CN111163035A - Method, device and system for managing remote connection of home gateway - Google Patents
Method, device and system for managing remote connection of home gateway Download PDFInfo
- Publication number
- CN111163035A CN111163035A CN201811315667.5A CN201811315667A CN111163035A CN 111163035 A CN111163035 A CN 111163035A CN 201811315667 A CN201811315667 A CN 201811315667A CN 111163035 A CN111163035 A CN 111163035A
- Authority
- CN
- China
- Prior art keywords
- home gateway
- remote connection
- related information
- security vector
- connection
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/0876—Network architectures or network communication protocols for network security for authentication of entities based on the identity of the terminal or configuration, e.g. MAC address, hardware or software configuration or device fingerprint
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L12/00—Data switching networks
- H04L12/28—Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
- H04L12/2803—Home automation networks
- H04L12/283—Processing of data at an internetworking point of a home automation network
- H04L12/2834—Switching of information between an external network and a home network
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
Landscapes
- Engineering & Computer Science (AREA)
- Power Engineering (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
The disclosure provides a management method, a device and a system for remote connection of a home gateway, and relates to the technical field of equipment safety. The method comprises the following steps: sending a connection management request to a home gateway security vector management center, wherein the connection management request comprises SN of the home gateway; receiving home gateway related information returned by a home gateway security vector management center, wherein the home gateway security vector management center determines a corresponding home gateway according to the SN and returns the related information of the home gateway; initiating a request for starting remote connection to the home gateway according to the related information of the home gateway, and starting the remote connection service if the home gateway determines that the remote connection can be started according to the related information of the home gateway; and responding to the home gateway to open the remote connection service, and connecting the home gateway so as to operate the home gateway. The method and the system can improve the security of the home gateway and reduce the possibility that the security of the home network is threatened.
Description
Technical Field
The present disclosure relates to the field of device security technologies, and in particular, to a method, an apparatus, and a system for managing remote connection of a home gateway.
Background
The home gateway is an interface unit of a home network, is an important device for linking an access network outside a home with a network inside the home, and needs an effective means to connect the home gateway when the home gateway is produced, detected and maintained, so as to realize the connection management of the gateway.
In a traditional home gateway management scheme, a port in remote connection is basically always in a monitoring state, and a user name and a password for logging in the home gateway are relatively fixed and are easy to leak or guess, so that the home gateway is greatly threatened.
Disclosure of Invention
The technical problem to be solved by the present disclosure is to provide a method, an apparatus and a system for managing remote connection of a home gateway, which can improve the security of the home gateway.
According to an aspect of the present disclosure, a method for managing remote connection of a home gateway is provided, including: sending a connection management request to a home gateway security vector management center, wherein the connection management request comprises a product serial number SN of the home gateway; receiving home gateway related information returned by a home gateway security vector management center, wherein the home gateway security vector management center determines a corresponding home gateway according to the SN and returns the related information of the home gateway; initiating a request for starting remote connection to the home gateway according to the related information of the home gateway, and starting the remote connection service if the home gateway determines that the remote connection can be started according to the related information of the home gateway; and responding to the home gateway to open the remote connection service, and connecting the home gateway so as to operate the home gateway.
Optionally, the home gateway related information includes a home gateway security vector; receiving a first Hash value of a home gateway security vector returned by a home gateway security vector management center, wherein the home gateway security vector corresponds to an SN; and initiating a remote connection starting request to the home gateway according to the first hash value, wherein the home gateway calculates a second hash value according to the stored home gateway security vector, and if the first hash value is the same as the second hash value, starting the remote connection service.
Optionally, the home gateway security vector management center stores a mapping relationship between SNs of the home gateways and the home gateway security vectors.
Optionally, in response to the home gateway opening the remote connection service, connecting the home gateway using a private key to operate the home gateway, wherein the home gateway establishes a connection with the console using a public key.
Optionally, the management method further includes: and determining a remote connection use scene where the home gateway is located according to whether the home gateway driving module stores a preset text feature file or not, wherein the remote connection use scene where the home gateway is located comprises a factory mode and a non-factory mode.
Optionally, if the home gateway is in the factory mode, the home gateway keeps opening the remote connection service; if the home gateway is in the non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information.
According to another aspect of the present disclosure, there is also provided an operation console far-side connection management device including: the system comprises a connection management request sending unit, a home gateway safety vector management center and a home gateway safety vector management unit, wherein the connection management request sending unit is used for sending a connection management request to the home gateway safety vector management center, and the connection management request comprises a product serial number SN of the home gateway; the gateway related information receiving unit is used for receiving the home gateway related information returned by the home gateway security vector management center, wherein the home gateway security vector management center determines the corresponding home gateway according to the SN and returns the related information of the home gateway; the remote connection starting request unit is used for initiating a remote connection starting request to the home gateway according to the related information of the home gateway, and starting the remote connection service if the home gateway determines that the remote connection can be started according to the related information of the home gateway; and the home gateway connecting unit is used for responding to the home gateway to start the remote connection service and connecting the home gateway so as to operate the home gateway.
Optionally, the home gateway related information includes a home gateway security vector; the gateway related information receiving unit is used for receiving a first hash value of a home gateway security vector returned by a home gateway security vector management center, wherein the home gateway security vector corresponds to the SN; the remote connection starting request unit is used for initiating a remote connection starting request to the home gateway according to the first hash value, wherein the home gateway calculates a second hash value according to the stored home gateway security vector, and if the first hash value is the same as the second hash value, the remote connection service is started.
Optionally, the home gateway security vector management center stores a mapping relationship between SNs of the home gateways and the home gateway security vectors.
Optionally, the home gateway connection unit is configured to, in response to the home gateway starting the remote connection service, connect the home gateway using a private key to operate the home gateway, where the home gateway establishes a connection with the console using the public key.
Optionally, the apparatus further comprises: and the gateway use scene judging unit is used for determining the remote connection use scene where the home gateway is located according to whether the home gateway driving module stores the preset text feature file or not, wherein the remote connection use scene where the home gateway is located comprises a factory mode and a non-factory mode.
Optionally, if the home gateway is in the factory mode, the home gateway keeps opening the remote connection service; if the home gateway is in the non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information.
According to another aspect of the present disclosure, there is also provided an operation console far-side connection management device including: a memory; and a processor coupled to the memory, the processor being configured to perform the above-described home gateway remote connection management method based on instructions stored in the memory.
According to another aspect of the present disclosure, there is also provided a home gateway remote connection management system, including: the console far side is connected with a management device; the home gateway security vector management center is used for storing the mapping relation between the product serial number SN of the home gateway and the related information of the home gateway; and the home gateway is used for determining that the remote connection can be opened according to the related information of the home gateway, and then opening the remote connection service.
According to another aspect of the present disclosure, a computer-readable storage medium is also proposed, on which computer program instructions are stored, which instructions, when executed by a processor, implement the steps of the above-mentioned management method for remote connection of a home gateway.
Compared with the prior art, the operation console far-side connection management device sends a connection management request to the home gateway security vector management center, receives home gateway related information returned by the home gateway security vector management center, initiates a remote connection starting request to the home gateway according to the home gateway related information, responds to the home gateway to start remote connection service, and connects the home gateway so as to operate the home gateway.
Other features of the present disclosure and advantages thereof will become apparent from the following detailed description of exemplary embodiments thereof, which proceeds with reference to the accompanying drawings.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this specification, illustrate embodiments of the disclosure and together with the description, serve to explain the principles of the disclosure.
The present disclosure may be more clearly understood from the following detailed description, taken with reference to the accompanying drawings, in which:
fig. 1 is a flowchart illustrating an embodiment of a method for managing a remote connection of a home gateway according to the present disclosure.
Fig. 2 is a flowchart illustrating another embodiment of a method for managing a remote connection of a home gateway according to the present disclosure.
Fig. 3 is a schematic structural diagram of an embodiment of a console distal side connection management device according to the present disclosure.
Fig. 4 is a schematic structural diagram of another embodiment of a console distal side connection management device according to the present disclosure.
Fig. 5 is a schematic structural diagram of a further embodiment of the console distal side connection management device of the present disclosure.
Fig. 6 is a schematic structural diagram of a further embodiment of a console distal connection management device according to the present disclosure.
Fig. 7 is a schematic structural diagram of an embodiment of the management system for remote connection of the home gateway according to the present disclosure.
Fig. 8 is a schematic structural diagram of another embodiment of the management system for remote connection of the home gateway according to the present disclosure.
Fig. 9 is a schematic structural diagram of a management system for remote connection of a home gateway according to still another embodiment of the present disclosure.
Detailed Description
Various exemplary embodiments of the present disclosure will now be described in detail with reference to the accompanying drawings. It should be noted that: the relative arrangement of the components and steps, the numerical expressions, and numerical values set forth in these embodiments do not limit the scope of the present disclosure unless specifically stated otherwise.
Meanwhile, it should be understood that the sizes of the respective portions shown in the drawings are not drawn in an actual proportional relationship for the convenience of description.
The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses.
Techniques, methods, and apparatus known to those of ordinary skill in the relevant art may not be discussed in detail but are intended to be part of the specification where appropriate.
In all examples shown and discussed herein, any particular value should be construed as merely illustrative, and not limiting. Thus, other examples of the exemplary embodiments may have different values.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, further discussion thereof is not required in subsequent figures.
For the purpose of promoting a better understanding of the objects, aspects and advantages of the present disclosure, reference is made to the following detailed description taken in conjunction with the accompanying drawings.
Fig. 1 is a flowchart illustrating an embodiment of a method for managing a remote connection of a home gateway according to the present disclosure. This embodiment is performed by a console distal connection management device.
In step 110, a connection management request is sent to the home gateway security vector management center, where the connection management request includes a Serial Number (SN) of the home gateway. Each home gateway corresponds to one SN, and the SN corresponding to the home gateway is stored in the home gateway security vector management center.
In step 120, the home gateway related information returned by the home gateway security vector management center is received, wherein the home gateway security vector management center determines the corresponding home gateway according to the SN, and returns the related information of the home gateway. The related information of the home gateway is, for example, a home gateway security vector, which is a unique random number corresponding to the SN of the home gateway. The home gateway security vector management center stores the mapping relation between the SN of the home gateway and the home gateway security vector.
In step 130, a request for opening a remote connection is initiated to the home gateway according to the related information of the home gateway, and if the home gateway determines that the remote connection can be opened according to the related information of the home gateway, the remote connection service is opened.
In step 140, the home gateway is connected to operate the home gateway in response to the home gateway opening the remote connection service.
In the embodiment, a connection management request is sent to a home gateway security vector management center, home gateway related information returned by the home gateway security vector management center is received, a remote connection opening request is initiated to a home gateway according to the home gateway related information, a remote connection service is opened in response to the home gateway, and the home gateway is connected so as to operate the home gateway.
Fig. 2 is a flowchart illustrating another embodiment of a method for managing a remote connection of a home gateway according to the present disclosure.
In step 210, the console far-side connection management device sends a connection management request to the home gateway security vector management center, where the connection management request includes the SN of the home gateway.
In step 220, the home gateway security vector management center queries a corresponding home gateway security vector according to the SN, and generates a first hash value.
The home gateway security vector is a random number corresponding to the SN, where the randomly generated home gateway security vector needs to be guaranteed to be unable to be estimated by the SN, and as shown in fig. 8, the home gateway security vector is stored in a database of a home gateway security vector management center, and the home gateway security vector management center stores a mapping relationship between the SN of the home gateway and the home gateway security vector. For example, SN1 corresponds to SecretIV 1, SN 2 corresponds to SecretIV 2, and … SN 10 corresponds to SecretIV 10.
The home gateway security vector management center performs hash calculation on the home gateway security vector to obtain a first hash value.
In step 230, the home gateway security vector management center returns the first hash value to the console remote side connection management device.
In step 240, the console remote side connection management device initiates a remote connection opening request to the home gateway according to the first hash value.
For example, the console remote connection management apparatus accesses a specified URL (uniform resource locator) with a hash value of a security vector using a first hash value returned by the home gateway security vector management center, such as: 192.168.1.1/factor/{ Hash (SecretIV) }.
In step 250, the home gateway calculates a second hash value according to the stored home gateway security vector, and if the first hash value is the same as the second hash value, the remote connection service is started.
For example, the remote connection management device of the home gateway stores a local security vector, receives a Hash (secretid) sent by a URL, calculates a Hash value by using the security vector stored in the local device, compares the Hash value with the sent value, and starts local remote connection service if the comparison result is consistent with the sent value.
In step 260, the console remote connection management apparatus connects to the home gateway using the private key in response to the home gateway opening the remote connection service.
In step 270, the home gateway establishes a connection with the console remote side connection management device using the public key. After the connection is disconnected, the home gateway may close the remote connection service, and if the connection needs to be reconnected, the home gateway remote connection service needs to be opened again.
In the embodiment, the remote connection service of the home gateway is started under the condition that a certain condition is met, the time that the home gateway can be remotely connected is greatly shortened, the login public and private key pair of the remote connection and the security vector of the remote connection gateway are separately managed, an operator does not contact all keys, the keys cannot be completely leaked due to the flowing of the operator, the security of the home gateway is greatly enhanced, and the possibility that the security of the home network is threatened by the security is reduced.
In another embodiment of the present disclosure, the console remote connection management apparatus may determine a remote connection usage scenario in which the home gateway is located according to whether the home gateway driving module stores a predetermined text profile, where the remote connection usage scenario in which the home gateway is located includes a factory mode and a non-factory mode, and the non-factory mode is, for example, a factory mode or a user mode.
For example, if the predetermined text profile exists, it indicates that the home gateway is in a factory mode, i.e., in a production process, and the home gateway keeps opening the remote connection service, i.e., the remote connection is in a normally open mode. The method is characterized in that the power is firstly turned on in the household production process, and the factory mode is automatically entered by default. In the factory mode, the console remote connection management device can remotely connect to the home gateway, where the local security vector and the remote connection public key of the batch of devices are written.
If the preset text feature file does not exist, the home gateway is in a non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information. For example, after the production flow is completed, the home gateway enters a non-factory mode after being restarted, the remote connection service is closed, that is, the remote connection service is converted into a switchable mode and is in a normally closed state to ensure the safety of the home gateway, and the remote connection of the gateway is opened by the scheme of the present disclosure when the problem of the gateway needs to be checked or the gateway needs to be remotely connected for maintenance in a factory.
In the embodiment, the safety of the home gateway is protected, the security threat suffered by the home network security is reduced, meanwhile, the effective means required by the gateway in the maintenance and detection process is ensured, the operator does not contact all keys, and the flow of the personnel does not influence the safety of the gateway.
Fig. 3 is a schematic structural diagram of an embodiment of a console distal side connection management device according to the present disclosure. The console remote side connection management apparatus includes a connection management request transmitting unit 310, a gateway related information receiving unit 320, an open remote connection requesting unit 330, and a home gateway connecting unit 340.
The connection management request sending unit 310 is configured to send a connection management request to the home gateway security vector management center, where the connection management request includes an SN of the home gateway.
The gateway related information receiving unit 320 is configured to receive home gateway related information returned by the home gateway security vector management center, where the home gateway security vector management center determines a corresponding home gateway according to the SN and returns related information of the home gateway. The related information of the home gateway is, for example, a home gateway security vector, which is a unique random number corresponding to the SN of the home gateway. The home gateway security vector management center stores the mapping relation between the SN of the home gateway and the home gateway security vector.
In one embodiment, the home gateway related information includes a home gateway security vector, and the security vector corresponds to the SN, for example, the home gateway security vector management center queries the corresponding home gateway security vector according to the SN, and performs a hash calculation on the security vector to generate a first hash value. The gateway related information receiving unit is used for receiving a first hash value of the home gateway security vector returned by the home gateway security vector management center.
The remote connection starting request unit 330 is configured to initiate a remote connection starting request to the home gateway according to the related information of the home gateway, and start the remote connection service if the home gateway determines that the remote connection can be started according to the related information of the home gateway.
For example, the remote connection initiation request unit 330 initiates a remote connection initiation request to the home gateway according to the first hash value, where the home gateway calculates a second hash value according to the stored home gateway security vector, and initiates a remote connection service if the first hash value is the same as the second hash value.
The home gateway connection unit 340 is configured to connect the home gateway to operate the home gateway in response to the home gateway starting the remote connection service. The home gateway connection unit 340 may connect the home gateway using a private key, and the home gateway establishes a connection with the console remote side connection management apparatus using a public key.
In the embodiment, a connection management request is sent to a home gateway security vector management center, home gateway related information returned by the home gateway security vector management center is received, a remote connection opening request is initiated to a home gateway according to the home gateway related information, a remote connection service is opened in response to the home gateway, and the home gateway is connected so as to operate the home gateway. In addition, the login public and private key pair of the remote connection and the security vector of the remote connection gateway are separately managed, operators do not contact all keys, and the keys cannot be completely leaked due to the flow of the operators.
In another embodiment of the present disclosure, as shown in fig. 4, the console far-side connection management apparatus further includes a gateway usage scenario determining unit 410, configured to determine a remote connection usage scenario in which the home gateway is located according to whether the home gateway driving module stores a predetermined text profile, where the remote connection usage scenario in which the home gateway is located includes a factory mode and a non-factory mode.
For example, if the predetermined text profile exists, it indicates that the home gateway is in a factory mode, i.e., in a production process, and the home gateway keeps opening the remote connection service, i.e., the remote connection is in a normally open mode. The method is characterized in that the power is firstly turned on in the household production process, and the factory mode is automatically entered by default. In the factory mode, the console remote connection management device can remotely connect to the home gateway, where the local security vector and the remote connection public key of the batch of devices are written.
If the preset text feature file does not exist, the home gateway is in a non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information. For example, after the production flow is completed, the home gateway enters a non-factory mode after being restarted, the remote connection service is closed, that is, the remote connection service is converted into a switchable mode and is in a normally closed state to ensure the safety of the home gateway, and the remote connection of the gateway is opened by the scheme of the present disclosure when the problem of the gateway needs to be checked or the gateway needs to be remotely connected for maintenance in a factory.
In the embodiment, the safety of the home gateway is protected, the security threat suffered by the home network security is reduced, meanwhile, the effective means required by the gateway in the maintenance and detection process is ensured, the operator does not contact all keys, and the flow of the personnel does not influence the safety of the gateway.
Fig. 5 is a schematic structural diagram of a further embodiment of the console distal side connection management device of the present disclosure. The console far side connection management device includes a memory 510 and a processor 520. Wherein: the memory 510 may be a magnetic disk, flash memory, or any other non-volatile storage medium. The memory 510 is used for storing instructions in the embodiments corresponding to fig. 1 and 2. Processor 520 is coupled to memory 510 and may be implemented as one or more integrated circuits, such as a microprocessor or microcontroller. The processor 520 is configured to execute instructions stored in memory.
In one embodiment, as also shown in fig. 6, the console far side connection management device 600 includes a memory 610 and a processor 620. Processor 620 is coupled to memory 610 through a BUS 630. The console remote connection management device 600 may be further connected to an external storage device 650 through a storage interface 640 for accessing external data, and may be further connected to a network or another computer system (not shown) through a network interface 660, which will not be described in detail herein.
In the embodiment, the data instructions are stored in the memory, and the instructions are processed by the processor, so that the security of the home gateway can be improved, and the possibility that the security of the home network is threatened is reduced.
Fig. 7 is a schematic structural diagram of an embodiment of the management system for remote connection of the home gateway according to the present disclosure. The system includes an operation desk far side connection management device 710, a home gateway security vector management center 720, and a home gateway 730. The console far-side connection management apparatus 710 has been described in detail in the above embodiments, and the home gateway security vector management center 720 is configured to store a mapping relationship between a product serial number SN of the home gateway and related information of the home gateway; the home gateway 730 is configured to determine that the remote connection can be opened according to the home gateway related information, and then open the remote connection service.
As shown in fig. 8, information interaction between the console far-side connection management device 710 and the home gateway security vector management center 720 is performed, and a mapping relationship between SNs of home gateways and home gateway security vectors is stored in a database of the home gateway security vector management center 720. For example, SN1 corresponds to SecretIV 1, SN 2 corresponds to SecretIV 2, and … SN 10 corresponds to SecretIV 10. The console far-side connection management device 710 sends the SN1 to the home gateway security vector management center 720 to request for obtaining the secretid iv, the home gateway security vector management center 720 finds the corresponding secretid iv 1 according to the SN1, performs Hash calculation on the secretid iv 1, generates Hashcode-H1, and returns the Hashcode-H1 to the console far-side connection management device 710.
Fig. 9 shows information interaction between the console remote connection management device 710 and the home gateway 730, where the console remote connection management device 710 logs in a URL containing H1, the home gateway 730 corresponding to the SN1 obtains the stored secretid iv 1, performs Hash calculation on the secretid iv 1, generates a Hashcode-H2, determines whether the Hashcode-H1 is the same as the Hashcode-H2, and if so, starts a remote connection service, the console remote connection management device 710 connects to the home gateway 730 with a private key, and the home gateway 730 establishes a connection with the console remote connection management device 710 with a public key. After the connection is disconnected, the home gateway may close the remote connection service, and if the connection needs to be reconnected, the home gateway remote connection service needs to be opened again.
In the embodiment, the remote connection service of the home gateway is started under the condition that a certain condition is met, the time that the home gateway can be remotely connected is greatly shortened, the login public and private key pair of the remote connection and the security vector of the remote connection gateway are separately managed, an operator does not contact all keys, the keys cannot be completely leaked due to the flowing of the operator, the security of the home gateway is greatly enhanced, and the possibility that the security of the home network is threatened by the security is reduced.
In another embodiment, a computer-readable storage medium has stored thereon computer program instructions which, when executed by a processor, implement the steps of the method in the corresponding embodiments of fig. 1, 2. As will be appreciated by one skilled in the art, embodiments of the present disclosure may be provided as a method, apparatus, or computer program product. Accordingly, the present disclosure may take the form of an entirely hardware embodiment, an entirely software embodiment or an embodiment combining software and hardware aspects. Furthermore, the present disclosure may take the form of a computer program product embodied on one or more computer-usable non-transitory storage media (including, but not limited to, disk storage, CD-ROM, optical storage, and the like) having computer-usable program code embodied therein.
The present disclosure is described with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It will be understood that each flow and/or block of the flow diagrams and/or block diagrams, and combinations of flows and/or blocks in the flow diagrams and/or block diagrams, can be implemented by computer program instructions. These computer program instructions may be provided to a processor of a general purpose computer, special purpose computer, embedded processor, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing apparatus to function in a particular manner, such that the instructions stored in the computer-readable memory produce an article of manufacture including instruction means which implement the function specified in the flowchart flow or flows and/or block diagram block or blocks.
These computer program instructions may also be loaded onto a computer or other programmable data processing apparatus to cause a series of operational steps to be performed on the computer or other programmable apparatus to produce a computer implemented process such that the instructions which execute on the computer or other programmable apparatus provide steps for implementing the functions specified in the flowchart flow or flows and/or block diagram block or blocks.
Thus far, the present disclosure has been described in detail. Some details that are well known in the art have not been described in order to avoid obscuring the concepts of the present disclosure. It will be fully apparent to those skilled in the art from the foregoing description how to practice the presently disclosed embodiments.
Although some specific embodiments of the present disclosure have been described in detail by way of example, it should be understood by those skilled in the art that the foregoing examples are for purposes of illustration only and are not intended to limit the scope of the present disclosure. It will be appreciated by those skilled in the art that modifications may be made to the above embodiments without departing from the scope and spirit of the present disclosure. The scope of the present disclosure is defined by the appended claims.
Claims (15)
1. A management method for remote connection of a home gateway comprises the following steps:
sending a connection management request to a home gateway security vector management center, wherein the connection management request comprises a product Serial Number (SN) of a home gateway;
receiving the home gateway related information returned by the home gateway security vector management center, wherein the home gateway security vector management center determines a corresponding home gateway according to the SN and returns the related information of the home gateway;
initiating a request for starting remote connection to the home gateway according to the home gateway related information, and starting remote connection service if the home gateway determines that remote connection can be started according to the home gateway related information;
and responding to the home gateway to open a remote connection service, and connecting the home gateway so as to operate the home gateway.
2. The management method according to claim 1, wherein the home gateway related information includes a home gateway security vector; wherein the content of the first and second substances,
receiving a first hash value of a home gateway security vector returned by the home gateway security vector management center, wherein the home gateway security vector corresponds to the SN;
and initiating a remote connection starting request to the home gateway according to the first hash value, wherein the home gateway calculates a second hash value according to the stored home gateway security vector, and if the first hash value is the same as the second hash value, starting the remote connection service.
3. The management method according to claim 2,
and the home gateway security vector management center stores the mapping relation between the SN of the home gateway and the home gateway security vector.
4. The management method according to claim 1,
and responding to the home gateway to open a remote connection service, and connecting the home gateway by using a private key so as to operate the home gateway, wherein the home gateway establishes connection with an operation table far-side connection management device by using a public key.
5. The management method according to any one of claims 1 to 4, further comprising:
and determining a remote connection use scene where the home gateway is located according to whether a preset text feature file is stored in a driving module of the home gateway or not, wherein the remote connection use scene where the home gateway is located comprises a factory mode and a non-factory mode.
6. The management method according to claim 5,
if the home gateway is in a factory mode, the home gateway keeps opening remote connection service;
and if the home gateway is in a non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information.
7. An console distal connection management device comprising:
the system comprises a connection management request sending unit, a connection management unit and a management unit, wherein the connection management request sending unit is used for sending a connection management request to a home gateway security vector management center, and the connection management request comprises a product serial number SN of the home gateway;
a gateway related information receiving unit, configured to receive home gateway related information returned by the home gateway security vector management center, where the home gateway security vector management center determines a corresponding home gateway according to the SN, and returns related information of the home gateway;
a remote connection starting request unit, configured to initiate a remote connection starting request to the home gateway according to the home gateway related information, and if the home gateway determines that a remote connection can be started according to the home gateway related information, start a remote connection service;
and the home gateway connecting unit is used for responding to the home gateway to start remote connection service and connecting the home gateway so as to operate the home gateway.
8. The console far side connection management device according to claim 7, wherein the home gateway related information includes a home gateway security vector; wherein the content of the first and second substances,
the gateway related information receiving unit is used for receiving a first hash value of a home gateway security vector returned by the home gateway security vector management center, wherein the home gateway security vector corresponds to the SN;
the remote connection starting request unit is used for initiating a remote connection starting request to the home gateway according to the first hash value, wherein the home gateway calculates a second hash value according to a stored home gateway safety vector, and if the first hash value is the same as the second hash value, the remote connection service is started.
9. The console distal connection management device of claim 8,
and the home gateway security vector management center stores the mapping relation between the SN of the home gateway and the home gateway security vector.
10. The console distal connection management device of claim 7,
the home gateway connecting unit is used for responding to the home gateway to start remote connection service, and connecting the home gateway by using a private key so as to operate the home gateway, wherein the home gateway establishes connection with an operation table far-side connection management device by using a public key.
11. The console distal connection management device of any of claims 7-10, further comprising:
and the gateway use scene judging unit is used for determining the remote connection use scene where the home gateway is located according to whether the preset text feature file is stored in the driving module of the home gateway or not, wherein the remote connection use scene where the home gateway is located comprises a factory mode and a non-factory mode.
12. The console distal connection management device of claim 11,
if the home gateway is in a factory mode, the home gateway keeps opening remote connection service;
and if the home gateway is in a non-factory mode, the home gateway closes the remote connection service, and when the home gateway is determined to be required to be connected, whether the remote connection service is opened or not is determined according to the received home gateway information.
13. An console distal connection management device comprising:
a memory; and
a processor coupled to the memory, the processor configured to perform the method of managing a home gateway remote connection according to any one of claims 1 to 6 based on instructions stored in the memory.
14. A home gateway remote connection management system, comprising:
the console distal connection management device of any one of claims 7-13;
the home gateway security vector management center is used for storing the mapping relation between the product serial number SN of the home gateway and the related information of the home gateway; and
and the home gateway is used for determining that the remote connection can be opened according to the related information of the home gateway, and then opening the remote connection service.
15. A computer readable storage medium having stored thereon computer program instructions which, when executed by a processor, carry out the steps of the method for managing a remote connection of a home gateway according to any one of claims 1 to 6.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811315667.5A CN111163035A (en) | 2018-11-07 | 2018-11-07 | Method, device and system for managing remote connection of home gateway |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811315667.5A CN111163035A (en) | 2018-11-07 | 2018-11-07 | Method, device and system for managing remote connection of home gateway |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN111163035A true CN111163035A (en) | 2020-05-15 |
Family
ID=70554383
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811315667.5A Pending CN111163035A (en) | 2018-11-07 | 2018-11-07 | Method, device and system for managing remote connection of home gateway |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111163035A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN112688968A (en) * | 2021-03-12 | 2021-04-20 | 深圳市乙辰科技股份有限公司 | Network security configuration method and system based on wireless network equipment |
| CN113810350A (en) * | 2020-06-17 | 2021-12-17 | 中兴通讯股份有限公司 | Gateway management method, gateway and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103873487A (en) * | 2014-04-04 | 2014-06-18 | 中国科学院信息工程研究所 | Method for achieving home credible networking based on safety pendent of smart home device |
| US20150188704A1 (en) * | 2013-12-27 | 2015-07-02 | Fujitsu Limited | Data communication method and data communication apparatus |
| CN107135229A (en) * | 2017-06-02 | 2017-09-05 | 云丁网络技术(北京)有限公司 | Intelligent home information safe verification method, device, equipment and system |
| CN108111303A (en) * | 2017-12-27 | 2018-06-01 | 张爱国 | A kind of secure connection method of intelligent home gateway |
| CN108429620A (en) * | 2018-01-25 | 2018-08-21 | 新华三技术有限公司 | Method for building up, system and the client and server-side of secure connection |
-
2018
- 2018-11-07 CN CN201811315667.5A patent/CN111163035A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20150188704A1 (en) * | 2013-12-27 | 2015-07-02 | Fujitsu Limited | Data communication method and data communication apparatus |
| CN103873487A (en) * | 2014-04-04 | 2014-06-18 | 中国科学院信息工程研究所 | Method for achieving home credible networking based on safety pendent of smart home device |
| CN107135229A (en) * | 2017-06-02 | 2017-09-05 | 云丁网络技术(北京)有限公司 | Intelligent home information safe verification method, device, equipment and system |
| CN108111303A (en) * | 2017-12-27 | 2018-06-01 | 张爱国 | A kind of secure connection method of intelligent home gateway |
| CN108429620A (en) * | 2018-01-25 | 2018-08-21 | 新华三技术有限公司 | Method for building up, system and the client and server-side of secure connection |
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113810350A (en) * | 2020-06-17 | 2021-12-17 | 中兴通讯股份有限公司 | Gateway management method, gateway and storage medium |
| WO2021254439A1 (en) * | 2020-06-17 | 2021-12-23 | 中兴通讯股份有限公司 | Gateway management method, gateway and storage medium |
| CN112688968A (en) * | 2021-03-12 | 2021-04-20 | 深圳市乙辰科技股份有限公司 | Network security configuration method and system based on wireless network equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104539439B (en) | Data transmission method and terminal | |
| CN105357740B (en) | Wireless network access method and wireless access node | |
| CN105282126B (en) | Login authentication method, terminal and server | |
| US20160381324A1 (en) | Method and device for processing request | |
| US9930632B2 (en) | M2M application remote registration method, device, system and storage medium | |
| CN107770226B (en) | Control method and device for smart home, home gateway and mobile terminal | |
| US11188636B2 (en) | System for controlling access to an account | |
| JP2019524013A5 (en) | ||
| US10542433B2 (en) | Connection establishment method, device, and system | |
| CN105262773B (en) | A kind of verification method and device of Internet of things system | |
| CN104767713B (en) | Account binding method, server and system | |
| CN108156240B (en) | Method and system for accessing industrial adapter to server | |
| JP6096376B2 (en) | Access control method, apparatus, program, and recording medium | |
| US9913315B2 (en) | Method and device for connection management | |
| CN112311792A (en) | Smart home access authorization method and smart home system | |
| CN111163035A (en) | Method, device and system for managing remote connection of home gateway | |
| CN111371803B (en) | Smart home permission control method and device, smart home system and server | |
| CN109326025A (en) | The method for unlocking and device of intelligent door lock | |
| CN113848737A (en) | Intelligent device control method, device and system, cloud server and storage medium | |
| CN106534349B (en) | Method and device for associating Internet of things equipment with user account | |
| CN107205094B (en) | Control method and device, electronic equipment, the terminal of equipment | |
| CN103841120A (en) | Data security management method, mobile terminal and system based on digital watermarking | |
| WO2015157935A1 (en) | Flow table entry management method and device | |
| US10319215B2 (en) | Anti-theft method and apparatus | |
| CN115567231A (en) | Equipment control method, module, equipment and computer readable medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20200515 |