CN110191454B - Method for realizing capacity expansion of number of access devices at Zigbee coordinator end - Google Patents

Method for realizing capacity expansion of number of access devices at Zigbee coordinator end Download PDF

Info

Publication number
CN110191454B
CN110191454B CN201910630294.9A CN201910630294A CN110191454B CN 110191454 B CN110191454 B CN 110191454B CN 201910630294 A CN201910630294 A CN 201910630294A CN 110191454 B CN110191454 B CN 110191454B
Authority
CN
China
Prior art keywords
capacity
key
zigbee
coordinator
network
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201910630294.9A
Other languages
Chinese (zh)
Other versions
CN110191454A (en
Inventor
李晓冬
周刚
宋世成
陈修强
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Sichuan Changhong Electric Co Ltd
Original Assignee
Sichuan Changhong Electric Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sichuan Changhong Electric Co Ltd filed Critical Sichuan Changhong Electric Co Ltd
Priority to CN201910630294.9A priority Critical patent/CN110191454B/en
Publication of CN110191454A publication Critical patent/CN110191454A/en
Application granted granted Critical
Publication of CN110191454B publication Critical patent/CN110191454B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • H04W12/0433Key management protocols
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W16/00Network planning, e.g. coverage or traffic planning tools; Network deployment, e.g. resource partitioning or cells structures
    • H04W16/18Network planning tools
    • H04W16/20Network planning tools for indoor coverage or short range network deployment
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W4/00Services specially adapted for wireless communication networks; Facilities therefor
    • H04W4/80Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W48/00Access restriction; Network selection; Access point selection
    • H04W48/16Discovering, processing access restriction or access information

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Mobile Radio Communication Systems (AREA)

Abstract

The invention discloses a method for realizing the capacity expansion of the number of access devices at a Zigbee coordinator end, which is realized based on Zigbee3.0 and comprises the following steps: A. changing the network access process of Zigbee networking, and deleting the steps of obtaining and verifying the trust key; B. by reducing the secret key of the fixed network layer, the risk of a hacker intercepting the secret key in the networking stage is reduced; C. the maximum number of the access devices and the trust stack version of the network security layer are set by changing the parameter setting of the software stack. The method can meet the Zigbee scheme which needs large-capacity nodes in the industry, has high practical use value, and effectively expands the application range of the Zigbee scheme.

Description

Method for realizing capacity expansion of number of access devices at Zigbee coordinator end
Technical Field
The invention relates to the technical field of Zigbee wireless communication, in particular to a method for realizing the capacity expansion of the number of access devices at a Zigbee coordinator end.
Background
With the development of the internet of things (IoT) technology, the demand for wireless data communication is getting stronger and stronger in a plurality of fields including industrial automation, smart home and smart energy, and ZigBee is a low-power consumption local area network protocol based on the ieee802.15.4 standard, and is a short-distance and low-power consumption wireless communication technology. Because the Zigbee technology has the advantages of low power, short time delay, high capacity, high safety, etc., and starts to be used in large scale in the industry, according to the data of the industry standards association, the global shipment of Zigbee currently exceeds 5 hundred million pieces, and the growth speed is faster and faster.
The Zigbee network system consists of three kinds of devices or systems with roles of a coordinator (similar to a gateway), a router and a terminal node, wherein the function of the coordinator is mainly responsible for the management of the whole system network, including the allocation of network addresses of the terminal and the routing node in the system; security management, such as issuing and updating of security certificates; and (4) message distribution, for example, the message distribution is responsible for sending the message of the host processor to subordinate nodes and uploading the information of the subordinate nodes to the host processor for processing. The terminal node accesses the coordinator in two modes: one method is to directly access the coordinator in a star topology structure, and the other method is to access the coordinator node after relay routing is performed through the routing node, in the conventional method, the number of nodes which can be supported by the coordinator is generally about 20, and a method for expanding capacity is generally expanded by using a relay routing method, and the method has several disadvantages: firstly, because the number of nodes of a single access point (coordinator or route) is too small (about 20), the efficiency of capacity expansion is not high, and secondly, after the route relay is used, the topological structure is complex, the efficiency and stability of communication are greatly influenced, and especially the condition of introducing multi-stage relay is more obvious.
Disclosure of Invention
The invention aims to overcome the defects in the background art, provides a method for realizing the capacity expansion of the number of the access devices at the Zigbee coordinator end, can meet the Zigbee scheme which needs high-capacity nodes in the industry, has high practical use value, and effectively expands the application range of the Zigbee scheme.
In order to achieve the technical effects, the invention adopts the following technical scheme:
a method for realizing capacity expansion of the number of access devices at a Zigbee coordinator end is realized based on Zigbee3.0, wherein the Zigbee3.0 is a Ti protocol stack, and comprises the following steps:
A. changing the network access process of Zigbee networking, and deleting the steps of obtaining and verifying the trust key;
B. by reducing the secret key of the fixed network layer, the risk of a hacker intercepting the secret key in the networking stage is reduced;
C. the maximum number of the access equipment is set by changing the parameter setting of the software stack;
the method and the process can realize the change of the network access process of the Zigbee network system, delete the process links of acquiring the trust center Key (TCLink Key) initiated by the terminal, issuing the trust center Key by the coordinator, verifying the Key (Verify Key) initiated by the terminal and confirming the Key (Confirm Key) issued by the coordinator, and realize the stable communication of b devices simultaneously accessing the same coordinator.
Further, the step C specifically includes: and changing the definition of the equipment capacity in the network layer macro variable definition file, wherein the equipment capacity is changed from the original quantity a to a quantity b, both a and b are greater than 0, and b is greater than a.
Further, a equals 20 and b equals 80.
Further, the step a specifically includes: in the Zigbee coordinator equipment object file management, the version of the security stack is set to be lower than c, so that the processes of trusting a Key and verifying the Key can not be carried out when terminal equipment is added into the coordinator.
Further, c is equal to 21.
Further, the step B specifically includes: the capacity of the maximum supported trust Key is changed in the security management macro variable definition file, and the capacity is set from the original 40 to 1 and is changed into a subnet fixed network Key to be set on the AES chip.
Compared with the prior art, the invention has the following beneficial effects:
in the technical scheme of the invention, the core problem to be solved is to increase the access capacity of an access point (coordinator or route), the scheme can effectively solve the defects of a general scheme in the industry, the capacity of a single point is improved to 4 times (such as 20 to 80) of the original capacity, further, through a first-level route, the theoretical access capacity upper limit of one coordinator reaches 16 times before capacity expansion (such as 400 before capacity expansion and 6400 after capacity expansion), the node access capacity scale of a unit coordinator is enough to deal with the node number capacity required in most application scenes in the industry, and meanwhile, the application range of the Zigbee communication scheme in an industry application scene is greatly expanded.
Drawings
Fig. 1 is a schematic diagram of interaction flow of zigbee3.0 terminal device joining a coordinator in the prior art.
Fig. 2 is a schematic view of an interaction flow of joining a coordinator by a terminal device after capacity expansion improvement is performed by the method of the present invention in one embodiment.
Detailed Description
The invention will be further elucidated and described with reference to the embodiments of the invention described hereinafter.
Example (b):
as shown in fig. 1, for adding a coordinator interaction flow to zigbee3.0 terminal DEVICEs in the prior art, after deep analysis of zigbee3.0 program code (texas instruments Ti protocol stack), it is found that the capacity of the DEVICE is set to 20 (# define NWK _ MAX _ DEVICE _ LIST 20), according to a conventional idea, if the capacity is to be expanded, the value is directly increased, for example, to 40, but through test, it is found that, in this case, when the number of access DEVICEs is between 20 and 30, the coordinator no longer responds to the Beacon request of the terminal node, which indicates that resources on the coordinator side have been completely used and no redundant node can be accessed. Meanwhile, analysis also shows that the Zigbee3.0 standard protocol uses a two-layer encryption system to ensure the safety of the system.
The first layer is network layer encryption, for a subnet constructed by a coordinator, the coordinator manages a unique network layer key, each terminal node accessing the subnet encrypts transmission of data packets by using the same network key, the network key is dynamically updated, and the coordinator updates the network key to each legal node in the subnet according to a certain period or strategy.
In order to further strengthen the security, the second layer of encryption is the encryption protection of an application layer, for each device, when the device first accesses the network, an application layer key is obtained from the coordinator and used for communication between the device and the coordinator, and in order to ensure smooth communication, the coordinator stores the application layer key of each access device, and the data structure occupies a large memory and a large Flash space, so that the resource consumption is greatly influenced, and the resources are difficult to continue when the access devices are increased.
In practice, for vertical industry applications, cross-brand compatibility is not a business requirement, and meanwhile, it is considered that a network key is distributed through a coordinator when equipment accesses a network, and may be captured and intercepted by a hacker when the equipment accesses the network, but if a distribution mechanism of the network key is changed, the network key is changed into a subnet fixed network key and is fixed when the equipment leaves a factory, and in an AES chip, the possibility of brute force cracking of software and hardware of the equipment can be eliminated, and the hacker cannot obtain the network key in the flow mode through a packet capturing mode.
The embodiment discloses a method for expanding the number of access devices at a Zigbee coordinator, which is implemented based on Zigbee3.0, where Zigbee3.0 in the present solution is a Ti protocol stack, and the method specifically includes the following steps:
the method comprises the following steps: and changing the network access process of the Zigbee networking, and deleting the steps of obtaining and verifying the trust key.
The embodiment specifically includes: in the Zigbee coordinator device object (ZDO) file management, the version of the security stack is set to be lower than 21, so that the processes of trusting Key and verifying Key can not be carried out when terminal equipment is added into the coordinator.
Step two: by reducing the key of the fixed network layer, the risk of the key being intercepted by a hacker in the networking stage is reduced.
The embodiment specifically includes: the capacity of the maximum supported trust Key is changed in the security management macro variable definition file, and is set to 1 from the original 40, and the specific change is as follows:
#if (ZG_BUILD_COORDINATOR_TYPE)
#define ZDSECMGR_TC_DEVICE_MAX 1
#else
#define ZDSECMGR_TC_DEVICE_MAX 0
step three: and the maximum number of the access equipment is set by changing the parameter setting of the software stack.
The embodiment specifically includes: the definition of the capacity of the equipment is changed in the network layer macro variable definition file, which is set to 80 from the original 20, and the # define NWK _ MAX _ DEVICE _ LIST 80 is specifically changed.
Fig. 2 shows that the whole network access flow is greatly changed after the capacity expansion of the method is performed, the link of acquiring a trust center Key (TClink Key) initiated by a terminal, issuing the trust center Key by a coordinator, deleting a verification Key (Verify Key) initiated by the terminal and a confirmation Key (Confirm Key) issued by the coordinator is deleted, and it can be known through practical tests that the method of the present invention realizes that 80 devices simultaneously access to the same coordinator for stable communication.
It will be understood that the above embodiments are merely exemplary embodiments taken to illustrate the principles of the present invention, which is not limited thereto. It will be apparent to those skilled in the art that various modifications and improvements can be made without departing from the spirit and substance of the invention, and these modifications and improvements are also considered to be within the scope of the invention.

Claims (3)

1. A method for realizing capacity expansion of the number of access devices at a Zigbee coordinator end is realized based on Zigbee3.0, and the Zigbee3.0 is a Ti protocol stack, and is characterized by comprising the following steps:
A. changing the network access process of Zigbee networking, and deleting the link of obtaining and verifying the trust key, wherein the link comprises that the version of a security stack is set to be lower than c in the object file management of equipment of a Zigbee coordinator;
B. the method comprises the steps that the risk that a hacker intercepts the secret Key in the networking stage is reduced by reducing the secret Key of a fixed network layer, the capacity of the trust Key which is supported maximally is changed in a security management macro variable definition file, the capacity is set to 1 from 40, and the capacity is changed into a subnet fixed network secret Key and is arranged on an AES chip;
C. the method comprises the steps of changing the definition of the capacity of the access equipment in a network layer macro variable definition file, changing the capacity of the access equipment from the original quantity a to the quantity b, wherein both a and b are greater than 0, and b is greater than a.
2. The method of claim 1, wherein a equals 20 and b equals 80.
3. The method of claim 1, wherein c is equal to 21.
CN201910630294.9A 2019-07-12 2019-07-12 Method for realizing capacity expansion of number of access devices at Zigbee coordinator end Active CN110191454B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910630294.9A CN110191454B (en) 2019-07-12 2019-07-12 Method for realizing capacity expansion of number of access devices at Zigbee coordinator end

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910630294.9A CN110191454B (en) 2019-07-12 2019-07-12 Method for realizing capacity expansion of number of access devices at Zigbee coordinator end

Publications (2)

Publication Number Publication Date
CN110191454A CN110191454A (en) 2019-08-30
CN110191454B true CN110191454B (en) 2021-06-22

Family

ID=67725684

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910630294.9A Active CN110191454B (en) 2019-07-12 2019-07-12 Method for realizing capacity expansion of number of access devices at Zigbee coordinator end

Country Status (1)

Country Link
CN (1) CN110191454B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN203219503U (en) * 2013-04-15 2013-09-25 新发展集团有限公司 Wireless sensor network system
CN106412803A (en) * 2016-09-30 2017-02-15 美的智慧家居科技有限公司 Terminal, ZigBee device, gateway, ZigBee device network configuration system and method
CN107094105A (en) * 2016-02-17 2017-08-25 财团法人资讯工业策进会 Terminal equipment control system, gateway and terminal equipment adding method
CN107333265A (en) * 2017-08-24 2017-11-07 四川长虹电器股份有限公司 A kind of zigbee equipment method of network entry

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9380119B2 (en) * 2013-12-16 2016-06-28 Nokia Technologies Oy Method, apparatus, and computer program product for network discovery

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN203219503U (en) * 2013-04-15 2013-09-25 新发展集团有限公司 Wireless sensor network system
CN107094105A (en) * 2016-02-17 2017-08-25 财团法人资讯工业策进会 Terminal equipment control system, gateway and terminal equipment adding method
CN106412803A (en) * 2016-09-30 2017-02-15 美的智慧家居科技有限公司 Terminal, ZigBee device, gateway, ZigBee device network configuration system and method
CN107333265A (en) * 2017-08-24 2017-11-07 四川长虹电器股份有限公司 A kind of zigbee equipment method of network entry

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
Voice Communication Based on ZigBee Wireless Sensor Networks;LIU Meiqin;《Proceedings of the 33rd Chinese Control Conference》;20140728;第389-394页 *
基于ZigBee的无线智能锁系统设计;钟召辉;《工程科技Ⅰ辑》;20140831;第39-43页 *

Also Published As

Publication number Publication date
CN110191454A (en) 2019-08-30

Similar Documents

Publication Publication Date Title
CN110138748B (en) Network convergence communication method, gateway equipment and system
CN113596191B (en) Data processing method, network element equipment and readable storage medium
US20230179668A1 (en) Enhanced broadcast concurrent ota firmware upgrade method based on bluetooth mesh
CN105376357A (en) An antenna setting method and device for a mobile device
CN109417492A (en) A kind of network function NF management method and NF management equipment
CN113572835B (en) Data processing method, network element equipment and readable storage medium
CN104283858A (en) Method, device and system for controlling user terminal access
CN110351388B (en) Application method based on Internet of things architecture system
US20120257565A1 (en) Mobile network traffic management
CN103220228A (en) Method and equipment for sending border gateway protocol (BGP) routes
CN113572864B (en) Data processing method, network element equipment and readable storage medium
CN112383944B (en) Unmanned aerial vehicle bee colony self-adaptive networking method with built-in block chain
CN103702312A (en) Wireless information transmission method and equipment
CN101179511A (en) Method of obtaining network address, and access equipment
WO2014133441A1 (en) Dynamic contact sharing in a mesh network
KR20170076064A (en) Method, apparatus and computer program for subnetting of software defined network
CN110191454B (en) Method for realizing capacity expansion of number of access devices at Zigbee coordinator end
EP2466814B1 (en) Method, remote access server and system for configuring quality of service
CN115622833B (en) Device management method, system, device and medium for cross-terminal communication based on bus
CN110417636B (en) Decentralized self-organizing instant messaging system and method thereof
Chiang et al. Performance analysis of drama: a distributed policy-based system for manet management
CN113132988B (en) Wireless networking link access method of street lamp controller based on token verification
CN111786871B (en) Bluetooth MESH different network data transmission method
CN108848156B (en) Access gateway processing method, device and storage medium
CN112039785A (en) Bidirectional feedback route discovery method and device suitable for power Internet of things environment

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant