CN106412122A - Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router - Google Patents

Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router Download PDF

Info

Publication number
CN106412122A
CN106412122A CN201611050523.2A CN201611050523A CN106412122A CN 106412122 A CN106412122 A CN 106412122A CN 201611050523 A CN201611050523 A CN 201611050523A CN 106412122 A CN106412122 A CN 106412122A
Authority
CN
China
Prior art keywords
internet
things equipment
specific
mark
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201611050523.2A
Other languages
Chinese (zh)
Inventor
刘俊彦
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Midea Group Co Ltd
Midea Smart Home Technology Co Ltd
Original Assignee
Midea Group Co Ltd
Midea Smart Home Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Midea Group Co Ltd, Midea Smart Home Technology Co Ltd filed Critical Midea Group Co Ltd
Priority to CN201611050523.2A priority Critical patent/CN106412122A/en
Publication of CN106412122A publication Critical patent/CN106412122A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/12Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • H04L45/745Address table lookup; Address filtering
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0876Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint

Abstract

The invention relates to the Internet of things field and discloses a safe link method of Internet of things equipment and a server. The method comprises the following steps of receiving a specific ID identification sent by the Internet of things equipment, the specific ID identification corresponds to a destination address corresponding to a link request of the Internet of things equipment; searching a form so as to acquire the destination address corresponding to the specific ID identification, wherein in the form, each specific ID identification matches with the corresponding destination address; and if the specific ID identification exists in the form, allowing the Internet of things equipment to link to the destination address corresponding to the specific ID identification. The invention also provides a safe link apparatus of the Internet of things equipment and the server and a wireless router applying the apparatus.

Description

The secure link method of internet of things equipment and server and device and wireless router
Technical field
A kind of the present invention relates to Internet of Things field, in particular it relates to the secure link method of internet of things equipment and server The wireless router control with device and for Internet of Things link.
Background technology
Internet of Things is based on computer science, including network, electronics, radio frequency, sensing, wireless, artificial intelligence, bar Integrated technology and application that code, cloud computing, automatization, the technology such as embedded are integrated, it will allow isolated article (for example: Refrigerator, automobile, equipment, furniture, kinds of goods etc.) the access network world, allow and can mutually exchange between them, let us can pass through Software system operates on it.
Internet of things equipment generally links to corresponding server using wireless link equipment (for example, router).Existing Link control technology in, after internet of things equipment link router, send special identifier to router, router receives this mark Afterwards if it is possible to identify this special identifier, then this internet of things equipment is allowed to link to corresponding server.But in existing chain Connect in control mode, illegality equipment accesses any server possibly also with the special identifier of the internet of things equipment being authorized to, can Can occur internet of things equipment abuse special identifier problem, even and be authorized to internet of things equipment be likely to can using should Special identifier carries out the activity outside its authorization function, consequently, it is possible to linking authority beyond it, therefore, existing link controls Technology has many hidden dangers.
Content of the invention
It is an object of the invention to provide the secure link method of a kind of equipment, this equipment internet of things equipment and server and dress Put, profit has the method and device can effectively filter the illegal connection of internet of things equipment, and can prevent from unauthorized device Malicious link is so as to ensure the safety of Internet of Things.
Another aspect of the present invention additionally provides a kind of secure link applying described equipment internet of things equipment and server The wireless router of method and apparatus, by this wireless router it is ensured that peace chain between internet of things equipment server Connect.
To achieve these goals, the present invention provides the secure link method of a kind of internet of things equipment and server, the party Method includes:Receive the specific ID mark that internet of things equipment sends, this specific ID identifies the link corresponding to described internet of things equipment The corresponding destination address of request;Lookup table, to obtain the destination address corresponding to described specific ID mark, in this form In, each specific ID mark is matched with corresponding destination address;And if described specific ID mark is present in described form In, then allow described internet of things equipment to link to the destination address corresponding with described specific ID mark.
Wherein, the specific ID mark of every internet of things equipment can configure when dispatching from the factory, and every internet of things equipment can There to be multiple specific ID marks, each specific ID mark that it has can represent this internet of things equipment to be needed and server chain The every business connecing, when described internet of things equipment needs to link to corresponding server because of certain business, such as to service When device sends message, this specific ID mark can be sent simultaneously.The specific ID mark of every equipment is matched with respective server, The form that specific ID mark is mated with server address therefore can be previously generated, search this table when receiving internet of things equipment Lattice, such that it is able to differentiate that whether this internet of things equipment is authorized equipment or whether its business of sending is authorized industry Business.
Wherein the method can also include:If described specific ID mark is not present in described form, intercept described The linking request of internet of things equipment.If described specific ID mark is not present in described form then it represents that sending this specific ID The equipment of mark is authority external equipment, or the business that this equipment sends is the outer business of authority, can directly abandon specific with this ID mark business sent along or message.
Wherein, the method can also include:Form described in real-time update.
Wherein, the method can also include:The specific ID mark that internet of things equipment is sent is encrypted, and is connecing It is decrypted process when receiving described specific ID mark.
Wherein, the method can also include:When described internet of things equipment linking request be intercepted number of times reach predetermined During number of times, no longer receive the specific ID mark that described internet of things equipment sends in the given time.
According to a further aspect in the invention, the secure link of this internet of things equipment a kind of and server, this device are also provided Including:Receiver module, for receiving the specific ID mark of internet of things equipment transmission, this specific ID identifies corresponding to described Internet of Things Destination address corresponding to the linking request of equipment;Searching modul is for lookup table, right to obtain described specific ID mark institute The destination address answered;And link control module, in the case of being present in described form in described specific ID mark, permit Permitted described internet of things equipment and linked to the destination address corresponding with described specific ID mark;Wherein, in the table, each ID mark is matched with corresponding destination address.
Wherein, described link control module can be worked as described specific ID mark and be not present in described form, intercept described The linking request of internet of things equipment.
Wherein, described searching modul can download from a server the described form of renewal in real time.
Wherein, this device can also include:Deciphering module, for being decrypted process to encrypted described ID mark. When the specific ID mark of internet of things equipment is through encryption, need it is decrypted when receiving described specific ID mark Process.
Wherein, the number of times that the linking request that described link control module can work as described internet of things equipment is intercepted reaches pre- When determining number of times, no longer receive the specific ID mark that described internet of things equipment sends in the given time.
In accordance with a further aspect of the present invention, also provide a kind of theft-resistant link chain tipping applying described internet of things equipment and server The wireless router put.
By technique scheme, the link authority of internet of things equipment can be limited so as to only in the specific scope of business Internal chaining, to corresponding server, prevents internet of things equipment from abusing its specific ID mark, simultaneously additionally it is possible to limit illegal Internet of Things Linking of devices is to server, thus providing safely and effectively link control program for environment of internet of things.
Other features and advantages of the present invention will be described in detail in subsequent specific embodiment part.
Brief description
Accompanying drawing is used to provide a further understanding of the present invention, and constitutes the part of description, with following tool Body embodiment is used for explaining the present invention together, but is not construed as limiting the invention.In the accompanying drawings:
Fig. 1 is the flow chart of the internet of things equipment according to embodiments of the invention one and the secure link method of server;
Fig. 2 is the flow process of the internet of things equipment according to embodiments of the invention two and the secure link method of server Figure;And
Fig. 3 is the structure chart of the internet of things equipment according to embodiments of the invention three and the secure link device of server.
Description of reference numerals
100:Receiver module 200:Searching modul
300:Link control module
Specific embodiment
Below in conjunction with accompanying drawing, the specific embodiment of the present invention is described in detail.It should be appreciated that this place is retouched The specific embodiment stated is merely to illustrate and explains the present invention, is not limited to the present invention.
Fig. 1 is the flow chart of the internet of things equipment according to embodiments of the invention one and the secure link method of server. As shown in figure 1, the method comprises the following steps:
In the step s 100, receive the specific ID mark that internet of things equipment sends, this specific ID identifies corresponding to described thing Destination address corresponding to the linking request of networked devices.Internet of things equipment can configure multiple specific ID according to its service needed Mark, sends specific ID mark corresponding with this business when sending related service request to server simultaneously.
In step s 200, lookup table, to obtain the destination address corresponding to described specific ID mark, in this form In, each specific ID mark is matched with corresponding destination address.
In step S300, if described specific ID mark is present in described form, allow described internet of things equipment Link to the destination address corresponding with described specific ID mark.
Fig. 2 is the flow process of the internet of things equipment according to embodiments of the invention two and the secure link method of server Figure.As shown in Fig. 2 on the basis of embodiment one, implementing two internet of things equipment and also may be used with the secure link method of server To comprise the following steps:
In step s 250, specific ID mark internet of things equipment being sent is encrypted, and is receiving this spy simultaneously Determine to be decrypted process to it during ID mark.Encryption can prevent illegality equipment from abusing the safety of the internet of things equipment having permission Property, such that it is able to improve the safety of Internet of Things link.
In step S400, if described specific ID mark is not present in described form, intercepts described Internet of Things and set Standby linking request.If the specific ID mark being received is not present in described form then it represents that corresponding with this specific ID Business is not belonging to the scope authorizing, and that therefore can forbid this internet of things equipment and server links behavior.
In step S500, when the number of times that the linking request of described internet of things equipment is intercepted reaches pre-determined number, The specific ID mark that described internet of things equipment sends no longer is received in the scheduled time.Identify when repeatedly receiving illegal specific ID When, then show now to have illegality equipment malice to be linked, forbidding receiving this specific ID mark in time can be in certain journey The malicious attack behavior to server or other internet of things equipment for the illegality equipment is prevented on degree.
In step S600, form described in real-time update.The address of server it may happen that change, internet of things equipment Link business is likely to increase as well or reduces, and therefore can reach the purpose of smooth link by real-time update form.For example, may be used With form described in real-time update from dns server.This step is not necessarily located at position as shown in Figure 2, to form more New operation can be implemented the arbitrary steps when implementing the method.
Fig. 3 is the structure chart of the internet of things equipment according to embodiments of the invention three and the secure link device of server. As shown in figure 3, this device can include:Receiver module 100, for receiving the specific ID mark of internet of things equipment transmission, this spy Determine ID to identify corresponding to the destination address corresponding to the linking request of described internet of things equipment;Searching modul 200, for look-up table Lattice, to obtain the destination address corresponding to described specific ID mark;And link control module 300, in described specific ID Mark be present in described form in the case of it is allowed to described internet of things equipment link to described specific ID identify corresponding Destination address;Wherein, in the table, every ID mark is matched with corresponding destination address.
Wherein, described link control module 300 can be worked as described specific ID mark and be not present in described form, intercept institute State the linking request of internet of things equipment.Additionally, the link that described link control module 300 can also work as described internet of things equipment please When the number of times asking intercepted reaches pre-determined number, no longer receive the specific ID mark that described internet of things equipment sends in the given time Know.
Wherein, described searching modul 200 can download from a server the described form of renewal in real time.The renewal operation of form The server address that can be corresponding to each specific ID mark is updated it is also possible to increase or decrease specific in the table ID mark is mated with server, thus improving the efficiency searched while ensureing smooth link.
Wherein, this device can also include:Deciphering module, for being decrypted process to encrypted described ID mark. When the specific ID mark of internet of things equipment is through encryption, deciphering module pair can be utilized when receiving specific ID mark It is decrypted.
Internet of things equipment described in above-described embodiment especially can be applied with the secure link method of server and device In the wireless router linking control device as Internet of Things.
Describe the preferred embodiment of the present invention above in association with accompanying drawing in detail, but, the present invention is not limited to above-mentioned reality Apply the detail in mode, in the range of the technology design of the present invention, multiple letters can be carried out to technical scheme Monotropic type, these simple variant belong to protection scope of the present invention.
It is further to note that each particular technique feature described in above-mentioned specific embodiment, in not lance In the case of shield, can be combined by any suitable means, in order to avoid unnecessary repetition, the present invention to various can The compound mode of energy no longer separately illustrates.
Additionally, combination in any can also be carried out between the various different embodiment of the present invention, as long as it is without prejudice to this The thought of invention, it equally should be considered as content disclosed in this invention.

Claims (11)

1. a kind of internet of things equipment and the secure link method of server are it is characterised in that the method includes:
Receive the specific ID mark that internet of things equipment sends, this specific ID identifies the linking request corresponding to described internet of things equipment Corresponding destination address;
Lookup table, the destination address corresponding to obtain described specific ID mark, in this form, each specific ID mark with Corresponding destination address matches;And
If described specific ID mark is present in described form, described internet of things equipment is allowed to link to and described specific ID Identify corresponding destination address.
2. internet of things equipment according to claim 1 and server secure link method it is characterised in that the method also Including:If described specific ID mark is not present in intercepting the linking request of described internet of things equipment in described form.
3. the secure link method of internet of things equipment according to claim 1 and 2 and server is it is characterised in that the party Method also includes:Form described in real-time update.
4. internet of things equipment according to claim 3 and server secure link method it is characterised in that the method also Including:The specific ID mark that internet of things equipment is sent is encrypted, and is solved when receiving described specific ID mark Close process.
5. the secure link method of internet of things equipment according to claim 1 and 2 and server is it is characterised in that the party Method also includes:
When the number of times that the linking request of described internet of things equipment is intercepted reaches pre-determined number, no longer receive in the given time The specific ID mark that described internet of things equipment sends.
6. a kind of internet of things equipment and the secure link device of server are it is characterised in that this device includes:
Receiver module, for receiving the specific ID mark of internet of things equipment transmission, this specific ID identifies corresponding to described Internet of Things Destination address corresponding to the linking request of equipment;
Searching modul, for lookup table, to obtain the destination address corresponding to described specific ID mark;And;
Link control module, in the case of being present in described form in described specific ID mark it is allowed to described Internet of Things Linking of devices is to the destination address corresponding with described specific ID mark;
Wherein, in the table, every ID mark is matched with corresponding destination address.
7. internet of things equipment according to claim 6 and the secure link device of server are it is characterised in that described link Control module is worked as described specific ID mark and is not present in described form, intercepts the linking request of described internet of things equipment.
8. the secure link device of internet of things equipment according to claim 7 and server is it is characterised in that described lookup Module downloads from a server the described form of renewal in real time.
9. internet of things equipment according to claim 7 and server secure link device it is characterised in that this device also Including:
Deciphering module, for being decrypted process to encrypted described ID mark.
10. the secure link device of internet of things equipment according to claim 7 and server is it is characterised in that described chain Connect control module when the number of times that the linking request of described internet of things equipment is intercepted reaches pre-determined number, in the given time not Receive the specific ID mark that described internet of things equipment sends again.
A kind of 11. wireless routers controlling for Internet of Things link are it is characterised in that this wireless router includes claim Internet of things equipment described in 6-10 and the secure link device of server.
CN201611050523.2A 2016-11-24 2016-11-24 Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router Pending CN106412122A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611050523.2A CN106412122A (en) 2016-11-24 2016-11-24 Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611050523.2A CN106412122A (en) 2016-11-24 2016-11-24 Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router

Publications (1)

Publication Number Publication Date
CN106412122A true CN106412122A (en) 2017-02-15

Family

ID=58082786

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611050523.2A Pending CN106412122A (en) 2016-11-24 2016-11-24 Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router

Country Status (1)

Country Link
CN (1) CN106412122A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107018154A (en) * 2017-05-31 2017-08-04 南京燚麒智能科技有限公司 A kind of router and method for routing for being used to connect Intranet and outer net based on application layer
CN107018155A (en) * 2017-05-31 2017-08-04 南京燚麒智能科技有限公司 A kind of outer net terminal security accesses the method and system of the specific data of Intranet
CN107888627A (en) * 2017-12-26 2018-04-06 北京车联天下信息技术有限公司 The method, apparatus and server that service security accesses
CN109542906A (en) * 2018-11-20 2019-03-29 北京小米移动软件有限公司 Equipment determination method and device
CN109802886A (en) * 2019-01-28 2019-05-24 奥克斯空调股份有限公司 A kind of method, apparatus, air conditioner and storage medium for binding third party's public platform
CN110166489A (en) * 2019-06-24 2019-08-23 深圳开立生物医疗科技股份有限公司 Data transmission method, system, equipment and computer media in a kind of Internet of Things

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101917431A (en) * 2010-08-13 2010-12-15 中兴通讯股份有限公司 Method and device for preventing illegal invasion of internal network of intelligent home
CN105827691A (en) * 2016-03-08 2016-08-03 中国联合网络通信集团有限公司 Internet of things equipment control method and device
CN106161100A (en) * 2016-08-03 2016-11-23 青岛海信电器股份有限公司 A kind of internet of things equipment collocation method and internet-of-things terminal

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101917431A (en) * 2010-08-13 2010-12-15 中兴通讯股份有限公司 Method and device for preventing illegal invasion of internal network of intelligent home
CN105827691A (en) * 2016-03-08 2016-08-03 中国联合网络通信集团有限公司 Internet of things equipment control method and device
CN106161100A (en) * 2016-08-03 2016-11-23 青岛海信电器股份有限公司 A kind of internet of things equipment collocation method and internet-of-things terminal

Cited By (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107018154A (en) * 2017-05-31 2017-08-04 南京燚麒智能科技有限公司 A kind of router and method for routing for being used to connect Intranet and outer net based on application layer
CN107018155A (en) * 2017-05-31 2017-08-04 南京燚麒智能科技有限公司 A kind of outer net terminal security accesses the method and system of the specific data of Intranet
CN107018154B (en) * 2017-05-31 2020-06-05 南京燚麒智能科技有限公司 Router and routing method for connecting intranet and extranet based on application layer
CN107018155B (en) * 2017-05-31 2020-06-19 南京燚麒智能科技有限公司 Method and system for safely accessing specific data of intranet by extranet terminal
CN107888627A (en) * 2017-12-26 2018-04-06 北京车联天下信息技术有限公司 The method, apparatus and server that service security accesses
CN109542906A (en) * 2018-11-20 2019-03-29 北京小米移动软件有限公司 Equipment determination method and device
CN109542906B (en) * 2018-11-20 2021-11-30 北京小米移动软件有限公司 Equipment determination method and device
CN109802886A (en) * 2019-01-28 2019-05-24 奥克斯空调股份有限公司 A kind of method, apparatus, air conditioner and storage medium for binding third party's public platform
CN110166489A (en) * 2019-06-24 2019-08-23 深圳开立生物医疗科技股份有限公司 Data transmission method, system, equipment and computer media in a kind of Internet of Things

Similar Documents

Publication Publication Date Title
CN106412122A (en) Safe link method of Internet of things equipment and server and apparatus thereof, and wireless router
US20200328885A1 (en) Enhanced monitoring and protection of enterprise data
US9954820B2 (en) Detecting and preventing session hijacking
EP2242230B1 (en) Methods and apparatus to provide layered security for interface access control
CN104573516A (en) Industrial control system trusted environment control method and platform based on safety chip
CN102523218B (en) Network safety protection method, equipment and system thereof
US11209803B2 (en) Firewall system and method for establishing secured communications connections to an industrial automation system
US11197160B2 (en) System and method for rogue access point detection
US20150281239A1 (en) Provision of access privileges to a user
US20170237749A1 (en) System and Method for Blocking Persistent Malware
JP2008104169A (en) Method and system for providing inter-authentication for radio frequency identification (rfid) security, and storage medium with computer program stored thereon
WO2004057834A2 (en) Methods and apparatus for administration of policy based protection of data accessible by a mobile device
Aziz et al. A lightweight and compromise‐resilient authentication scheme for IoTs
CN1150726C (en) Safe network transmission method and system
EP3175381A1 (en) Method and system for providing a virtual asset perimeter
US20060156400A1 (en) System and method for preventing unauthorized access to computer devices
CN112311769B (en) Method, system, electronic device and medium for security authentication
CN105100268A (en) Security control method and system of Internet-of-things device as well as application server
US20180176774A1 (en) System and Method for Ensuring Secure Connections
JP5110082B2 (en) Communication control system, communication control method, and communication terminal
CN109587134B (en) Method, apparatus, device and medium for secure authentication of interface bus
CN104811421A (en) Secure communication method and secure communication device based on digital rights management
CN103560948B (en) Communication means, equipment and system between virtual machine
CN105100030A (en) Access control method, system and device
KR102284183B1 (en) Access control system and method using SQL tool based on web

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170215