CN112184952A - Intelligent lock control system, method and storage medium - Google Patents

Intelligent lock control system, method and storage medium Download PDF

Info

Publication number
CN112184952A
CN112184952A CN201910519031.0A CN201910519031A CN112184952A CN 112184952 A CN112184952 A CN 112184952A CN 201910519031 A CN201910519031 A CN 201910519031A CN 112184952 A CN112184952 A CN 112184952A
Authority
CN
China
Prior art keywords
intelligent lock
dynamic password
seed key
key
client unit
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201910519031.0A
Other languages
Chinese (zh)
Inventor
郭茂文
张�荣
黎艳
卢燕青
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Telecom Corp Ltd
Original Assignee
China Telecom Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Telecom Corp Ltd filed Critical China Telecom Corp Ltd
Priority to CN201910519031.0A priority Critical patent/CN112184952A/en
Publication of CN112184952A publication Critical patent/CN112184952A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C9/00571Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by interacting with a central unit
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C9/00817Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0863Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07CTIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
    • G07C9/00Individual registration on entry or exit
    • G07C9/00174Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
    • G07C9/00817Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
    • G07C2009/00825Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed remotely by lines or wireless communication

Landscapes

  • Engineering & Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Telephone Function (AREA)

Abstract

The invention discloses an intelligent lock control system, a method and a storage medium, wherein the system comprises: the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal; after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password; the intelligent lock application module generates a seed key and sends the seed key to the intelligent lock server; and after receiving the dynamic password input by the user, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful. According to the system, the method and the storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, the intelligent lock is not required to be networked online, the intelligent lock is prevented from consuming power quickly, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.

Description

Intelligent lock control system, method and storage medium
Technical Field
The present invention relates to the field of communications technologies, and in particular, to an intelligent lock control system, an intelligent lock control method, and a storage medium.
Background
The identity authentication technology of the intelligent lock comprises biological characteristic identification and non-biological characteristic identification, the non-biological characteristic identification technology mainly comprises a digital password technology, and the digital password technology comprises fixed password authentication and dynamic password authentication. For a fixed password authentication mode, the security is poorer, the camera is easy to peep, and fingerprint traces are easy to leave on an input screen of the intelligent lock; for the dynamic password mode, the dynamic password mode is usually realized through a mobile phone APP, a server and an intelligent lock together, and the server needs to send an authentication result to the intelligent lock through a network, so that the intelligent lock is easily attacked from the outside, and the safety of the intelligent lock is greatly reduced.
Disclosure of Invention
In view of the above, an object of the present invention is to provide an intelligent lock control system, method and storage medium.
According to an aspect of the present disclosure, there is provided an intelligent lock control system including: the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal; the intelligent lock server is arranged on a network side and used for generating a dynamic password based on a seed key and returning the dynamic password to the mobile terminal after receiving a password request sent by the mobile terminal so as to enable the mobile terminal to display the dynamic password; the intelligent lock application module is arranged on the intelligent lock side and used for generating the seed key and sending the seed key to the intelligent lock server; and after the dynamic password input by the user is received, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful.
Optionally, the smart lock application module includes: an application client unit and a card application unit; the application client unit is used for sending the received dynamic password to the card application unit; the card application unit is used for verifying the dynamic password based on the seed key and sending a verification result to the application client unit; and the application client unit is also used for controlling the intelligent lock unlocking module to carry out unlocking operation if the verification is determined to be successful based on the verification result.
Optionally, the card application unit is configured to generate the seed key and send the seed key to the application client unit after initialization; and the application client unit is used for sending the seed key to the intelligent lock server.
Optionally, the smart lock server is configured to generate a public-private key pair after initialization is performed; in response to the received key request sent by the application client unit, returning the public key of the public-private key pair to the application client unit; the application client unit is used for sending the public key to the card application unit; the card application unit is used for encrypting the seed key by using the public key and sending the encrypted seed key to the application client unit; the application client unit is further configured to send the encrypted seed key to the smart lock server; and the intelligent lock server is used for decrypting the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
Optionally, the application client unit establishes a connection with the smart lock server, sends the key request to the smart lock server through the connection, receives the encrypted seed key, and disconnects the connection after receiving the encrypted seed key.
Optionally, the mobile terminal is configured to send an unlocking password request to the smart lock server; and the intelligent lock server is used for generating the dynamic password based on the seed key and by using a preset password algorithm and sending the dynamic password to the mobile terminal.
Optionally, the mobile terminal is configured to send registration information to the smart lock server for registration before sending the request for sending the unlocking password; wherein the registration information includes: a mobile phone number and an intelligent lock identifier; the smart lock server is configured to send the dynamic password to the mobile terminal through a secure channel, where the secure channel includes: OTA data short message channel, encryption network channel.
Optionally, the card application unit is configured to, after receiving the dynamic password sent by the application client unit, generate an authentication password based on the seed key and using the password algorithm, authenticate the dynamic password using the authentication password, and send an authentication result to the application client unit.
Optionally, the card application unit includes: SIM card application unit, eSIM card application unit.
According to another aspect of the present invention, there is provided an intelligent lock control method including: an intelligent lock application module arranged on an intelligent lock side generates a seed key and sends the seed key to an intelligent lock server arranged on a network side; after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password; and after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and controls the intelligent lock to be unlocked if the verification is successful.
Optionally, the smart lock application module includes: an application client unit and a card application unit; the verifying the dynamic password based on the seed key, and if the verification is successful, controlling the intelligent lock to unlock the intelligent lock comprises the following steps: the application client unit sends the received dynamic password to the card application unit; the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit; and if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
Optionally, the generating, by the smart lock application module, the seed key and sending the seed key to a smart lock server disposed on the smart lock side includes: after the card application unit is initialized, the seed key is generated and sent to the application client unit; and the application client unit sends the seed key to the intelligent lock server.
Optionally, after the intelligent lock server is initialized, a public-private key pair is generated; the intelligent lock server responds to the received key request sent by the application client unit and returns the public key of the public-private key pair to the application client unit; the application client unit sends the public key to the card application unit; the card application unit encrypts the seed key by using the public key and sends the encrypted seed key to the application client unit; the application client unit sends the encrypted seed key to the intelligent lock server; and the intelligent lock server decrypts the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
Optionally, the application client unit establishes a connection with the smart lock server, and sends the key request to the smart lock server through the connection, and receives the encrypted seed key; and the intelligent lock server disconnects the connection after receiving the encrypted seed key.
Optionally, the mobile terminal sends an unlocking password request to the smart lock server; and the intelligent lock server generates the dynamic password by using a preset password algorithm based on the seed key and sends the dynamic password to the mobile terminal.
Optionally, before sending the request for sending the unlocking password, the mobile terminal sends registration information to the smart lock server for registration; wherein the registration information includes: cell-phone number, intelligent lock sign.
Optionally, the sending, by the smart lock server, the dynamic password to the mobile terminal includes: the intelligent lock server sends the dynamic password to the mobile terminal through a secure channel, wherein the secure channel comprises: OTA data short message channel, encryption network channel.
Optionally, the verifying the dynamic password based on the seed key includes: after receiving the dynamic password sent by the application client unit, the card application unit generates a verification password based on the seed key and by using the password algorithm; the card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
According to yet another aspect of the present disclosure, a computer-readable storage medium is provided, which stores computer instructions for execution by a processor to perform the method as described above.
According to the intelligent lock control system, the intelligent lock control method and the intelligent lock control storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, the intelligent lock does not need to be networked online, the situation that the power consumption of the intelligent lock is high is avoided, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present disclosure, and other drawings can be obtained by those skilled in the art without inventive exercise.
FIG. 1 is a block schematic diagram of one embodiment of an intelligent lock control system according to the present disclosure;
FIG. 2 is a block schematic diagram of another embodiment of an intelligent lock control system according to the present disclosure;
FIG. 3 is a schematic flow diagram of one embodiment of an intelligent lock control method according to the present disclosure;
FIG. 4 is a schematic flow chart illustrating the process of obtaining a seed key in an embodiment of the intelligent lock control method according to the present disclosure;
FIG. 5 is a schematic flow diagram of another embodiment of an intelligent lock control method according to the present disclosure.
Detailed Description
The present disclosure now will be described more fully hereinafter with reference to the accompanying drawings, in which exemplary embodiments of the disclosure are shown. The technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in the embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments disclosed herein without making any creative effort, shall fall within the protection scope of the present disclosure.
For the existing dynamic password mode, the basic control flow is as follows: the mobile phone APP and the server are internally provided with the same dynamic password algorithm; when unlocking is needed, the mobile phone APP generates a dynamic password according to an algorithm; inputting a dynamic password on a screen of the intelligent lock, and sending the dynamic password to a server by the intelligent lock through a wireless network; the server verifies the correctness of the dynamic password according to the algorithm, and if the verification is passed, the server sends an unlocking instruction to the intelligent lock; after the intelligent lock receives the unlocking instruction, the intelligent lock control switch module is started to carry out unlocking action.
Although the existing dynamic password mode realizes the security function of one-time pad, the method also has the following problems: the intelligent lock is usually powered by a battery, and an intelligent lock is required to be online in an interlocking manner when unlocking every time, so that the power consumption of the intelligent lock is high, and the service life of the battery of the intelligent lock is greatly shortened; in addition, the server needs to send the authentication result to the intelligent lock through the network, and the intelligent lock is easily attacked by the external network, so that the safety of the intelligent lock is greatly reduced.
In one embodiment, as shown in fig. 1, the present disclosure provides an intelligent lock control system, including: the intelligent lock system comprises an intelligent lock application module 1, an intelligent lock server 2 and a mobile terminal 3. The smart lock server 2 is provided on the network side, for example, in the internet. After receiving the password request sent by the mobile terminal 3, the smart lock server 2 generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal 3, so that the mobile terminal 3 displays the dynamic password. The dynamic password can be various, for example, 0-9 digits, and the number of digits of the dynamic password can be configured to be 6 or 8.
The smart lock application module 1 is disposed at the side of the smart lock, for example, the smart lock application module 1 may be disposed inside the smart lock. The smart lock application module 1 generates a seed key and sends the seed key to the smart lock server 2. The intelligent lock application module 1 verifies the dynamic password based on the seed key after receiving the dynamic password input by the user, and controls the intelligent lock to unlock if the verification is successful.
The mobile terminal 3 may be a mobile phone, a tablet computer, or the like. When the intelligent lock is unlocked, the mobile terminal 3 generates a dynamic password on the intelligent lock server 2 side, a user manually inputs the dynamic password into the intelligent lock, the intelligent lock application module 1 locally verifies the dynamic password in the intelligent lock, the intelligent lock offline authentication function can be realized, and the intelligent lock is triggered to be unlocked.
In one embodiment, as shown in fig. 2, a smart lock application module 1 is disposed in the smart lock 01, and the smart lock application module 1 includes: an application client unit 11 and a card application unit 12. The application client unit 11 sends the received dynamic password to the card application unit 12, and the card application unit 12 verifies the dynamic password based on the seed key and sends the verification result to the application client unit 11. If it is determined that the authentication is successful based on the authentication result, the application client unit 11 controls the smart lock unlocking module 02 to perform an unlocking operation.
The application client unit 11 is a smart lock application client or the like. The card application unit includes: a SIM card application unit, an eSIM card application unit, or a SIM/eSIM card application unit, etc. The SIM card application unit, the eSIM card application unit or the SIM/eSIM card application unit is a user card with the capability of a security unit, supports an OMA machine card interface, and enables the smart lock to have a local security encryption and decryption function by embedding the card application unit in the smart lock.
The intelligent lock server 2 is deployed on the network side, the application client unit 11 and the card application unit 12 are built in the intelligent lock 01, the lock application is loaded, and the APP is loaded on the mobile terminal 3. After the initialization, the card application unit 12 generates a seed key and transmits the seed key to the application client unit 11. The application client unit 11 sends the seed key to the smart lock server 2.
In one embodiment, the smart lock server 2 generates a public-private key pair after initialization. The smart lock server 2 returns the public key of the public-private key pair to the application client unit 11 in response to the received key request sent by the application client unit 11, and the application client unit 11 sends the public key to the card application unit 12. The card application unit 12 performs encryption processing on the seed key using the public key, and transmits the encrypted seed key to the application client unit 11. The application client unit 11 sends the encrypted seed key to the smart lock server 2. The intelligent lock server 2 decrypts the encrypted seed key by using the private key of the public-private key pair to obtain the seed key.
The application client unit 11 establishes connection with the smart lock server 2, sends a key request to the smart lock server 2 through the connection, receives the encrypted seed key, and after receiving the encrypted seed key, the application client unit 11 is disconnected from the smart lock server 2. The mobile terminal 3 sends an unlocking password request to the intelligent lock server 2, the intelligent lock server 2 generates a dynamic password based on the seed key and by using a preset password algorithm, and the dynamic password is sent to the mobile terminal 3. The cryptographic algorithm may be a symmetric cryptographic algorithm, an asymmetric cryptographic algorithm, or the like.
The user opens the APP installed in the mobile terminal 3, and needs security measures, such as fingerprint authentication or APP password input. The mobile terminal 3 binds the identification information of the intelligent lock, triggers the intelligent lock server 2 to generate a dynamic password, receives the dynamic password from the intelligent lock server 2, and displays the dynamic password. Before sending the unlocking password request, the mobile terminal 3 sends registration information to the smart lock server 2 for registration, wherein the registration information includes: a mobile phone number, an intelligent lock identification, etc. The intelligent lock server 2 sends the dynamic password to the mobile terminal 3 through a secure channel, wherein the secure channel comprises an OTA data short message channel, an encryption network channel and the like.
The application client unit 11 receives a dynamic password input by a user on an intelligent lock input interface, the card application unit 12 generates an authentication password based on a seed key and by using a password algorithm after receiving the dynamic password sent by the application client unit 11, authenticates the dynamic password by using the authentication password, and sends an authentication result to the application client unit. The preset cryptographic algorithm in the card application unit 12 is the same as the preset cryptographic algorithm in the smart lock server 2, and may be a symmetric cryptographic algorithm, an asymmetric cryptographic algorithm, or the like.
FIG. 3 is a schematic flow diagram of an embodiment of an intelligent lock control method according to the present disclosure, as shown in FIG. 3:
step 301, an intelligent lock application module arranged at the intelligent lock side generates a seed key and sends the seed key to an intelligent lock server arranged at the network side.
Step 302, after receiving a password request sent by the mobile terminal, the smart lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal, so that the mobile terminal displays the dynamic password.
And 303, after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and if the verification is successful, the intelligent lock is controlled to be unlocked.
In one embodiment, the smart lock application module includes: an application client unit and a card application unit. The application client unit sends the received dynamic password to the card application unit, and the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit. And if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
FIG. 4 is a schematic flow chart of obtaining a seed key according to an embodiment of the intelligent lock control method of the present disclosure, as shown in FIG. 4:
step 401, after the intelligent lock server is initialized, a public-private key pair is generated.
In step 402, the smart lock server returns the public key of the public-private key pair to the application client unit in response to the received key request sent by the application client unit.
In step 403, the application client unit sends the public key to the card application unit.
In step 404, the card application unit encrypts the seed key using the public key and sends the encrypted seed key to the application client unit.
In step 405, the application client unit sends the encrypted seed key to the smart lock server.
In step 406, the smart lock server decrypts the encrypted seed key using the private key of the public-private key pair to obtain the seed key.
The application client unit establishes connection with the intelligent lock server, sends a key request to the intelligent lock server through the connection, and receives the encrypted seed key. And after receiving the encrypted seed key, the intelligent lock server is disconnected. The mobile terminal sends an unlocking password request to the intelligent lock server, the intelligent lock server generates a dynamic password based on the seed key and by using a preset password algorithm, and the dynamic password is sent to the mobile terminal. Before sending an unlocking password request, the mobile terminal sends registration information to the intelligent lock server for registration. The intelligence lock server sends the dynamic password for mobile terminal through the secure channel, and the secure channel includes: OTA data short message channel, encryption network channel, etc.
And after receiving the dynamic password sent by the application client unit, the card application unit generates an authentication password based on the seed key and by using a password algorithm. The card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
Fig. 5 is a schematic flowchart of another embodiment of the intelligent lock control method according to the present disclosure, as shown in fig. 5:
step 501, the smart lock server initializes to generate an asymmetric public-private key pair.
Step 502, the smart lock application is initialized and the card application unit randomly generates a dynamic password shared seed key.
Step 503, the application client unit establishes a connection with the smart lock server to request public key information.
Step 504, the smart lock server returns the public key information to the application client unit.
Step 505, the smart lock application client forwards the public key information to the card application unit.
At step 506, the card application unit encrypts the shared seed key with the public key.
In step 507, the card application unit returns the encrypted shared seed key to the application client unit.
Step 508, the application client unit returns the encrypted shared seed key to the smart lock server and disconnects the connection.
Step 509, the user opens the APP installed on the mobile terminal, and registers information such as the smart lock identifier and the mobile phone number in the smart lock server.
And step 510, when unlocking, the user starts the APP installed on the mobile terminal.
And 511, establishing connection between the application client unit and the intelligent lock server, and triggering the intelligent lock server to generate the dynamic password.
And step 512, the intelligent lock server generates a dynamic password according to the algorithm.
And 513, the intelligent lock server sends the dynamic password to the APP installed on the mobile terminal.
And 514, displaying the dynamic password by the APP installed on the mobile terminal.
Step 515, the user inputs the dynamic password on the input interface of the smart lock.
In step 516, the application client unit sends the dynamic password to the card application unit.
Step 517, the card application unit verifies the dynamic password.
In step 518, the card application unit sends the verification result to the application client unit.
Step 519, the application client unit sends an unlocking instruction to the lock control switch module.
According to yet another aspect of the present disclosure, a computer-readable storage medium is provided, having stored thereon computer instructions for execution by a processor to perform the method as above.
According to the intelligent lock control system, the intelligent lock control method and the intelligent lock control storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, online networking of the intelligent lock is not needed, the intelligent lock is prevented from consuming electricity more quickly, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.
The method and system of the present disclosure may be implemented in a number of ways. For example, the methods and systems of the present disclosure may be implemented by software, hardware, firmware, or any combination of software, hardware, and firmware. The above-described order for the steps of the method is for illustration only, and the steps of the method of the present disclosure are not limited to the order specifically described above unless specifically stated otherwise. Further, in some embodiments, the present disclosure may also be embodied as programs recorded in a recording medium, the programs including machine-readable instructions for implementing the methods according to the present disclosure. Thus, the present disclosure also covers a recording medium storing a program for executing the method according to the present disclosure.
The description of the present disclosure has been presented for purposes of illustration and description, and is not intended to be exhaustive or limited to the disclosure in the form disclosed. Many modifications and variations will be apparent to practitioners skilled in this art. The embodiment was chosen and described in order to best explain the principles of the disclosure and the practical application, and to enable others of ordinary skill in the art to understand the disclosure for various embodiments with various modifications as are suited to the particular use contemplated.

Claims (19)

1. An intelligent lock control system comprising:
the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal;
the intelligent lock server is arranged on a network side and used for generating a dynamic password based on a seed key and returning the dynamic password to the mobile terminal after receiving a password request sent by the mobile terminal so as to enable the mobile terminal to display the dynamic password;
the intelligent lock application module is arranged on the intelligent lock side and used for generating the seed key and sending the seed key to the intelligent lock server; and after the dynamic password input by the user is received, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful.
2. The system of claim 1, wherein,
the smart lock application module includes: an application client unit and a card application unit;
the application client unit is used for sending the received dynamic password to the card application unit;
the card application unit is used for verifying the dynamic password based on the seed key and sending a verification result to the application client unit;
and the application client unit is also used for controlling the intelligent lock unlocking module to carry out unlocking operation if the verification is determined to be successful based on the verification result.
3. The system of claim 2, wherein,
the card application unit is used for generating the seed key and sending the seed key to the application client unit after initialization;
and the application client unit is used for sending the seed key to the intelligent lock server.
4. The system of claim 3, wherein,
the intelligent lock server is used for generating a public and private key pair after initialization; in response to the received key request sent by the application client unit, returning the public key of the public-private key pair to the application client unit;
the application client unit is used for sending the public key to the card application unit;
the card application unit is used for encrypting the seed key by using the public key and sending the encrypted seed key to the application client unit;
the application client unit is further configured to send the encrypted seed key to the smart lock server;
and the intelligent lock server is used for decrypting the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
5. The system of claim 4, wherein,
and the application client unit establishes connection with the intelligent lock server, sends the key request to the intelligent lock server through the connection, receives the encrypted seed key, and disconnects the connection after receiving the encrypted seed key.
6. The system of claim 4, wherein,
the mobile terminal is used for sending an unlocking password request to the intelligent lock server;
and the intelligent lock server is used for generating the dynamic password based on the seed key and by using a preset password algorithm and sending the dynamic password to the mobile terminal.
7. The system of claim 6, wherein,
the mobile terminal is used for sending registration information to the intelligent lock server for registration before sending the unlocking password sending request; wherein the registration information includes: a mobile phone number and an intelligent lock identifier;
the smart lock server is configured to send the dynamic password to the mobile terminal through a secure channel, where the secure channel includes: OTA data short message channel, encryption network channel.
8. The system of claim 6, wherein,
and the card application unit is used for generating a verification password based on the seed key and by using the password algorithm after receiving the dynamic password sent by the application client unit, verifying the dynamic password by using the verification password, and sending a verification result to the application client unit.
9. The system of any one of claims 2 to 8,
the card application unit includes: SIM card application unit, eSIM card application unit.
10. An intelligent lock control method comprising:
an intelligent lock application module arranged on an intelligent lock side generates a seed key and sends the seed key to an intelligent lock server arranged on a network side;
after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password;
and after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and controls the intelligent lock to be unlocked if the verification is successful.
11. The method of claim 10, wherein the smart lock application module comprises: an application client unit and a card application unit; the verifying the dynamic password based on the seed key, and if the verification is successful, controlling the intelligent lock to unlock the intelligent lock comprises the following steps:
the application client unit sends the received dynamic password to the card application unit;
the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit;
and if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
12. The method of claim 11, wherein the smart lock application module generating and sending the seed key to a smart lock server disposed at a side of the smart lock comprises:
after the card application unit is initialized, the seed key is generated and sent to the application client unit;
and the application client unit sends the seed key to the intelligent lock server.
13. The method of claim 12, further comprising:
after the intelligent lock server is initialized, generating a public and private key pair;
the intelligent lock server responds to the received key request sent by the application client unit and returns the public key of the public-private key pair to the application client unit;
the application client unit sends the public key to the card application unit;
the card application unit encrypts the seed key by using the public key and sends the encrypted seed key to the application client unit;
the application client unit sends the encrypted seed key to the intelligent lock server;
and the intelligent lock server decrypts the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
14. The method of claim 13, wherein,
the application client unit establishes connection with the intelligent lock server, sends the key request to the intelligent lock server through the connection and receives the encrypted seed key;
and the intelligent lock server disconnects the connection after receiving the encrypted seed key.
15. The method of claim 13, further comprising:
the mobile terminal sends an unlocking password request to the intelligent lock server;
and the intelligent lock server generates the dynamic password by using a preset password algorithm based on the seed key and sends the dynamic password to the mobile terminal.
16. The method of claim 15, wherein,
the mobile terminal sends registration information to the intelligent lock server for registration before sending the unlocking password sending request; wherein the registration information includes: cell-phone number, intelligent lock sign.
17. The method of claim 15, the smart lock server transmitting the dynamic password to the mobile terminal comprising:
the intelligent lock server sends the dynamic password to the mobile terminal through a secure channel, wherein the secure channel comprises: OTA data short message channel, encryption network channel.
18. The method of claim 17, the verifying the dynamic password based on the seed key comprising:
after receiving the dynamic password sent by the application client unit, the card application unit generates a verification password based on the seed key and by using the password algorithm;
the card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
19. A computer readable storage medium having stored thereon computer instructions for execution by a processor to perform the method of any one of claims 10 to 18.
CN201910519031.0A 2019-06-17 2019-06-17 Intelligent lock control system, method and storage medium Pending CN112184952A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910519031.0A CN112184952A (en) 2019-06-17 2019-06-17 Intelligent lock control system, method and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910519031.0A CN112184952A (en) 2019-06-17 2019-06-17 Intelligent lock control system, method and storage medium

Publications (1)

Publication Number Publication Date
CN112184952A true CN112184952A (en) 2021-01-05

Family

ID=73914226

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910519031.0A Pending CN112184952A (en) 2019-06-17 2019-06-17 Intelligent lock control system, method and storage medium

Country Status (1)

Country Link
CN (1) CN112184952A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113538740A (en) * 2021-06-10 2021-10-22 深圳市宏智智能装备有限公司 Off-line control method of intelligent lock and intelligent lock thereof
CN113726508A (en) * 2021-08-30 2021-11-30 北京博瑞翔伦科技发展有限公司 TOTP algorithm and system for unmanned bin offline intelligent lock
CN114255530A (en) * 2021-12-06 2022-03-29 深圳供电局有限公司 Communication safety guarantee method and system for intelligent lock of power supply equipment
CN115497199A (en) * 2022-08-23 2022-12-20 海南电网有限责任公司三亚供电局 Safety control method for NFC passive lockset of transformer substation

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105827576A (en) * 2015-01-05 2016-08-03 珠海汇金科技股份有限公司 Unlocking method and system based on dynamic cipher lock
CN106952378A (en) * 2017-04-11 2017-07-14 徐士兰 Method for unlocking and device, electronic lock
CN107221061A (en) * 2017-06-16 2017-09-29 北京摇光智能科技有限公司 A kind of cipher management method of smart lock
CN107989514A (en) * 2018-01-02 2018-05-04 宁波耀龙软件科技有限公司 There is the safety box of dynamic password
US20180130273A1 (en) * 2016-11-04 2018-05-10 Gilbert Eid Methods and systems for operating door locks using mobile devices
CN108711209A (en) * 2018-07-19 2018-10-26 江苏恒宝智能系统技术有限公司 dynamic password generation and verification method and system
CN109461236A (en) * 2018-10-26 2019-03-12 海南电网有限责任公司三亚供电局 A kind of intelligent lock security control method and system

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105827576A (en) * 2015-01-05 2016-08-03 珠海汇金科技股份有限公司 Unlocking method and system based on dynamic cipher lock
US20180130273A1 (en) * 2016-11-04 2018-05-10 Gilbert Eid Methods and systems for operating door locks using mobile devices
CN106952378A (en) * 2017-04-11 2017-07-14 徐士兰 Method for unlocking and device, electronic lock
CN107221061A (en) * 2017-06-16 2017-09-29 北京摇光智能科技有限公司 A kind of cipher management method of smart lock
CN107989514A (en) * 2018-01-02 2018-05-04 宁波耀龙软件科技有限公司 There is the safety box of dynamic password
CN108711209A (en) * 2018-07-19 2018-10-26 江苏恒宝智能系统技术有限公司 dynamic password generation and verification method and system
CN109461236A (en) * 2018-10-26 2019-03-12 海南电网有限责任公司三亚供电局 A kind of intelligent lock security control method and system

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113538740A (en) * 2021-06-10 2021-10-22 深圳市宏智智能装备有限公司 Off-line control method of intelligent lock and intelligent lock thereof
CN113538740B (en) * 2021-06-10 2023-05-05 深圳市宏智智能装备有限公司 Offline control method of intelligent lock system and intelligent lock thereof
CN113726508A (en) * 2021-08-30 2021-11-30 北京博瑞翔伦科技发展有限公司 TOTP algorithm and system for unmanned bin offline intelligent lock
CN113726508B (en) * 2021-08-30 2024-04-02 北京博瑞翔伦科技发展有限公司 TOTP algorithm and system for unmanned bin offline intelligent lock
CN114255530A (en) * 2021-12-06 2022-03-29 深圳供电局有限公司 Communication safety guarantee method and system for intelligent lock of power supply equipment
CN114255530B (en) * 2021-12-06 2024-01-16 深圳供电局有限公司 Communication security guarantee method and system for intelligent lockset of power supply equipment
CN115497199A (en) * 2022-08-23 2022-12-20 海南电网有限责任公司三亚供电局 Safety control method for NFC passive lockset of transformer substation

Similar Documents

Publication Publication Date Title
CN107113315B (en) Identity authentication method, terminal and server
CN110334498B (en) Method for unlocking one device by using the other device
CN105245341B (en) Remote identity authentication method and system and long-range account-opening method and system
CN112184952A (en) Intelligent lock control system, method and storage medium
US11544365B2 (en) Authentication system using a visual representation of an authentication challenge
CN105337740B (en) A kind of auth method, client, trunking and server
US20180219688A1 (en) Information Transmission Method and Mobile Device
CN105847247A (en) Authentication system and working method thereof
CN108667791B (en) Identity authentication method
EP3724798B1 (en) Method for authenticating a user based on an image relation rule and corresponding first user device, server and system
CN109920100B (en) Unlocking method and system of intelligent lock
CN111512608A (en) Trusted execution environment based authentication protocol
CN111130798B (en) Request authentication method and related equipment
CN106022081B (en) A kind of card reading method of identity card card-reading terminal, identity card card-reading terminal and system
CN107733652B (en) Unlocking method and system for shared vehicle and vehicle lock
US9443069B1 (en) Verification platform having interface adapted for communication with verification agent
US20200127824A1 (en) Updating biometric template protection keys
US20090044007A1 (en) Secure Communication Between a Data Processing Device and a Security Module
JP2018026733A (en) Information processing device, information processing system, program, and information processing method
KR20170124953A (en) Method and system for automating user authentication with decrypting encrypted OTP using fingerprint in mobile phone
CN108650219B (en) User identity identification method, related device, equipment and system
KR20210006329A (en) Remote biometric identification
KR20190032035A (en) System for authenticating vehicle start using qr code and otp information and method thereof
CN107911211B (en) Two-dimensional code authentication system based on quantum communication network
CN115801287A (en) Signature authentication method and device

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20210105