CN107124724A - A kind of Rare Book Use case system cross-network segment multinode network managing device - Google Patents

A kind of Rare Book Use case system cross-network segment multinode network managing device Download PDF

Info

Publication number
CN107124724A
CN107124724A CN201710378304.5A CN201710378304A CN107124724A CN 107124724 A CN107124724 A CN 107124724A CN 201710378304 A CN201710378304 A CN 201710378304A CN 107124724 A CN107124724 A CN 107124724A
Authority
CN
China
Prior art keywords
wireless
relay apparatus
wireless relay
network
use case
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710378304.5A
Other languages
Chinese (zh)
Inventor
王志红
李学思
姜开
苏忠威
范新中
张�浩
要炜
杨鑑
单亦姣
雷豹
丁国元
方泽平
唐念华
程蕾
王晓鹏
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Academy of Launch Vehicle Technology CALT
Original Assignee
China Academy of Launch Vehicle Technology CALT
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Academy of Launch Vehicle Technology CALT filed Critical China Academy of Launch Vehicle Technology CALT
Priority to CN201710378304.5A priority Critical patent/CN107124724A/en
Publication of CN107124724A publication Critical patent/CN107124724A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W16/00Network planning, e.g. coverage or traffic planning tools; Network deployment, e.g. resource partitioning or cells structures
    • H04W16/18Network planning tools
    • H04W16/20Network planning tools for indoor coverage or short range network deployment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/08Access security
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W28/00Network traffic management; Network resource management
    • H04W28/02Traffic management, e.g. flow control or congestion control
    • H04W28/08Load balancing or load distribution

Abstract

The invention belongs to wireless network communication technique, it is adaptable to network management and the communication technology in indoor high-density wireless environment;A kind of Rare Book Use case system cross-network segment multinode network management system; including N number of multi-functional instrument, M wireless relay apparatus, interchanger, controller, router and server; the interchanger respectively with controller and router wired connection; router and server wired connection; each between wireless relay apparatus and multiple multi-functional instruments by wireless two-way communication, the wireless relay apparatus again with interchanger wired connection;Controller is responsible for the access and control of whole wireless network, the forwarding of data and statistics, the monitoring of wireless relay apparatus and configuration, roaming management and network security control etc.;Router is responsible for the interconnection of Route Selection, wireless channel equalization, Intranet and outer net connection of wireless network;Wireless relay apparatus is responsible for the encryption and decryption, wireless physical layer function and the management for receiving controller of air message.

Description

A kind of Rare Book Use case system cross-network segment multinode network managing device
Technical field
The invention belongs to wireless network communication technique, it is adaptable to network management and communication in indoor high-density wireless environment Technology.
Background technology
Ancient books is the keeper and witness of history culture, and some rare books also have antique value, in modem long jump skill collection Occupy special status in book.In the ancient books spread now, paper turns into the main carriers of shorthand.But, paper is in sunlight In the case of irradiation or hot humid, oxidation reaction and hydrolysis easily occur for the cellulose components contained, and such ancient books just holds It is easy jaundice, embrittlement, frangible.In addition, mould, moth, extreme misery disaster etc. are also to influence the factor of Rare Book Use.
Stored more than existing Rare Book Use case using wooden guard box, casing does not possess insect prevention, waterproof, fireproof work(in itself Energy;Guard method is more outmoded, and the general constant temperature and humidity that storage condition is realized by manual operation, operating cost is high;Information-based journey Degree is relatively low, it is difficult to realize the accurate quick positioning of ancient books, it is impossible to meet the overall war preparedness storage requirements of ancient books.Used in this project Intelligent Rare Book Use case, using auto monitoring and measurement and control environmental aspect, each container is equipped with a wireless WiFi and led to Interrogate in terminal device, a storeroom, there are hundreds of ancient books containers, therefore, be accomplished by possessing in an ancient books storeroom Hundreds of WiFi terminals are simultaneously using the RFDC and managerial ability of network.
Great amount of terminals is accessed high-density wireless environment simultaneously within a certain period of time in the prior art, need to be one by one to trunking It is configured and safeguards, workload is big and error rate is high;It is unauthorized because the wireless channel using opening is as transmission medium User is easily attacked network or stolen the information of authorized user;Many wireless relay in high density network are interfered sternly The reliability and resource utilization of network are have impact on again.
The content of the invention
(1) technical problem solved
The present invention overcomes the deficiencies in the prior art, using wireless relay apparatus, by matching somebody with somebody to Power Control and website layout Put many relaying signals of solution and cover comprehensive sex chromosome mosaicism;Set by unified configuration and the optimization of channel distribution to wireless relay apparatus Meter, which is solved, closes on relaying interference problem.
(2) technical scheme
A kind of Rare Book Use case system cross-network segment multinode network managing device, including during N number of multi-functional instrument, M are wireless After passing through nothing between equipment, interchanger, controller, router and server, each wireless relay apparatus and multiple multi-functional instruments Line two-way communication, the wireless relay apparatus and interchanger wired connection, N > M;The interchanger respectively with controller, route Device wired connection, the router and the server wired connection;Controller be responsible for whole wireless network access and control, The forwarding of data and statistics, the monitoring of wireless relay apparatus and configuration, roaming management and network security control;Router is responsible for Route Selection, wireless channel equalization, Intranet interconnection and the outer net connection of wireless network;Wireless relay apparatus is responsible for air message Encryption and decryption, wireless physical layer function and the management for receiving controller.
Further, wireless relay apparatus determines two-way communication relation according to the position and signal intensity of multi-functional instrument, often Platform trunking sets up two-way communication with 2-30 platform wireless relay apparatus, it is ensured that signal intensity, to wireless from Power Control Trunking carries out signal overlay management, reduces the interference between wireless relay apparatus, improves the utilization rate etc. of whole network.
Further, communicated between wireless relay apparatus and controller using CAPWAP agreements, so as to ensure wireless Normalization information between trunking and controller is exchanged, and facilitates subsequent control policy resolution control instruction.
Further, the wireless two-way communication between multi-functional instrument and a wireless relay apparatus shields all high speed protocols Speed, improves the reliability and stability that multinode shares network.
Further, authorized first by wireless relay apparatus when multi-functional instrument accesses network, into wireless network, Server end is then arrived again carries out concentration mandate;The pressure that centralized certification is brought to background server is solved, is effectively ensured The smooth access of user;Pass through multi-stage authentication simultaneously, it is ensured that the security of network.
Further, multi-functional instrument is as follows by wireless relay apparatus identifying procedure:A1:Multi-functional instrument is set to wireless relay Preparation send certification initiation command;A2:Wireless relay apparatus sends to multi-functional instrument and asks its id information order;A3:Multi-functional instrument Self-ID information is sent to wireless relay apparatus;A4:Wireless relay apparatus sends two-way authentication order to multi-functional instrument;A5:It is many Function instrument sends the information such as handshaking information, including its own protocol version number, AES;A6:Wireless relay apparatus is to multi-functional Instrument sends shake hands response message, including its own protocol version number, shake hands end, digital signature;A7:During multi-functional instrument checking is wireless The legitimacy of information is sent after equipment, after being verified, letter is terminated to wireless relay apparatus transmission certificate, temporary key, certification Number.
Further, server end carries out concentrating authorization flow as follows:B1:Wireless relay verifies the conjunction of multi-functional instrument certificate Method, by rear to server end transmission authorization requests;B2:Correspondence is authorized and ordered by server according to the safe condition of multi-functional instrument Order is sent to wireless relay apparatus;B3:Wireless relay apparatus sends Authorization result by multi-functional instrument.
Further, in the data encryption communication after Certificate Authority terminates, using multi-key cipher be mixed to form one it is new Key so ensures that message transmissions are all encrypted using different keys each time as the key of encrypted message.
Further, data encryption communication process is as follows:C1:It is calculated to the temporary key that certification and licensing process are produced MD5 values;C2:Encryption key is used as using 10 after the MD5 values;C3 during the communication is set up and is transmitted, by TKIP plus Close algorithm obtains encryption data and is transmitted.
(3) beneficial effects of the present invention:
Solve the high-density wireless environment radiofrequency signal of great amount of terminals simultaneously between access, wireless relay within a certain period of time The design of load balancing and the network architecture between management, wireless relay, by the unified configuration relayed more and channel distribution Optimization design solve the signal that relays more and cover comprehensive sex chromosome mosaicism and close on relaying interference problem;Prevented using multiple means The illegal access of wireless terminal and the safety and reliability for improving wireless network.
Brief description of the drawings
Fig. 1:Rare Book Use case system cross-network segment multinode network managing device structure chart of the present invention;
Wherein:1. the server of 5. router of multi-functional instrument 2. wireless relay apparatus, 3. interchanger, 4. controller 6.;
Fig. 2:Rare Book Use case system cross-network segment multinode network managing device multi-stage authentication flow chart of the present invention.
Embodiment
Except embodiment described below, the present invention can also have other embodiments or implement by different way.Therefore, It should be known that detailed the invention is not limited in the structure of described in the following description or shown in the accompanying drawings part Situation.
As shown in figure 1, Rare Book Use case system cross-network segment multinode network managing device, multinode network includes many work( Energy instrument 1, wireless relay apparatus 2, interchanger 3, controller 4, router 5 and server 6, every wireless relay apparatus 2 and 2-30 By wireless two-way communication between individual multi-functional instrument 1, wireless relay apparatus 2 and the wired connection of interchanger 3,3 points of the interchanger Not with controller 4 and the wired connection of router 5, router 5 and the wired connection of server 6;Controller 4 is responsible for whole wireless network Access and control, the forwarding of data and statistics, the monitoring of wireless relay apparatus and configuration, roaming management and network security control System;Router 5 is responsible for the interconnection of Route Selection, wireless channel equalization, Intranet and outer net connection of wireless network;Wireless relay is set Standby 2 are responsible for encryption and decryption, wireless physical layer function and the management for receiving controller of air message.
Wireless relay apparatus 2 determines two-way communication relation according to the position and signal intensity of multi-functional instrument 1, it is ensured that signal Intensity, signal overlay management is carried out from Power Control to wireless relay apparatus, is reduced dry between wireless relay apparatus 2 Disturb, improve utilization rate of whole network etc..
Communicated between wireless relay apparatus 2 and controller 4 using CAPWAP agreements, so as to ensure wireless relay apparatus Normalization information between 2 and controller 3 is exchanged, and facilitates subsequent control policy resolution control instruction;Every multi-functional instrument 1 and one The closest wireless relay apparatus 2 of platform sets up wireless two-way communication, shields all high speed protocol speed, improves multinode and shares The reliability and stability of network.
Multi-functional instrument 1 is authorized by wireless relay apparatus 2 first when accessing network, into wireless network, then again Concentration mandate is carried out to the end of server 5;The pressure that centralized certification is brought to background server 5 is solved, user is effectively ensured Smooth access;Pass through multi-stage authentication simultaneously, it is ensured that the security of network.
As shown in Fig. 2 multi-functional instrument 1 is as follows by the identifying procedure of wireless relay apparatus 2:A1:Multi-functional instrument 1 is in wireless Certification initiation command is sent after equipment 2;A2:Wireless relay apparatus 2 sends to multi-functional instrument 1 and asks its id information order;A3:It is many Function instrument 1 sends self-ID information to wireless relay apparatus 2;A4:Wireless relay apparatus 2 sends two-way authentication to multi-functional instrument 1 Order;A5:Multi-functional instrument 1 sends the information such as handshaking information, including its own protocol version number, AES;A6:Wireless relay is set Standby 2 send shake hands response message, including its own protocol version number, shake hands end, digital signature to multi-functional instrument 1;A7:It is multi-functional The checking wireless relay apparatus of instrument 1 sends the legitimacy of information, after being verified, and sends certificate to wireless relay apparatus 2, interim close Key, certification end signal
The end of server 5 carries out concentrating authorization flow as follows:B1:Wireless relay verifies the legitimacy of multi-functional instrument certificate, leads to Later authorization requests are sent to server end;B2:Server sends correspondence authorization command according to the safe condition of multi-functional instrument To wireless relay apparatus;B3:Wireless relay apparatus sends Authorization result by multi-functional instrument;
In the data encryption communication after Certificate Authority terminates, a new key is mixed to form as adding using multi-key cipher The key of secret report text, so ensures that message transmissions are all encrypted using different keys each time, the encryption and communication of data Flow is as follows:C1:Its MD5 value is calculated to the temporary key that certification and licensing process are produced;C2:Using 10 after the MD5 values as Encryption key;C3 obtains encryption data during the communication is set up and is transmitted, by TKIP encryption algorithm and is transmitted.
The present invention is explained in detail above in conjunction with drawings and examples, but the present invention is not limited to above-mentioned implementation Example, in the knowledge that those of ordinary skill in the art possess, can also do on the premise of present inventive concept is not departed from Go out various change.The content not being described in detail in the present invention can use prior art.

Claims (9)

1. a kind of Rare Book Use case system cross-network segment multinode network managing device, it is characterised in that system includes N number of multi-functional Instrument, M wireless relay apparatus, interchanger, controller, router and server, each wireless relay apparatus with it is multiple multi-functional By wireless two-way communication between instrument, the wireless relay apparatus and interchanger wired connection, N > M;The interchanger respectively with Controller, router wired connection, the router and the server wired connection;Controller is responsible for whole wireless network Access and control, the forwarding of data and statistics, the monitoring of wireless relay apparatus and configuration, roaming management and network security control System;Router is responsible for the interconnection of Route Selection, wireless channel equalization, Intranet and outer net connection of wireless network;Wireless relay is set Encryption and decryption, wireless physical layer function and the management for receiving controller of standby responsible air message.
2. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 1, it is characterised in that in wireless Two-way communication relation is determined according to the position and signal intensity of multi-functional instrument after equipment, during every trunking and 2-30 platforms are wireless Two-way communication is set up after equipment.
3. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 1 or 2, it is characterised in that nothing Communicated between line trunking and controller using CAPWAP agreements.
4. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 1 or 2, it is characterised in that many Wireless two-way communication between function instrument and wireless relay apparatus shields all high speed protocol speed.
5. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 1 or 2, it is characterised in that many Function instrument is authorized by wireless relay apparatus first when accessing network, into wireless network, is then entered again to server end Row, which is concentrated, to be authorized.
6. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 5, it is characterised in that multi-functional Instrument is as follows by wireless relay apparatus identifying procedure:A1:Multi-functional instrument sends certification initiation command to wireless relay apparatus;A2: Wireless relay apparatus sends to multi-functional instrument and asks its id information order;A3:Multi-functional instrument sends itself to wireless relay apparatus Id information;A4:Wireless relay apparatus sends two-way authentication order to multi-functional instrument;A5:Multi-functional instrument sends handshaking information, including The information such as its own protocol version number, AES;A6:Wireless relay apparatus sends response message of shaking hands to multi-functional instrument, including Its own protocol version number, shake hands end, digital signature;A7:Multi-functional instrument checking wireless relay apparatus sends the legitimacy of information, After being verified, certificate, temporary key, certification end signal are sent to wireless relay apparatus.
7. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 5, it is characterised in that server End carries out concentrating authorization flow as follows:B1:Wireless relay verifies the legitimacy of multi-functional instrument certificate, is sent out by backward server end Send authorization requests;B2:Correspondence authorization command is sent to wireless relay apparatus by server according to the safe condition of multi-functional instrument; B3:Wireless relay apparatus sends Authorization result by multi-functional instrument.
8. Rare Book Use case system cross-network segment multinode network managing device as claimed in claims 6 or 7, it is characterised in that Certificate Authority terminate after data encryption communication in, a new key is mixed to form as the close of encrypted message using multi-key cipher Key, each time message transmissions be all encrypted using different keys.
9. Rare Book Use case system cross-network segment multinode network managing device as claimed in claim 8, it is characterised in that data Coded communication flow is as follows:C1:Its MD5 value is calculated to the temporary key that certification and licensing process are produced;C2:After the MD5 values 10 are used as encryption key;C3 obtains encryption data during the communication is set up and is transmitted, by TKIP encryption algorithm and entered Row transmission.
CN201710378304.5A 2017-05-24 2017-05-24 A kind of Rare Book Use case system cross-network segment multinode network managing device Pending CN107124724A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710378304.5A CN107124724A (en) 2017-05-24 2017-05-24 A kind of Rare Book Use case system cross-network segment multinode network managing device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710378304.5A CN107124724A (en) 2017-05-24 2017-05-24 A kind of Rare Book Use case system cross-network segment multinode network managing device

Publications (1)

Publication Number Publication Date
CN107124724A true CN107124724A (en) 2017-09-01

Family

ID=59728673

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710378304.5A Pending CN107124724A (en) 2017-05-24 2017-05-24 A kind of Rare Book Use case system cross-network segment multinode network managing device

Country Status (1)

Country Link
CN (1) CN107124724A (en)

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN202551352U (en) * 2012-03-12 2012-11-21 北京宇航系统工程研究所 Master control network data monitoring and publishing system based on WLAN (Wireless Local Area Network)
CN102811452A (en) * 2011-05-31 2012-12-05 德赛电子(惠州)有限公司 Distributed wireless gateway system and communication method
CN203455377U (en) * 2013-09-30 2014-02-26 国家电网公司 Power consumption monitoring device
CN103648109A (en) * 2013-12-09 2014-03-19 成都飞鱼星科技开发有限公司 Wireless distributed forwarding system and method thereof
CN103777583A (en) * 2012-10-23 2014-05-07 常州市鸥迅智能科技有限公司 Important archive storage environment safety intelligent monitoring system based on Internet of things
CN105553981A (en) * 2015-12-18 2016-05-04 成都三零瑞通移动通信有限公司 Rapid authentication and key negotiation method for WLAN

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102811452A (en) * 2011-05-31 2012-12-05 德赛电子(惠州)有限公司 Distributed wireless gateway system and communication method
CN202551352U (en) * 2012-03-12 2012-11-21 北京宇航系统工程研究所 Master control network data monitoring and publishing system based on WLAN (Wireless Local Area Network)
CN103777583A (en) * 2012-10-23 2014-05-07 常州市鸥迅智能科技有限公司 Important archive storage environment safety intelligent monitoring system based on Internet of things
CN203455377U (en) * 2013-09-30 2014-02-26 国家电网公司 Power consumption monitoring device
CN103648109A (en) * 2013-12-09 2014-03-19 成都飞鱼星科技开发有限公司 Wireless distributed forwarding system and method thereof
CN105553981A (en) * 2015-12-18 2016-05-04 成都三零瑞通移动通信有限公司 Rapid authentication and key negotiation method for WLAN

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
于亚瑞: "无线传感网络检测系统在图书馆古籍保护领域的应用", 《教育教学论坛》 *

Similar Documents

Publication Publication Date Title
CN101094056B (en) Security system of wireless industrial control network, and method for implementing security policy
CN110535653A (en) A kind of safe distribution terminal and its means of communication
US8677464B2 (en) Systems and methods for managing secure communication sessions with remote devices
CN105610706B (en) A kind of intelligent gateway platform of internet of things oriented control system
CN100502307C (en) Integrated user safety management method and device
CN104539598B (en) A kind of improvement Tor secure anonymous network communicating system and method
CN107040459A (en) A kind of intelligent industrial secure cloud gateway device system and method
US8132240B2 (en) Electric field unit and method for executing a protected function of an electric field unit
CN110267270B (en) Identity authentication method for sensor terminal access edge gateway in transformer substation
CN109005189A (en) A kind of access transmission platform suitable for double net isolation
CN105531635A (en) Secure industrial control system
Vaidya et al. Authentication and authorization mechanisms for substation automation in smart grid network
CN106100836A (en) A kind of industrial user's authentication and the method and system of encryption
EP3823425A1 (en) Operator action authentication in an industrial control system
CN108966216A (en) A kind of method of mobile communication and device applied to power distribution network
CN109587142A (en) A kind of the data safety AM access module and equipment of service-oriented stream
CN109617875A (en) A kind of the secure accessing platform and its implementation of terminal communication network
CN109101811A (en) A kind of O&M and auditing method of the controllable Oracle session based on the tunnel SSH
CN106789845A (en) A kind of method of network data security transmission
CN102685144A (en) Cloud security processing method and system based on home gateway
CN108881127A (en) A kind of method and system of control remote access permission
CN106302425A (en) A kind of virtualization system communication method between nodes and virtualization system thereof
US20180262502A1 (en) Method for operating an industrial network and industrial network
Hieb et al. Security enhancements for distributed control systems
CN107124724A (en) A kind of Rare Book Use case system cross-network segment multinode network managing device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20170901

RJ01 Rejection of invention patent application after publication