CN106982136A - The multiple domain platform of internet of things and multi-zone management method of a kind of multiple domain layering - Google Patents
The multiple domain platform of internet of things and multi-zone management method of a kind of multiple domain layering Download PDFInfo
- Publication number
- CN106982136A CN106982136A CN201710132080.XA CN201710132080A CN106982136A CN 106982136 A CN106982136 A CN 106982136A CN 201710132080 A CN201710132080 A CN 201710132080A CN 106982136 A CN106982136 A CN 106982136A
- Authority
- CN
- China
- Prior art keywords
- cloud platform
- branch center
- center
- domain
- platform branch
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/321—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority
- H04L9/3213—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving a third party or a trusted authority using tickets or tokens, e.g. Kerberos
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/06—Management of faults, events, alarms or notifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L41/00—Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
- H04L41/50—Network service management, e.g. ensuring proper service fulfilment according to agreements
- H04L41/508—Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement
- H04L41/5096—Network service management, e.g. ensuring proper service fulfilment according to agreements based on type of value added network service under agreement wherein the managed service relates to distributed or central networked applications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/12—Protocols specially adapted for proprietary or special-purpose networking environments, e.g. medical networks, sensor networks, networks in vehicles or remote metering networks
Abstract
The invention belongs to internet of things field, the multiple domain platform of internet of things and multi-zone management method of a kind of multiple domain layering are disclosed, including:Cloud platform multi-zone management center module, loading condition and running status for monitoring cloud platform branch center module in real time;Cloud platform branch center module, for registering other cloud platform branch centers, management data access and order issue authority.Cloud platform multi-zone management center of the present invention monitors cloud platform branch center in real time, is intercepted when there is cloud platform branch center cisco unity malfunction by cloud platform multi-zone management center and records the interaction request with cloud platform branch center;Platform of internet of things is divided into multilevel field, higher level domain is managed can directly carry out data interaction between multiple subordinate domains, direct interaction between higher level domain and subordinate domain, domain at the same level, Signalling exchange is carried out after being forwarded between domain at the same level by its higher level domain, all domain authorization messages are shared;When being networked again after suspension between multiple domain cloud platform, possesses automatic registering functional between platform.
Description
Technical field
The invention belongs to the multiple domain platform of internet of things and multiple domain pipe of internet of things field, more particularly to a kind of layering of multiple domain
Reason method.
Background technology
With the development of technology of Internet of things, the connected network coverage of all kinds of Internet of Things awareness apparatus institutes construct thing by
Step expands, and many industries and some cross-region large enterprises have also not only been satisfied with to the monitoring demand of Internet of Things
Local monitor, it is required that carry out trans-city in a wide range of or even transprovincially networking monitoring, single Internet of Things center be difficult to load across
The data processing in region, therefore deploy in each department single Internet of Things center;But the problem of thus also bring new:Its
In most distinct issues be exactly that each Internet of Things center can not realize the shared of data, each region easily forms information island.With
The deepening continuously of Internet of things system application, the continuous expansion of sensing network scale, the integration demand of system are also increasingly strong, longitudinal direction
Need to form multistage platform of internet of things cascade, laterally to realize trans-regional, inter-trade information sharing.It is at present solution Internet of Things
Information is difficult to share this problem between center, and being managed bottom Internet of Things simultaneously using upper and lower level Internet of Things center mostly is perceived
This scheme of equipment.Such a mode directly uses the access front end gateway at higher level's Internet of Things center, to subordinate's Internet of Things center
Front end Internet of Things awareness apparatus is accessed.This mode is realized relatively easy, and generally Internet of Things center can be right
The Internet of Things awareness apparatus of some main flows is accessed, but is due to that higher level's Internet of Things center will be directly managed before a large amount of subordinates
Internet of Things awareness apparatus is held, system effectiveness and scalability can not meet requirement, and performance pressures are also very big and if upper and lower
When being operated to same equipment transmitting order to lower levels simultaneously rights conflict may occur for level management platform, although solve data sharing
The problem of, but the problem of bring new.
In summary, the problem of prior art is present be:The solution of the difficult problem of information sharing between current Internet of Things center
Method efficiency is low, poor expandability, and very big performance pressures are brought to server, and rights management is disorderly, easily occurs authority
Conflict.
The content of the invention
The problem of existing for prior art, the invention provides the multiple domain platform of internet of things and multiple domain of a kind of multiple domain layering
Management method.
The present invention is achieved in that a kind of platform of internet of things of multiple domain layering, the platform of internet of things of the multiple domain layering
Including:
Cloud platform multi-zone management center module, loading condition and operation for monitoring cloud platform branch center module in real time
State, the log-on message of storage cloud platform branch center module;It is responsible for processing event when there is the module failure of cloud platform branch center
Barrier;
Cloud platform branch center module, for registering other cloud platform branch centers, management data access and order issue power
Limit, is connected with its higher level's cloud platform branch center module.
Further, platform of internet of things is divided into multistage by the platform of internet of things of the multiple domain layering, and the management of higher level domain is multiple
Subordinate domain, directly carries out data interaction or Signalling exchange, higher level domain identical between the higher level domain being mutually authenticated and subordinate domain
The data interaction between data interaction, the different domain at the same level in higher level domain is carried out between domain at the same level needs higher level domain to authorize;Domain at the same level
Between Signalling exchange pass through higher level domain forwarding complete.
Further, registered step by step between multilevel field, after platform of internet of things suspension or power interruption recovering, Internet of Things cloud platform
Possess between branch center and equipment is shared between automatic registering functional, all Internet of Things cloud platform branch centers, using authorization message, and
Real-time synchronization is kept to update.
Further, the higher level domain, subordinate domain are divided into physical domain and domain logic, and each cloud platform branch center is a physics
Domain a, physical domain is divided into multiple domain logics, and multiple physical domains constitute a resource group.
Another object of the present invention is to provide a kind of multi-zone management method of the platform of internet of things of the multiple domain layering, institute
Multi-zone management method is stated to comprise the following steps:
Step one, cloud platform branch center B to cloud platform branch center A send registration request, the cloud platform branch center A according to
Cloud platform branch center B unique identities ID generates rights token Q, the token packet branch center containing cloud platform B unique identities
ID, token date of application, random generation character string key and cloud platform branch center B grade, then the token is encrypted
And return to cloud platform branch center B as registration reply, and by rights token Q and cloud platform branch center B unique identities mark
Know ID to be added in cloud platform branch center A authority information table, while the authority information table is synchronized into cloud platform multi-zone management
Center;And by cloud platform multi-zone management central synchronous to all cloud platform branch centers;
Step 2, cloud platform branch center A sends the first certification request, first certification to cloud platform multi-zone management center
Request is included in unique identity ID, the rights token Q of the cloud platform branch center A and the cloud platform point for asking interaction
Heart B ID;
Step 3, when cloud platform multi-zone management center receives the first certification request, takes according to the first certification request first
The authentication material of band enters certification to cloud platform branch center A, and certification is judged the interaction request by rear, judges failure then
Stop this interaction, judge by then providing interim token Q ', the token packet branch center containing cloud platform A unique identities ID,
The unique identity ID of token expiration, random generation character string key and cloud platform branch center B, and authority is synchronized to
Cloud platform branch center B;
Step 4, cloud platform branch center A sends the second certification request, second certification request to cloud platform branch center B
Unique identity ID including the cloud platform branch center A, interim token Q ';
Step 5, when cloud platform branch center B receives the second certification request, the authentication material pair carried according to the second request
Cloud platform branch center A carries out purview certification, if certification passes through, the interaction request is forwarded into corresponding domain logic, by logic
Domain is confirmed whether to respond the interaction request;
Step 6, confirms that result returns to corresponding implementing result according to domain logic;Any one domain logic can pass through institute
In the Administrator of physical domain, make the domain logic be not responding to include its higher level domain, subordinate domain, domain at the same level any interaction please
Ask.
Further, cloud platform branch center registration specifically includes following steps:
(1) cloud platform branch center Ex sends registration request to cloud platform branch center Dx, and the registration request carries cloud platform point
Center (Ex) unique identity ID;
(2) cloud platform branch center Dx generates authority order according to cloud platform branch center Ex unique identities ID and timestamp etc.
Board Q, wherein rights token Q are unique and bag cloud platform branch center Ex unique identities ID and the middle Ex grades of cloud platform point, token
Date of application and the character string key generated at random, and by rights token Q and cloud platform branch center Ex unique identities
ID, rights token Q are added in the total branch center Dx of cloud platform authority information table;
(3) token Q is encrypted for cloud platform control centre returns to cloud platform branch center Ex as registration reply;
(4) authority information is synchronized to cloud platform multi-zone management center by cloud platform branch center Dx, by cloud platform multiple domain pipe
Central synchronous is managed to all cloud platform branch centers succeeded in registration.
Further, cloud platform branch center authentication method comprises the following steps:
(1) cloud platform branch center Fx sends the first certification request to cloud platform multi-zone management center first, and described first recognizes
Card request includes unique identity ID, the data access token Q and interaction request target cloud of the cloud platform branch center Fx
Platform branch center Gx unique identity ID;
(2) platform multi-zone management center is received after cloud platform branch center Fx the first certification request, first according to first
Certification request is authenticated to it, if the legal cloud platform branch center succeeded in registration, then further confirms that cloud platform point
Center Fx and cloud platform branch center Gx whether be the superior and the subordinate domain domain either at the same level relation, if then generating interim token Q ' simultaneously
Cloud platform branch center Gx is synchronized to, otherwise stops interaction;
(3) cloud platform branch center Fx sends the second certification request to cloud platform branch center Gx, and the second certification request includes cloud
Platform branch center Fx unique identity ID and interim token Q ', cloud platform branch center Gx are recognized the second certification request
Card, stops interaction if authentification failure, and certification success then transfers to domain logic Gxy to carry out authority confirmation;
(4) domain logic Gxy confirms whether affiliated physical domain user carries out special interactive priority assignation to the logic, and judgement is
This interaction of no response, and will confirm that result returns to the physical domain;
(5) cloud platform branch center Gx decides whether to respond this interaction according to the confirmation result of domain logic, and will confirm that knot
Fruit returns to cloud platform branch center Fx.
Further, the step of cloud platform branch center fault handling method is as follows:
(1) Mx timings in cloud platform branch center send running state information to cloud platform multi-zone management center, described flat to cloud
Platform multi-zone management Spot detection is to cloud platform branch center Mx connections time-out, in the cloud platform branch center and its subordinate's cloud platform point
Heart Nr, cloud platform branch center Ns are marked.
(2) when failure cloud platform branch center Mx subordinate's cloud platform branch center loses with it to be connected, subordinate branch center to
Cloud platform multi-zone management center, which is sent, to be notified, the announcement information includes the failure cloud platform branch center Mx unique identities ID;
(3) when cloud platform multi-zone management center receives all subordinate's cloud platform branch centers of the failure cloud platform branch center
Failure notification when then confirm the failure branch center cisco unity malfunction, return to fault recognition result and give failure cloud platform branch center
All subordinate's cloud platform branch centers, intercept and record all interaction requests related to cloud platform branch center Mx;Subordinate Yun Ping
Platform branch center includes cloud platform branch center Nr, cloud platform branch center Ns;
(4) administrative staff's handling failure is notified;
(5) after administrative staff repair failure cloud platform branch center Mx, cloud platform branch center Mx from trend, put down thereon by level cloud
Platform branch center is registered, and authority administrative power is applied for cloud platform multi-zone management center after succeeding in registration.
Another object of the present invention is to provide a kind of multiple domain Internet of Things center of the platform of internet of things of the multiple domain layering
Fault handling method, the multiple domain Internet of Things central fault processing method comprises the following steps:
Step one, the timing of cloud platform branch center sends running state information to cloud platform multi-zone management center, and the cloud is put down
Platform multi-zone management Spot detection is to a certain cloud platform branch center connection time-out then to the branch center and its subordinate's cloud platform branch center
It is marked;
Step 2, when the failure cloud platform branch center and its subordinate's cloud platform branch center, which lose, to be connected, in lower fraction
The heart sends to cloud platform multi-zone management center and notified, the announcement information includes affiliated subordinate's cloud platform branch center unique identity
ID and its running status;
Step 3, when cloud platform multi-zone management receives all subordinate's cloud platform branch centers of the failure cloud platform branch center
Failure notification when then confirm the failure branch center cisco unity malfunction, notify keeper to handle the problem, intercept and record institute
There is the interaction request with the cloud platform branch center;
Step 4, when failure cloud platform branch center when resuming work, it is necessary to be noted again to cloud platform multi-zone management center
Its subordinate's cloud platform branch center is taken in volume, application.
Another object of the present invention is to provide a kind of Internet of Things for the platform of internet of things for applying the multiple domain layering.
Advantages of the present invention and good effect are:Utilize each cloud platform of the cloud platform multi-zone management center to platform of internet of things
The progress of branch center is monitored in real time, rights management, to ensure each domain cloud platform branch center data sharing, and in a certain Internet of Things
During the cisco unity malfunction of heart branch center, efficiently and rapidly the rights concerns of the cloud platform branch center can be handled.This hair
Bright cloud platform multi-zone management center monitors cloud platform branch center in real time, when there is cloud platform branch center cisco unity malfunction by cloud
Platform multi-zone management center intercepts and records all and cloud platform branch center interaction request;Platform of internet of things is divided into many
Level domain, higher level domain manages can directly carry out between multiple subordinate domains, direct interaction between higher level domain and subordinate domain, domain at the same level
Signalling exchange is carried out after being forwarded between data interaction, domain at the same level by its higher level domain, all domain authorization messages are shared;Multiple domain
Possesses automatic registering functional when being networked again after suspension between cloud platform, between platform.
Brief description of the drawings
Fig. 1 is multi-zone management method flow diagram provided in an embodiment of the present invention.
Fig. 2 is the Internet of Things cloud platform structural representation of multiple domain layering provided in an embodiment of the present invention;
Fig. 3 is the schematic diagram of a cloud platform branch center provided in an embodiment of the present invention register method.
Fig. 4 is a cloud platform branch center provided in an embodiment of the present invention with the schematic diagram of authentication method.
Fig. 5 is a cloud platform branch center provided in an embodiment of the present invention with the flow chart of authentication method.
Fig. 6 is the schematic diagram of a cloud platform branch center provided in an embodiment of the present invention fault handling method.
Embodiment
In order to make the purpose , technical scheme and advantage of the present invention be clearer, with reference to embodiments, to the present invention
It is further elaborated.It should be appreciated that the specific embodiments described herein are merely illustrative of the present invention, it is not used to
Limit the present invention.
The application principle of the present invention is explained in detail below in conjunction with the accompanying drawings.
The platform of internet of things of multiple domain layering provided in an embodiment of the present invention, including cloud platform multi-zone management center module, cloud
Platform branch center module.Wherein, the cloud platform multi-zone management center module monitors cloud platform branch center module in real time
Loading condition and running status, store the log-on message of cloud platform branch center module;When there is cloud platform branch center module
It is responsible for handling failure during failure;Cloud platform branch center module can register other cloud platform branch centers, manage the cloud
The data access of platform branch center module and order issue authority, keep being connected with its higher level's cloud platform branch center module.
The present invention uses modularization management, and whole platform of internet of things is divided into multistage as needed, and higher level domain can be managed
Multiple subordinate domains are managed, data interaction or Signalling exchange can be directly carried out between the higher level domain being mutually authenticated and subordinate domain, on
The data interaction that can only be carried out between data interaction, the different domain at the same level in higher level domain between the identical domain at the same level of level domain needs higher level
Domain is authorized;Signalling exchange between domain at the same level must be forwarded by higher level domain to be completed.Registered step by step between multilevel field, in Internet of Things
After platform suspension or power interruption recovering, possesses automatic registering functional between Internet of Things cloud platform branch center, all Internet of Things clouds are put down
Shared between platform branch center equipment, using etc. authorization message, and keep real-time synchronization to update.
Domain is divided into physical domain and domain logic, and each cloud platform branch center is a physical domain, and a physical domain can be divided
For multiple domain logics, multiple physical domains constitute a resource group.It is a physical domain, a thing to give tacit consent to a cloud platform branch center
Manage domain and include a domain logic, a resource group includes a physical domain.One of physical domain has unique authentication registration management
Facility registration, user log-in authentication in server, the responsible domain, equipment control, domain logic rights management;Domain logic is to set
The base unit of data access authority, can set the interaction request of which cloud platform branch center of logic domain response;One money
Source group is the base unit for setting application access rights, and the resource group can be set to respond the friendship of which third party's Internet of Things application
Mutually request.
Each physical domain has the independent keeper of oneself, and all physical domains share general user information, by mandate
Domestic consumer can realize cross-domain data access and equipment control in multiple domain Internet of things system platform.
As shown in Fig. 2 cloud platform branch center is successively decreased four grades successively comprising A, B, C, cloud platform branch center (A1) directly
Manage m subordinate's cloud platform branch center such as cloud platform branch center (B1), cloud platform branch center (B2) and can directly enter line number
According to this and Signalling exchange;Data interaction can be directly carried out between cloud platform branch center (B1) to cloud platform branch center (Bm), its
Signalling exchange must be forwarded by cloud platform branch center (A1);All cloud platform branch centers are in addition to cloud platform branch center (C2)
One physical domain, domain logic, a resource group;Platform branch center (C1) is different with platform branch center (C2) higher level domain, writes from memory
Data interaction can not be carried out, it is necessary to which higher level domain can just carry out data interaction after authorizing by recognizing;Cloud platform multi-zone management center monitoring
All cloud platform branch centers;Domain logic C21, C21 in platform branch center (C2) can be separately provided interactive authority, such as not with
Platform branch center (C1) carries out data interaction;Platform branch center (B1) and platform branch center (C1) constitute a resource group, resource
Group is the base unit of Internet of Things third-party application interaction request scope.
As shown in figure 1, multi-zone management method provided in an embodiment of the present invention comprises the following steps:
S101:Cloud platform branch center B sends registration request to cloud platform branch center A, and the cloud platform branch center A is according to cloud
Platform branch center B unique identities ID generations rights token Q, the token packet branch center containing cloud platform B unique identities ID,
Token date of application, random generation character string key and cloud platform branch center B grade, then the token is encrypted simultaneously
Cloud platform branch center B is returned to as registration reply, and by rights token Q and cloud platform branch center B unique identity
ID is added in cloud platform branch center A authority information table, while the authority information table is synchronized in cloud platform multi-zone management
The heart;And by cloud platform multi-zone management central synchronous to all cloud platform branch centers;
S102:Cloud platform branch center A sends the first certification request to cloud platform multi-zone management center, and first certification please
Ask the unique identity ID including the cloud platform branch center A, rights token Q and ask the cloud platform branch center of interaction
B ID;
S103:When cloud platform multi-zone management center receives the first certification request, carried first according to the first certification request
Authentication material enter certification to cloud platform branch center A, certification is judged the interaction request by rear, judge failure then stop
Only this interaction, judges by then providing interim token Q ', the token packet branch center containing cloud platform A unique identities ID, order
The unique identity ID of the board term of validity, random generation character string key and cloud platform branch center B, and authority is synchronized to cloud
Platform branch center B;
S104:Cloud platform branch center A sends the second certification request, the second certification request bag to cloud platform branch center B
Include the unique identity ID of the cloud platform branch center A, interim token Q ';
S105:When cloud platform branch center B receives the second certification request, the authentication material carried according to the second request is to cloud
Platform branch center A carries out purview certification, if certification passes through, the interaction request is forwarded into corresponding domain logic, by domain logic
It is confirmed whether to respond the interaction request;
S106:Confirm that result returns to corresponding implementing result according to domain logic;Any one domain logic can pass through place
The Administrator of physical domain, makes the domain logic be not responding to include its higher level domain, subordinate domain, any interaction request in domain at the same level.
The embodiment of the present invention also includes:A kind of multiple domain Internet of Things central fault processing method, specifically includes following steps:
Step 1: the timing of cloud platform branch center sends running state information to cloud platform multi-zone management center, the cloud is put down
Platform multi-zone management Spot detection is to a certain cloud platform branch center connection time-out then to the branch center and its subordinate's cloud platform branch center
It is marked.
Step 2: when the failure cloud platform branch center and its subordinate's cloud platform branch center lose and be connected, in lower fraction
The heart sends to cloud platform multi-zone management center and notified, the announcement information includes affiliated subordinate's cloud platform branch center unique identity
ID and its running status;
Step 3: when cloud platform multi-zone management receives all subordinate's cloud platform branch centers of the failure cloud platform branch center
Failure notification when then confirm the failure branch center cisco unity malfunction, notify keeper to handle the problem, intercept and record institute
There is the interaction request with the cloud platform branch center;
Step 4: when failure cloud platform branch center when resuming work, it is necessary to be noted again to cloud platform multi-zone management center
Its subordinate's cloud platform branch center is taken in volume, application;
The application principle of the present invention is further described below in conjunction with the accompanying drawings.
It is an object of the invention to provide a kind of multiple domain Internet of Things cloud platform system, using cloud platform multi-zone management center to thing
The progress of each cloud platform branch center of networked platforms is monitored in real time, rights management, to ensure that each domain cloud platform branch center data are total to
Enjoy, and in a certain Internet of Things center branch center cisco unity malfunction, power that can efficiently and rapidly to the cloud platform branch center
Limit problem is handled.
As shown in figure 3, the schematic flow sheet registered for S101 cloud platforms branch center in the present invention, wherein, in cloud platform point
Heart registration specifically includes following steps:
S201:Cloud platform branch center (Ex) sends registration request to cloud platform branch center (Dx), and the registration request carries cloud
Platform branch center (Ex) unique identity ID;
S202:Cloud platform branch center (Dx) is generated according to cloud platform branch center (Ex) unique identity ID and timestamp etc.
Rights token Q, wherein rights token Q are unique and bag cloud platform branch center (Ex) unique identities ID and cloud platform branch center
(Ex) grade, token date of application and the character string key generated at random, and by rights token Q and cloud platform branch center
(Ex) unique identity ID, rights token Q are added in the authority information table of the total branch center of cloud platform (Dx);
S203:Token Q is encrypted for cloud platform control centre returns to cloud platform branch center (Ex) as registration reply;
The authority information is synchronized to cloud platform multi-zone management center by S204, cloud platform branch center (Dx), many by cloud platform
Domain administrative center is synchronized to all cloud platform branch centers succeeded in registration.
As shown in figure 4, be a cloud platform branch center authentication method in S102 to S106 of the present invention flow chart wherein, tool
The authenticating step of body is as follows:
S301:Cloud platform branch center (Fx) sends the first certification request, described the to cloud platform multi-zone management center first
One certification request includes unique identity ID, data access token Q and the interaction request of the cloud platform branch center (Fx)
The unique identity ID of target cloud platform branch center (Gx);
S302:Platform multi-zone management center is received after the first certification request of cloud platform branch center (Fx), first basis
First certification request is authenticated to it, if the legal cloud platform branch center succeeded in registration, then further confirms that cloud is put down
Whether platform branch center (Fx) and cloud platform branch center (Gx) are the relation in the superior and the subordinate domain domain either at the same level, if then generating interim
Token Q ' is simultaneously synchronized to cloud platform branch center (Gx), otherwise stops interaction;
S303:Cloud platform branch center (Fx) sends the second certification request, the second certification request to cloud platform branch center (Gx)
Unique identity ID and interim token Q ' including cloud platform branch center (Fx), cloud platform branch center (Gx) is to the second certification
Request is authenticated, and stops interaction if authentification failure, and certification success then transfers to domain logic Gxy to carry out authority confirmation;
S304:Domain logic Gxy confirms whether affiliated physical domain user carries out special interactive priority assignation to the logic, judges
This interaction whether is responded, and will confirm that result returns to the physical domain;
S305:Cloud platform branch center (Gx) decides whether this interaction of response according to the confirmation result of domain logic, and will be true
Recognize result and return to cloud platform branch center (Fx).
As shown in fig. 6, the schematic diagram of a cloud platform branch center fault handling method for the embodiment of the present invention, wherein,
Specific authenticating step is as follows:
S501:Cloud platform branch center (Mx) regularly to cloud platform multi-zone management center send running state information, it is described to
Cloud platform multi-zone management Spot detection connects time-out to cloud platform branch center (Mx), to the cloud platform branch center and its subordinate Yun Ping
Platform branch center (Nr), cloud platform branch center (Ns) are marked.
S502:When subordinate's cloud platform branch center of failure cloud platform branch center (Mx) loses with it to be connected, in lower fraction
The heart sends to cloud platform multi-zone management center and notified, the announcement information includes failure cloud platform branch center (Mx) unique identities
ID;
S503:When cloud platform multi-zone management center is received in all subordinate's cloud platforms point of the failure cloud platform branch center
Then confirm that the failure branch center can not be just during the failure notification of the heart (including cloud platform branch center (Nr), cloud platform branch center (Ns))
Often work, returns to all subordinate cloud platform branch centers of the fault recognition result to failure cloud platform branch center, intercepts and record institute
There is the interaction request related to cloud platform branch center (Mx);
S504:Notify administrative staff's handling failure;
S505:When administrative staff repair failure cloud platform branch center (Mx) after, cloud platform branch center (Mx) from trend thereon
The registration of level cloud platform branch center, authority administrative power is applied for after succeeding in registration to cloud platform multi-zone management center.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all essences in the present invention
Any modifications, equivalent substitutions and improvements made within refreshing and principle etc., should be included in the scope of the protection.
Claims (10)
1. a kind of platform of internet of things of multiple domain layering, it is characterised in that the platform of internet of things of the multiple domain layering includes:
Cloud platform multi-zone management center module, loading condition and operation shape for monitoring cloud platform branch center module in real time
State, the log-on message of storage cloud platform branch center module;It is responsible for handling failure when there is the module failure of cloud platform branch center;
Cloud platform branch center module, for registering other cloud platform branch centers, management data access and order issue authority, with
Its higher level's cloud platform branch center module connection.
2. the platform of internet of things of multiple domain layering as claimed in claim 1, it is characterised in that the Internet of Things of the multiple domain layering is put down
Platform of internet of things is divided into multistage by platform, and higher level domain manages multiple subordinate domains, straight between the higher level domain being mutually authenticated and subordinate domain
Tap into row data interaction or Signalling exchange, carry out data interaction between higher level domain identical peer domain, different same in higher level domain
Data interaction between level domain needs higher level domain to authorize;Signalling exchange between domain at the same level is forwarded by higher level domain to be completed.
3. the platform of internet of things of multiple domain layering as claimed in claim 2, it is characterised in that registered step by step between multilevel field,
After platform of internet of things suspension or power interruption recovering, possess automatic registering functional, all Internet of Things between Internet of Things cloud platform branch center
Equipment is shared between net cloud platform branch center, using authorization message, and keep real-time synchronization to update.
4. the platform of internet of things of multiple domain layering as claimed in claim 2, it is characterised in that the higher level domain, subordinate domain are divided into
Physical domain and domain logic, each cloud platform branch center are a physical domains, and a physical domain is divided into multiple domain logics, multiple things
Manage domain and constitute a resource group.
5. a kind of multi-zone management method of the platform of internet of things of multiple domain layering as claimed in claim 1, it is characterised in that described many
Area management method comprises the following steps:
Step one, cloud platform branch center B sends registration request to cloud platform branch center A, and the cloud platform branch center A is flat according to cloud
Platform branch center B unique identities ID generates rights token Q, the token packet branch center containing cloud platform B unique identities ID, order
Board date of application, random generation character string key and cloud platform branch center B grade, are then encrypted and make to the token
Cloud platform branch center B is returned to for registration reply, and by rights token Q and cloud platform branch center B unique identity ID
In the authority information table for being added to cloud platform branch center A, while the authority information table is synchronized into cloud platform multi-zone management center;
And by cloud platform multi-zone management central synchronous to all cloud platform branch centers;
Step 2, cloud platform branch center A sends the first certification request, first certification request to cloud platform multi-zone management center
Unique identity ID, rights token Q including the cloud platform branch center A and the cloud platform branch center B for asking interaction
ID;
Step 3, when cloud platform multi-zone management center receives the first certification request, is carried according to the first certification request first
Authentication material enters certification to cloud platform branch center A, and certification is judged the interaction request by rear, judges that failure then stops
This interaction, judges by then providing interim token Q ', the token packet branch center containing cloud platform A unique identities ID, token
The unique identity ID of the term of validity, random generation character string key and cloud platform branch center B, and authority is synchronized to cloud put down
Platform branch center B;
Step 4, cloud platform branch center A sends the second certification request to cloud platform branch center B, and second certification request includes
The unique identity ID of the cloud platform branch center A, interim token Q ';
Step 5, when cloud platform branch center B receives the second certification request, the authentication material carried according to the second request is flat to cloud
Platform branch center A carries out purview certification, if certification passes through, the interaction request is forwarded into corresponding domain logic, true by domain logic
Recognize and whether respond the interaction request;
Step 6, confirms that result returns to corresponding implementing result according to domain logic;Any one domain logic can pass through place thing
The Administrator in domain is managed, makes the domain logic be not responding to include its higher level domain, subordinate domain, any interaction request in domain at the same level.
6. multi-zone management method as claimed in claim 5, it is characterised in that the registration of cloud platform branch center specifically includes following step
Suddenly:
(1) cloud platform branch center Ex sends registration request to cloud platform branch center Dx, and the registration request carries cloud platform branch center
(Ex) unique identity ID;
(2) cloud platform branch center Dx generates rights token Q according to cloud platform branch center Ex unique identities ID and timestamp etc.,
Wherein rights token Q is unique and bag cloud platform branch center Ex unique identities ID and cloud platform branch center Ex grades, token Shen
Please date and the character string key that generates at random, and by rights token Q and cloud platform branch center Ex unique identities ID,
Rights token Q is added in the total branch center Dx of cloud platform authority information table;
(3) token Q is encrypted for cloud platform control centre returns to cloud platform branch center Ex as registration reply;
(4) authority information is synchronized to cloud platform multi-zone management center by cloud platform branch center Dx, in cloud platform multi-zone management
The heart is synchronized to all cloud platform branch centers succeeded in registration.
7. multi-zone management method as claimed in claim 5, it is characterised in that cloud platform branch center authentication method includes following step
Suddenly:
(1) cloud platform branch center Fx sends the first certification request to cloud platform multi-zone management center first, and first certification please
Ask the unique identity ID including the cloud platform branch center Fx, data access token Q and interaction request target cloud platform
Branch center Gx unique identity ID;
(2) platform multi-zone management center is received after cloud platform branch center Fx the first certification request, first according to the first certification
Request is authenticated to it, if the legal cloud platform branch center succeeded in registration, then further confirm that cloud platform branch center
Whether Fx and cloud platform branch center Gx is the relation in the superior and the subordinate domain domain either at the same level, if then generating interim token Q ' and synchronous
To cloud platform branch center Gx, otherwise stop interaction;
(3) cloud platform branch center Fx sends the second certification request to cloud platform branch center Gx, and the second certification request includes cloud platform
Branch center Fx unique identity ID and interim token Q ', cloud platform branch center Gx are authenticated to the second certification request,
Stop interaction if authentification failure, certification success then transfers to domain logic Gxy to carry out authority confirmation;
(4) domain logic Gxy confirms whether affiliated physical domain user carries out special interactive priority assignation to the logic, judges whether to ring
Should be secondary interactive, and will confirm that result returns to the physical domain;
(5) cloud platform branch center Gx decides whether to respond this interaction according to the confirmation result of domain logic, and will confirm that result is returned
Back to cloud platform branch center Fx.
8. multi-zone management method as claimed in claim 5, it is characterised in that the step of the fault handling method of cloud platform branch center
It is as follows:
(1) Mx timings in cloud platform branch center send running state information to cloud platform multi-zone management center, described many to cloud platform
Domain administrative center detects cloud platform branch center Mx connections time-out, to the cloud platform branch center and its subordinate's cloud platform branch center
Nr, cloud platform branch center Ns are marked;
(2) when failure cloud platform branch center Mx subordinate's cloud platform branch center loses with it to be connected, subordinate branch center is flat to cloud
Platform multi-zone management center, which is sent, to be notified, the announcement information includes the failure cloud platform branch center Mx unique identities ID;
(3) when cloud platform multi-zone management center receives the event of all subordinate's cloud platform branch centers of the failure cloud platform branch center
Barrier then confirms the failure branch center cisco unity malfunction when notifying, return to institute of the fault recognition result to failure cloud platform branch center
There is subordinate's cloud platform branch center, intercept and record all interaction requests related to cloud platform branch center Mx;Subordinate's cloud platform point
Center includes cloud platform branch center Nr, cloud platform branch center Ns;
(4) administrative staff's handling failure is notified;
(5) after administrative staff repair failure cloud platform branch center Mx, cloud platform branch center Mx from trend, divide thereon by level cloud platform
Center is registered, and authority administrative power is applied for cloud platform multi-zone management center after succeeding in registration.
9. a kind of multiple domain Internet of Things central fault processing method of the platform of internet of things of multiple domain layering as claimed in claim 1, its
It is characterised by, the multiple domain Internet of Things central fault processing method comprises the following steps:
Step one, cloud platform branch center timing sends running state information to cloud platform multi-zone management center, and the cloud platform is more
Domain administrative center detects a certain cloud platform branch center connection time-out and then the branch center and its subordinate's cloud platform branch center is carried out
Mark;
Step 2, when the failure cloud platform branch center and its subordinate's cloud platform branch center, which lose, to be connected, subordinate branch center to
Cloud platform multi-zone management center, which is sent, to be notified, the announcement information include affiliated subordinate's cloud platform branch center unique identity ID and
Its running status;
Step 3, when cloud platform multi-zone management receives the event of all subordinate's cloud platform branch centers of the failure cloud platform branch center
Barrier notify when then confirm the failure branch center cisco unity malfunction, notify keeper to handle the problem, intercept and record it is all with
The interaction request of the cloud platform branch center;
Step 4, when failure cloud platform branch center when resuming work, it is necessary to be re-registered to cloud platform multi-zone management center, Shen
It please take over its subordinate's cloud platform branch center.
10. the Internet of Things for the platform of internet of things that multiple domain described in a kind of application Claims 1 to 4 any one is layered.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710132080.XA CN106982136B (en) | 2017-03-07 | 2017-03-07 | Multi-domain layered multi-domain Internet of things platform and multi-domain management method |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710132080.XA CN106982136B (en) | 2017-03-07 | 2017-03-07 | Multi-domain layered multi-domain Internet of things platform and multi-domain management method |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN106982136A true CN106982136A (en) | 2017-07-25 |
| CN106982136B CN106982136B (en) | 2020-03-10 |
Family
ID=59338831
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710132080.XA Active CN106982136B (en) | 2017-03-07 | 2017-03-07 | Multi-domain layered multi-domain Internet of things platform and multi-domain management method |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN106982136B (en) |
Cited By (13)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107454193A (en) * | 2017-09-08 | 2017-12-08 | 深圳市智物联网络有限公司 | The management method and Internet of Things management platform of a kind of frequency converter |
| CN107577556A (en) * | 2017-08-04 | 2018-01-12 | 西安电子科技大学 | A kind of data back up method of the domain collaborative multi based on Internet of Things layer architecture |
| CN107995290A (en) * | 2017-12-01 | 2018-05-04 | 郑州云海信息技术有限公司 | A kind of register method and Accreditation System for differentiated control |
| CN108183842A (en) * | 2018-01-15 | 2018-06-19 | 郑州云海信息技术有限公司 | The superior and the subordinate's management platform connection system and method in a kind of server hierarchy management |
| CN108833464A (en) * | 2018-04-13 | 2018-11-16 | 西安电子科技大学 | Confederate state's formula multiple domain Internet of Things cooperative system and method, smart city, smart home |
| CN109688199A (en) * | 2018-11-28 | 2019-04-26 | 西安电子科技大学 | A kind of multiple domain layering Internet of Things alliance platform chain and its sharding method, computer |
| CN110071948A (en) * | 2018-01-23 | 2019-07-30 | 中国电信股份有限公司 | Internet of Things region grading control method, system and Internet of things system |
| CN110445868A (en) * | 2019-08-12 | 2019-11-12 | 杭州安恒信息技术股份有限公司 | The Internet of Things Situation Awareness method and system of multi-stage cascade |
| CN110505096A (en) * | 2019-08-27 | 2019-11-26 | 西安闻泰电子科技有限公司 | Internet of things equipment management method, device, equipment and medium |
| CN110611586A (en) * | 2019-08-28 | 2019-12-24 | 视联动力信息技术股份有限公司 | Safety detection method and system |
| CN111770179A (en) * | 2020-06-29 | 2020-10-13 | 重庆紫光华山智安科技有限公司 | High-performance high-availability cloud networking gateway implementation method, medium and terminal |
| CN114172918A (en) * | 2021-12-08 | 2022-03-11 | 天翼物联科技有限公司 | Data synchronization method and device, computer equipment and storage medium |
| CN114520760A (en) * | 2020-11-20 | 2022-05-20 | 华为技术有限公司 | Cross-domain fault analysis method and system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104184819A (en) * | 2014-08-29 | 2014-12-03 | 城云科技(杭州)有限公司 | Multi-hierarchy load balancing cloud resource monitoring method |
| CN104865836A (en) * | 2015-05-29 | 2015-08-26 | 四川长虹电器股份有限公司 | Intelligent household management system |
| CN105871854A (en) * | 2016-04-11 | 2016-08-17 | 浙江工业大学 | Self-adaptive cloud access control method based on dynamic authorization mechanism |
-
2017
- 2017-03-07 CN CN201710132080.XA patent/CN106982136B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104184819A (en) * | 2014-08-29 | 2014-12-03 | 城云科技(杭州)有限公司 | Multi-hierarchy load balancing cloud resource monitoring method |
| CN104865836A (en) * | 2015-05-29 | 2015-08-26 | 四川长虹电器股份有限公司 | Intelligent household management system |
| CN105871854A (en) * | 2016-04-11 | 2016-08-17 | 浙江工业大学 | Self-adaptive cloud access control method based on dynamic authorization mechanism |
Non-Patent Citations (1)
| Title |
|---|
| 李斌勇等: ""云服务平台多层网络协同控制模型"", 《计算机集成制造系统》 * |
Cited By (18)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN107577556A (en) * | 2017-08-04 | 2018-01-12 | 西安电子科技大学 | A kind of data back up method of the domain collaborative multi based on Internet of Things layer architecture |
| CN107454193A (en) * | 2017-09-08 | 2017-12-08 | 深圳市智物联网络有限公司 | The management method and Internet of Things management platform of a kind of frequency converter |
| CN107995290A (en) * | 2017-12-01 | 2018-05-04 | 郑州云海信息技术有限公司 | A kind of register method and Accreditation System for differentiated control |
| CN108183842A (en) * | 2018-01-15 | 2018-06-19 | 郑州云海信息技术有限公司 | The superior and the subordinate's management platform connection system and method in a kind of server hierarchy management |
| CN110071948B (en) * | 2018-01-23 | 2022-03-08 | 中国电信股份有限公司 | Internet of things domain control method and system and Internet of things system |
| CN110071948A (en) * | 2018-01-23 | 2019-07-30 | 中国电信股份有限公司 | Internet of Things region grading control method, system and Internet of things system |
| CN108833464B (en) * | 2018-04-13 | 2021-05-11 | 西安电子科技大学 | Binding type multi-domain Internet of things cooperation system and method, smart city and smart home |
| CN108833464A (en) * | 2018-04-13 | 2018-11-16 | 西安电子科技大学 | Confederate state's formula multiple domain Internet of Things cooperative system and method, smart city, smart home |
| CN109688199B (en) * | 2018-11-28 | 2021-12-10 | 西安电子科技大学 | Multi-domain layered Internet of things alliance chain platform, fragmentation method thereof and computer |
| CN109688199A (en) * | 2018-11-28 | 2019-04-26 | 西安电子科技大学 | A kind of multiple domain layering Internet of Things alliance platform chain and its sharding method, computer |
| CN110445868A (en) * | 2019-08-12 | 2019-11-12 | 杭州安恒信息技术股份有限公司 | The Internet of Things Situation Awareness method and system of multi-stage cascade |
| CN110505096A (en) * | 2019-08-27 | 2019-11-26 | 西安闻泰电子科技有限公司 | Internet of things equipment management method, device, equipment and medium |
| CN110611586A (en) * | 2019-08-28 | 2019-12-24 | 视联动力信息技术股份有限公司 | Safety detection method and system |
| CN111770179A (en) * | 2020-06-29 | 2020-10-13 | 重庆紫光华山智安科技有限公司 | High-performance high-availability cloud networking gateway implementation method, medium and terminal |
| CN114520760A (en) * | 2020-11-20 | 2022-05-20 | 华为技术有限公司 | Cross-domain fault analysis method and system |
| CN114520760B (en) * | 2020-11-20 | 2023-08-22 | 华为技术有限公司 | Cross-domain fault analysis method and system |
| CN114172918A (en) * | 2021-12-08 | 2022-03-11 | 天翼物联科技有限公司 | Data synchronization method and device, computer equipment and storage medium |
| CN114172918B (en) * | 2021-12-08 | 2023-08-01 | 天翼物联科技有限公司 | Data synchronization method, device, computer equipment and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN106982136B (en) | 2020-03-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN106982136A (en) | The multiple domain platform of internet of things and multi-zone management method of a kind of multiple domain layering | |
| US11895242B2 (en) | Data processing method and apparatus in blockchain network, storage medium, and computer device | |
| FI129087B (en) | Blockchain network accessing method and system | |
| CN107231299A (en) | A kind of chain route and realized the system that block chain communicates across chain | |
| CN101714996B (en) | Authentication system and method based on peer-to-peer computing network | |
| CN110494875A (en) | The safety of private key for dynamic node group reuses | |
| WO2020177508A1 (en) | Block chain construction and group division method and apparatus | |
| CN110266655A (en) | A kind of across chain interconnected method, equipment and system based on block chain | |
| CN108667612A (en) | A kind of trust service framework and method based on block chain | |
| CN110059494A (en) | A kind of method for secret protection and block catenary system of block chain transaction data | |
| CN108650262A (en) | A kind of cloud platform extended method and system based on micro services framework | |
| CN108810137A (en) | A kind of alliance's block catenary system | |
| CN107819848A (en) | A kind of internet of things equipment autonomy interconnected method based on block chain | |
| CN104158684B (en) | Gateway device status tracking based on open type intelligent Networking Platform | |
| CN111711526B (en) | Method and system for consensus of block chain nodes | |
| CN111612466A (en) | Consensus and resource transmission method, device and storage medium | |
| CN113259455A (en) | Cross-subnet interaction method and device | |
| CN109919771A (en) | A kind of hierarchical block chain network and method of commerce applied to industry internet | |
| Kim et al. | A study of block chain-based peer-to-peer energy loan service in smart grid environments | |
| Han et al. | Blockchain based spectrum sharing algorithm | |
| CN102893579B (en) | For provide method, node and the equipment of bill in communication system | |
| CN101610515A (en) | A kind of Verification System and method based on WAPI | |
| WO2023124746A1 (en) | Cross-subnet interaction permission control | |
| CN110278255A (en) | A kind of method and device of the Internet of Things IOT communication between devices based on block chain | |
| CN113259461B (en) | Cross-chain interaction method and block chain system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |