CN106101097A

CN106101097A - Home appliance and with the communication system of Cloud Server and method, Cloud Server

Info

Publication number: CN106101097A
Application number: CN201610407088.8A
Authority: CN
Inventors: 刘复鑫
Original assignee: Midea Group Co Ltd
Current assignee: Midea Group Co Ltd
Priority date: 2016-06-08
Filing date: 2016-06-08
Publication date: 2016-11-09

Abstract

The invention discloses a kind of home appliance and with the communication system of Cloud Server and method, Cloud Server, the method includes: home appliance obtains in authorization module by the first ciphertext of Cloud Server public key encryption gained, and is sent to Cloud Server；Cloud server the first ciphertext, uses Cloud Server private key to decipher the first ciphertext, and uses home appliance PKI to be encrypted the first ciphertext after deciphering, obtain the second ciphertext, the second ciphertext is sent to home appliance；Home appliance receives the second ciphertext, confirms that Cloud Server is legal Cloud Server according to the second ciphertext, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the confirmation message after encryption is sent to Cloud Server；Cloud server confirms message, when according to when confirming that message authentication home appliance is legal home appliance, sets up the connection between home appliance.The present invention improves the safety of the communication information between home appliance and Cloud Server and the speed of authentication thereof.

Description

Home appliance and with the communication system of Cloud Server and method, Cloud Server

Technical field

The present invention relates to Smart Home technical field, particularly relate to a kind of home appliance and the communication system with Cloud Server thereof System and method, Cloud Server.

Background technology

Quantity and the growth of category along with intelligent appliance equipment so that connection and collaborative the becoming of equipment room compel to be essential , the framework of wisdom life to connecting and the advance of collaborative direction, occurs in that Smart Home therewith.Smart Home refer to House is platform, utilizes comprehensive wiring technology, the network communications technology, security precautions technology, automatic control technology, audio frequency and video technology By integrated for facility relevant for life staying idle at home, build the management system of efficient housing facilities and family's schedule affairs, promote household Safety, convenience, comfortableness, artistry, and realize the living environment of environmental protection and energy saving.

In the system of home appliance-terminal-Cloud Server, the information between home appliance and Cloud Server is mutual, It is essentially all after establishing a connection, directly carries out the communication of information, do not consider home appliance and Cloud Server Between, the problem of information communication safety, but, if directly carrying out information communication between household electrical appliances and Cloud Server, and do not have Carry out bidirectional identity authentication, be easily caused the leakage of the communication information, thus reduce the safety of information communication.

Summary of the invention

Present invention is primarily targeted at provide a kind of home appliance and with the communication system of Cloud Server and method, cloud Server, it is intended to solve the safety of the communication information between existing home appliance and Cloud Server can not get ensure technology ask Topic.

For achieving the above object, a kind of communication system that the present invention provides, described communication system includes home appliance and cloud Server；

Described home appliance, is pre-stored within authorization module by the first of Cloud Server public key encryption gained for obtaining Ciphertext, is sent to Cloud Server by described first ciphertext；

Described Cloud Server, is used for receiving described first ciphertext, uses Cloud Server private key to decipher described first ciphertext, and Use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, described second ciphertext is sent to Described home appliance；

Described home appliance is additionally operable to receive described second ciphertext, confirms that described Cloud Server is according to described second ciphertext Legal Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation after encryption is disappeared Breath is sent to described Cloud Server；

Described Cloud Server is additionally operable to receive described confirmation message, when according to home appliance described in described confirmation message authentication During for legal home appliance, set up the connection between described home appliance.

Preferably, described Cloud Server is additionally operable to receive described first ciphertext, uses Cloud Server private key to described first Ciphertext is decrypted, and obtains the first random number in described first ciphertext；Generate the second random number, by described second random number and institute State the first random number to splice, and use home appliance PKI to spliced described second random number and described first random Number is encrypted, and obtains the second ciphertext, and described second ciphertext is sent to described home appliance.

Preferably, described home appliance is additionally operable to receive described second ciphertext, uses home appliance private key to described second Ciphertext is decrypted, and extracts the first random number in described second ciphertext and the second random number；If carrying from described second ciphertext The first random number in the first random number taken and the first ciphertext is identical, then confirm that described Cloud Server is legal Cloud Server； The confirmation message generated is carried out by described first random number and described second random number as key, employing predetermined encryption algorithm Encryption, and the described confirmation message after encryption is sent to described Cloud Server.

Preferably, described Cloud Server is additionally operable to receive described confirmation message, deciphers described confirmation message, extract described really Recognize the second random number in message；If the second random number and the described Cloud Server that extract from described confirmation message generate the Two randoms number are identical, then confirm that described home appliance is legal home appliance, set up the connection between described home appliance.

Preferably, described home appliance is additionally operable to when in the idle state, generate the 3rd random number, by the described 3rd with Machine number splices with the MAC address prestored, and uses described Cloud Server public key encryption spliced described 3rd random number and the MAC Address prestored, obtain the first new ciphertext.

Additionally, for achieving the above object, the present invention also provides for a kind of home appliance, and described home appliance includes:

Acquisition module, is pre-stored within authorization module by Cloud Server public key encryption gained first for acquisition close Literary composition, is sent to described Cloud Server by described first ciphertext, for the first ciphertext described in described cloud server, uses cloud clothes Business device private key deciphers described first ciphertext, and uses home appliance PKI to be encrypted the first ciphertext after deciphering, obtains the Two ciphertexts, are sent to described home appliance by described second ciphertext；

First receiver module, is used for receiving described second ciphertext, confirms that described Cloud Server is according to described second ciphertext Legal Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation after encryption is disappeared Breath is sent to described Cloud Server, for confirming message described in described cloud server, when according to described confirmation message authentication When described home appliance is legal home appliance, set up the connection between described home appliance.

Preferably, described first receiver module includes:

First receives unit, is used for receiving described second ciphertext；

First decryption unit, is used for using home appliance private key to be decrypted described second ciphertext, extracts described second The first random number in ciphertext and the second random number；

Confirmation unit, if first in the first random number extracted from described second ciphertext and the first ciphertext is random Number is identical, then confirm that described Cloud Server is legal Cloud Server；

Ciphering unit, for calculating described first random number and described second random number as key, employing predetermined encryption The confirmation message generated is encrypted by method, and the described confirmation message after encryption is sent to described Cloud Server, for institute Stating Cloud Server according to home appliance described in described confirmation message authentication is legal home appliance, sets up and described home appliance Between connection.

Preferably, described home appliance also includes generation module, for when in the idle state, generates the 3rd random Number, splices described 3rd random number with the MAC address prestored, uses described Cloud Server PKI to add Close spliced described 3rd random number and the MAC Address prestored, obtain the first new ciphertext.

Additionally, for achieving the above object, the present invention also provides for a kind of Cloud Server, and described Cloud Server includes:

Second receiver module, for receiving the second ciphertext that home appliance sends, uses the deciphering of Cloud Server private key described First ciphertext, and use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, by described second Ciphertext is sent to described home appliance, receives described second ciphertext for described home appliance, confirms according to described second ciphertext Described Cloud Server is legal Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and will encryption After described confirmation message be sent to described Cloud Server；

Set up link block, be used for receiving described confirmation message, when according to home appliance described in described confirmation message authentication During for legal home appliance, set up the connection between described home appliance.

Preferably, described second receiver module includes:

Second receives unit, for receiving the second ciphertext that home appliance sends, uses Cloud Server private key to described the One ciphertext is decrypted, and obtains the first random number in described first ciphertext；

Random number generation unit, for generating the second random number, enters described second random number and described first random number Row splicing, and use home appliance PKI that spliced described second random number and described first random number are encrypted, To the second ciphertext, and described second ciphertext is sent to described home appliance, receives for described home appliance described second close According to described second ciphertext, literary composition, confirms that described Cloud Server is legal Cloud Server, use predetermined encryption algorithm to generating really Recognize message to be encrypted, and the described confirmation message after encryption is sent to described Cloud Server.

Preferably, described link block of setting up includes:

Second decryption unit, is used for receiving described confirmation message, deciphers described confirmation message, extract in described confirmation message The second random number；

Set up and connect unit, if the second random number for extracting from described confirmation message generates with described Cloud Server The second random number identical, then confirm that described home appliance is legal home appliance, set up and described home appliance between Connect.

Additionally, for achieving the above object, the present invention also provides for the means of communication of a kind of home appliance and Cloud Server, described Home appliance includes with the means of communication of Cloud Server:

Described home appliance obtains and is pre-stored within authorization module by the first ciphertext of Cloud Server public key encryption gained, Described first ciphertext is sent to described Cloud Server；

First ciphertext described in described cloud server, uses Cloud Server private key to decipher described first ciphertext, and uses The first ciphertext after deciphering is encrypted by home appliance PKI, obtains the second ciphertext, described second ciphertext is sent to described Home appliance；

Described home appliance receives described second ciphertext, confirms that described Cloud Server is legal cloud according to described second ciphertext Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation message after encryption is sent To described Cloud Server；

Message is confirmed, when being legal according to home appliance described in described confirmation message authentication described in described cloud server Home appliance time, set up and described home appliance between connection.

Preferably, the first ciphertext described in described cloud server, use Cloud Server private key to decipher described first ciphertext, And use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, described second ciphertext is sent Include to the step of described home appliance:

First ciphertext described in described cloud server, uses Cloud Server private key to be decrypted described first ciphertext, Obtain the first random number in described first ciphertext；

Described Cloud Server generates the second random number, described second random number and described first random number is spliced, And use home appliance PKI that spliced described second random number and described first random number are encrypted, obtain second close Literary composition, and described second ciphertext is sent to described home appliance.

Preferably, described home appliance receives described second ciphertext, confirms described Cloud Server according to described second ciphertext For legal Cloud Server, use predetermined encryption algorithm that the confirmation message generated is encrypted, and by the described confirmation after encryption Message is sent to the step of described Cloud Server and includes:

Described home appliance receives described second ciphertext, uses home appliance private key to be decrypted described second ciphertext, Extract the first random number in described second ciphertext and the second random number；

If the first random number in the first random number extracted from described second ciphertext and the first ciphertext is identical, described family Electricity equipment then confirms that described Cloud Server is legal Cloud Server；

Described first random number and described second random number as key, are used predetermined encryption algorithm by described home appliance The confirmation message generated is encrypted, and the described confirmation message after encryption is sent to described Cloud Server.

Preferably, message is confirmed described in described cloud server, when described Cloud Server is true according to described confirmation message Recognizing described home appliance when being legal home appliance, the step setting up the connection between described home appliance includes:

Confirm message described in described cloud server, decipher described confirmation message, extract the in described confirmation message Two randoms number；

If the second random number extracted from described confirmation message is identical with the second random number that described Cloud Server generates, Described Cloud Server then confirms that described home appliance is legal home appliance, sets up the connection between described home appliance.

Preferably, described home appliance also includes with the means of communication of Cloud Server:

When described home appliance is in idle condition, described home appliance generate the 3rd random number, by the described 3rd with Machine number splices with the MAC address prestored, and uses described Cloud Server public key encryption spliced described 3rd random number and the MAC Address prestored, obtain the first new ciphertext.

The present invention proposes a kind of home appliance and the communication system of Cloud Server and method, Cloud Server, and described household electrical appliances set Standby with the means of communication of Cloud Server particularly as follows: described home appliance obtain be pre-stored within authorization module by Cloud Server public First ciphertext of key encryption gained, is sent to described Cloud Server by described first ciphertext；Described in described cloud server One ciphertext, uses Cloud Server private key to decipher described first ciphertext, and uses home appliance PKI to the first ciphertext after deciphering It is encrypted, obtains the second ciphertext, described second ciphertext is sent to described home appliance；Described home appliance receives described the According to described second ciphertext, two ciphertexts, confirm that described Cloud Server is legal Cloud Server, use predetermined encryption algorithm to generation Confirmation message be encrypted, and will encryption after described confirmation message be sent to described Cloud Server；Described Cloud Server connects Receive described confirmation message, when being legal home appliance according to home appliance described in described confirmation message authentication, set up and institute State the connection between home appliance.After carrying out mutual authentication at Cloud Server and home appliance two ends, household electrical appliances Equipment is set up with Cloud Server and is connected, and improves the safety of the communication information between home appliance and Cloud Server, and, household electrical appliances After device power-up, can directly obtain the first ciphertext in authorization module, it is not necessary to oneself generate random number after powering, so Rear regeneration the first ciphertext, improves the speed of authentication between home appliance and Cloud Server.

Accompanying drawing explanation

Fig. 1 is the preferably enforcement scene schematic diagram of communication system of the present invention；

Fig. 2 is the high-level schematic functional block diagram of home appliance preferred embodiment of the present invention；

Fig. 3 is the high-level schematic functional block diagram of Cloud Server preferred embodiment of the present invention；

Fig. 4 is the schematic flow sheet of home appliance of the present invention and the means of communication preferred embodiment of Cloud Server.

The realization of the object of the invention, functional characteristics and advantage will in conjunction with the embodiments, are described further referring to the drawings.

Detailed description of the invention

Should be appreciated that specific embodiment described herein, only in order to explain the present invention, is not intended to limit the present invention.

The present invention provides a kind of communication system.

With reference to the preferably enforcement scene schematic diagram that Fig. 1, Fig. 1 are communication system of the present invention.

The communication of described home appliance 10 and Cloud Server 20 is preferably applied to the home appliance 10 of Internet of Things and controls scene In, wherein, described home appliance 10 includes home appliance 10, Cloud Server 20 and terminal with the communication system of Cloud Server 20 30, described terminal 30 can be mobile phone, PAD (Portable Android Device, panel computer) or remote controller etc., and Described home appliance 10 includes various home appliance, such as air-conditioning, refrigerator or audio amplifier etc..Specifically, described home appliance 10 is first Setting up communication connecting link with described Cloud Server 20, after setting up communication connecting link, described home appliance 10 passes through cloud Server 20 interacts with described terminal 30, and concrete interactive mode is: described home appliance 10 receives described terminal 30 and leads to Cross the control instruction that described Cloud Server 20 sends, to perform corresponding operation, when as described in home appliance 10 be air-conditioning time, root Open heating mode according to described control instruction, or regulation heats temperature etc..

In the present embodiment, described home appliance 10, it is pre-stored within authorization module by Cloud Server public for acquisition First ciphertext of key encryption gained, is sent to Cloud Server 20 by described first ciphertext；

In described home appliance 10, storage has home appliance PKI and home appliance private key, described home appliance PKI and family Electricity device private exists in authorization module license, by license by PCI (Payment Card Industry, Payment Card Industry) encrypted card generation.In described Cloud Server 20, also storage has Cloud Server PKI and Cloud Server private key, described cloud service Cloud Server PKI and Cloud Server private key in device 20 are also generated by described PCI encrypted card.Described home appliance 10 is by described Home appliance PKI is sent to described Cloud Server 20, when described Cloud Server 20 receives described home appliance PKI, and will Described home appliance PKI is solidificated in SDK (software development kit, SDK).Described cloud takes Described Cloud Server PKI is sent to described home appliance 10, when described home appliance 10 receives described cloud service by business device 20 During device PKI, described Cloud Server PKI is solidificated in described SDK.In described license, also storage has by described cloud service First ciphertext of device public key encryption gained, described first ciphertext is the MAC (Media of the first random number and described home appliance 10 Access Control, media interviews control) address splicing after, by described Cloud Server public key encryption gained.

In the present embodiment, described MAC Address is 6 bytes, and described first random number is 16 bytes, but described first The byte length of random number and MAC Address is not restricted to above-mentioned described byte length, can arrange according to specific needs Byte length for other.

It should be noted that described above splices described MAC Address with described first random number, it is also possible to for Described MAC Address and described first random number are carried out XOR, or selects in the middle part of described MAC Address and described first random number Byte number is divided to splice.

Described home appliance 10 after the power-up, obtains the first ciphertext being pre-stored within described license, and by described First ciphertext is sent to described Cloud Server 20.

Described Cloud Server 20, is used for receiving described first ciphertext, uses Cloud Server private key to decipher described first ciphertext, And use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, described second ciphertext is sent To described home appliance 10；

Described Cloud Server 20 receive described home appliance 10 send the first ciphertext, by with described Cloud Server PKI Described first ciphertext is decrypted by corresponding Cloud Server private key, the first ciphertext after being deciphered.Described Cloud Server 20 Based on the first ciphertext after deciphering, use the home appliance PKI in described SDK that the first ciphertext after described deciphering is added again Close, obtain the second ciphertext, and described second ciphertext is sent to described home appliance 10.

If described Cloud Server 20 is failed by described Cloud Server private key and deciphers described first ciphertext, described cloud takes Business device 20 confirms that described home appliance 10 is illegal home appliance, and described Cloud Server 20 is not set up with described home appliance 10 Connect, prevent described illegal home appliance from attacking described Cloud Server 20, or illegally obtain number from described Cloud Server 20 According to etc..

Further, described Cloud Server 20 is additionally operable to receive described first ciphertext, uses Cloud Server private key to described First ciphertext is decrypted, and obtains the first random number in described first ciphertext；Generate the second random number, by described second random number Splice with described first random number, and use home appliance PKI to spliced described second random number and described first Random number is encrypted, and obtains the second ciphertext, and described second ciphertext is sent to described home appliance 10.

Described Cloud Server 20 receives described first ciphertext that described home appliance 10 sends, and uses and described Cloud Server Described first ciphertext after the Cloud Server private key deciphering encryption that PKI is corresponding, carries described first ciphertext after described deciphering Take the first random number.When described Cloud Server 20 extracts the first random number in described first ciphertext, described Cloud Server 20 generate the second random number.Described first random number and its second random number generated are spelled by described Cloud Server 20 Connect, and use the home appliance PKI in described SDK that spliced first random number and the second random number are encrypted, will The first random number after encryption and the second random number are as the second ciphertext, and described second ciphertext is sent to home appliance 10.

In the present embodiment, the byte length of described second random number is 16 bytes, but the word of described second random number Joint length is not restricted to above-mentioned described byte length, can be set to other byte length according to specific needs.And And, described second random number is spliced with described first random number, it is also possible to for by described second random number and described the One random number carries out XOR, or selects described second random number to splice with part byte number in described first random number.

Described home appliance 10 is additionally operable to receive described second ciphertext, confirms described Cloud Server according to described second ciphertext 20 is legal Cloud Server, use predetermined encryption algorithm to generate confirmation message be encrypted, and will encryption after described really Recognize message and be sent to described Cloud Server 20；

Described home appliance 10 receives the second ciphertext that described Cloud Server 20 sends, and uses and described home appliance PKI Described second ciphertext is decrypted by corresponding home appliance private key, the second ciphertext after being deciphered.If after described deciphering Second ciphertext meets pre-conditioned, and described home appliance 10 then confirms that described Cloud Server 20 is legal Cloud Server, and raw Become to confirm message.Described home appliance 10 uses predetermined encryption algorithm to be encrypted the confirmation message generated, and will encryption After described confirmation message be sent to described Cloud Server 20.

Further, described home appliance 10 is additionally operable to receive described second ciphertext, uses home appliance private key to described Second ciphertext is decrypted, and extracts the first random number in described second ciphertext and the second random number；If from described second ciphertext The first random number in first random number of middle extraction and the first ciphertext is identical, then confirm that described Cloud Server 20 takes for legal cloud Business device；The confirmation generated is disappeared by described first random number and described second random number as key, employing predetermined encryption algorithm Breath is encrypted, and the described confirmation message after encryption is sent to described Cloud Server 20.

Described home appliance 10 receives the second ciphertext that described Cloud Server 20 sends, and uses and described home appliance PKI Corresponding home appliance private key deciphers described second ciphertext, extracts described first random number from described second ciphertext after deciphering With described second random number.If the first random number phase in the first random number extracted from described second ciphertext and the first ciphertext With, i.e. described second ciphertext after deciphering meets pre-conditioned, and described home appliance 10 then confirms that described Cloud Server 20 is for closing Method Cloud Server.If the first random number in the first random number extracted from described second ciphertext and the first ciphertext is different, i.e. Described second ciphertext after deciphering is unsatisfactory for described pre-conditioned, and described home appliance 10 then confirms that described Cloud Server 20 is for non- The Cloud Server of method.

When described home appliance 10 confirms that described Cloud Server 20 is legal Cloud Server, described home appliance 10 will Described first random number splices with described second random number, obtains the key of encryption.Described home appliance 10 generates and confirms Message, according to described key, uses predetermined encryption algorithm to be encrypted described confirmation message, the confirmation message after encryption is sent out Give described Cloud Server 20.

In the present embodiment, described default AES is AES (Advanced Encryption Standard, height Level encryption standard), concrete employing AES-256 algorithm.But described default AES is not restricted to AES-256 algorithm, Other existing AES can also be used, do not repeat them here.

Described Cloud Server 20 is additionally operable to receive described confirmation message, when setting according to household electrical appliances described in described confirmation message authentication When being legal home appliance for 10, set up the connection between described home appliance 10.

Described Cloud Server 20 receives the described confirmation message that described home appliance 10 sends, true according to described confirmation message Recognize whether described home appliance 10 is legal home appliance.When described Cloud Server 20 is according to described in described confirmation message authentication When home appliance 10 is legal home appliance, described Cloud Server 20 sets up the connection between described home appliance 10；When When described Cloud Server 20 is illegal home appliance according to home appliance 10 described in described confirmation message authentication, described cloud service Device 20 is not set up with described home appliance 10 and is connected.

Further, described Cloud Server 20 is additionally operable to receive described confirmation message, deciphers described confirmation message, extracts institute State the second random number confirmed in message；If the second random number extracted from described confirmation message is raw with described Cloud Server 20 The second random number become is identical, then confirm that described home appliance 10 is legal home appliance, sets up and described home appliance 10 Between connection.

After described confirmation message after described Cloud Server 20 receives the encryption that described home appliance 10 sends, described Cloud Server 20 use described second random number with described first random number splicing after gained secret key decryption described in confirm message, Extract the second random number in described confirmation message.If it is second random that described Cloud Server 20 extracts from described confirmation message The second random number that number generates with described Cloud Server 20 is identical, and described Cloud Server 20 then determines that described home appliance 10 becomes Merit deciphers described second ciphertext, obtains the first random number in described second ciphertext, and the most described Cloud Server 20 confirms described Home appliance 10 is legal home appliance, sets up the connection between described home appliance 10.When as described in confirmation message be During the character string of " OK ", if described Cloud Server 20 successfully obtains the character string of described " OK ", described Cloud Server 20 then confirms Described home appliance 10 is legal home appliance.Described confirmation message includes but not limited to the character string of " OK ", it is also possible to for " home appliance 10 is legal " etc..When described Cloud Server 20 and described home appliance 10 be confirmed each other the other side be all legal time, institute State and between Cloud Server 20 and described home appliance 10, set up communication connection.

If the second random number that described Cloud Server 20 extracts from described confirmation message generates with described Cloud Server 20 The second random number different, described Cloud Server 20 then confirms when described home appliance 10 is illegal home appliance, not with institute State home appliance 10 and set up connection.

After the present embodiment is by carrying out mutual authentication at Cloud Server 20 and home appliance 10 two ends, household electrical appliances set Standby 10 are connected with Cloud Server 20 foundation, and home appliance private key and Cloud Server private key, not in transmission over networks, improve household electrical appliances The safety of the communication information between equipment 10 and Cloud Server 20, and, after home appliance 10 start, can be at authorization module In directly obtain the first ciphertext, it is not necessary to oneself generating random number after powering, then regeneration the first ciphertext, improves household electrical appliances The speed of authentication between equipment 10 and Cloud Server 20.

Further, in order to improve the safety of described home appliance 10 and the communication of described Cloud Server 20, based on first Embodiment proposes the second embodiment of communication system of the present invention.

In the present embodiment, described home appliance 10 is additionally operable to when in the idle state, generates the 3rd random number, by institute State the 3rd random number to splice with the MAC address prestored, use described Cloud Server public key encryption to splice After described 3rd random number and the MAC Address prestored, obtain the first new ciphertext.

When described home appliance 10 is in idle condition, described home appliance 10 generates the 3rd random number, by described Three randoms number splice with the MAC Address prestored, and use described Cloud Server public key encryption spliced described 3rd random Number and the MAC Address prestored, obtain the first new ciphertext.

Described home appliance 10 is in real time or its CPU (Central Processing Unit, central authorities' process are detected in timing Device) running status time, when described home appliance 10 detect described CPU be in idle condition time, described home appliance 10 is raw Become the 3rd random number, and described 3rd random number is spliced with the MAC Address prestored, use described Cloud Server Spliced described 3rd random number of public key encryption and the described MAC Address prestored, obtain the first new ciphertext.

It should be noted that after described home appliance 10 powers on, carry out authentication with described Cloud Server 20 every time Cheng Zhong, the random number in described first ciphertext is all different, in order to improve described home appliance 10 and described Cloud Server The speed of authentication between 20, has prestored in described license and has organized random number more, such as 4 groups, or 8 groups etc., in case Only the CPU of described home appliance 10 is in busy state for a long time, causes described home appliance 10 to fail to upgrade in time described Random number in first ciphertext in license.

The present invention further provides a kind of home appliance 10.

With reference to the preferable high-level schematic functional block diagram that Fig. 2, Fig. 2 are home appliance 10 of the present invention.

In the present embodiment, described home appliance 10 includes:

Acquisition module 11, is pre-stored within authorization module by Cloud Server public key encryption gained first for acquisition close Literary composition, is sent to described Cloud Server 20 by described first ciphertext, receives described first ciphertext for described Cloud Server 20, uses Cloud Server private key deciphers described first ciphertext, and uses home appliance PKI to be encrypted the first ciphertext after deciphering, To the second ciphertext, described second ciphertext is sent to described home appliance 10；

After the power-up, acquisition module 11 acquisition in described home appliance 10 is pre-stored within described described home appliance 10 The first ciphertext in license, and described first ciphertext is sent to described Cloud Server 20, connect for described Cloud Server 20 Receive described first ciphertext, use Cloud Server private key to decipher described first ciphertext, and after using home appliance PKI to deciphering First ciphertext is encrypted, and obtains the second ciphertext, and described second ciphertext is sent to described home appliance 10.

First receiver module 12, is used for receiving described second ciphertext, confirms described Cloud Server according to described second ciphertext 20 is legal Cloud Server, use predetermined encryption algorithm to generate confirmation message be encrypted, and will encryption after described really Recognize message and be sent to described Cloud Server 20, receive described confirmation message for described Cloud Server 20, when according to described confirmation When home appliance 10 is legal home appliance described in message authentication, set up the connection between described home appliance 10.

The first receiver module 12 in described home appliance 10 receives the second ciphertext that described Cloud Server 20 sends, and uses Described second ciphertext is decrypted by the home appliance private key corresponding with described home appliance PKI, and second after being deciphered is close Literary composition.If the second ciphertext after described deciphering meets pre-conditioned, described first receiver module 12 then confirms described Cloud Server 20 For legal Cloud Server, and generate confirmation message.Described first receiver module 12 uses predetermined encryption algorithm to being generated Confirm that message is encrypted, and the described confirmation message after encryption is sent to described Cloud Server 20, for described cloud service Device 20 receives described confirmation message, when being legal home appliance according to home appliance 10 described in described confirmation message authentication, Set up the connection between described home appliance 10.

Further, described first receiver module 12 includes:

First receives unit, is used for receiving described second ciphertext；

Confirmation unit, if first in the first random number extracted from described second ciphertext and the first ciphertext is random Number is identical, then confirm that described Cloud Server 20 is legal Cloud Server；

Ciphering unit, for calculating described first random number and described second random number as key, employing predetermined encryption The confirmation message generated is encrypted by method, and the described confirmation message after encryption is sent to described Cloud Server 20, for Described Cloud Server 20 is legal home appliance according to home appliance 10 described in described confirmation message authentication, sets up and described family Connection between electricity equipment 10.

Described first receives unit receives the second ciphertext that described Cloud Server 20 sends, and described second ciphertext is sent To described first decryption unit.Described first decryption unit receives described second ciphertext, uses and described home appliance PKI pair The home appliance private key answered deciphers described second ciphertext, extract from described second ciphertext after deciphering described first random number and Described second random number, and described first random number extracted from described second ciphertext is sent to described confirmation unit.If The first random number in the first random number extracted from described second ciphertext and the first ciphertext is identical, i.e. described the after deciphering Two ciphertexts meet pre-conditioned, and described confirmation unit then confirms that described Cloud Server 20 is legal Cloud Server.If from described The first random number in the first random number extracted in two ciphertexts and the first ciphertext is different, and i.e. described second ciphertext after deciphering is not Meeting described pre-conditioned, described confirmation unit then confirms that described Cloud Server 20 is illegal Cloud Server.

When described confirmation unit confirms that described Cloud Server 20 is legal Cloud Server, described ciphering unit is by described First random number splices with described second random number, obtains the key of encryption.Described ciphering unit generates and confirms message, root According to described key, use predetermined encryption algorithm that described confirmation message is encrypted, the confirmation message after encryption is sent to institute State Cloud Server 20, be legal household electrical appliances for described Cloud Server 20 according to home appliance 10 described in described confirmation message authentication Equipment, sets up the connection between described home appliance 10.

Further, in order to improve the safety of described home appliance 10 and the communication of described Cloud Server 20, based on first Embodiment proposes the second embodiment of home appliance 10 of the present invention, and in the present embodiment, described home appliance 10 also includes generating Module, for when in the idle state, generates the 3rd random number, is controlled with the media interviews prestored by described 3rd random number MAC Address splices, the MAC ground using spliced described 3rd random number of described Cloud Server public key encryption with prestoring Location, obtains the first new ciphertext.

Described home appliance 10 is in real time or its CPU (Central Processing Unit, central authorities' process are detected in timing Device) running status time, when described home appliance 10 detect described CPU be in idle condition time, in described home appliance 10 Generation module generate the 3rd random number, and described 3rd random number is spliced with the MAC Address prestored, uses Spliced described 3rd random number of described Cloud Server public key encryption and the described MAC Address prestored, obtain new the One ciphertext.

The present invention further provides a kind of Cloud Server 20.

With reference to the preferable high-level schematic functional block diagram that Fig. 3, Fig. 3 are Cloud Server 20 of the present invention.

In the present embodiment, described Cloud Server 20 includes:

Second receiver module 21, for receiving the second ciphertext that home appliance 10 sends, uses the deciphering of Cloud Server private key Described first ciphertext, and use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, by described Second ciphertext is sent to described home appliance 10, receives described second ciphertext for described home appliance 10, according to described second Ciphertext confirms that described Cloud Server 20 is legal Cloud Server, uses predetermined encryption algorithm to add the confirmation message generated Close, and the described confirmation message after encryption is sent to described Cloud Server 20；

In described Cloud Server 20 second receiver module 21 receive described home appliance 10 send the first ciphertext, by with Described first ciphertext is decrypted by the Cloud Server private key that described Cloud Server PKI is corresponding, and first after being deciphered is close Literary composition.Described second receiver module 21, based on the first ciphertext after deciphering, uses the home appliance PKI in described SDK to described solution The first ciphertext after close is encrypted again, obtains the second ciphertext, and described second ciphertext is sent to described home appliance 10, for Described home appliance 10 receives described second ciphertext, confirms that described Cloud Server 20 is legal cloud service according to described second ciphertext Device, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation message after encryption is sent to institute State Cloud Server 20.

If described second receiver module 21 is failed by described Cloud Server private key and deciphers described first ciphertext, described Second receiver module 21 confirms that described home appliance 10 is illegal home appliance, and described Cloud Server 20 does not sets with described household electrical appliances Standby 10 set up connection, prevent described illegal home appliance from attacking described Cloud Server 20, or non-from described Cloud Server 20 Method obtains data etc..

Further, described second receiver module 21 includes:

Second receives unit, for receiving the second ciphertext that home appliance 10 sends, uses Cloud Server private key to described First ciphertext is decrypted, and obtains the first random number in described first ciphertext；

Random number generation unit, for generating the second random number, enters described second random number and described first random number Row splicing, and use home appliance PKI that spliced described second random number and described first random number are encrypted, To the second ciphertext, and described second ciphertext is sent to described home appliance 10, receives described for described home appliance 10 According to described second ciphertext, two ciphertexts, confirm that described Cloud Server 20 is legal Cloud Server, use predetermined encryption algorithm to life The confirmation message become is encrypted, and the described confirmation message after encryption is sent to described Cloud Server 20.

Described second receives unit receives described first ciphertext that described home appliance 10 sends, and uses and described cloud service Described first ciphertext after the Cloud Server private key deciphering encryption that device PKI is corresponding, described first ciphertext after described deciphering Extract the first random number.When described second receive unit in described first ciphertext, extract the first random number time, described at random Number signal generating unit generates the second random number.Described random number generation unit to described first random number and its generate second with Machine number splices, and uses the home appliance PKI in described SDK to spliced first random number and the second random number It is encrypted, by the first random number after encryption and the second random number as the second ciphertext, and described second ciphertext is sent to Home appliance 10, receives described second ciphertext for described home appliance 10, confirms described cloud service according to described second ciphertext Device 20 is legal Cloud Server, use predetermined encryption algorithm to generate confirmation message be encrypted, and will encryption after described in Confirm that message is sent to described Cloud Server 20.

Set up link block 22, be used for receiving described confirmation message, when setting according to household electrical appliances described in described confirmation message authentication When being legal home appliance for 10, set up the connection between described home appliance 10.

Link block 22 of setting up in described Cloud Server 20 receives the described confirmation message that described home appliance 10 sends, Whether it is legal home appliance according to home appliance described in described confirmation message authentication 10.Link block 22 is set up when described When being legal home appliance according to home appliance 10 described in described confirmation message authentication, described link block 22 of setting up is set up and institute State the connection between home appliance 10；When described link block 22 of setting up is according to home appliance 10 described in described confirmation message authentication During for illegal home appliance, described link block 22 of setting up is not set up with described home appliance 10 and is connected.

Further, described link block 22 of setting up includes:

Set up and connect unit, if the second random number for extracting from described confirmation message is raw with described Cloud Server 20 The second random number become is identical, then confirm that described home appliance 10 is legal home appliance, sets up and described home appliance 10 Between connection.

After described confirmation message after described second decryption unit receives the encryption that described home appliance 10 sends, institute State and confirm described in the secret key decryption of gained after the second decryption unit uses described second random number to splice with described first random number Message, extracts the second random number in described confirmation message, and described second random number that will extract from described confirmation message It is sent to set up and connects unit.If described connection unit of setting up confirms that described second decryption unit is extracted from described confirmation message The second random number identical with the second random number that described Cloud Server 20 generates, described set up connect unit then determine described family Second ciphertext described in electricity equipment 10 successful decryption, obtains the first random number in described second ciphertext, and described foundation connects Unit confirms that described home appliance 10 is legal home appliance, sets up the connection between described home appliance 10.As worked as State and confirm when message be the character string of " OK ", if described set up connect unit successfully obtain described in the character string of " OK ", described in build The vertical unit that connects then confirms that described home appliance 10 is legal home appliance.Described confirmation message includes but not limited to " OK " Character string, it is also possible to for " home appliance 10 is legal " etc..

If the second random number that described second decryption unit is extracted from described confirmation message is raw with described Cloud Server 20 The second random number become is different, and described connection unit of setting up then confirms when described home appliance 10 is illegal home appliance, no Set up with described home appliance 10 and be connected.

The present invention further provides the means of communication of a kind of home appliance 10 and Cloud Server 20.

With reference to Fig. 4, Fig. 4 be home appliance 10 of the present invention and the flow process of the means of communication preferred embodiment of Cloud Server 20 is shown It is intended to.

In the present embodiment, described home appliance 10 includes with the means of communication of Cloud Server 20:

Step S10, described home appliance 10 obtains and is pre-stored within authorization module by Cloud Server public key encryption gained The first ciphertext, described first ciphertext is sent to described Cloud Server 20；

Step S20, described Cloud Server 20 receives described first ciphertext, uses the deciphering of Cloud Server private key described first close Literary composition, and use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, described second ciphertext is sent out Give described home appliance 10；

Further, described step S20 includes:

Step a, described Cloud Server 20 receives described first ciphertext, uses Cloud Server private key to enter described first ciphertext Row deciphering, obtains the first random number in described first ciphertext；

Step b, described Cloud Server 20 generates the second random number, described second random number and described first random number is entered Row splicing, and use home appliance PKI that spliced described second random number and described first random number are encrypted, To the second ciphertext, and described second ciphertext is sent to described home appliance 10.

Step S30, described home appliance 10 receives described second ciphertext, confirms described cloud service according to described second ciphertext Device 20 is legal Cloud Server, use predetermined encryption algorithm to generate confirmation message be encrypted, and will encryption after described in Confirm that message is sent to described Cloud Server 20；

Further, described step S30 includes:

Step c, described home appliance 10 receives described second ciphertext, uses home appliance private key to enter described second ciphertext Row deciphering, extracts the first random number in described second ciphertext and the second random number；

Step d, if from described second ciphertext extract the first random number and the first ciphertext in the first random number identical, Described home appliance 10 then confirms that described Cloud Server 20 is legal Cloud Server；

Step e, described first random number and described second random number are preset by described home appliance 10 as key, employing The confirmation message generated is encrypted by AES, and the described confirmation message after encryption is sent to described Cloud Server 20。

Step S40, described Cloud Server 20 receives described confirmation message, when according to household electrical appliances described in described confirmation message authentication When equipment 10 is legal home appliance, set up the connection between described home appliance 10.

Further, described step S40 includes:

Step f, described Cloud Server 20 receives described confirmation message, deciphers described confirmation message, extracts described confirmation and disappears The second random number in breath；

Step h, if the second random number and the described Cloud Server 20 that extract from described confirmation message generate second with Machine number is identical, and described Cloud Server 20 then confirms that described home appliance 10 is legal home appliance, sets up and sets with described household electrical appliances Connection between standby 10.

Further, in order to improve the safety of described home appliance 10 and the communication of described Cloud Server 20, based on first Embodiment proposes the second embodiment of home appliance 10 of the present invention and the means of communication of Cloud Server 20, in the present embodiment, institute The means of communication stating home appliance 10 and Cloud Server 20 also include:

It should be noted that in this article, term " includes ", " comprising " or its any other variant are intended to non-row Comprising of his property, so that include that the process of a series of key element, method, article or device not only include those key elements, and And also include other key elements being not expressly set out, or also include intrinsic for this process, method, article or device Key element.In the case of there is no more restriction, statement " including ... " key element limited, it is not excluded that including this The process of key element, method, article or device there is also other identical element.

The invention described above embodiment sequence number, just to describing, does not represent the quality of embodiment.

Through the above description of the embodiments, those skilled in the art is it can be understood that arrive above-described embodiment side Method can add the mode of required general hardware platform by software and realize, naturally it is also possible to by hardware, but a lot of in the case of The former is more preferably embodiment.Based on such understanding, prior art is done by technical scheme the most in other words The part going out contribution can embody with the form of software product, and this computer software product is stored in a storage medium In (such as ROM/RAM, magnetic disc, CD), including some instructions with so that a station terminal equipment (can be mobile phone, computer, take Business device, air-conditioner, or the network equipment etc.) perform the method described in each embodiment of the present invention.

These are only the preferred embodiments of the present invention, not thereby limit the scope of the claims of the present invention, every utilize this Equivalent structure or equivalence flow process that bright description and accompanying drawing content are made convert, or are directly or indirectly used in other relevant skills Art field, is the most in like manner included in the scope of patent protection of the present invention.

Claims

1. a communication system, it is characterised in that described communication system includes home appliance and Cloud Server；

Described home appliance, is pre-stored within authorization module by Cloud Server public key encryption gained first for acquisition close Literary composition, is sent to Cloud Server by described first ciphertext；

Described Cloud Server, is used for receiving described first ciphertext, uses Cloud Server private key to decipher described first ciphertext, and uses The first ciphertext after deciphering is encrypted by home appliance PKI, obtains the second ciphertext, described second ciphertext is sent to described Home appliance；

Described home appliance is additionally operable to receive described second ciphertext, confirms that described Cloud Server is legal according to described second ciphertext Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation message after encryption is sent out Give described Cloud Server；

Described Cloud Server is additionally operable to receive described confirmation message, when according to home appliance described in described confirmation message authentication for close During the home appliance of method, set up the connection between described home appliance.

2. communication system as claimed in claim 1, it is characterised in that described Cloud Server is additionally operable to receive described first ciphertext, Use Cloud Server private key that described first ciphertext is decrypted, obtain the first random number in described first ciphertext；Generate second Random number, splices described second random number and described first random number, and uses home appliance PKI to spliced Described second random number and described first random number are encrypted, and obtain the second ciphertext, and described second ciphertext is sent to institute State home appliance.

3. communication system as claimed in claim 2, it is characterised in that described home appliance is additionally operable to receive described second ciphertext, Use home appliance private key described second ciphertext is decrypted, extract the first random number in described second ciphertext and second with Machine number；If the first random number in the first random number extracted from described second ciphertext and the first ciphertext is identical, then confirm institute Stating Cloud Server is legal Cloud Server；Using described first random number and described second random number as key, use to preset and adds The confirmation message generated is encrypted by close algorithm, and the described confirmation message after encryption is sent to described Cloud Server.

4. communication system as claimed in claim 3, it is characterised in that described Cloud Server is additionally operable to receive described confirmation message, Decipher described confirmation message, extract the second random number in described confirmation message；If extract from described confirmation message second Random number is identical with the second random number that described Cloud Server generates, then confirm that described home appliance is legal home appliance, Set up the connection between described home appliance.

5. the communication system as described in any one of Claims 1-4, it is characterised in that described home appliance is additionally operable to when being in During idle condition, generate the 3rd random number, described 3rd random number is spelled with the MAC address prestored Connect, use spliced described 3rd random number of described Cloud Server public key encryption and the MAC Address prestored, obtain new first Ciphertext.

6. a home appliance, it is characterised in that described home appliance includes:

Acquisition module, is pre-stored within authorization module by the first ciphertext of Cloud Server public key encryption gained for obtaining, will Described first ciphertext is sent to described Cloud Server, for the first ciphertext described in described cloud server, uses Cloud Server Private key deciphers described first ciphertext, and uses home appliance PKI to be encrypted the first ciphertext after deciphering, obtains second close Literary composition, is sent to described home appliance by described second ciphertext；

First receiver module, is used for receiving described second ciphertext, confirms that described Cloud Server is legal according to described second ciphertext Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation message after encryption is sent out Give described Cloud Server, for confirming message described in described cloud server, when according to described in described confirmation message authentication When home appliance is legal home appliance, set up the connection between described home appliance.

7. home appliance as claimed in claim 6, it is characterised in that described first receiver module includes:

First receives unit, is used for receiving described second ciphertext；

First decryption unit, is used for using home appliance private key to be decrypted described second ciphertext, extracts described second ciphertext In the first random number and the second random number；

Confirmation unit, if the first random number phase in the first random number extracted from described second ciphertext and the first ciphertext With, then confirm that described Cloud Server is legal Cloud Server；

Ciphering unit, for will described first random number and described second random number as key, employing predetermined encryption algorithm pair The confirmation message generated is encrypted, and the described confirmation message after encryption is sent to described Cloud Server, for described cloud Server is legal home appliance according to home appliance described in described confirmation message authentication, sets up between described home appliance Connection.

Home appliance the most as claimed in claims 6 or 7, it is characterised in that described home appliance also includes generation module, is used for When in the idle state, generate the 3rd random number, described 3rd random number is entered with the MAC address prestored Row splicing, uses spliced described 3rd random number of described Cloud Server public key encryption and the MAC Address prestored, obtains new First ciphertext.

9. a Cloud Server, it is characterised in that described Cloud Server includes:

Second receiver module, for receiving the second ciphertext that home appliance sends, uses Cloud Server private key deciphering described first Ciphertext, and use home appliance PKI that the first ciphertext after deciphering is encrypted, obtain the second ciphertext, by described second ciphertext It is sent to described home appliance, receives described second ciphertext for described home appliance, confirm described according to described second ciphertext Cloud Server is legal Cloud Server, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and by after encryption Described confirmation message is sent to described Cloud Server；

Set up link block, be used for receiving described confirmation message, when according to home appliance described in described confirmation message authentication for close During the home appliance of method, set up the connection between described home appliance.

10. Cloud Server as claimed in claim 9, it is characterised in that described second receiver module includes:

Second receives unit, for receiving the second ciphertext that home appliance sends, uses Cloud Server private key to described first close Literary composition is decrypted, and obtains the first random number in described first ciphertext；

Random number generation unit, for generating the second random number, spells described second random number and described first random number Connect, and use home appliance PKI that spliced described second random number and described first random number are encrypted, obtain Two ciphertexts, and described second ciphertext is sent to described home appliance, receive described second ciphertext, root for described home appliance Confirm that described Cloud Server is legal Cloud Server according to described second ciphertext, use the predetermined encryption algorithm confirmation message to generating It is encrypted, and the described confirmation message after encryption is sent to described Cloud Server.

11. Cloud Servers as claimed in claim 10, it is characterised in that described link block of setting up includes:

Second decryption unit, is used for receiving described confirmation message, deciphers described confirmation message, extracts in described confirmation message Two randoms number；

Set up and connect unit, if the second random number and the described Cloud Server for extracting from described confirmation message generate the Two randoms number are identical, then confirm that described home appliance is legal home appliance, set up the connection between described home appliance.

12. 1 kinds of home appliances and the means of communication of Cloud Server, it is characterised in that described home appliance is logical with Cloud Server Communication method includes:

Described home appliance obtains and is pre-stored within authorization module by the first ciphertext of Cloud Server public key encryption gained, by institute State the first ciphertext and be sent to described Cloud Server；

First ciphertext described in described cloud server, uses Cloud Server private key to decipher described first ciphertext, and uses household electrical appliances The first ciphertext after deciphering is encrypted by equipment PKI, obtains the second ciphertext, described second ciphertext is sent to described household electrical appliances Equipment；

Described home appliance receives described second ciphertext, confirms that described Cloud Server is legal cloud service according to described second ciphertext Device, uses predetermined encryption algorithm to be encrypted the confirmation message generated, and the described confirmation message after encryption is sent to institute State Cloud Server；

Message is confirmed, when being legal family according to home appliance described in described confirmation message authentication described in described cloud server During electricity equipment, set up the connection between described home appliance.

13. home appliances as claimed in claim 12 and the means of communication of Cloud Server, it is characterised in that described Cloud Server Receive described first ciphertext, use Cloud Server private key to decipher described first ciphertext, and after using home appliance PKI to deciphering The first ciphertext be encrypted, obtain the second ciphertext, the step that described second ciphertext is sent to described home appliance included:

First ciphertext described in described cloud server, uses Cloud Server private key to be decrypted described first ciphertext, obtains First random number in described first ciphertext；

Described Cloud Server generates the second random number, described second random number and described first random number is spliced, and adopts With home appliance PKI, spliced described second random number and described first random number are encrypted, obtain the second ciphertext, And described second ciphertext is sent to described home appliance.

14. home appliances as claimed in claim 13 and the means of communication of Cloud Server, it is characterised in that described home appliance connects Receive described second ciphertext, confirm that described Cloud Server is legal Cloud Server according to described second ciphertext, use predetermined encryption to calculate The confirmation message generated is encrypted by method, and the described confirmation message after encryption is sent to the step bag of described Cloud Server Include:

Described home appliance receives described second ciphertext, uses home appliance private key to be decrypted described second ciphertext, extracts The first random number in described second ciphertext and the second random number；

If the first random number in the first random number extracted from described second ciphertext and the first ciphertext is identical, described household electrical appliances set Standby then confirm that described Cloud Server is legal Cloud Server；

Described first random number and described second random number as key, are used predetermined encryption algorithm to life by described home appliance The confirmation message become is encrypted, and the described confirmation message after encryption is sent to described Cloud Server.

15. home appliances as claimed in claim 14 and the means of communication of Cloud Server, it is characterised in that described Cloud Server connects Receive described confirmation message, when described Cloud Server is legal home appliance according to home appliance described in described confirmation message authentication Time, the step setting up the connection between described home appliance includes:

Described in described cloud server confirm message, decipher described confirmation message, extract in described confirmation message second with Machine number；

16. home appliances as described in any one of claim 12 to 15 and the means of communication of Cloud Server, it is characterised in that institute The means of communication stating home appliance and Cloud Server also include:

When described home appliance is in idle condition, described home appliance generates the 3rd random number, by described 3rd random number Splice with the MAC address prestored, use described Cloud Server public key encryption the spliced described 3rd Random number and the MAC Address prestored, obtain the first new ciphertext.