CN108632259A - A kind of mist calculate node device authentication system and method based on block chain - Google Patents
A kind of mist calculate node device authentication system and method based on block chain Download PDFInfo
- Publication number
- CN108632259A CN108632259A CN201810343110.6A CN201810343110A CN108632259A CN 108632259 A CN108632259 A CN 108632259A CN 201810343110 A CN201810343110 A CN 201810343110A CN 108632259 A CN108632259 A CN 108632259A
- Authority
- CN
- China
- Prior art keywords
- calculate node
- block chain
- mist calculate
- mist
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0823—Network architectures or network communication protocols for network security for authentication of entities using certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
- H04L67/1097—Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Small-Scale Networks (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The present invention provides a kind of mist calculate node device authentication system and method based on block chain, belong to Embedded Application technical field, the present invention is mainly made of terminal device, mist calculate node and block chain database three parts, utilize the distributed account book feature that can not be distorted He can not forge of block chain, device authentication information is deposited in block chain database, it needs to extract authentication information from block chain when making mist calculate node to device authentication, situations such as to avoid the information because of mist calculate node from being leaked or distort, cause the random access of dangerous equipment.
Description
Technical field
The present invention relates to Embedded Application technology more particularly to a kind of mist calculate node device authentication system based on block chain and
Method.
Background technology
With the rapid development of Internet of Things industry, terminal device scale is also constantly expanding, the terminal number being growing,
No small pressure is brought to the device authentication in high in the clouds.If the certification for imagining each equipment is required for connection cloud server, that
The concurrency of cloud server is required to meet more than one hundred million the needs of, this also improves to the configuration of cloud server and wants
It asks, the lower deployment cost of the Cloud Server to greatly increase.
Although the concept of mist calculate node has been proposed now, i.e., increasing a mist calculate node close to equipment end,
Equipment connection and the certification in some region can be met.Although reducing the pressure of cloud server to a certain extent in this way,
But the safety of the certification of equipment end is set to greatly reduce, because mist calculate node complexity is not high, it is easy to it is cracked, if
Mist calculate node is cracked, then not authenticated equipment also can arbitrarily access network, and opportunity is brought to criminal.
Invention content
In order to solve the above technical problems, the present invention proposes a kind of mist calculate node device authentication system based on block chain
System.Using the distributed account book feature that can not be distorted He can not forge of block chain, the information because of mist calculate node is avoided to be let out
Situations such as revealing or distort, causing the random access of dangerous equipment.
The technical solution adopted in the present invention is as follows:
A kind of mist calculate node device authentication system based on block chain, by terminal device, mist calculate node and block chain data
The three parts such as library form;Wherein
Mist calculate node is the hardware cell for having computing capability, usually carries the Arm mainboards of linux system, can also be to take
The PC machine mainboard of Windows systems is carried, type selecting handles the difference of information content and determines as needed.Mist calculate node it is main
It is responsible for the connection of receiving terminal apparatus, connection type includes WiFi, ZigBee, bluetooth, 315M radio frequencies and UART etc., with block chain
Between by Ethernet or dedicated local-area net mode, read block chain database, extract authentication information, use the encryption sides TLS
Formula communicates, and ensures the safety certification to terminal device.
Block chain database provides a kind of scheme, allows in a network, all nodes are all had the ability with calculating energy
Power is voted, to ensure that it is gaining recognition the result is that most people generally acknowledge as a result, will not do evil because of a small number of nodes, and repair
Change result.Result of this is that the access of illegal terminal equipment can be prevented, prevent criminal from being connect using illegality equipment
Enter in equipment Internet of Things, it is illegal to obtain or control other equipment terminal.
Certificate information of the storage for safety certification in terminal device, when connecting mist calculate node, mist calculate node meeting
The certificate information that equipment end is read by privately owned communication protocol, by the pertinent registration facility information in the certificate information and block chain
It verifies, verification content includes the cryptographic Hash etc. of device id and device type, is verified, and allows to access mist calculate node net
Network, otherwise authentication failed, is kicked out of mist calculate node network, and terminal then can not normal communication.
The present invention also provides a kind of mist calculate node equipment authentication method based on block chain, device authentication information is deposited
It is put in block chain database, needs to extract authentication information from block chain when making mist calculate node to device authentication.
With mist calculate node substitution high in the clouds carry out device authentication, verified and stored using block linked data structure data,
Algorithm is known together using distributed node to generate and update the data, ensure data transmission and the peace of access in the way of cryptography
Entirely.Greatly improve the safety of mist calculate node.To realize the safety certification of equipment access.
The specific steps are
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signal, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information
Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class
Facility information is shared to other mist calculate nodes by type information and cryptographic calculation results, block chain server, and other mists calculate
Node calculates separately encrypted facility information as a result, and feeding back to block chain server, block chain by the algorithm appointed
The result of calculation that server is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification is logical
It crosses, new mist calculate node is legitimate device, does not otherwise allow that network is added;
5)The same above-mentioned steps of terminal device determine whether terminal device has the right to be added according to the result of calculation of terminal certificate information
Network.
Description of the drawings
Fig. 1 is the mist calculate node equipment authentication method Organization Chart based on block chain;
Fig. 2 is mist calculate node identifying procedure figure.
Specific implementation mode
More detailed elaboration is carried out to present disclosure below:
The present invention is mainly made of terminal device, mist calculate node and block chain database three parts, framework such as Fig. 1 institutes
Show, mist calculate node is the hardware cell for having computing capability, usually carries the Arm mainboards of linux system, can also be to carry
The PC machine mainboard of Windows systems, type selecting handle the difference of information content and determine as needed.The main of mist calculate node is born
The connection of receiving terminal apparatus is blamed, while reading block chain database, authentication information is extracted, to the safety certification of terminal device.
Storage can be by the certificate information and block when connecting mist calculate node for the certificate information of safety certification in terminal device
Relevant device information in chain verifies, and is verified, and allows to access mist calculate node network, otherwise authentication failed, is kicked out of
Mist calculate node network.
Specific workflow is as shown in Figure 2:
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signals such as WiFi or bluetooths, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information
Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class
Facility information is shared to other mist calculate nodes by the relevant informations such as type and cryptographic calculation results, block chain server, they
By the algorithm appointed, encrypted facility information is calculated separately as a result, and feeding back to block chain server, block chain service
The result of calculation that device is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification passes through,
New mist calculate node is legitimate device, does not otherwise allow that network is added.
5)The same above-mentioned steps of terminal device determine whether terminal device has the right according to the result of calculation of terminal certificate information
Network is added, ensures the security reliability of network.
Claims (5)
1. a kind of mist calculate node device authentication system based on block chain, which is characterized in that
Mainly it is made of mist calculate node, block chain database and terminal device three parts, wherein
Mist calculate node is mainly responsible for the connection of receiving terminal apparatus, passes through Ethernet or dedicated local-area between block chain
Net mode reads block chain database, extracts authentication information, is communicated using TLS cipher modes;
Block chain database, provides a kind of scheme, allows in a network, all nodes all have the ability to be thrown with computing capability
Ticket, to ensure that it is gaining recognition the result is that most people generally acknowledge as a result, will not do evil because of a small number of nodes, and change knot
Fruit;
Terminal device, certificate information of the storage for safety certification, when connecting mist calculate node, mist calculate node can pass through private
There is communication protocol to read the certificate information of equipment end, the pertinent registration facility information in the certificate information and block chain is done into school
It tests, verification content includes the cryptographic Hash of device id and device type, is verified, and allows to access mist calculate node network, otherwise
Authentication failed, is kicked out of mist calculate node network, and terminal then can not normal communication.
2. system according to claim 1, which is characterized in that
The connection type of mist calculate node receiving terminal apparatus includes WiFi, ZigBee, bluetooth, 315M radio frequencies and UART.
3. system according to claim 1, which is characterized in that
Mist calculate node is the hardware cell for having computing capability, is Arm mainboards or the carrying Windows systems for carrying linux system
The PC machine mainboard of system, type selecting handle the difference of information content and determine as needed.
4. a kind of mist calculate node equipment authentication method based on block chain, which is characterized in that
Device authentication information is deposited in block chain database, is needed from block chain when making mist calculate node to device authentication
Extract authentication information;
Device authentication is carried out with mist calculate node substitution high in the clouds, data are verified and stored using block linked data structure, are utilized
Distributed node knows together algorithm to generate and update the data, ensure data transmission and the safety of access in the way of cryptography.
5. according to the method described in claim 4, it is characterized in that,
The specific steps are
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signal, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information
Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class
Facility information is shared to other mist calculate nodes by type information and cryptographic calculation results, block chain server, and other mists calculate
Node calculates separately encrypted facility information as a result, and feeding back to block chain server, block chain by the algorithm appointed
The result of calculation that server is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification is logical
It crosses, new mist calculate node is legitimate device, does not otherwise allow that network is added;
5)The same above-mentioned steps of terminal device determine whether terminal device has the right to be added according to the result of calculation of terminal certificate information
Network.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810343110.6A CN108632259A (en) | 2018-04-17 | 2018-04-17 | A kind of mist calculate node device authentication system and method based on block chain |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201810343110.6A CN108632259A (en) | 2018-04-17 | 2018-04-17 | A kind of mist calculate node device authentication system and method based on block chain |
Publications (1)
Publication Number | Publication Date |
---|---|
CN108632259A true CN108632259A (en) | 2018-10-09 |
Family
ID=63705424
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201810343110.6A Pending CN108632259A (en) | 2018-04-17 | 2018-04-17 | A kind of mist calculate node device authentication system and method based on block chain |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN108632259A (en) |
Cited By (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109302405A (en) * | 2018-10-31 | 2019-02-01 | 北京邮电大学 | Industrial data detection block chain network framework and detection method based on edge calculations |
CN109327457A (en) * | 2018-11-09 | 2019-02-12 | 广州大学 | A kind of internet of things equipment identity identifying method and system based on block chain |
CN109474577A (en) * | 2018-10-17 | 2019-03-15 | 太原市高远时代科技有限公司 | A kind of Internet of Things network edge O&M equipment with safety permission function |
CN109615397A (en) * | 2018-12-07 | 2019-04-12 | 中链科技有限公司 | Security identifier authentication method and device based on block chain |
CN109995868A (en) * | 2019-04-08 | 2019-07-09 | 烟台市重科产业技术研究院有限公司 | A kind of Data Resources Management System based on block chain technology and edge calculations network |
CN110351257A (en) * | 2019-06-27 | 2019-10-18 | 绿漫科技有限公司 | A kind of distribution Internet of Things safety access system |
CN110691088A (en) * | 2019-09-29 | 2020-01-14 | 广东电网有限责任公司 | Block chain-based Internet of things equipment authentication method |
CN111314348A (en) * | 2020-02-19 | 2020-06-19 | 中国联合网络通信集团有限公司 | Method and device for establishing trust degree model, trust evaluation and equipment authentication |
CN111478887A (en) * | 2020-03-19 | 2020-07-31 | 深圳市芯链科技有限公司 | Block chain Internet of things system and operation method |
CN113242553A (en) * | 2021-06-22 | 2021-08-10 | 重庆邮电大学 | Malicious node detection method based on block chain fragmentation |
Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106453405A (en) * | 2016-11-24 | 2017-02-22 | 济南浪潮高新科技投资发展有限公司 | Security authentication method for fog node in cloud environment |
CN107071027A (en) * | 2017-04-19 | 2017-08-18 | 济南浪潮高新科技投资发展有限公司 | A kind of restructural mist node and the Internet of things system based on the mist node |
US20170302663A1 (en) * | 2016-04-14 | 2017-10-19 | Cisco Technology, Inc. | BLOCK CHAIN BASED IoT DEVICE IDENTITY VERIFICATION AND ANOMALY DETECTION |
CN107528856A (en) * | 2017-09-27 | 2017-12-29 | 福建实达电脑设备有限公司 | Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds |
CN107835166A (en) * | 2017-10-31 | 2018-03-23 | 济南浪潮高新科技投资发展有限公司 | A kind of high value crystal retroactive method and device based on block chain |
-
2018
- 2018-04-17 CN CN201810343110.6A patent/CN108632259A/en active Pending
Patent Citations (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US20170302663A1 (en) * | 2016-04-14 | 2017-10-19 | Cisco Technology, Inc. | BLOCK CHAIN BASED IoT DEVICE IDENTITY VERIFICATION AND ANOMALY DETECTION |
CN106453405A (en) * | 2016-11-24 | 2017-02-22 | 济南浪潮高新科技投资发展有限公司 | Security authentication method for fog node in cloud environment |
CN107071027A (en) * | 2017-04-19 | 2017-08-18 | 济南浪潮高新科技投资发展有限公司 | A kind of restructural mist node and the Internet of things system based on the mist node |
CN107528856A (en) * | 2017-09-27 | 2017-12-29 | 福建实达电脑设备有限公司 | Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds |
CN107835166A (en) * | 2017-10-31 | 2018-03-23 | 济南浪潮高新科技投资发展有限公司 | A kind of high value crystal retroactive method and device based on block chain |
Non-Patent Citations (2)
Title |
---|
房卫东等: "《区块链的网络安全:威胁与对策》", 《信息安全学报》 * |
站长之家用户投稿: "《云计算已经过时?区块链+雾计算打造共享新生态》", 《站长之家》 * |
Cited By (12)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109474577A (en) * | 2018-10-17 | 2019-03-15 | 太原市高远时代科技有限公司 | A kind of Internet of Things network edge O&M equipment with safety permission function |
CN109302405A (en) * | 2018-10-31 | 2019-02-01 | 北京邮电大学 | Industrial data detection block chain network framework and detection method based on edge calculations |
CN109327457A (en) * | 2018-11-09 | 2019-02-12 | 广州大学 | A kind of internet of things equipment identity identifying method and system based on block chain |
CN109615397A (en) * | 2018-12-07 | 2019-04-12 | 中链科技有限公司 | Security identifier authentication method and device based on block chain |
CN109995868A (en) * | 2019-04-08 | 2019-07-09 | 烟台市重科产业技术研究院有限公司 | A kind of Data Resources Management System based on block chain technology and edge calculations network |
CN110351257A (en) * | 2019-06-27 | 2019-10-18 | 绿漫科技有限公司 | A kind of distribution Internet of Things safety access system |
CN110691088A (en) * | 2019-09-29 | 2020-01-14 | 广东电网有限责任公司 | Block chain-based Internet of things equipment authentication method |
CN110691088B (en) * | 2019-09-29 | 2021-07-23 | 广东电网有限责任公司 | Block chain-based Internet of things equipment authentication method |
CN111314348A (en) * | 2020-02-19 | 2020-06-19 | 中国联合网络通信集团有限公司 | Method and device for establishing trust degree model, trust evaluation and equipment authentication |
CN111478887A (en) * | 2020-03-19 | 2020-07-31 | 深圳市芯链科技有限公司 | Block chain Internet of things system and operation method |
CN113242553A (en) * | 2021-06-22 | 2021-08-10 | 重庆邮电大学 | Malicious node detection method based on block chain fragmentation |
CN113242553B (en) * | 2021-06-22 | 2022-05-20 | 重庆邮电大学 | Malicious node detection method based on block chain fragmentation |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN108632259A (en) | A kind of mist calculate node device authentication system and method based on block chain | |
TWI707244B (en) | Block chain cross-chain authentication method, system, server and readable storage medium | |
CN109409122B (en) | File storage method, electronic device and storage medium | |
CN111914027B (en) | Block chain transaction keyword searchable encryption method and system | |
CN110519297B (en) | Data processing method and device based on block chain private key | |
KR101930825B1 (en) | System and method for authenticating users and synchronizing blocks using a block-chain network | |
CN107171805B (en) | Internet of things terminal digital certificate issuing system and method | |
WO2018126858A1 (en) | Blockchain technology-based robust atm network system and information processing method therefor | |
CN103685311B (en) | A kind of login validation method and equipment | |
CN104378206B (en) | A kind of virtual desktop safety certifying method and system based on USB Key | |
CN102231729B (en) | Method for supporting various CA (Certification Authority) identity authentications | |
CN107528688A (en) | A kind of keeping of block chain key and restoration methods, device based on encryption commission technology | |
CN104283688B (en) | A kind of USBKey security certification systems and safety certifying method | |
CN108646983A (en) | The treating method and apparatus of storage service data on block chain | |
CN106878318A (en) | A kind of block chain real time polling cloud system | |
CN110383752A (en) | Compact recording agreement | |
US20160294553A1 (en) | Information delivery system | |
CN107454079A (en) | Lightweight device authentication and shared key machinery of consultation based on platform of internet of things | |
CN110381075B (en) | Block chain-based equipment identity authentication method and device | |
CN107040513A (en) | A kind of credible access registrar processing method, user terminal and service end | |
CN111435913A (en) | Identity authentication method and device for terminal of Internet of things and storage medium | |
CN105207776A (en) | Fingerprint authentication method and system | |
CN109861992A (en) | A kind of information interacting method and across scene method for tracing of monitor terminal | |
CN106302550A (en) | A kind of information security method for intelligent substation automatization and system | |
US11429702B2 (en) | Method of verification of a biometric authentication |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181009 |
|
RJ01 | Rejection of invention patent application after publication |