CN108632259A - A kind of mist calculate node device authentication system and method based on block chain - Google Patents

A kind of mist calculate node device authentication system and method based on block chain Download PDF

Info

Publication number
CN108632259A
CN108632259A CN201810343110.6A CN201810343110A CN108632259A CN 108632259 A CN108632259 A CN 108632259A CN 201810343110 A CN201810343110 A CN 201810343110A CN 108632259 A CN108632259 A CN 108632259A
Authority
CN
China
Prior art keywords
calculate node
block chain
mist calculate
mist
information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201810343110.6A
Other languages
Chinese (zh)
Inventor
马辰
于治楼
徐驰
孙善宝
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Jinan Inspur Hi Tech Investment and Development Co Ltd
Original Assignee
Jinan Inspur Hi Tech Investment and Development Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Jinan Inspur Hi Tech Investment and Development Co Ltd filed Critical Jinan Inspur Hi Tech Investment and Development Co Ltd
Priority to CN201810343110.6A priority Critical patent/CN108632259A/en
Publication of CN108632259A publication Critical patent/CN108632259A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/04Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
    • H04L63/0428Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0823Network architectures or network communication protocols for network security for authentication of entities using certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/10Protocols in which an application is distributed across nodes in the network
    • H04L67/1097Protocols in which an application is distributed across nodes in the network for distributed storage of data in networks, e.g. transport arrangements for network file system [NFS], storage area networks [SAN] or network attached storage [NAS]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Small-Scale Networks (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The present invention provides a kind of mist calculate node device authentication system and method based on block chain, belong to Embedded Application technical field, the present invention is mainly made of terminal device, mist calculate node and block chain database three parts, utilize the distributed account book feature that can not be distorted He can not forge of block chain, device authentication information is deposited in block chain database, it needs to extract authentication information from block chain when making mist calculate node to device authentication, situations such as to avoid the information because of mist calculate node from being leaked or distort, cause the random access of dangerous equipment.

Description

A kind of mist calculate node device authentication system and method based on block chain
Technical field
The present invention relates to Embedded Application technology more particularly to a kind of mist calculate node device authentication system based on block chain and Method.
Background technology
With the rapid development of Internet of Things industry, terminal device scale is also constantly expanding, the terminal number being growing, No small pressure is brought to the device authentication in high in the clouds.If the certification for imagining each equipment is required for connection cloud server, that The concurrency of cloud server is required to meet more than one hundred million the needs of, this also improves to the configuration of cloud server and wants It asks, the lower deployment cost of the Cloud Server to greatly increase.
Although the concept of mist calculate node has been proposed now, i.e., increasing a mist calculate node close to equipment end, Equipment connection and the certification in some region can be met.Although reducing the pressure of cloud server to a certain extent in this way, But the safety of the certification of equipment end is set to greatly reduce, because mist calculate node complexity is not high, it is easy to it is cracked, if Mist calculate node is cracked, then not authenticated equipment also can arbitrarily access network, and opportunity is brought to criminal.
Invention content
In order to solve the above technical problems, the present invention proposes a kind of mist calculate node device authentication system based on block chain System.Using the distributed account book feature that can not be distorted He can not forge of block chain, the information because of mist calculate node is avoided to be let out Situations such as revealing or distort, causing the random access of dangerous equipment.
The technical solution adopted in the present invention is as follows:
A kind of mist calculate node device authentication system based on block chain, by terminal device, mist calculate node and block chain data The three parts such as library form;Wherein
Mist calculate node is the hardware cell for having computing capability, usually carries the Arm mainboards of linux system, can also be to take The PC machine mainboard of Windows systems is carried, type selecting handles the difference of information content and determines as needed.Mist calculate node it is main It is responsible for the connection of receiving terminal apparatus, connection type includes WiFi, ZigBee, bluetooth, 315M radio frequencies and UART etc., with block chain Between by Ethernet or dedicated local-area net mode, read block chain database, extract authentication information, use the encryption sides TLS Formula communicates, and ensures the safety certification to terminal device.
Block chain database provides a kind of scheme, allows in a network, all nodes are all had the ability with calculating energy Power is voted, to ensure that it is gaining recognition the result is that most people generally acknowledge as a result, will not do evil because of a small number of nodes, and repair Change result.Result of this is that the access of illegal terminal equipment can be prevented, prevent criminal from being connect using illegality equipment Enter in equipment Internet of Things, it is illegal to obtain or control other equipment terminal.
Certificate information of the storage for safety certification in terminal device, when connecting mist calculate node, mist calculate node meeting The certificate information that equipment end is read by privately owned communication protocol, by the pertinent registration facility information in the certificate information and block chain It verifies, verification content includes the cryptographic Hash etc. of device id and device type, is verified, and allows to access mist calculate node net Network, otherwise authentication failed, is kicked out of mist calculate node network, and terminal then can not normal communication.
The present invention also provides a kind of mist calculate node equipment authentication method based on block chain, device authentication information is deposited It is put in block chain database, needs to extract authentication information from block chain when making mist calculate node to device authentication.
With mist calculate node substitution high in the clouds carry out device authentication, verified and stored using block linked data structure data, Algorithm is known together using distributed node to generate and update the data, ensure data transmission and the peace of access in the way of cryptography Entirely.Greatly improve the safety of mist calculate node.To realize the safety certification of equipment access.
The specific steps are
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signal, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class Facility information is shared to other mist calculate nodes by type information and cryptographic calculation results, block chain server, and other mists calculate Node calculates separately encrypted facility information as a result, and feeding back to block chain server, block chain by the algorithm appointed The result of calculation that server is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification is logical It crosses, new mist calculate node is legitimate device, does not otherwise allow that network is added;
5)The same above-mentioned steps of terminal device determine whether terminal device has the right to be added according to the result of calculation of terminal certificate information Network.
Description of the drawings
Fig. 1 is the mist calculate node equipment authentication method Organization Chart based on block chain;
Fig. 2 is mist calculate node identifying procedure figure.
Specific implementation mode
More detailed elaboration is carried out to present disclosure below:
The present invention is mainly made of terminal device, mist calculate node and block chain database three parts, framework such as Fig. 1 institutes Show, mist calculate node is the hardware cell for having computing capability, usually carries the Arm mainboards of linux system, can also be to carry The PC machine mainboard of Windows systems, type selecting handle the difference of information content and determine as needed.The main of mist calculate node is born The connection of receiving terminal apparatus is blamed, while reading block chain database, authentication information is extracted, to the safety certification of terminal device. Storage can be by the certificate information and block when connecting mist calculate node for the certificate information of safety certification in terminal device Relevant device information in chain verifies, and is verified, and allows to access mist calculate node network, otherwise authentication failed, is kicked out of Mist calculate node network.
Specific workflow is as shown in Figure 2:
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signals such as WiFi or bluetooths, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class Facility information is shared to other mist calculate nodes by the relevant informations such as type and cryptographic calculation results, block chain server, they By the algorithm appointed, encrypted facility information is calculated separately as a result, and feeding back to block chain server, block chain service The result of calculation that device is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification passes through, New mist calculate node is legitimate device, does not otherwise allow that network is added.
5)The same above-mentioned steps of terminal device determine whether terminal device has the right according to the result of calculation of terminal certificate information Network is added, ensures the security reliability of network.

Claims (5)

1. a kind of mist calculate node device authentication system based on block chain, which is characterized in that
Mainly it is made of mist calculate node, block chain database and terminal device three parts, wherein
Mist calculate node is mainly responsible for the connection of receiving terminal apparatus, passes through Ethernet or dedicated local-area between block chain Net mode reads block chain database, extracts authentication information, is communicated using TLS cipher modes;
Block chain database, provides a kind of scheme, allows in a network, all nodes all have the ability to be thrown with computing capability Ticket, to ensure that it is gaining recognition the result is that most people generally acknowledge as a result, will not do evil because of a small number of nodes, and change knot Fruit;
Terminal device, certificate information of the storage for safety certification, when connecting mist calculate node, mist calculate node can pass through private There is communication protocol to read the certificate information of equipment end, the pertinent registration facility information in the certificate information and block chain is done into school It tests, verification content includes the cryptographic Hash of device id and device type, is verified, and allows to access mist calculate node network, otherwise Authentication failed, is kicked out of mist calculate node network, and terminal then can not normal communication.
2. system according to claim 1, which is characterized in that
The connection type of mist calculate node receiving terminal apparatus includes WiFi, ZigBee, bluetooth, 315M radio frequencies and UART.
3. system according to claim 1, which is characterized in that
Mist calculate node is the hardware cell for having computing capability, is Arm mainboards or the carrying Windows systems for carrying linux system The PC machine mainboard of system, type selecting handle the difference of information content and determine as needed.
4. a kind of mist calculate node equipment authentication method based on block chain, which is characterized in that
Device authentication information is deposited in block chain database, is needed from block chain when making mist calculate node to device authentication Extract authentication information;
Device authentication is carried out with mist calculate node substitution high in the clouds, data are verified and stored using block linked data structure, are utilized Distributed node knows together algorithm to generate and update the data, ensure data transmission and the safety of access in the way of cryptography.
5. according to the method described in claim 4, it is characterized in that,
The specific steps are
1)Mist calculate node initializes, start-up operation system, connects block chain database, waits for terminal device connection;
2)Terminal device powers on, and searches for mist calculate node by radiofrequency signal, and connect;
3)After mist calculate node detects new equipment access, extraction equipment end certificate information, while being asked according to device certificate information Block chain server is sought, verifies whether the device certificate has been registered in server end;
4)If there is new mist calculate node that network is added, mist calculate node will be to block chain server sending device ID, equipment class Facility information is shared to other mist calculate nodes by type information and cryptographic calculation results, block chain server, and other mists calculate Node calculates separately encrypted facility information as a result, and feeding back to block chain server, block chain by the algorithm appointed The result of calculation that server is fed back according to each mist calculate node, if 90% or more result is identical as this result of calculation, certification is logical It crosses, new mist calculate node is legitimate device, does not otherwise allow that network is added;
5)The same above-mentioned steps of terminal device determine whether terminal device has the right to be added according to the result of calculation of terminal certificate information Network.
CN201810343110.6A 2018-04-17 2018-04-17 A kind of mist calculate node device authentication system and method based on block chain Pending CN108632259A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201810343110.6A CN108632259A (en) 2018-04-17 2018-04-17 A kind of mist calculate node device authentication system and method based on block chain

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201810343110.6A CN108632259A (en) 2018-04-17 2018-04-17 A kind of mist calculate node device authentication system and method based on block chain

Publications (1)

Publication Number Publication Date
CN108632259A true CN108632259A (en) 2018-10-09

Family

ID=63705424

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201810343110.6A Pending CN108632259A (en) 2018-04-17 2018-04-17 A kind of mist calculate node device authentication system and method based on block chain

Country Status (1)

Country Link
CN (1) CN108632259A (en)

Cited By (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109302405A (en) * 2018-10-31 2019-02-01 北京邮电大学 Industrial data detection block chain network framework and detection method based on edge calculations
CN109327457A (en) * 2018-11-09 2019-02-12 广州大学 A kind of internet of things equipment identity identifying method and system based on block chain
CN109474577A (en) * 2018-10-17 2019-03-15 太原市高远时代科技有限公司 A kind of Internet of Things network edge O&M equipment with safety permission function
CN109615397A (en) * 2018-12-07 2019-04-12 中链科技有限公司 Security identifier authentication method and device based on block chain
CN109995868A (en) * 2019-04-08 2019-07-09 烟台市重科产业技术研究院有限公司 A kind of Data Resources Management System based on block chain technology and edge calculations network
CN110351257A (en) * 2019-06-27 2019-10-18 绿漫科技有限公司 A kind of distribution Internet of Things safety access system
CN110691088A (en) * 2019-09-29 2020-01-14 广东电网有限责任公司 Block chain-based Internet of things equipment authentication method
CN111314348A (en) * 2020-02-19 2020-06-19 中国联合网络通信集团有限公司 Method and device for establishing trust degree model, trust evaluation and equipment authentication
CN111478887A (en) * 2020-03-19 2020-07-31 深圳市芯链科技有限公司 Block chain Internet of things system and operation method
CN113242553A (en) * 2021-06-22 2021-08-10 重庆邮电大学 Malicious node detection method based on block chain fragmentation

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106453405A (en) * 2016-11-24 2017-02-22 济南浪潮高新科技投资发展有限公司 Security authentication method for fog node in cloud environment
CN107071027A (en) * 2017-04-19 2017-08-18 济南浪潮高新科技投资发展有限公司 A kind of restructural mist node and the Internet of things system based on the mist node
US20170302663A1 (en) * 2016-04-14 2017-10-19 Cisco Technology, Inc. BLOCK CHAIN BASED IoT DEVICE IDENTITY VERIFICATION AND ANOMALY DETECTION
CN107528856A (en) * 2017-09-27 2017-12-29 福建实达电脑设备有限公司 Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds
CN107835166A (en) * 2017-10-31 2018-03-23 济南浪潮高新科技投资发展有限公司 A kind of high value crystal retroactive method and device based on block chain

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20170302663A1 (en) * 2016-04-14 2017-10-19 Cisco Technology, Inc. BLOCK CHAIN BASED IoT DEVICE IDENTITY VERIFICATION AND ANOMALY DETECTION
CN106453405A (en) * 2016-11-24 2017-02-22 济南浪潮高新科技投资发展有限公司 Security authentication method for fog node in cloud environment
CN107071027A (en) * 2017-04-19 2017-08-18 济南浪潮高新科技投资发展有限公司 A kind of restructural mist node and the Internet of things system based on the mist node
CN107528856A (en) * 2017-09-27 2017-12-29 福建实达电脑设备有限公司 Internet of Things mist end equipment based on block chain platform access authentication method beyond the clouds
CN107835166A (en) * 2017-10-31 2018-03-23 济南浪潮高新科技投资发展有限公司 A kind of high value crystal retroactive method and device based on block chain

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
房卫东等: "《区块链的网络安全:威胁与对策》", 《信息安全学报》 *
站长之家用户投稿: "《云计算已经过时?区块链+雾计算打造共享新生态》", 《站长之家》 *

Cited By (12)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN109474577A (en) * 2018-10-17 2019-03-15 太原市高远时代科技有限公司 A kind of Internet of Things network edge O&M equipment with safety permission function
CN109302405A (en) * 2018-10-31 2019-02-01 北京邮电大学 Industrial data detection block chain network framework and detection method based on edge calculations
CN109327457A (en) * 2018-11-09 2019-02-12 广州大学 A kind of internet of things equipment identity identifying method and system based on block chain
CN109615397A (en) * 2018-12-07 2019-04-12 中链科技有限公司 Security identifier authentication method and device based on block chain
CN109995868A (en) * 2019-04-08 2019-07-09 烟台市重科产业技术研究院有限公司 A kind of Data Resources Management System based on block chain technology and edge calculations network
CN110351257A (en) * 2019-06-27 2019-10-18 绿漫科技有限公司 A kind of distribution Internet of Things safety access system
CN110691088A (en) * 2019-09-29 2020-01-14 广东电网有限责任公司 Block chain-based Internet of things equipment authentication method
CN110691088B (en) * 2019-09-29 2021-07-23 广东电网有限责任公司 Block chain-based Internet of things equipment authentication method
CN111314348A (en) * 2020-02-19 2020-06-19 中国联合网络通信集团有限公司 Method and device for establishing trust degree model, trust evaluation and equipment authentication
CN111478887A (en) * 2020-03-19 2020-07-31 深圳市芯链科技有限公司 Block chain Internet of things system and operation method
CN113242553A (en) * 2021-06-22 2021-08-10 重庆邮电大学 Malicious node detection method based on block chain fragmentation
CN113242553B (en) * 2021-06-22 2022-05-20 重庆邮电大学 Malicious node detection method based on block chain fragmentation

Similar Documents

Publication Publication Date Title
CN108632259A (en) A kind of mist calculate node device authentication system and method based on block chain
TWI707244B (en) Block chain cross-chain authentication method, system, server and readable storage medium
CN109409122B (en) File storage method, electronic device and storage medium
CN111914027B (en) Block chain transaction keyword searchable encryption method and system
CN110519297B (en) Data processing method and device based on block chain private key
KR101930825B1 (en) System and method for authenticating users and synchronizing blocks using a block-chain network
CN107171805B (en) Internet of things terminal digital certificate issuing system and method
WO2018126858A1 (en) Blockchain technology-based robust atm network system and information processing method therefor
CN103685311B (en) A kind of login validation method and equipment
CN104378206B (en) A kind of virtual desktop safety certifying method and system based on USB Key
CN102231729B (en) Method for supporting various CA (Certification Authority) identity authentications
CN107528688A (en) A kind of keeping of block chain key and restoration methods, device based on encryption commission technology
CN104283688B (en) A kind of USBKey security certification systems and safety certifying method
CN108646983A (en) The treating method and apparatus of storage service data on block chain
CN106878318A (en) A kind of block chain real time polling cloud system
CN110383752A (en) Compact recording agreement
US20160294553A1 (en) Information delivery system
CN107454079A (en) Lightweight device authentication and shared key machinery of consultation based on platform of internet of things
CN110381075B (en) Block chain-based equipment identity authentication method and device
CN107040513A (en) A kind of credible access registrar processing method, user terminal and service end
CN111435913A (en) Identity authentication method and device for terminal of Internet of things and storage medium
CN105207776A (en) Fingerprint authentication method and system
CN109861992A (en) A kind of information interacting method and across scene method for tracing of monitor terminal
CN106302550A (en) A kind of information security method for intelligent substation automatization and system
US11429702B2 (en) Method of verification of a biometric authentication

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20181009

RJ01 Rejection of invention patent application after publication