the form of static library.
Step s202, before WIFI module is dispatched from the factory, is provided the application programming interfaces reading MAC and encryption and decryption by the manufacturer of WIFI module.
Step s203, calls the MAC of described static library to described WIFI module by described application programming interfaces and is encrypted.
Embodiment three
The MAC authenticate device of a kind of WIFI module of the embodiment of the present invention, comprises information receiving unit, decryption unit, comparing unit and corresponding relation acquiring unit; Wherein said decryption unit is connected with described information receiving unit and corresponding relation acquiring unit respectively, and described comparing unit is connected with described information receiving unit and decryption unit respectively.
Described information receiving unit is for receiving the plaintext M AC of WIFI module transmission and the MAC information after encrypting; Described decryption unit is used for being decrypted the MAC information after described encryption; Described comparing unit is used for the MAC after to deciphering and described plaintext M AC and contrasts, if the two is identical, then by certification, provides service, if the two is different, then refuse to provide service to described WIFI module to described WIFI module; Described corresponding relation acquiring unit is used for obtaining the MAC of described WIFI module and the corresponding relation of key from the manufacturer of described WIFI module, and is saved in database.
Embodiment four
A kind of WIFI module of the embodiment of the present invention, comprises key storing unit and application program interface unit.Described key storing unit is for storing the preset key corresponding with MAC; The described preset key corresponding with MAC is for before described WIFI module is dispatched from the factory, preset with the form of static library by the manufacturer of described WIFI module.Described application program interface unit is for reading MAC and encryption and decryption; Described application programming interfaces, for before described WIFI module is dispatched from the factory, are provided by the manufacturer of described WIFI module.
Embodiment five
A kind of smart machine that solves of the embodiment of the present invention pretends the flow process of the method for MAC as shown in Figure 3, and the present embodiment needs manufacturer and equipment vendors' cooperative achievement of WIFI module, and detailed process is as follows:
Before WIFI module is dispatched from the factory, the preset encrypting and decrypting static library of Module manufacturers, and reading MAC and encryption and decryption application programming interfaces are provided, encryption method only has the manufacturer of WIFI module to grasp.
Equipment vendors buying WIFI module after, the manufacturer of WIFI module is supplied to equipment vendors the corresponding relation of MAC and key, and concrete form is not limit, as long as facilitate typing, can automatic synchronization better.Equipment vendors are kept at server database MAC and key corresponding relation.
Equipment vendors carry out secondary development based on WIFI module, call encrypt static storehouse and are encrypted MAC.Then server is issued by respective specified in the lump plaintext M AC with by the MAC after cryptographic algorithm and secret key encryption.
First server obtains key according to plaintext M AC from database, is then decrypted ciphertext MAC after receiving the MAC after plaintext M AC and encryption, and finally comparing to the MAC after deciphering and plaintext M AC verifies.If the two is identical, then think legal MAC, otherwise refusal provides follow-up service.
The present embodiment is when WIFI module is dispatched from the factory, and with the preset encryption and decryption storehouse of the form of static library, independent of the enciphering and deciphering algorithm that routinizes, and encrypting and decrypting method is present in WIFI module and server two ends, and device server prestores the unique corresponding relation of MAC and key.
The present invention is applied in Internet of Things smart machine, and cost is low, easily realize, and can avoid the attack pretending MAC efficiently, provide safer family product to user.
Although be example object, disclose the preferred embodiments of the present invention, it is also possible for those skilled in the art will recognize various improvement, increase and replacement, and therefore, scope of the present invention should be not limited to above-described embodiment.
Claims (14)
1. a MAC authentication method for WIFI module, is characterized in that, said method comprising the steps of:
Receive the plaintext M AC of WIFI module transmission and the MAC information after encrypting;
MAC information after described encryption is decrypted;
MAC after deciphering and described plaintext M AC is contrasted, if the two is identical, then by certification, provides service to described WIFI module.
2. the MAC authentication method of WIFI module as claimed in claim 1, it is characterized in that, before the MAC information after the plaintext M AC and encryption of described reception WIFI module transmission, also comprise and obtain the MAC of described WIFI module and the corresponding relation of key from the manufacturer of described WIFI module, and be saved in database.
3. the MAC authentication method of WIFI module as claimed in claim 2, is characterized in that, describedly comprises the process that the MAC after encryption is decrypted:
From described database, counterpart keys is searched according to described plaintext M AC;
According to described key, call static library and the MAC information after described encryption is decrypted.
4. the MAC authentication method of WIFI module as claimed in claim 2, it is characterized in that, the MAC of the WIFI module in described database and the corresponding relation of key, the MAC of the WIFI module provided with the manufacturer of described WIFI module and the corresponding relation automatic synchronization of key.
5. the MAC authentication method of the WIFI module as described in any one of Claims 1-4, is characterized in that, if the MAC after deciphering is different from described plaintext M AC, then refuses to provide service to described WIFI module.
6. a MAC encryption method for WIFI module, is characterized in that, said method comprising the steps of:
According to the preset key corresponding with MAC, by reading the application programming interfaces of MAC and encryption and decryption, MAC is encrypted.
7. the MAC encryption method of WIFI module as claimed in claim 6, is characterized in that, the described preset key corresponding with MAC is for before described WIFI module is dispatched from the factory, preset with the form of static library by the manufacturer of described WIFI module.
8. the MAC encryption method of WIFI module as claimed in claim 7, is characterized in that, the application programming interfaces of described reading MAC and encryption and decryption, for before described WIFI module is dispatched from the factory, are provided by the manufacturer of described WIFI module.
9. the MAC encryption method of WIFI module as claimed in claim 8, is characterized in that, describedly to the process that MAC is encrypted is: call the MAC of described static library to described WIFI module by described application programming interfaces and be encrypted.
10. a MAC authenticate device for WIFI module, is characterized in that, described device comprises:
Information receiving unit, for receiving the plaintext M AC of WIFI module transmission and the MAC information after encrypting;
Decryption unit, is connected with described information receiving unit, for being decrypted the MAC information after described encryption;
Comparing unit, is connected with described information receiving unit and decryption unit respectively, for contrasting the MAC after deciphering and described plaintext M AC, if the two is identical, then by certification, provides service to described WIFI module.
The MAC authenticate device of 11. WIFI module as claimed in claim 10, it is characterized in that, described device also comprises corresponding relation acquiring unit, be connected with described decryption unit, for obtaining the MAC of described WIFI module and the corresponding relation of key from the manufacturer of described WIFI module, and be saved in database.
12. 1 kinds of WIFI module, is characterized in that, described WIFI module comprises:
Key storing unit, for storing the preset key corresponding with MAC;
Application program interface unit, for reading MAC and encryption and decryption.
13. WIFI module as claimed in claim 12, is characterized in that, the described preset key corresponding with MAC is for before described WIFI module is dispatched from the factory, preset with the form of static library by the manufacturer of described WIFI module.
14. WIFI module as claimed in claim 13, is characterized in that, described application programming interfaces, for before described WIFI module is dispatched from the factory, are provided by the manufacturer of described WIFI module.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510855342.6A CN105429985A (en) | 2015-11-30 | 2015-11-30 | MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510855342.6A CN105429985A (en) | 2015-11-30 | 2015-11-30 | MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105429985A true CN105429985A (en) | 2016-03-23 |
Family
ID=55507927
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510855342.6A Pending CN105429985A (en) | 2015-11-30 | 2015-11-30 | MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105429985A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105743923A (en) * | 2016-04-19 | 2016-07-06 | 石狮睿纺纺织品贸易有限公司 | Method for verifying whether shoes are quality products or not by utilizing mobile phone |
| CN106372466A (en) * | 2016-10-28 | 2017-02-01 | 美的智慧家居科技有限公司 | License burning and processing method and device of WIFI module |
| CN106446620A (en) * | 2016-10-28 | 2017-02-22 | 美的智慧家居科技有限公司 | Permission setting and processing method and device of WIFI module |
| CN106534103A (en) * | 2016-10-28 | 2017-03-22 | 美的智慧家居科技有限公司 | WIFI device control method and device |
| CN106850211A (en) * | 2017-03-06 | 2017-06-13 | 深圳市同为数码科技股份有限公司 | A kind of encryption method and system based on MAC Address |
| CN107070944A (en) * | 2017-05-09 | 2017-08-18 | 四川长虹电器股份有限公司 | A kind of safety storage of MAC Address and read method |
| US10044714B1 (en) | 2017-05-12 | 2018-08-07 | International Business Machines Corporation | Device authentication with mac address and time period |
| CN112668278A (en) * | 2020-12-23 | 2021-04-16 | 上海磐启微电子有限公司 | Environment verification system and method |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7853799B1 (en) * | 2004-06-24 | 2010-12-14 | Xilinx, Inc. | Microcontroller-configurable programmable device with downloadable decryption |
| CN102036236A (en) * | 2010-10-29 | 2011-04-27 | 深圳市爱贝信息技术有限公司 | Method and device for authenticating mobile terminal |
| CN102137074A (en) * | 2010-01-22 | 2011-07-27 | 杭州华三通信技术有限公司 | Method and device for authenticating terminal as well as EOC (Ethernet over Coax) terminal |
-
2015
- 2015-11-30 CN CN201510855342.6A patent/CN105429985A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7853799B1 (en) * | 2004-06-24 | 2010-12-14 | Xilinx, Inc. | Microcontroller-configurable programmable device with downloadable decryption |
| CN102137074A (en) * | 2010-01-22 | 2011-07-27 | 杭州华三通信技术有限公司 | Method and device for authenticating terminal as well as EOC (Ethernet over Coax) terminal |
| CN102036236A (en) * | 2010-10-29 | 2011-04-27 | 深圳市爱贝信息技术有限公司 | Method and device for authenticating mobile terminal |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105743923A (en) * | 2016-04-19 | 2016-07-06 | 石狮睿纺纺织品贸易有限公司 | Method for verifying whether shoes are quality products or not by utilizing mobile phone |
| CN106372466A (en) * | 2016-10-28 | 2017-02-01 | 美的智慧家居科技有限公司 | License burning and processing method and device of WIFI module |
| CN106446620A (en) * | 2016-10-28 | 2017-02-22 | 美的智慧家居科技有限公司 | Permission setting and processing method and device of WIFI module |
| CN106534103A (en) * | 2016-10-28 | 2017-03-22 | 美的智慧家居科技有限公司 | WIFI device control method and device |
| CN106446620B (en) * | 2016-10-28 | 2020-11-24 | 美的智慧家居科技有限公司 | Permission setting and processing method and device of WIFI module |
| CN106534103B (en) * | 2016-10-28 | 2020-04-03 | 美的智慧家居科技有限公司 | Control method and device of WIFI equipment |
| CN106372466B (en) * | 2016-10-28 | 2019-08-30 | 美的智慧家居科技有限公司 | The licensing burning of WIFI module, processing method and processing device |
| CN106850211A (en) * | 2017-03-06 | 2017-06-13 | 深圳市同为数码科技股份有限公司 | A kind of encryption method and system based on MAC Address |
| CN106850211B (en) * | 2017-03-06 | 2020-03-27 | 深圳市同为数码科技股份有限公司 | Encryption method and system based on MAC address |
| CN107070944B (en) * | 2017-05-09 | 2019-12-24 | 四川长虹电器股份有限公司 | Safe storage and reading method of MAC address |
| CN107070944A (en) * | 2017-05-09 | 2017-08-18 | 四川长虹电器股份有限公司 | A kind of safety storage of MAC Address and read method |
| US10129255B1 (en) | 2017-05-12 | 2018-11-13 | International Business Machines Corporation | Device authentication with MAC address and time period |
| US10044714B1 (en) | 2017-05-12 | 2018-08-07 | International Business Machines Corporation | Device authentication with mac address and time period |
| CN112668278A (en) * | 2020-12-23 | 2021-04-16 | 上海磐启微电子有限公司 | Environment verification system and method |
| CN112668278B (en) * | 2020-12-23 | 2024-05-31 | 上海磐启微电子有限公司 | Environment verification system and method |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105429985A (en) | MAC (Media Access Control) authentication method, authentication device and MAC encryption method for WIFI (Wireless Fidelity) module and WIFI module | |
| US9473932B2 (en) | Local trusted service manager | |
| CN107358441B (en) | Payment verification method and system, mobile device and security authentication device | |
| CN108513704B (en) | Remote distribution method and system of terminal master key | |
| CN104094267B (en) | Method, apparatus and system for secure sharing of media content from a source device | |
| EP4164175B1 (en) | Method for securely controlling smart home appliance and terminal device | |
| CN106797314B (en) | Cryptographic system, network device, sharing method, and computer-readable storage medium | |
| CN1960363B (en) | Method and equipment for implementing remote updating information security devices through network | |
| CN110192381B (en) | Key transmission method and device | |
| KR102325725B1 (en) | Digital certificate management method and device | |
| CN101772024B (en) | User identification method, device and system | |
| CN105871920A (en) | Communication system and method of terminal and cloud server as well as terminal and cloud server | |
| KR20190099066A (en) | Digital certificate management method and device | |
| CN105656941A (en) | Identity authentication device and method | |
| CN108762791A (en) | Firmware upgrade method and device | |
| CN1708942A (en) | Secure implementation and utilization of device-specific security data | |
| JP2008507205A (en) | How to transfer a certification private key directly to a device using an online service | |
| CN101771699A (en) | Method and system for improving SaaS application security | |
| CN106778285B (en) | Method and device for upgrading equipment | |
| CN110062382A (en) | A kind of auth method, client, trunking and server | |
| CN104244245A (en) | Wireless access authentication method, wireless router device and wireless terminal | |
| CN109194701B (en) | Data processing method and device | |
| CN110740448A (en) | Shared household appliance lease authorization control method and device | |
| CN107155184A (en) | A kind of WIFI module and its communication means with security encryption chip | |
| CN112601218B (en) | Wireless network configuration method and device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20160323 |