CN109640326A - Right management method, device, system and mobile terminal - Google Patents
Right management method, device, system and mobile terminal Download PDFInfo
- Publication number
- CN109640326A CN109640326A CN201811372272.9A CN201811372272A CN109640326A CN 109640326 A CN109640326 A CN 109640326A CN 201811372272 A CN201811372272 A CN 201811372272A CN 109640326 A CN109640326 A CN 109640326A
- Authority
- CN
- China
- Prior art keywords
- zigbee equipment
- zigbee
- equipment
- mobile terminal
- identification code
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/06—Authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The embodiment of the present application provides a kind of right management method, device, system and mobile terminal.This method comprises: mobile terminal obtains the identification code of the first ZigBee equipment by NFC technique, which is used for unique identification ZigBee equipment;Mobile terminal carries the identification code of the first ZigBee equipment and the request of data of mobile terminal login account to server transmission, so as to server search under login account in corresponding ZigBee EIC equipment identification code whether include the first ZigBee equipment identification code;Receive the authentication secret corresponding with the identification code of login account and the first ZigBee equipment found that server returns;Authentication secret is sent to the first ZigBee equipment, so that the first ZigBee equipment judges whether authentication secret is consistent with the authentication secret of the first ZigBee equipment in the data safety area for being stored in the first ZigBee equipment;If consistent, the operating function of the first ZigBee equipment corresponding with the permission of login account is opened.Mobile terminal may be implemented according to the open different equipment operation option of permission to current login account in this method.
Description
Technical field
This application involves Smart Home technical fields, more particularly, to a kind of right management method, device, network system
System, mobile terminal, ZigBee equipment and storage medium.
Background technique
ZigBee is the low-power consumption LAN protocol based on ieee standard.ZigBee equipment can be divided into two major classes: gateway and
Sub- equipment.ZigBee gateway is that ZigBee-network agreement is promoted all the time as the core equipment for setting up ZigBee-network
Important foundation, the sub- equipment of ZigBee form ZigBee-network by connection gateway.Since ZigBee-network belongs to local area network, it is
Expanded application scene, ZigBee gateway polygamy closes linking Internet function at present.Based on linking Internet, user be can be used
Cell phone application remotely operates ZigBee equipment through internet, intelligent management is realized, such as wired home, Intelligent office, intelligent plant
Deng, while user can be used mobile phone NFC and the operation such as be inquired ZigBee equipment, configured accordingly.However, existing
It is cumbersome that ZigBee equipment accesses internetwork operation, and current NFC is applied for ZigBee equipment without complete authority managing and controlling mechanism,
It may cause the case where unauthorized user even kidnaps ZigBee equipment using NFC function modification configuration.
Summary of the invention
In view of the above problems, the embodiment of the present application provide a kind of right management method, device, network system, it is mobile eventually
End, ZigBee equipment and storage medium, to realize the improvement above problem.
In a first aspect, the embodiment of the present application provides a kind of right management method, this method comprises: mobile terminal passes through
NFC technique obtains the identification code of the first ZigBee equipment, which is used for unique identification ZigBee equipment;Mobile terminal is to clothes
Business device transmission carries the identification code of the first ZigBee equipment and the request of data of mobile terminal login account, so as to server
Search under login account in corresponding ZigBee EIC equipment identification code whether include the first ZigBee equipment identification code;Receive clothes
The authentication secret corresponding with the identification code of the login account and the first ZigBee equipment found that business device returns;It will verifying
Key is sent to the first ZigBee equipment, so that the first ZigBee equipment judges authentication secret and is stored in the first ZigBee equipment
Data safety area the first ZigBee equipment authentication secret it is whether consistent;If consistent, the permission with login account is opened
The operating function of corresponding first ZigBee equipment.
Second aspect, the embodiment of the present application provide a kind of right management method, this method comprises: the first ZigBee equipment
Receive authentication secret corresponding with the identification code of the first ZigBee equipment under the login account for the mobile terminal that mobile terminal is sent;
Judge whether the authentication secret is consistent with the authentication secret for the first ZigBee equipment for being stored in the first ZigBee equipment;If one
It causes, then allows to establish communication connection, otherwise without response.
The third aspect, the embodiment of the present application provide a kind of right management method, this method comprises: server receives movement
The request of data that terminal is sent, the identification code and mobile terminal that the first ZigBee equipment is carried in the request of data log in account
Family;Server searches the identification for whether having the first ZigBee equipment under the login account in corresponding ZigBee EIC equipment identification code
Code;If so, then returning to authentication secret corresponding with the identification code of the first ZigBee equipment.
Fourth aspect, the embodiment of the present application provide a kind of right management method, this method comprises: the first ZigBee equipment
The networking information needed and the first ZigBee equipment sent by NFC technique reception mobile terminal is corresponding when carrying out into net operation
Login account;First ZigBee equipment is established according to networking information needed and server and is connected to the network;First ZigBee equipment
The identification code of corresponding login account and the first ZigBee equipment generates when being carried out based on the first ZigBee equipment into net operation
The authentication secret of first ZigBee equipment stores the authentication secret of the first ZigBee equipment and is uploaded to server, the knowledge
Other code is used for unique identification ZigBee equipment;Server receives the authentication secret of the first ZigBee equipment;Mobile terminal passes through NFC
Technology obtains the identification code of the first ZigBee equipment;Mobile terminal sends the identification for carrying the first ZigBee equipment to server
The request of data of code and mobile terminal login account;Server receives request of data, searches corresponding under login account
Whether the identification code of first ZigBee equipment is had in ZigBee EIC equipment identification code, if so, then returning and the first ZigBee equipment
The corresponding authentication secret of identification code is to mobile terminal;Mobile terminal receives the authentication secret that server returns and sends out authentication secret
Give the first ZigBee equipment;First ZigBee equipment receives and judges that the verifying of the authentication secret and the first ZigBee equipment is close
Whether key is consistent, if unanimously, establishing the communication connection with mobile terminal;The permission of acquisition for mobile terminal login account, according to
Permission opens the operating function of corresponding first ZigBee equipment.
5th aspect, the embodiment of the present application provide a kind of rights management device, run on mobile terminal, described device packet
Include: data obtaining module, for obtaining the identification code of the first ZigBee equipment by NFC technique, the identification code is for uniquely knowing
Other ZigBee equipment;Request sending module, for sending the identification code and shifting that carry the first ZigBee equipment to server
The request of data of dynamic terminal login account, search under the login account so as to server is in corresponding ZigBee EIC equipment identification code
No includes the identification code of the first ZigBee equipment;Information receiving module, for receive server return find with institute
State the corresponding authentication secret of identification code of login account and the first ZigBee equipment;Information sending module, for the verifying is close
Key is sent to the first ZigBee equipment, so that the first ZigBee equipment judges the authentication secret and is stored in the first ZigBee equipment
Data safety area the first ZigBee equipment authentication secret it is whether consistent;Function opening module, for opening and logging in account
The operating function of the corresponding first ZigBee equipment of the permission at family.
6th aspect, the embodiment of the present application provides a kind of rights management device, runs on the first ZigBee equipment, described
Device includes: receiving module, for the first ZigBee equipment receive mobile terminal send mobile terminal login account under with
The corresponding authentication secret of identification code of first ZigBee equipment;Judgment module, for judging authentication secret and being stored in first
Whether the authentication secret of the first ZigBee equipment of ZigBee equipment is consistent;Respond module;If allowing to establish logical for consistent
Letter connection, otherwise without response.
7th aspect, the embodiment of the present application provide a kind of rights management device, run on server, described device packet
Include: request receiving module receives the request of data that mobile terminal is sent for server, carries first in the request of data
The identification code and mobile terminal login account of ZigBee equipment;Information searching module searches the login account for server
Under whether have the identification code of the first ZigBee equipment in corresponding ZigBee EIC equipment identification code;Key return module, for servicing
Device returns to the authentication secret corresponding with the identification code of the first ZigBee equipment found.
Eighth aspect, the embodiment of the present application provide a kind of network system, including mobile terminal, the first ZigBee equipment,
Server: the first ZigBee equipment is used to receive the networking information needed and first that mobile terminal is sent by NFC technique
ZigBee equipment corresponding login account when carrying out into net operation;First ZigBee equipment be also used to according to networking information needed with
Server establishes network connection;Corresponding login when being also used to network for the first time based on the first ZigBee equipment of first ZigBee equipment
The identification code of account and the first ZigBee equipment generates the authentication secret of the first ZigBee equipment, stores the first ZigBee equipment
Authentication secret and be uploaded to server, identification code be used for unique identification ZigBee equipment;Server is for receiving first
The authentication secret of ZigBee equipment;Mobile terminal is used to obtain the identification code of the first ZigBee equipment by NFC technique;It is mobile whole
The data that end is also used to send the identification code and mobile terminal login account that carry the first ZigBee equipment to server are asked
It asks;Server is also used to receive request of data, search under login account in corresponding ZigBee EIC equipment identification code whether include
The identification code of first ZigBee equipment, if so, then returning to authentication secret corresponding with the identification code of the first ZigBee equipment to shifting
Dynamic terminal;Mobile terminal is also used to receive the authentication secret of server return and authentication secret is sent to the first ZigBee and sets
It is standby;First ZigBee equipment is also used to receive and judge whether authentication secret is consistent with the authentication secret of the first ZigBee equipment,
If consistent, the communication connection with mobile terminal is established;Mobile terminal is also used to obtain the permission of login account, is opened according to permission
Open the operating function of corresponding first ZigBee equipment.
9th aspect, the embodiment of the present application provide a kind of mobile terminal, including one or more processors and storage
Device;One or more programs are stored in memory and are configured as being performed by one or more processors, one or more
Program is configured to carry out the right management method of above-mentioned first aspect description.
Tenth aspect, the embodiment of the present application provide a kind of ZigBee equipment, including one or more processing units and
Storage unit;One or more programs are stored in storage unit and are configured as being executed by one or more processing units,
One or more programs are configured to carry out the right management method of above-mentioned second aspect description.
Tenth on the one hand, and the embodiment of the present application provides a kind of computer readable storage medium, described computer-readable to deposit
Program code is stored in storage media, wherein execute above-mentioned right management method in said program code operation.
Compared with the existing technology, right management method provided by the embodiments of the present application, device, network system, mobile terminal,
ZigBee equipment and storage medium, mobile terminal obtain the identification code of the first ZigBee equipment by NFC technique;Again to server
Transmission carries the identification code of the first ZigBee equipment and the request of data of mobile terminal login account, so as to server lookup
Under login account in corresponding ZigBee EIC equipment identification code whether include the first ZigBee equipment identification code;Then clothes are received
The authentication secret corresponding with the identification code of login account and the first ZigBee equipment found that business device returns;It then will verifying
Key is sent to the first ZigBee equipment, so that the first ZigBee equipment judges authentication secret and is stored in the first ZigBee equipment
Data safety area the first ZigBee equipment authentication secret it is whether consistent;It is then turned on corresponding with the permission of login account
The operating function of first ZigBee equipment.Using this method when mobile terminal controls ZigBee equipment by NFC technique, realize
It is safer in the double verification of server end and ZigBee equipment end, and currently log according to mobile terminal the behaviour of account number
Different equipment operation options is opened as permission to current user, realizes the use of security management and control ZigBee functions of the equipments
The login account number of different rights is corresponding with the permission of different operation ZigBee equipment while permission.
In order to which the above and other objects, features and advantages of the application can be clearer and more comprehensible, preferable implementation is cited below particularly
Example, and cooperate institute's accompanying drawings, it is described in detail below.
Detailed description of the invention
In order to more clearly explain the technical solutions in the embodiments of the present application, make required in being described below to embodiment
Attached drawing is briefly described, it should be apparent that, the drawings in the following description are only some examples of the present application, for
For those skilled in the art, without creative efforts, it can also be obtained according to these attached drawings other attached
Figure.
Fig. 1 shows a kind of schematic diagram of network system provided by the embodiments of the present application.
Fig. 2 shows a kind of timing diagrams of the interaction of right management method of one embodiment of the application offer.
Fig. 3 shows a kind of flow chart for right management method that another embodiment of the application provides.
Fig. 4 shows a kind of flow chart for right management method that the another embodiment of the application provides.
Fig. 5 shows a kind of flow chart of right management method of the application another embodiment offer.
Fig. 6 shows a kind of structural block diagram of rights management device of one embodiment of the application offer.
Fig. 7 shows a kind of structural block diagram for rights management device that another embodiment of the application provides.
Fig. 8 shows a kind of structural block diagram of rights management device of the application another embodiment offer.
Fig. 9 shows a kind of structural block diagram of mobile terminal provided by the embodiments of the present application.
Figure 10 shows a kind of structural block diagram of ZigBee equipment provided by the embodiments of the present application.
Figure 11 shows realizing for saving or carrying according to the permission pipe of the embodiment of the present application for the embodiment of the present application
The storage medium of the program code of reason method.
Specific embodiment
Below in conjunction with the attached drawing in the embodiment of the present application, technical solutions in the embodiments of the present application carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of embodiments of the present application, instead of all the embodiments.It is based on
Embodiment in the application, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall in the protection scope of this application.
NFC (Near Field Communication, near-field communication) is a kind of emerging technology, is known by less radio-frequency
Not (Radio Frequency Identification, RFID) and interconnection technology integration is evolved, and is utilized in list
Induction type card reader, icah wavw and point-to-point function are combined on one chip, have used equipment (such as the hand of NFC technique
Machine) it can be identified and exchanged data in the case where close to each other.ZigBee technology (ZigBee Technology, purple honeybee
Technology) it is the emerging short distance of one kind, low rate, low-power consumption two-way wireless communication technology, it is one kind between radio mark skill
Technology motion between art and bluetooth is mainly used near radio connection.With Internet of Things entoilage continue to develop, NFC technique and
In terms of ZigBee communication technology has also gradually been applied to smart home.
ZigBee equipment can be divided into two major classes: ZigBee gateway and the sub- equipment of ZigBee.ZigBee gateway is as establishment
The core equipment of ZigBee-network, is the basis of ZigBee-network agreement, and the sub- equipment of ZigBee passes through connection ZigBee gateway, shape
At ZigBee-network.Since ZigBee-network belongs to local area network, for expanded application scene, ZigBee equipment polygamy closes mutual at present
Networking access function.However, after ZigBee equipment access internet, if ZigBee equipment without complete authority managing and controlling mechanism,
So the case where in the presence of ZigBee equipment is even kidnapped by unauthorized user modification configuration.
Therefore, if inventor has found that ZigBee equipment, can be to the skill that user makes troubles without complete authority managing and controlling mechanism
After art problem, right management method, device, network system, the mobile terminal, ZigBee equipment in the embodiment of the present application are provided
And storage medium.
For the ease of be described in detail application scheme, below first in conjunction with attached drawing to the application environment in the embodiment of the present application into
Row is introduced.
Referring to Fig. 1, being a kind of network system 10 provided by the embodiments of the present application, which includes: mobile whole
End 11, server 12, ZigBee gateway 13, sub- equipment 14 and router 15.Wherein, ZigBee gateway 13 is based on ZigBee
Agreement is built, and sub- equipment 14 can be the equipment being previously added in ZigBee gateway 13, for example, sub- equipment can be gateway factory
When the belonged to external member of gateway in equipment;It is also possible to the equipment being connected in ZigBee gateway 13 subsequently through user's operation.
As a kind of mode, sub- equipment 14 can be established based on Zigbee protocol and ZigBee gateway 13 and is connected to the network, to be added to
In ZigBee-network.For example, sub- equipment 14 can receive control instruction transmitted by mobile terminal 11 by Zigbee protocol, it should
Control instruction can control sub- equipment 14 and execute the scene of sub- equipment corresponding with control instruction and/or the movement of automation.
It should be noted that ZigBee gateway 13 and sub- equipment 14 are referred to as ZigBee equipment in the embodiment of the present application.
ZigBee gateway 13 and mobile terminal 11 can be connect with router 15, and by router 15 be linked into
Too in net, router 15 passes through the access servers 12 such as 2G/3G/4G/5G, WIFI.For example, ZigBee gateway 13 and movement are eventually
The information that end 11 can will acquire is stored into server 12.Optionally, mobile terminal 11 can by 2G/3G/4G/5G,
WIFI etc. is established with server 12 and is connected to the network, so as to obtain the data that server 12 issues.
As a kind of mode, being mounted in mobile terminal 11 can be to the client that smart home device is managed, institute
Stating client can be application client, be also possible to webpage client, be not limited thereto.Wherein, mobile terminal 11
It can be any equipment for having communication and store function, such as: smart phone, desktop computer, laptop, tablet computer
Or other intelligent communication devices with network connecting function.Server 12 can be network access server, database service
Device, Cloud Server etc..Sub- equipment 14 can be entity smart machine, as ammeter, door status sensor, human body sensor, door and window pass
Sensor, Temperature Humidity Sensor, water sensor, the natural gas reports to the police machine, smoke alarm, switch on wall, wall socket, intelligence are inserted
The intelligence such as seat, wireless switching, wireless wall patch switch, magic square controller, curtain motor, Multifunctional gateway, air-conditioning companion, camera
Equipment is also possible to virtual-sensor equipment, such as virtual human body sensor device, is not limited thereto.
Present embodiments are specifically described below in conjunction with attached drawing.
Referring to Fig. 2, being the flow chart of right management method provided by the embodiments of the present application, the present embodiment provides a kind of power
Limit management method, which comprises
The S101: the one ZigBee equipment of step by NFC technique receive mobile terminal send networking information needed and
The first ZigBee equipment corresponding login account when carrying out into net operation.
As an implementation, the first ZigBee equipment is received by NFC technique needed for the networking that mobile terminal is sent
Information and the first ZigBee equipment corresponding login account when carrying out into net operation (such as: when entering net operation for the first time)
Before step further include:
Step S100: mobile terminal can obtain the networking information needed of the first ZigBee equipment by NFC technique.
Optionally, the implementation process of step S100 can specifically include following steps:
Step S1001: mobile terminal receives the NFC signal of the first ZigBee equipment in pre-determined distance by NFC technique.
In the embodiment of the present application, the first ZigBee equipment can be ZigBee gateway, be also possible to the sub- equipment of ZigBee.Make
For a kind of mode, includes firmware program in the first ZigBee equipment, (can be used in firmware comprising network state flag bit
NetStatus is indicated), which can be used for characterizing the net state that enters of the first ZigBee equipment, and first
Default is not in net state (i.e. NetStatus=None) is entered when ZigBee equipment is dispatched from the factory, optionally, the network state flag bit
It can be read by mobile terminal by NFC technique.In this case, the first ZigBee equipment firmware can pass through device flag
Position (such as DeviceModel=Hub_A012) indicates the model of the first ZigBee equipment, it should be noted that as a kind of reality
Mode is applied, NetStatus and DeviceModel are only used for for example, can be replaced in actual implementation with other titles, herein
It is not construed as limiting.
If mobile terminal opens wireless communication NFC function, the NFC that mobile terminal can be monitored by NFC function is broadcasted.
When mobile terminal close to wait network the first ZigBee equipment when, can pass through NFC technique receive the first ZigBee equipment NFC letter
Number, optionally, the NFC signal in the first ZigBee equipment pre-determined distance can be received by NFC technique, which indicates
The actual transmissions distance of NFC signal between first ZigBee equipment and mobile terminal, in the present embodiment, the first ZigBee equipment
Between mobile terminal the actual transmissions distance of NFC signal by NFC module in mobile terminal power decision.
Step S1002: believed according to the network state of the first ZigBee equipment described in the NFC signal identification received
Breath.
Optionally, the NFC signal of the first ZigBee equipment generally includes the network state flag bit of the first ZigBee equipment
With device flag position, can the first ZigBee equipment according to the NFC signal identification received network state information.
Specific steps may include: to determine whether the first ZigBee equipment is to support according to the device flag position of the first ZigBee equipment
ZigBee equipment.As a kind of mode, in the embodiment of the present application, ZigBee equipment follows ZigBee communication agreement, works as movement
When terminal is close to the first ZigBee equipment wait network, the device flag that NFC technique reads the first ZigBee equipment can be passed through
Position can determine that the first ZigBee equipment is the ZigBee equipment supported if reading the device flag position;If do not read
Get the information of device flag position, then it is assumed that the first ZigBee equipment is the ZigBee equipment that do not support.
Optionally, if the first ZigBee equipment is the ZigBee equipment supported, mobile terminal can use NFC technique reading
To the network state flag bit of the first ZigBee equipment, the first ZigBee equipment can be identified according to the network state flag bit
Network state information specifically includes: if network state flag bit be it is empty (such as: indicate ZigBee if NetStatus=None)
Equipment be in does not enter net state, otherwise in entered net state (such as: NetStatus=OnLine).
Step S1003: it if it is not enter net state that the network state information, which characterizes the first ZigBee equipment, obtains
Networking information needed.
Optionally, networking information needed includes the access information of internet WiFi router;In another embodiment,
Networking information needed can also include the characteristic information of the first ZigBee equipment and the access information of internet WiFi router.
Wherein, the access information of internet WiFi router accesses internet for the first ZigBee equipment;Internet WiFi router
Access information mainly include the title of WiFi router, SSID (Service Set Identifier, service set) and
Password etc..Optionally, the characteristic information of the first ZigBee equipment mainly includes the Name & Location etc. of the first ZigBee equipment, the
The Name & Location of one ZigBee equipment can be used for distinguishing the first different ZigBee equipment.
As an implementation, if the first ZigBee equipment, which is in, does not enter net state, mobile terminal can pass through NFC
Technology, so that mobile terminal can jump to equipment networking interface automatically, obtains user and enters in equipment close to the first ZigBee equipment
Net the networking information needed of interface input.
Wherein, the step of obtaining the networking information needed of user's input may include: obtain user's input first
The characteristic information of ZigBee equipment and the access information of internet WiFi router;By the characteristic information of the first ZigBee equipment with
And the access information of internet WiFi router is stored.As another embodiment, if the first ZigBee equipment is in
Do not enter net state, and has the record that networks and (or be previously stored with letter needed for the networking of the first ZigBee equipment in mobile terminal
Breath), then mobile terminal can automatically from server pull or read with the networking of the first ZigBee equipment record it is corresponding enter
Net information needed, therefore, the step of obtaining networking information needed may include: to send the first ZigBee equipment to server entering
Net information needed acquisition request;Receive the first ZigBee equipment corresponding with networking information needed acquisition request that server returns
Networking information needed.
Step S1004: corresponding when the networking information needed and the first ZigBee equipment are carried out into net operation
Login account the first ZigBee equipment is sent to by NFC technique.
Optionally, the networking information needed that mobile terminal will acquire is sent to the first ZigBee equipment by NFC technique, with
Just the first ZigBee equipment networks.Meanwhile mobile terminal corresponding login account when the first ZigBee equipment networks for the first time
Account name (optional, can be indicated here with AccountID) is sent to the first ZigBee equipment by NFC technique, so as to
First ZigBee equipment generates authentication secret.
Then, the first ZigBee equipment can by NFC technique receive mobile terminal send networking information needed and
The first ZigBee equipment corresponding login account when carrying out into net operation.
Step S102: the first ZigBee equipment is established according to the networking information needed and server and is connected to the network.
Optionally, it if the first ZigBee equipment does not network, can be established according to above-mentioned networking information needed and server
Network connection, to access internet.
Step S103: the first ZigBee equipment is based on corresponding when the first ZigBee equipment is carried out into net operation
The identification code of login account and the first ZigBee equipment generates the authentication secret of the first ZigBee equipment, storage the
The authentication secret of one ZigBee equipment is simultaneously uploaded to the server, and the identification code is used for unique identification ZigBee equipment.
As a kind of mode, the first ZigBee equipment includes that can be used for the identification code (example of unique identification ZigBee equipment
Such as: can be indicated with DeviceID), wherein identification code is used to show the classification of ZigBee equipment, is similar to identification card number
Code.After the first ZigBee equipment is successfully accessed internet by NFC technique, its hardware encryption module can be used, then base
In the Encryption Algorithm of setting, by the identification code of the first ZigBee equipment, carry out into net operation when corresponding login account and one
For group random number as input information, whether generation one can be used for verifying ZigBee equipment unique with mobile terminal login account
The authentication secret (in the embodiment of the present application, the authentication secret of the first ZigBee equipment can be indicated with AccessKey) of binding,
And the authentication secret is stored in the data safety memory block of the first ZigBee equipment itself.
In addition, it should be noted that, for the ZigBee equipment to network according to non-NFC mode, after successfully networking
It will use hardware encryption module, the Encryption Algorithm based on setting is corresponded to by the identification code of the first ZigBee equipment, when networking for the first time
Login account account name and one group of random number as input information, generate one can be used for verifying ZigBee equipment with
The authentication secret whether mobile terminal login account uniquely binds, and the authentication secret is stored in the first ZigBee equipment itself
Data safety memory block.
It should be noted that the random number of the authentication secret for generating the first ZigBee equipment is true random number, pass through
Adding one group of true random number can allow the authentication secret of generation for chance event, to can not replicate to obtain easily, and then improve
The safety that first ZigBee equipment uses.
In addition, the authentication secret of generation can be also uploaded to server by the first ZigBee equipment as a kind of mode.It is optional
, the first ZigBee equipment includes the sub- equipment of ZigBee or ZigBee gateway, so the first ZigBee equipment will be in authentication secret
The step of reaching server can specifically include:
If the first ZigBee equipment is the sub- equipment of ZigBee, authentication secret is first uploaded to ZigBee by the sub- equipment of ZigBee
Then authentication secret is uploaded to server by ZigBee gateway by gateway;If the first ZigBee equipment is ZigBee gateway,
Authentication secret is directly uploaded to server by ZigBee gateway.
Step S104: the server receives the authentication secret of the first ZigBee equipment.
Optionally, server receives the authentication secret uploaded from the first ZigBee equipment, and authentication secret is stored in
In the database of server.It should be noted that for the ease of distinguishing number can be stored in by what the first ZigBee equipment generated
It is considered as AccessKey1 according to the authentication secret of secure storage areas, the first ZigBee equipment is uploaded in the database of server and is deposited
The authentication secret of storage is considered as AccessKey2.
Step S105: the mobile terminal obtains the identification code of the first ZigBee equipment by NFC technique.
As a kind of mode, after the first ZigBee equipment successfully networks, when user wishes the NFC function by mobile terminal
When reading the characteristic information of the first ZigBee equipment or manipulating to the first ZigBee equipment, mobile terminal can respond user
Touching operation, close to the first ZigBee equipment that has networked, will pass through the identification that NFC technique reads the first ZigBee equipment
Code (can be indicated here with DeviceID).
Step S106: the mobile terminal sends the identification code for carrying the first ZigBee equipment to the server
And the request of data of the mobile terminal login account.
Optionally, after the acquisition for mobile terminal identification code of the first ZigBee equipment, need first to server application with
First ZigBee equipment establishes the authentication secret that communication need to use.As a kind of mode, mobile terminal can be sent to server
It carries the account name of current login account and needs to manipulate the request of data of the identification code of the first ZigBee equipment, with housecoat
Business device verify current login account and its application manipulation the first ZigBee equipment between relationship whether legal bind.Optionally,
It binds if legal, then can have the first ZigBee equipment under the current login account of mobile terminal, otherwise be not present.
Step S107: the server receives the request of data, searches corresponding ZigBee under the login account and sets
In standby identification code whether include the first ZigBee equipment identification code, set if so, then returning with the first ZigBee
The corresponding authentication secret of standby identification code gives the mobile terminal.
As a kind of mode, server receives the request of data that mobile terminal is sent, and is currently logged according to mobile terminal
Whether it includes that the first ZigBee is set that the account name of account is searched under the login account in the identification code of corresponding ZigBee equipment
Standby identification code, if so, then can be confirmed as by verification, then server will be corresponding with the identification code of the first ZigBee equipment
Authentication secret cryptographically return to mobile terminal;Optionally, if not having, server is without returned content, and movement is eventually
It holds reactionless.
Step S108: the mobile terminal receives the authentication secret that the server returns and by the authentication secret
It is sent to the first ZigBee equipment.
Optionally, if mobile terminal has received the testing corresponding with the identification code of the first ZigBee equipment of server return
Key is demonstrate,proved, which can be sent to the first ZigBee equipment, so that the first ZigBee equipment verifies the verifying again
Whether key is consistent with the authentication secret of the first ZigBee equipment.
Step S109: the first ZigBee equipment receives and judges the authentication secret and the first ZigBee equipment
Authentication secret it is whether consistent, if unanimously, establishing and the communication connection of the mobile terminal.
Optionally, the first ZigBee equipment receives the authentication secret that mobile terminal is sent, and verifies authentication secret and storage
It is whether consistent in the authentication secret of the first ZigBee equipment of data safety memory block, if unanimously, being considered as verification and passing through, otherwise
It is considered as verification not pass through.After verification passes through, the first ZigBee equipment, which can allow to establish, to be communicated to connect, so as to subsequent movement terminal
The first ZigBee equipment can be manipulated, is carried out data transmission, otherwise without response.
Step S110: the permission of login account described in the acquisition for mobile terminal opens corresponding institute according to the permission
State the operating function of the first ZigBee equipment.
As a kind of mode, after mobile terminal and the first ZigBee equipment are successfully established NFC communication, mobile terminal can be with
The permission that current login account is inquired from server, the application program for being stored in mobile terminal can open difference according to permission
Equipment operation option give current login account.As a kind of mode, the discretionary account that different rights may be implemented is ok
Using the communication function of ZigBee equipment, while again can be with the access right of security management and control ZigBee functions of the equipments.
As an implementation, in the embodiment of the present application, the login account of mobile terminal is the core of entire authority managing and controlling
The heart is the voucher that user account and ZigBee equipment carry out NFC communication.When being related to more account's situations, such as a ledgers
It is in charge of multiple Sub-accounts in family, wherein a total account can regard a group as, i.e. may include multiple Sub-accounts in a group,
In this case, mobile terminal needs account in support group simultaneously to operate ZigBee equipment.In such cases, permission
Control is related to the Permission Levels processing of different accounts.Optionally, stepping on when can generate authentication secret according to ZigBee equipment
The digit of account is recorded to distinguish.
As a kind of mode, the digit of login account when ZigBee equipment generates authentication secret can be one group of 32 digit
According to high-order 22 can be used to distinguish the information of different accounts, and low level 10 can be used to indicate the letter of different Sub-accounts in group
Breath, i.e., it is identical with high 22 of the digit of account name under group account, and with low 10 differences for the Sub-account organized, wherein it needs
Illustrate, data length, the format of the digit of login account mentioned herein may be changed because of demand difference, only be made herein
To illustrate, it is not construed as limiting.
As a kind of mode, when ZigBee equipment is carried out into net operation, can be generated authentication secret for network after
The authentication of operation, wherein high 22 of the digit of login account are used in the authentication secret generated at this time.
A kind of right management method provided in this embodiment obtains the first ZigBee by NFC technique using mobile terminal
The identification code of equipment;The identification code and mobile terminal login account for carrying the first ZigBee equipment are sent to server again
Whether request of data, searching under login account in corresponding ZigBee EIC equipment identification code so as to server includes the first ZigBee
The identification code of equipment;Then the identification code pair with login account and the first ZigBee equipment found that server returns is received
The authentication secret answered;Authentication secret is sent to the first ZigBee equipment, so as to the first ZigBee equipment judge authentication secret with
Whether the authentication secret for being stored in the first ZigBee equipment in the data safety area of the first ZigBee equipment is consistent;Be then turned on
The operating function of the corresponding first ZigBee equipment of the permission of login account.This method is by currently logging in account according to mobile terminal
Number operating right open different equipment operation options to current user, realize security management and control ZigBee functions of the equipments
Access right while different rights login account number be corresponding with the permissions of different operation ZigBee equipment.
Referring to Fig. 3, being the flow chart of right management method provided by the embodiments of the present application, the present embodiment provides a kind of power
Management method is limited, the present embodiment describes the process flow of mobile terminal, which comprises
Step S210: obtaining the identification code of the first ZigBee equipment by NFC technique, and the identification code is used for unique identification
ZigBee equipment.
Step S220: the identification code for carrying the first ZigBee equipment and the mobile terminal are sent to server
The request of data of login account, search under the login account so as to the server is in corresponding ZigBee EIC equipment identification code
No includes the identification code of the first ZigBee equipment.
After obtaining the identification code of the first ZigBee equipment, in order to manipulate the first ZigBee by NFC technique
Equipment, mobile terminal send the number of the identification code and mobile terminal login account that carry the first ZigBee equipment to server
According to request, so as to server search under the current login account of mobile terminal in corresponding ZigBee EIC equipment identification code whether include
The identification code of first ZigBee equipment.Wherein, the current login account of mobile terminal can be the first ZigBee equipment and network for the first time
When mobile terminal login account, may not be.
Step S230: receive that the server returns find set with the login account and the first ZigBee
The corresponding authentication secret of standby identification code.
Step S240: being sent to the first ZigBee equipment for the authentication secret, so that the first ZigBee is set
It is standby to judge testing for the authentication secret and the first ZigBee equipment in the data safety area for being stored in the first ZigBee equipment
Whether consistent demonstrate,prove key.
Step S250: the operating function of the first ZigBee equipment corresponding with the permission of the login account is opened.
A kind of right management method provided in this embodiment obtains the first ZigBee by NFC technique using mobile terminal
The identification code of equipment, the identification code are used for unique identification ZigBee equipment;The first ZigBee is carried to server transmission again to set
The request of data of standby identification code and mobile terminal login account, so that server searches corresponding ZigBee under login account
In EIC equipment identification code whether include the first ZigBee equipment identification code;Then receive server return find with step on
Record the corresponding authentication secret of identification code of account and the first ZigBee equipment;Authentication secret is sent to the first ZigBee equipment,
So that the first ZigBee equipment judges the first Z igBee of authentication secret with the data safety area for being stored in the first ZigBee equipment
Whether the authentication secret of equipment is consistent;It is then turned on the operating work of the first ZigBee equipment corresponding with the permission of login account
Energy.This method opens different equipment operation options by currently logging in the operating right of account number according to mobile terminal to current
User, the login account number of different rights is corresponding with not while realizing the access right of security management and control ZigBee functions of the equipments
The permission of same operation ZigBee equipment.
Referring to Fig. 4, being the flow chart of right management method provided by the embodiments of the present application, the present embodiment provides a kind of power
Management method is limited, the present embodiment describes the process flow of the first ZigBee equipment, which comprises
The S310: the one ZigBee equipment of step receives under the login account for the mobile terminal that the mobile terminal is sent
Authentication secret corresponding with the identification code of the first ZigBee equipment.
As a kind of mode, to be verified by operating right of the mobile terminal to ZigBee equipment, first
It is corresponding with the identification code of the first ZigBee equipment under the login account for the mobile terminal that ZigBee equipment reception mobile terminal is sent
Authentication secret before, the first ZigBee equipment can by NFC technique receive mobile terminal send networking information needed with
And the first ZigBee equipment corresponding login account when carrying out into net operation;It may then based on the first ZigBee equipment to be entered
The identification code of corresponding login account and the first ZigBee equipment generates the authentication secret of the first ZigBee equipment when net operation.
It should be noted that the identification code can be used for unique identification ZigBee equipment.Optionally, the first ZigBee equipment
The authentication secret of first ZigBee equipment is stored, as a kind of mode, the authentication secret of the first ZigBee equipment can be with
It stores to the data safety memory block of the first ZigBee equipment.
Optionally, dedicated hardware encryption module is built-in in the first ZigBee equipment, the first ZigBee equipment can lead to
The hardware encryption module is crossed, corresponding login account when networking for the first time based on the first ZigBee equipment, the first ZigBee equipment
Identification code and one group of generating random number authentication secret, the authentication secret as the first ZigBee equipment.Wherein, random number is true
Random number can allow the authentication secret of generation for chance event, to can not replicate easily by adding one group of true random number
It arrives, to improve the safety that the first ZigBee equipment uses.
It should be noted that before the first ZigBee equipment generates above-mentioned authentication secret, the first ZigBee equipment basis
Networking information needed and server establish network connection.
As a kind of mode, the authentication secret of the first ZigBee equipment of above-mentioned generation can be uploaded to the data of server
It is stored in library.It should be noted that the first ZigBee equipment in the present embodiment includes the sub- equipment of ZigBee or ZigBee
Gateway, therefore the step of authentication secret is uploaded to server by above-mentioned first ZigBee equipment can specifically include:
As a kind of mode, when the first ZigBee equipment is the sub- equipment of ZigBee, the sub- equipment of ZigBee is by the first ZigBee
The authentication secret of equipment is uploaded to ZigBee gateway, so that the authentication secret of the first ZigBee equipment is uploaded to by ZigBee gateway
Server;
Alternatively, when the first ZigBee equipment is ZigBee gateway, ZigBee gateway sets the first ZigBee
Standby authentication secret is uploaded to server.
Optionally, the first ZigBee equipment receives under the login account from the mobile terminal that mobile terminal is sent with first
The corresponding authentication secret of the identification code of ZigBee equipment, convenient for verifying the current login account of mobile terminal by the authentication secret
Whether there is the manipulation permission to the first ZigBee equipment, so that the use of ZigBee equipment is safer.
Step S320: judge that the authentication secret is set with the first ZigBee for being stored in the first ZigBee equipment
Whether standby authentication secret is consistent.
Optionally, the first ZigBee equipment can be stored in the data safety memory block of the first ZigBee equipment by comparing
The first ZigBee equipment authentication secret with whether receive the authentication secret that sends from mobile terminal consistent, if authentication secret
Related data (identification code of the corresponding equipment of such as authentication secret, account information) unanimously, then can determine that it is consistent, otherwise
It is inconsistent.
Step S330: if consistent, allow to establish communication connection, otherwise without response.
Optionally, if unanimously, the first ZigBee equipment and mobile terminal are successfully established communication connection, and then mobile terminal can
To be manipulated according to correlation function of the permission of current login account to the first ZigBee equipment, realize in ZigBee equipment
The verifying at end, it is safer.
Right management method provided in this embodiment receives the networking institute that mobile terminal is sent by the first ZigBee equipment
Information is needed, internet is accessed according to networking information needed, is then based on corresponding login when the first ZigBee equipment networks for the first time
Account, the identification code of the first ZigBee equipment and one group of generating random number authentication secret, which is stored to itself
Data safety memory block and being sent in the database of server stored, realize the data peace of the first ZigBee equipment
Quan Xing.This method opens different equipment operation options by currently logging in the operating right of account number according to mobile terminal to working as
Preceding user, the login account number of different rights is corresponding with while realizing the access right of security management and control ZigBee functions of the equipments
The permission of different operation ZigBee equipment.
Referring to Fig. 5, being a kind of flow chart of right management method provided by the embodiments of the present application, the present embodiment provides one
Kind right management method, the present embodiment describe the process flow of server, which comprises
Step S410: the request of data that mobile terminal is sent is received, the first ZigBee is carried in the request of data and sets
Standby identification code and the mobile terminal login account.
If mobile terminal needs acquisition to verify the manipulation permission of ZigBee equipment, mobile terminal can be to first
ZigBee equipment sends request of data.Optionally, before the request of data that server reception mobile terminal is sent further include: receive
The authentication secret of the first ZigBee equipment sent from the first ZigBee equipment.
Whether step S420: searching under the login account in corresponding ZigBee EIC equipment identification code includes described first
The identification code of ZigBee equipment.
Optionally, it is stored in server under the authentication secret and mobile terminal login account of the first ZigBee equipment
The list of ZigBee EIC equipment identification code, server can search corresponding ZigBee EIC equipment identification code under mobile terminal login account
In whether include the identification code of the first ZigBee equipment, if so, then can be determined that login account and the first ZigBee equipment are closed
Method binding, server responds the request and returns to data information corresponding with the request, otherwise reactionless.
Step S430: authentication secret corresponding with the identification code of the first ZigBee equipment is returned.
Optionally, it when if desired mobile terminal manipulates the first ZigBee equipment by NFC technique, needs first to send out to server
Send request of data, waiting for server verify mobile terminal current login account and the first ZigBee equipment whether legal bind,
Pass through if so, verification can be considered as, server returns to authentication secret corresponding with the identification code of the first ZigBee equipment.
Right management method provided in this embodiment, the first ZigBee equipment sent by server according to mobile terminal
Identification code and mobile terminal login account, to the login account of mobile terminal with whether the first ZigBee equipment legal ties up
Surely it is verified.This method opens different equipment operation choosings by currently logging in the operating right of account number according to mobile terminal
Item gives current user, the login account number of different rights while realizing the access right of security management and control ZigBee functions of the equipments
It is corresponding with the permission of different operation ZigBee equipment.
Referring to Fig. 6, being a kind of structural block diagram of rights management device 500 provided by the embodiments of the present application, the present embodiment
A kind of rights management device 500 is provided, mobile terminal is run on, described device 500 includes: data obtaining module 510, request hair
Send module 520, information receiving module 530, information sending module 540 and function opening module 550.
Data obtaining module 510, for obtaining the identification code of the first ZigBee equipment, the identification code by NFC technique
For unique identification ZigBee equipment.
Request sending module 520, for server send carry the first ZigBee equipment identification code and
The request of data of the mobile terminal login account is searched corresponding ZigBee under the login account so as to the server and is set
In standby identification code whether include the first ZigBee equipment identification code.
Information receiving module 530, for finding of receiving that the server returns and the login account and described
The corresponding authentication secret of identification code of first ZigBee equipment.
Optionally, rights management device 500 further includes signal acquisition module, which is used to pass through NFC skill
Art receives the NFC signal of the first ZigBee equipment in pre-determined distance;It is set according to the first ZigBee of NFC signal identification received
Standby network state information;
Data obtaining module, recognizing network state information to characterize the first ZigBee equipment for data obtaining module is not
Enter net state, jump to equipment networking interface, obtains networking information needed;
Information sending module, corresponding login when for networking information needed and the first ZigBee equipment to network for the first time
Account is sent to the first ZigBee equipment by NFC technique.
Optionally, the NFC signal of the first ZigBee equipment includes the network state flag bit of the first ZigBee equipment and sets
The step of standby flag bit, the network state information for the first ZigBee equipment of NFC signal identification that above-mentioned basis receives, can wrap
It includes: identifying the network state information of the first ZigBee equipment according to network state flag bit;If network state flag bit is empty
It indicates that the first ZigBee equipment is in and does not enter net state, otherwise be in net state.
Optionally, networking information needed includes the characteristic information and internet WiFi router of the first ZigBee equipment
The access information of access information, internet WiFi router accesses internet for the first ZigBee equipment.As a kind of mode,
The step of above-mentioned acquisition networking information needed may include: characteristic information and the internet road WiFi for obtaining the first ZigBee equipment
By the access information of device;The access information of the characteristic information of first ZigBee equipment and internet WiFi router is deposited
Storage.Alternatively, the step of above-mentioned acquisition networking information needed may include: and send the first ZigBee to server to set
Standby networking information needed acquisition request;Receive the networking institute for the first ZigBee equipment corresponding with the request that server returns
Need information.
Information sending module 540, information sending module are set for the authentication secret to be sent to the first ZigBee
It is standby, so that the first ZigBee equipment judges the authentication secret and the data safety for being stored in the first ZigBee equipment
Whether the authentication secret of the first ZigBee equipment in area is consistent.
Function opening module 550, for opening the first ZigBee equipment corresponding with the permission of the login account
Operating function.
Optionally, function opening module 550 is specifically used for obtaining the permission of login account;According to the login account of acquisition
Permission opens the operating function of corresponding first ZigBee equipment.
Referring to Fig. 7, be a kind of structural block diagram of rights management device provided by the embodiments of the present application, the present embodiment provides
A kind of rights management device 600, the first ZigBee equipment include described device 600, and described device 600 includes: reception mould
Block 610, judgment module 620 and respond module 630.
Receiving module 610 receives stepping on for the mobile terminal that the mobile terminal is sent for the first ZigBee equipment
Record authentication secret corresponding with the identification code of the first ZigBee equipment under account.
Optionally, device 600 further include: receiving module, for receiving the networking institute that mobile terminal is sent by NFC technique
Need information and the first ZigBee equipment corresponding login account when carrying out into net operation;Key production module, for based on the
The identification code of corresponding login account and the first ZigBee equipment generation first when carrying out into net operation of one ZigBee equipment
The authentication secret of ZigBee equipment, the identification code are used for unique identification ZigBee equipment;Memory module is used for the first ZigBee
The authentication secret of equipment is stored.
Optionally, device 600 further include: data transmission module, for the authentication secret of the first ZigBee equipment to be uploaded
To server.
Optionally, device 600 further include: network connecting module, for establishing net according to networking information needed and server
Network connection.
Judgment module 620, for judging the authentication secret and being stored in described the first of the first ZigBee equipment
Whether the authentication secret of ZigBee equipment is consistent.
Respond module 630, if for being communicated to connect for unanimously, allowing to establish, otherwise without response.
Referring to Fig. 8, be a kind of structural block diagram of rights management device provided by the embodiments of the present application, the present embodiment provides
A kind of rights management device 700, the server include described device 700, and described device 700 includes: request receiving module
710, information searching module 720 and key return module 730.
Request receiving module 710 receives the request of data that mobile terminal is sent, the request of data for the server
In carry the identification code and the mobile terminal login account of the first ZigBee equipment.
Optionally, before request receiving module 710 further include: receive first sent from the first ZigBee equipment
The authentication secret of ZigBee equipment.
Information searching module 720 searches corresponding ZigBee equipment identification under the login account for the server
Whether the identification code of the first ZigBee equipment is had in code.
Key return module 730 returns to the identification with the first ZigBee equipment found for the server
The corresponding authentication secret of code.
It is apparent to those skilled in the art that for convenience and simplicity of description, foregoing description device and
The specific work process of module, can refer to corresponding processes in the foregoing method embodiment, and details are not described herein.
In several embodiments provided herein, the mutual coupling of shown or discussed module or direct coupling
It closes or communication connection can be through some interfaces, the indirect coupling or communication connection of device or module can be electrical property, mechanical
Or other forms.
It, can also be in addition, can integrate in a processing module in each functional module in each embodiment of the application
It is that modules physically exist alone, can also be integrated in two or more modules in a module.Above-mentioned integrated mould
Block both can take the form of hardware realization, can also be realized in the form of software function module.
In conclusion a kind of right management method, device and network system provided by the present application, pass through mobile terminal
The identification code of the first ZigBee equipment is obtained using NFC technique, which is used for unique identification ZigBee equipment;Again to service
Device transmission carries the identification code of the first ZigBee equipment and the request of data of mobile terminal login account, so that server is looked into
The identification code for whether having the first ZigBee equipment in corresponding ZigBee EIC equipment identification code is looked under login account;Then service is received
The authentication secret corresponding with the identification code of the first ZigBee equipment found that device returns;Authentication secret is sent to first
ZigBee equipment, so that the first ZigBee equipment judges authentication secret and the data safety area for being stored in the first ZigBee equipment
Whether the authentication secret of the first ZigBee equipment is consistent;It is then turned on the first ZigBee equipment corresponding with the permission of login account
Operating function.Using this method when mobile terminal controls ZigBee equipment by NFC technique, realize in server end and
The double verification of ZigBee equipment end, it is safer, and the operating right of account number is logged in currently to open not according to mobile terminal
Same equipment operation option gives current user, realizes different while the access right of security management and control ZigBee functions of the equipments
The login account number of permission is corresponding with the permission of different operation ZigBee equipment.
A kind of mobile terminal provided by the present application is illustrated below in conjunction with Fig. 9.
Referring to Fig. 9, based on above-mentioned right management method, device, another kind that the embodiment of the present application also provides can be with
Execute the mobile terminal 11 of aforementioned rights management method.The mobile terminal 11 can be smart phone, tablet computer, e-book etc.
The mobile terminal of program can be run, the mobile terminal 11 include NFC module 111, memory 113, one intercoupled or
Multiple (one is only shown in figure) processors 115 and function opening module 117.
Memory 113 can be used for storing software program and module, as being applied to mobile terminal in the embodiment of the present application
Right management method, NFC module 111, function opening module 117 and the corresponding program instruction/module of device, processor
115 software programs and module being stored in memory 113 by operation, at various function application and data
Reason, such as right management method provided by the embodiments of the present application applied to mobile terminal.
Memory 113 may include high speed random access memory, may also include nonvolatile memory, such as one or more magnetic
Property storage device, flash memory or other non-volatile solid state memories.It is understood that structure shown in Fig. 9 is only to show
Meaning, mobile terminal 11 may also include the more perhaps less component than shown in Fig. 9 or match with different from shown in Fig. 9
It sets.Each component shown in Fig. 9 can be realized using hardware, software, or its combination.
Referring to Fig. 10, a kind of structural block diagram of ZigBee equipment 13 that can be applied in the embodiment of the present application is shown,
The ZigBee equipment 13 can be ZigBee gateway or the sub- equipment of ZigBee.The ZigBee equipment 13 includes NFC module 131, close
Key generation module 133, storage unit 135 and one or more (one is only shown in the figure) processing unit 137 to intercouple.
Wherein, it is stored with the program that can execute content in previous embodiment in the storage unit 135, and processing unit 137 can be held
The program stored in the row storage unit 135.
Figure 11 is please referred to, a kind of structural block diagram of computer readable storage medium provided by the embodiments of the present application is shown.
Program code is stored in the computer-readable medium 800, said program code can be called by processor and execute above method reality
Apply method described in example.
Computer readable storage medium 800 can be such as flash memory, EEPROM (electrically erasable programmable read-only memory),
The electronic memory of EPROM, hard disk or ROM etc.Optionally, computer readable storage medium 800 includes non-transient meter
Calculation machine readable medium (non-transitory computer-readable storage medium).Computer-readable storage
Medium 800 has the memory space for the program code 810 for executing any method and step in the above method.These program codes can
With from reading or be written in one or more computer program product in this one or more computer program product.
Program code 810 can for example be compressed in a suitable form.
Finally, it should be noted that above embodiments are only to illustrate the technical solution of the application, rather than its limitations;Although
The application is described in detail with reference to the foregoing embodiments, those skilled in the art are when understanding: it still can be with
It modifies the technical solutions described in the foregoing embodiments or equivalent replacement of some of the technical features;And
These are modified or replaceed, do not drive corresponding technical solution essence be detached from each embodiment technical solution of the application spirit and
Range.
Claims (20)
1. a kind of right management method, which is characterized in that the described method includes:
Mobile terminal obtains the identification code of the first ZigBee equipment by NFC technique, and the identification code is used for unique identification
ZigBee equipment;
The mobile terminal sends the identification code for carrying the first ZigBee equipment and the mobile terminal to server
The request of data of login account, search under the login account so as to the server is in corresponding ZigBee EIC equipment identification code
No includes the identification code of the first ZigBee equipment;
Receive the identification code pair with the login account and the first ZigBee equipment found that the server returns
The authentication secret answered;
The authentication secret is sent to the first ZigBee equipment, so that the first ZigBee equipment judges the verifying
Whether key is consistent with the authentication secret for the first ZigBee equipment for being stored in the first ZigBee equipment;
If consistent, the operating function of the first ZigBee equipment corresponding with the permission of the login account is opened.
2. the method according to claim 1, wherein the mobile terminal obtains first by NFC technique
Before the step of identification code of ZigBee equipment further include:
The mobile terminal receives the NFC signal of the first ZigBee equipment in pre-determined distance by NFC technique;
According to the network state information of the first ZigBee equipment described in the NFC signal identification received;
If it is not enter net state that the network state information, which characterizes the first ZigBee equipment, networking information needed is obtained;
Corresponding login account passes through when the networking information needed and the first ZigBee equipment are carried out into net operation
NFC technique is sent to the first ZigBee equipment.
3. according to the method described in claim 2, it is characterized in that, the step of the acquisition networking information needed further include:
The networking information needed acquisition request of the first ZigBee equipment is sent to server;
Receive the networking information needed for the first ZigBee equipment corresponding with the request that server returns.
4. method described in any one of -3 according to claim 1, which is characterized in that if described consistent, open with it is described
The step of operating function of the corresponding first ZigBee equipment of the permission of login account includes:
The permission of login account described in the acquisition for mobile terminal;
The operating function of the corresponding first ZigBee equipment is opened according to the permission of the login account of acquisition.
5. according to the method described in claim 4, being corresponded to it is characterized in that, being opened according to the permission of the login account of acquisition
The first ZigBee equipment operating function the step of, comprising:
The operating function of the corresponding first ZigBee equipment is opened according to the permission of the login account of acquisition, and is shown
Operation interface corresponding with the operating function.
6. a kind of right management method, which is characterized in that the described method includes:
First ZigBee equipment receives under the login account of the mobile terminal that the mobile terminal is sent with described first
The corresponding authentication secret of the identification code of ZigBee equipment;
Judge the authentication secret of the authentication secret with the first ZigBee equipment for being stored in the first ZigBee equipment
It is whether consistent;
If consistent, allow to establish communication connection, otherwise without response.
7. according to the method described in claim 6, it is characterized in that, the first ZigBee equipment receives the mobile terminal hair
Under the login account of the mobile terminal sent the step of authentication secret corresponding with the identification code of the first ZigBee equipment
Before, further includes:
First ZigBee equipment receives the networking information needed and the first ZigBee that mobile terminal is sent by NFC technique
Equipment corresponding login account when carrying out into net operation;
Corresponding login account and the first ZigBee equipment when being carried out based on the first ZigBee equipment into net operation
Identification code generate the authentication secret of the first ZigBee equipment, the identification code is used for unique identification ZigBee equipment;
The authentication secret of the first ZigBee equipment is stored.
8. the method according to the description of claim 7 is characterized in that described carry out networking behaviour based on the first ZigBee equipment
The identification code of corresponding login account and the first ZigBee equipment generates the verifying of the first ZigBee equipment when making
The step of key includes:
The first ZigBee equipment is corresponding when being carried out based on the first ZigBee equipment into net operation by encrypting module
Login account, the identification code and one group of generating random number authentication secret of the first ZigBee equipment, as described first
The authentication secret of ZigBee equipment.
9. according to method described in claim 6-8, which is characterized in that the method also includes:
The authentication secret of the first ZigBee equipment is uploaded to server by the first ZigBee equipment.
10. the method according to the description of claim 7 is characterized in that described networked based on the first ZigBee equipment
The identification code of corresponding login account and the first ZigBee equipment generates testing for the first ZigBee equipment when operation
Before the step of demonstrate,proving key further include:
The first ZigBee equipment is established according to the networking information needed and server and is connected to the network.
11. a kind of right management method, which is characterized in that the described method includes:
Server receives the request of data that mobile terminal is sent, and the identification of the first ZigBee equipment is carried in the request of data
Code and the mobile terminal login account;
Whether it includes described first that the server is searched under the login account in corresponding ZigBee EIC equipment identification code
The identification code of ZigBee equipment;
If so, then returning to authentication secret corresponding with the identification code of the first ZigBee equipment.
12. according to the method for claim 11, which is characterized in that the server receives the data that mobile terminal is sent and asks
Before the step of asking further include:
Receive the authentication secret of the first ZigBee equipment sent from the first ZigBee equipment.
13. a kind of right management method, which is characterized in that the described method includes:
First ZigBee equipment receives the networking information needed and the first ZigBee that mobile terminal is sent by NFC technique
Equipment corresponding login account when carrying out into net operation;
The first ZigBee equipment is established according to the networking information needed and server and is connected to the network;
The first ZigBee equipment be based on the first ZigBee equipment when carrying out into net operation corresponding login account and
The identification code of the first ZigBee equipment generates the authentication secret of the first ZigBee equipment, stores the first ZigBee
The authentication secret of equipment is simultaneously uploaded to the server, and the identification code is used for unique identification ZigBee equipment;
The server receives the authentication secret of the first ZigBee equipment;
The mobile terminal obtains the identification code of the first ZigBee equipment by NFC technique;
The mobile terminal sends the identification code and the movement for carrying the first ZigBee equipment to the server
The request of data of terminal login account;
The server receives the request of data, search under the login account in corresponding ZigBee EIC equipment identification code whether
There is the identification code of the first ZigBee equipment, if so, then returning to test corresponding with the identification code of the first ZigBee equipment
Key is demonstrate,proved to the mobile terminal;
The mobile terminal receives the authentication secret that the server returns and the authentication secret is sent to described the
One ZigBee equipment;
The first ZigBee equipment receives and judges that the authentication secret of the authentication secret and the first ZigBee equipment is
It is no consistent, if unanimously, establishing the communication connection with the mobile terminal;
The permission of login account described in the acquisition for mobile terminal is opened corresponding first ZigBee according to the permission and is set
Standby operating function.
14. a kind of rights management device, which is characterized in that run on mobile terminal, described device includes:
Data obtaining module, for obtaining the identification code of the first ZigBee equipment by NFC technique, the identification code is for unique
Identify ZigBee equipment;
Request sending module, for sending the identification code and the movement that carry the first ZigBee equipment to server
The request of data of terminal login account, so that the server searches corresponding ZigBee EIC equipment identification code under the login account
In whether include the first ZigBee equipment identification code;
Information receiving module, for finding of receiving that the server returns and the login account and described first
The corresponding authentication secret of the identification code of ZigBee equipment;
Information sending module, for the authentication secret to be sent to the first ZigBee equipment, so as to described first
ZigBee equipment judges the first ZigBee of the authentication secret with the data safety area for being stored in the first ZigBee equipment
Whether the authentication secret of equipment is consistent;
Function opening module, for opening the operating work of the first ZigBee equipment corresponding with the permission of the login account
Energy.
15. a kind of rights management device, which is characterized in that run on the first ZigBee equipment, described device includes:
Receiving module, under the login account that the mobile terminal that the mobile terminal is sent is received for the first ZigBee equipment
Authentication secret corresponding with the identification code of the first ZigBee equipment;
Judgment module, for judging that the authentication secret is set with the first ZigBee for being stored in the first ZigBee equipment
Whether standby authentication secret is consistent;
Respond module, if allowing to establish communication connection, otherwise without response for consistent.
16. a kind of rights management device, which is characterized in that run on server, described device includes:
Request receiving module receives the request of data that mobile terminal is sent for the server, carries in the request of data
There are the identification code and the mobile terminal login account of the first ZigBee equipment;
Information searching module, for the server search under the login account in corresponding ZigBee EIC equipment identification code whether
There is the identification code of the first ZigBee equipment;
Key return module is found corresponding with the identification code of the first ZigBee equipment for server return
Authentication secret.
17. a kind of network system, which is characterized in that including mobile terminal, the first ZigBee equipment, server:
The first ZigBee equipment is used to receive the networking information needed and described the of mobile terminal transmission by NFC technique
One ZigBee equipment corresponding login account when carrying out into net operation;
The first ZigBee equipment is also used to be established according to the networking information needed and server and be connected to the network;
The first ZigBee equipment corresponding login account when being also used to carry out based on the first ZigBee equipment into net operation
The identification code of family and the first ZigBee equipment generates the authentication secret of the first ZigBee equipment, storage described first
The authentication secret of ZigBee equipment is simultaneously uploaded to the server, and the identification code is used for unique identification ZigBee equipment;
The server is used to receive the authentication secret of the first ZigBee equipment;
The mobile terminal is used to obtain the identification code of the first ZigBee equipment by NFC technique;
The mobile terminal is also used to send identification code and the institute for carrying the first ZigBee equipment to the server
State the request of data of mobile terminal login account;
The server is also used to receive the request of data, searches corresponding ZigBee EIC equipment identification code under the login account
In whether include the identification code of the first ZigBee equipment, if so, then returning and the identification of the first ZigBee equipment
The corresponding authentication secret of code gives the mobile terminal;
The mobile terminal is also used to receive the authentication secret that the server returns and is sent to the authentication secret
The first ZigBee equipment;
The first ZigBee equipment is also used to receive and judge the verifying of the authentication secret Yu the first ZigBee equipment
Whether key is consistent, if unanimously, establishing the communication connection with the mobile terminal;
The mobile terminal is also used to obtain the permission of the login account, opens corresponding described first according to the permission
The operating function of ZigBee equipment.
18. a kind of mobile terminal, which is characterized in that including memory and one or more processors;
One or more programs are stored in the memory and are configured as being executed by one or more of processors, institute
It states one or more programs and is configured to carry out any method of claim 1-5.
19. a kind of ZigBee equipment, which is characterized in that including storage unit and one or more processing units;
One or more programs are stored in the storage unit and are configured as being held by one or more of processing units
Row, one or more of programs are configured to carry out any method of claim 6-10.
20. a kind of computer readable storage medium, which is characterized in that be stored with program generation in the computer readable storage medium
Code, wherein perform claim requires 1-5 or 6-10 or 11-12 or 13 when said program code is loaded and executed by processor
Method described in one.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811372272.9A CN109640326B (en) | 2018-11-16 | 2018-11-16 | Authority management method, device and system and mobile terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811372272.9A CN109640326B (en) | 2018-11-16 | 2018-11-16 | Authority management method, device and system and mobile terminal |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109640326A true CN109640326A (en) | 2019-04-16 |
| CN109640326B CN109640326B (en) | 2022-01-14 |
Family
ID=66068426
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811372272.9A Active CN109640326B (en) | 2018-11-16 | 2018-11-16 | Authority management method, device and system and mobile terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109640326B (en) |
Cited By (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111162975A (en) * | 2019-12-19 | 2020-05-15 | 华为技术有限公司 | Method for managing intelligent equipment, mobile terminal and communication system |
| CN111510896A (en) * | 2020-03-13 | 2020-08-07 | 珠海格力电器股份有限公司 | Bluetooth connection method and device, Internet of things system, electronic equipment and storage medium |
| CN111641505A (en) * | 2020-04-20 | 2020-09-08 | 广东乐心医疗电子股份有限公司 | Information processing method and device, electronic equipment and readable storage medium |
| CN112448970A (en) * | 2019-08-29 | 2021-03-05 | 阿里巴巴集团控股有限公司 | Equipment connection method and system and corresponding Internet of things equipment |
| CN112751929A (en) * | 2020-12-28 | 2021-05-04 | 深圳市科创思科技有限公司 | Method and system for communicating with remote PLC (programmable logic controller) equipment |
| CN113726585A (en) * | 2021-10-20 | 2021-11-30 | 青岛海信智慧生活科技股份有限公司 | Intelligent household equipment, gateway, terminal, equipment network access method and system |
| CN115515133A (en) * | 2021-06-23 | 2022-12-23 | 华为技术有限公司 | Distributed equipment authentication method and electronic equipment |
Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102938729A (en) * | 2012-10-30 | 2013-02-20 | 鸿富锦精密工业(深圳)有限公司 | Remote control method for intelligent gateway, intelligent home system and appliances |
| CN104080076A (en) * | 2013-03-29 | 2014-10-01 | 上海城际互通通信有限公司 | Business using method based on NFC |
| US20160171117A1 (en) * | 2014-12-10 | 2016-06-16 | Globalkey Ag | Procedure to simplify the administration and handling of identification cards |
| CN106165341A (en) * | 2014-02-06 | 2016-11-23 | 三星电子株式会社 | The method for connecting network of household electrical appliance, the network connection system of household electrical appliance and household electrical appliance |
| CN107566234A (en) * | 2017-10-20 | 2018-01-09 | 成都六零加信息技术有限公司 | Intelligent home control system and constructing communication network method |
| CN107612941A (en) * | 2017-10-31 | 2018-01-19 | 广东小天才科技有限公司 | A kind of method, apparatus of rights management, equipment and storage medium |
-
2018
- 2018-11-16 CN CN201811372272.9A patent/CN109640326B/en active Active
Patent Citations (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102938729A (en) * | 2012-10-30 | 2013-02-20 | 鸿富锦精密工业(深圳)有限公司 | Remote control method for intelligent gateway, intelligent home system and appliances |
| CN104080076A (en) * | 2013-03-29 | 2014-10-01 | 上海城际互通通信有限公司 | Business using method based on NFC |
| CN106165341A (en) * | 2014-02-06 | 2016-11-23 | 三星电子株式会社 | The method for connecting network of household electrical appliance, the network connection system of household electrical appliance and household electrical appliance |
| US20160171117A1 (en) * | 2014-12-10 | 2016-06-16 | Globalkey Ag | Procedure to simplify the administration and handling of identification cards |
| CN107566234A (en) * | 2017-10-20 | 2018-01-09 | 成都六零加信息技术有限公司 | Intelligent home control system and constructing communication network method |
| CN107612941A (en) * | 2017-10-31 | 2018-01-19 | 广东小天才科技有限公司 | A kind of method, apparatus of rights management, equipment and storage medium |
Cited By (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112448970A (en) * | 2019-08-29 | 2021-03-05 | 阿里巴巴集团控股有限公司 | Equipment connection method and system and corresponding Internet of things equipment |
| CN111162975A (en) * | 2019-12-19 | 2020-05-15 | 华为技术有限公司 | Method for managing intelligent equipment, mobile terminal and communication system |
| CN111510896A (en) * | 2020-03-13 | 2020-08-07 | 珠海格力电器股份有限公司 | Bluetooth connection method and device, Internet of things system, electronic equipment and storage medium |
| CN111510896B (en) * | 2020-03-13 | 2021-09-14 | 珠海格力电器股份有限公司 | Bluetooth connection method and device, Internet of things system, electronic equipment and storage medium |
| CN111641505A (en) * | 2020-04-20 | 2020-09-08 | 广东乐心医疗电子股份有限公司 | Information processing method and device, electronic equipment and readable storage medium |
| CN111641505B (en) * | 2020-04-20 | 2023-04-25 | 广东乐心医疗电子股份有限公司 | Information processing method, information processing device, electronic equipment and readable storage medium |
| CN112751929A (en) * | 2020-12-28 | 2021-05-04 | 深圳市科创思科技有限公司 | Method and system for communicating with remote PLC (programmable logic controller) equipment |
| CN112751929B (en) * | 2020-12-28 | 2023-03-14 | 深圳市科创思科技有限公司 | Method and system for communicating with remote PLC (programmable logic controller) equipment |
| CN115515133A (en) * | 2021-06-23 | 2022-12-23 | 华为技术有限公司 | Distributed equipment authentication method and electronic equipment |
| CN113726585A (en) * | 2021-10-20 | 2021-11-30 | 青岛海信智慧生活科技股份有限公司 | Intelligent household equipment, gateway, terminal, equipment network access method and system |
| CN113726585B (en) * | 2021-10-20 | 2024-04-05 | 青岛海信智慧生活科技股份有限公司 | Intelligent household equipment, equipment network access method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109640326B (en) | 2022-01-14 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109640326A (en) | Right management method, device, system and mobile terminal | |
| US9716675B2 (en) | Method and system for controlling internet of things (IoT) device | |
| US11277278B2 (en) | Smart home service server and control method therefor | |
| CN102984039B (en) | The intelligent control method of intelligent gateway, intelligent domestic system and home appliance | |
| CN109147111A (en) | It is self-service to move in management system and method, electronic equipment and storage medium | |
| CN109413515A (en) | Apparatus control method, device, mobile terminal and server | |
| EP3179758A1 (en) | Building intercom method, nfc unlocking device and building intercom system | |
| CN107230139A (en) | A kind of unattended Management System on Public Rooms based on arrowband Internet of Things | |
| Ding et al. | A smart gateway architecture for improving efficiency of home network applications | |
| Chaurasia et al. | Enhanced smart home automation system based on Internet of Things | |
| CN109548116A (en) | ZigBee gateway batch method of network entry, device and equipment based on NFC | |
| AU2016361086B2 (en) | Smart home service server and control method therefor | |
| CN104796969A (en) | Network accessing method and system for equipment of internet of things on basis of recognition codes of internet of things | |
| CN103795444A (en) | Home automation device pairing by NFC-enabled portable device | |
| CN107132822A (en) | Control method, intelligent door lock and the control system of smart home | |
| CN104794780A (en) | Smart door, smart door control system and control method | |
| CN109362069A (en) | ZigBee gateway method of network entry, device and equipment based on NFC | |
| CN106878436A (en) | A kind of Hotel Guest Room Control System based on intelligent gateway | |
| KR101969752B1 (en) | Method and apparatus for controling security of target device using security tunnel | |
| CN110266567A (en) | A kind of control method and its system for realizing smart home device based on intelligent terminal | |
| CN106502113B (en) | Automatic pairing method and server | |
| CN104253853A (en) | System and method for sharing digital information between mobile devices of friends and family by loading application components onto embedded devices | |
| CN109507901A (en) | A kind of intelligent home furnishing control method and system | |
| KR101775823B1 (en) | Method and system for controlling device based internet of things | |
| CN106550427A (en) | For realizing method, WiFi terminal and the system of WLAN rapid configuration |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |