CN112184952A - Intelligent lock control system, method and storage medium - Google Patents
Intelligent lock control system, method and storage medium Download PDFInfo
- Publication number
- CN112184952A CN112184952A CN201910519031.0A CN201910519031A CN112184952A CN 112184952 A CN112184952 A CN 112184952A CN 201910519031 A CN201910519031 A CN 201910519031A CN 112184952 A CN112184952 A CN 112184952A
- Authority
- CN
- China
- Prior art keywords
- intelligent lock
- dynamic password
- seed key
- key
- client unit
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00571—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys operated by interacting with a central unit
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00817—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0816—Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
- H04L9/0819—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
- H04L9/0825—Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0861—Generation of secret information including derivation or calculation of cryptographic keys or passwords
- H04L9/0863—Generation of secret information including derivation or calculation of cryptographic keys or passwords involving passwords or one-time passwords
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
- G07C9/00817—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed
- G07C2009/00825—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys where the code of the lock can be programmed remotely by lines or wireless communication
Landscapes
- Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Telephone Function (AREA)
Abstract
The invention discloses an intelligent lock control system, a method and a storage medium, wherein the system comprises: the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal; after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password; the intelligent lock application module generates a seed key and sends the seed key to the intelligent lock server; and after receiving the dynamic password input by the user, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful. According to the system, the method and the storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, the intelligent lock is not required to be networked online, the intelligent lock is prevented from consuming power quickly, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.
Description
Technical Field
The present invention relates to the field of communications technologies, and in particular, to an intelligent lock control system, an intelligent lock control method, and a storage medium.
Background
The identity authentication technology of the intelligent lock comprises biological characteristic identification and non-biological characteristic identification, the non-biological characteristic identification technology mainly comprises a digital password technology, and the digital password technology comprises fixed password authentication and dynamic password authentication. For a fixed password authentication mode, the security is poorer, the camera is easy to peep, and fingerprint traces are easy to leave on an input screen of the intelligent lock; for the dynamic password mode, the dynamic password mode is usually realized through a mobile phone APP, a server and an intelligent lock together, and the server needs to send an authentication result to the intelligent lock through a network, so that the intelligent lock is easily attacked from the outside, and the safety of the intelligent lock is greatly reduced.
Disclosure of Invention
In view of the above, an object of the present invention is to provide an intelligent lock control system, method and storage medium.
According to an aspect of the present disclosure, there is provided an intelligent lock control system including: the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal; the intelligent lock server is arranged on a network side and used for generating a dynamic password based on a seed key and returning the dynamic password to the mobile terminal after receiving a password request sent by the mobile terminal so as to enable the mobile terminal to display the dynamic password; the intelligent lock application module is arranged on the intelligent lock side and used for generating the seed key and sending the seed key to the intelligent lock server; and after the dynamic password input by the user is received, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful.
Optionally, the smart lock application module includes: an application client unit and a card application unit; the application client unit is used for sending the received dynamic password to the card application unit; the card application unit is used for verifying the dynamic password based on the seed key and sending a verification result to the application client unit; and the application client unit is also used for controlling the intelligent lock unlocking module to carry out unlocking operation if the verification is determined to be successful based on the verification result.
Optionally, the card application unit is configured to generate the seed key and send the seed key to the application client unit after initialization; and the application client unit is used for sending the seed key to the intelligent lock server.
Optionally, the smart lock server is configured to generate a public-private key pair after initialization is performed; in response to the received key request sent by the application client unit, returning the public key of the public-private key pair to the application client unit; the application client unit is used for sending the public key to the card application unit; the card application unit is used for encrypting the seed key by using the public key and sending the encrypted seed key to the application client unit; the application client unit is further configured to send the encrypted seed key to the smart lock server; and the intelligent lock server is used for decrypting the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
Optionally, the application client unit establishes a connection with the smart lock server, sends the key request to the smart lock server through the connection, receives the encrypted seed key, and disconnects the connection after receiving the encrypted seed key.
Optionally, the mobile terminal is configured to send an unlocking password request to the smart lock server; and the intelligent lock server is used for generating the dynamic password based on the seed key and by using a preset password algorithm and sending the dynamic password to the mobile terminal.
Optionally, the mobile terminal is configured to send registration information to the smart lock server for registration before sending the request for sending the unlocking password; wherein the registration information includes: a mobile phone number and an intelligent lock identifier; the smart lock server is configured to send the dynamic password to the mobile terminal through a secure channel, where the secure channel includes: OTA data short message channel, encryption network channel.
Optionally, the card application unit is configured to, after receiving the dynamic password sent by the application client unit, generate an authentication password based on the seed key and using the password algorithm, authenticate the dynamic password using the authentication password, and send an authentication result to the application client unit.
Optionally, the card application unit includes: SIM card application unit, eSIM card application unit.
According to another aspect of the present invention, there is provided an intelligent lock control method including: an intelligent lock application module arranged on an intelligent lock side generates a seed key and sends the seed key to an intelligent lock server arranged on a network side; after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password; and after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and controls the intelligent lock to be unlocked if the verification is successful.
Optionally, the smart lock application module includes: an application client unit and a card application unit; the verifying the dynamic password based on the seed key, and if the verification is successful, controlling the intelligent lock to unlock the intelligent lock comprises the following steps: the application client unit sends the received dynamic password to the card application unit; the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit; and if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
Optionally, the generating, by the smart lock application module, the seed key and sending the seed key to a smart lock server disposed on the smart lock side includes: after the card application unit is initialized, the seed key is generated and sent to the application client unit; and the application client unit sends the seed key to the intelligent lock server.
Optionally, after the intelligent lock server is initialized, a public-private key pair is generated; the intelligent lock server responds to the received key request sent by the application client unit and returns the public key of the public-private key pair to the application client unit; the application client unit sends the public key to the card application unit; the card application unit encrypts the seed key by using the public key and sends the encrypted seed key to the application client unit; the application client unit sends the encrypted seed key to the intelligent lock server; and the intelligent lock server decrypts the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
Optionally, the application client unit establishes a connection with the smart lock server, and sends the key request to the smart lock server through the connection, and receives the encrypted seed key; and the intelligent lock server disconnects the connection after receiving the encrypted seed key.
Optionally, the mobile terminal sends an unlocking password request to the smart lock server; and the intelligent lock server generates the dynamic password by using a preset password algorithm based on the seed key and sends the dynamic password to the mobile terminal.
Optionally, before sending the request for sending the unlocking password, the mobile terminal sends registration information to the smart lock server for registration; wherein the registration information includes: cell-phone number, intelligent lock sign.
Optionally, the sending, by the smart lock server, the dynamic password to the mobile terminal includes: the intelligent lock server sends the dynamic password to the mobile terminal through a secure channel, wherein the secure channel comprises: OTA data short message channel, encryption network channel.
Optionally, the verifying the dynamic password based on the seed key includes: after receiving the dynamic password sent by the application client unit, the card application unit generates a verification password based on the seed key and by using the password algorithm; the card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
According to yet another aspect of the present disclosure, a computer-readable storage medium is provided, which stores computer instructions for execution by a processor to perform the method as described above.
According to the intelligent lock control system, the intelligent lock control method and the intelligent lock control storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, the intelligent lock does not need to be networked online, the situation that the power consumption of the intelligent lock is high is avoided, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.
Drawings
In order to more clearly illustrate the embodiments of the present disclosure or the technical solutions in the prior art, the drawings needed to be used in the description of the embodiments or the prior art will be briefly described below, it is obvious that the drawings in the following description are only some embodiments of the present disclosure, and other drawings can be obtained by those skilled in the art without inventive exercise.
FIG. 1 is a block schematic diagram of one embodiment of an intelligent lock control system according to the present disclosure;
FIG. 2 is a block schematic diagram of another embodiment of an intelligent lock control system according to the present disclosure;
FIG. 3 is a schematic flow diagram of one embodiment of an intelligent lock control method according to the present disclosure;
FIG. 4 is a schematic flow chart illustrating the process of obtaining a seed key in an embodiment of the intelligent lock control method according to the present disclosure;
FIG. 5 is a schematic flow diagram of another embodiment of an intelligent lock control method according to the present disclosure.
Detailed Description
The present disclosure now will be described more fully hereinafter with reference to the accompanying drawings, in which exemplary embodiments of the disclosure are shown. The technical solutions in the embodiments of the present disclosure will be clearly and completely described below with reference to the drawings in the embodiments of the present disclosure, and it is obvious that the described embodiments are only a part of the embodiments of the present disclosure, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments disclosed herein without making any creative effort, shall fall within the protection scope of the present disclosure.
For the existing dynamic password mode, the basic control flow is as follows: the mobile phone APP and the server are internally provided with the same dynamic password algorithm; when unlocking is needed, the mobile phone APP generates a dynamic password according to an algorithm; inputting a dynamic password on a screen of the intelligent lock, and sending the dynamic password to a server by the intelligent lock through a wireless network; the server verifies the correctness of the dynamic password according to the algorithm, and if the verification is passed, the server sends an unlocking instruction to the intelligent lock; after the intelligent lock receives the unlocking instruction, the intelligent lock control switch module is started to carry out unlocking action.
Although the existing dynamic password mode realizes the security function of one-time pad, the method also has the following problems: the intelligent lock is usually powered by a battery, and an intelligent lock is required to be online in an interlocking manner when unlocking every time, so that the power consumption of the intelligent lock is high, and the service life of the battery of the intelligent lock is greatly shortened; in addition, the server needs to send the authentication result to the intelligent lock through the network, and the intelligent lock is easily attacked by the external network, so that the safety of the intelligent lock is greatly reduced.
In one embodiment, as shown in fig. 1, the present disclosure provides an intelligent lock control system, including: the intelligent lock system comprises an intelligent lock application module 1, an intelligent lock server 2 and a mobile terminal 3. The smart lock server 2 is provided on the network side, for example, in the internet. After receiving the password request sent by the mobile terminal 3, the smart lock server 2 generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal 3, so that the mobile terminal 3 displays the dynamic password. The dynamic password can be various, for example, 0-9 digits, and the number of digits of the dynamic password can be configured to be 6 or 8.
The smart lock application module 1 is disposed at the side of the smart lock, for example, the smart lock application module 1 may be disposed inside the smart lock. The smart lock application module 1 generates a seed key and sends the seed key to the smart lock server 2. The intelligent lock application module 1 verifies the dynamic password based on the seed key after receiving the dynamic password input by the user, and controls the intelligent lock to unlock if the verification is successful.
The mobile terminal 3 may be a mobile phone, a tablet computer, or the like. When the intelligent lock is unlocked, the mobile terminal 3 generates a dynamic password on the intelligent lock server 2 side, a user manually inputs the dynamic password into the intelligent lock, the intelligent lock application module 1 locally verifies the dynamic password in the intelligent lock, the intelligent lock offline authentication function can be realized, and the intelligent lock is triggered to be unlocked.
In one embodiment, as shown in fig. 2, a smart lock application module 1 is disposed in the smart lock 01, and the smart lock application module 1 includes: an application client unit 11 and a card application unit 12. The application client unit 11 sends the received dynamic password to the card application unit 12, and the card application unit 12 verifies the dynamic password based on the seed key and sends the verification result to the application client unit 11. If it is determined that the authentication is successful based on the authentication result, the application client unit 11 controls the smart lock unlocking module 02 to perform an unlocking operation.
The application client unit 11 is a smart lock application client or the like. The card application unit includes: a SIM card application unit, an eSIM card application unit, or a SIM/eSIM card application unit, etc. The SIM card application unit, the eSIM card application unit or the SIM/eSIM card application unit is a user card with the capability of a security unit, supports an OMA machine card interface, and enables the smart lock to have a local security encryption and decryption function by embedding the card application unit in the smart lock.
The intelligent lock server 2 is deployed on the network side, the application client unit 11 and the card application unit 12 are built in the intelligent lock 01, the lock application is loaded, and the APP is loaded on the mobile terminal 3. After the initialization, the card application unit 12 generates a seed key and transmits the seed key to the application client unit 11. The application client unit 11 sends the seed key to the smart lock server 2.
In one embodiment, the smart lock server 2 generates a public-private key pair after initialization. The smart lock server 2 returns the public key of the public-private key pair to the application client unit 11 in response to the received key request sent by the application client unit 11, and the application client unit 11 sends the public key to the card application unit 12. The card application unit 12 performs encryption processing on the seed key using the public key, and transmits the encrypted seed key to the application client unit 11. The application client unit 11 sends the encrypted seed key to the smart lock server 2. The intelligent lock server 2 decrypts the encrypted seed key by using the private key of the public-private key pair to obtain the seed key.
The application client unit 11 establishes connection with the smart lock server 2, sends a key request to the smart lock server 2 through the connection, receives the encrypted seed key, and after receiving the encrypted seed key, the application client unit 11 is disconnected from the smart lock server 2. The mobile terminal 3 sends an unlocking password request to the intelligent lock server 2, the intelligent lock server 2 generates a dynamic password based on the seed key and by using a preset password algorithm, and the dynamic password is sent to the mobile terminal 3. The cryptographic algorithm may be a symmetric cryptographic algorithm, an asymmetric cryptographic algorithm, or the like.
The user opens the APP installed in the mobile terminal 3, and needs security measures, such as fingerprint authentication or APP password input. The mobile terminal 3 binds the identification information of the intelligent lock, triggers the intelligent lock server 2 to generate a dynamic password, receives the dynamic password from the intelligent lock server 2, and displays the dynamic password. Before sending the unlocking password request, the mobile terminal 3 sends registration information to the smart lock server 2 for registration, wherein the registration information includes: a mobile phone number, an intelligent lock identification, etc. The intelligent lock server 2 sends the dynamic password to the mobile terminal 3 through a secure channel, wherein the secure channel comprises an OTA data short message channel, an encryption network channel and the like.
The application client unit 11 receives a dynamic password input by a user on an intelligent lock input interface, the card application unit 12 generates an authentication password based on a seed key and by using a password algorithm after receiving the dynamic password sent by the application client unit 11, authenticates the dynamic password by using the authentication password, and sends an authentication result to the application client unit. The preset cryptographic algorithm in the card application unit 12 is the same as the preset cryptographic algorithm in the smart lock server 2, and may be a symmetric cryptographic algorithm, an asymmetric cryptographic algorithm, or the like.
FIG. 3 is a schematic flow diagram of an embodiment of an intelligent lock control method according to the present disclosure, as shown in FIG. 3:
And 303, after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and if the verification is successful, the intelligent lock is controlled to be unlocked.
In one embodiment, the smart lock application module includes: an application client unit and a card application unit. The application client unit sends the received dynamic password to the card application unit, and the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit. And if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
FIG. 4 is a schematic flow chart of obtaining a seed key according to an embodiment of the intelligent lock control method of the present disclosure, as shown in FIG. 4:
In step 402, the smart lock server returns the public key of the public-private key pair to the application client unit in response to the received key request sent by the application client unit.
In step 403, the application client unit sends the public key to the card application unit.
In step 404, the card application unit encrypts the seed key using the public key and sends the encrypted seed key to the application client unit.
In step 405, the application client unit sends the encrypted seed key to the smart lock server.
In step 406, the smart lock server decrypts the encrypted seed key using the private key of the public-private key pair to obtain the seed key.
The application client unit establishes connection with the intelligent lock server, sends a key request to the intelligent lock server through the connection, and receives the encrypted seed key. And after receiving the encrypted seed key, the intelligent lock server is disconnected. The mobile terminal sends an unlocking password request to the intelligent lock server, the intelligent lock server generates a dynamic password based on the seed key and by using a preset password algorithm, and the dynamic password is sent to the mobile terminal. Before sending an unlocking password request, the mobile terminal sends registration information to the intelligent lock server for registration. The intelligence lock server sends the dynamic password for mobile terminal through the secure channel, and the secure channel includes: OTA data short message channel, encryption network channel, etc.
And after receiving the dynamic password sent by the application client unit, the card application unit generates an authentication password based on the seed key and by using a password algorithm. The card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
Fig. 5 is a schematic flowchart of another embodiment of the intelligent lock control method according to the present disclosure, as shown in fig. 5:
step 501, the smart lock server initializes to generate an asymmetric public-private key pair.
Step 502, the smart lock application is initialized and the card application unit randomly generates a dynamic password shared seed key.
Step 503, the application client unit establishes a connection with the smart lock server to request public key information.
Step 504, the smart lock server returns the public key information to the application client unit.
Step 505, the smart lock application client forwards the public key information to the card application unit.
At step 506, the card application unit encrypts the shared seed key with the public key.
In step 507, the card application unit returns the encrypted shared seed key to the application client unit.
Step 508, the application client unit returns the encrypted shared seed key to the smart lock server and disconnects the connection.
Step 509, the user opens the APP installed on the mobile terminal, and registers information such as the smart lock identifier and the mobile phone number in the smart lock server.
And step 510, when unlocking, the user starts the APP installed on the mobile terminal.
And 511, establishing connection between the application client unit and the intelligent lock server, and triggering the intelligent lock server to generate the dynamic password.
And step 512, the intelligent lock server generates a dynamic password according to the algorithm.
And 513, the intelligent lock server sends the dynamic password to the APP installed on the mobile terminal.
And 514, displaying the dynamic password by the APP installed on the mobile terminal.
Step 515, the user inputs the dynamic password on the input interface of the smart lock.
In step 516, the application client unit sends the dynamic password to the card application unit.
Step 517, the card application unit verifies the dynamic password.
In step 518, the card application unit sends the verification result to the application client unit.
Step 519, the application client unit sends an unlocking instruction to the lock control switch module.
According to yet another aspect of the present disclosure, a computer-readable storage medium is provided, having stored thereon computer instructions for execution by a processor to perform the method as above.
According to the intelligent lock control system, the intelligent lock control method and the intelligent lock control storage medium, the dynamic password is generated on the server side of the intelligent lock, the control mode of the dynamic password is directly verified locally on the intelligent lock, online networking of the intelligent lock is not needed, the intelligent lock is prevented from consuming electricity more quickly, the service life of a battery can be prolonged, the intelligent lock is prevented from being attacked from the outside, and the safety of the intelligent lock is enhanced.
The method and system of the present disclosure may be implemented in a number of ways. For example, the methods and systems of the present disclosure may be implemented by software, hardware, firmware, or any combination of software, hardware, and firmware. The above-described order for the steps of the method is for illustration only, and the steps of the method of the present disclosure are not limited to the order specifically described above unless specifically stated otherwise. Further, in some embodiments, the present disclosure may also be embodied as programs recorded in a recording medium, the programs including machine-readable instructions for implementing the methods according to the present disclosure. Thus, the present disclosure also covers a recording medium storing a program for executing the method according to the present disclosure.
The description of the present disclosure has been presented for purposes of illustration and description, and is not intended to be exhaustive or limited to the disclosure in the form disclosed. Many modifications and variations will be apparent to practitioners skilled in this art. The embodiment was chosen and described in order to best explain the principles of the disclosure and the practical application, and to enable others of ordinary skill in the art to understand the disclosure for various embodiments with various modifications as are suited to the particular use contemplated.
Claims (19)
1. An intelligent lock control system comprising:
the intelligent lock system comprises an intelligent lock application module, an intelligent lock server and a mobile terminal;
the intelligent lock server is arranged on a network side and used for generating a dynamic password based on a seed key and returning the dynamic password to the mobile terminal after receiving a password request sent by the mobile terminal so as to enable the mobile terminal to display the dynamic password;
the intelligent lock application module is arranged on the intelligent lock side and used for generating the seed key and sending the seed key to the intelligent lock server; and after the dynamic password input by the user is received, verifying the dynamic password based on the seed key, and controlling the intelligent lock to unlock if the verification is successful.
2. The system of claim 1, wherein,
the smart lock application module includes: an application client unit and a card application unit;
the application client unit is used for sending the received dynamic password to the card application unit;
the card application unit is used for verifying the dynamic password based on the seed key and sending a verification result to the application client unit;
and the application client unit is also used for controlling the intelligent lock unlocking module to carry out unlocking operation if the verification is determined to be successful based on the verification result.
3. The system of claim 2, wherein,
the card application unit is used for generating the seed key and sending the seed key to the application client unit after initialization;
and the application client unit is used for sending the seed key to the intelligent lock server.
4. The system of claim 3, wherein,
the intelligent lock server is used for generating a public and private key pair after initialization; in response to the received key request sent by the application client unit, returning the public key of the public-private key pair to the application client unit;
the application client unit is used for sending the public key to the card application unit;
the card application unit is used for encrypting the seed key by using the public key and sending the encrypted seed key to the application client unit;
the application client unit is further configured to send the encrypted seed key to the smart lock server;
and the intelligent lock server is used for decrypting the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
5. The system of claim 4, wherein,
and the application client unit establishes connection with the intelligent lock server, sends the key request to the intelligent lock server through the connection, receives the encrypted seed key, and disconnects the connection after receiving the encrypted seed key.
6. The system of claim 4, wherein,
the mobile terminal is used for sending an unlocking password request to the intelligent lock server;
and the intelligent lock server is used for generating the dynamic password based on the seed key and by using a preset password algorithm and sending the dynamic password to the mobile terminal.
7. The system of claim 6, wherein,
the mobile terminal is used for sending registration information to the intelligent lock server for registration before sending the unlocking password sending request; wherein the registration information includes: a mobile phone number and an intelligent lock identifier;
the smart lock server is configured to send the dynamic password to the mobile terminal through a secure channel, where the secure channel includes: OTA data short message channel, encryption network channel.
8. The system of claim 6, wherein,
and the card application unit is used for generating a verification password based on the seed key and by using the password algorithm after receiving the dynamic password sent by the application client unit, verifying the dynamic password by using the verification password, and sending a verification result to the application client unit.
9. The system of any one of claims 2 to 8,
the card application unit includes: SIM card application unit, eSIM card application unit.
10. An intelligent lock control method comprising:
an intelligent lock application module arranged on an intelligent lock side generates a seed key and sends the seed key to an intelligent lock server arranged on a network side;
after receiving a password request sent by the mobile terminal, the intelligent lock server generates a dynamic password based on the seed key and returns the dynamic password to the mobile terminal so that the mobile terminal can display the dynamic password;
and after receiving the dynamic password input by the user, the intelligent lock application module verifies the dynamic password based on the seed key, and controls the intelligent lock to be unlocked if the verification is successful.
11. The method of claim 10, wherein the smart lock application module comprises: an application client unit and a card application unit; the verifying the dynamic password based on the seed key, and if the verification is successful, controlling the intelligent lock to unlock the intelligent lock comprises the following steps:
the application client unit sends the received dynamic password to the card application unit;
the card application unit verifies the dynamic password based on the seed key and sends a verification result to the application client unit;
and if the verification is determined to be successful based on the verification result, the application client unit controls the intelligent lock unlocking module to carry out unlocking operation.
12. The method of claim 11, wherein the smart lock application module generating and sending the seed key to a smart lock server disposed at a side of the smart lock comprises:
after the card application unit is initialized, the seed key is generated and sent to the application client unit;
and the application client unit sends the seed key to the intelligent lock server.
13. The method of claim 12, further comprising:
after the intelligent lock server is initialized, generating a public and private key pair;
the intelligent lock server responds to the received key request sent by the application client unit and returns the public key of the public-private key pair to the application client unit;
the application client unit sends the public key to the card application unit;
the card application unit encrypts the seed key by using the public key and sends the encrypted seed key to the application client unit;
the application client unit sends the encrypted seed key to the intelligent lock server;
and the intelligent lock server decrypts the encrypted seed key by using a private key of the public-private key pair to obtain the seed key.
14. The method of claim 13, wherein,
the application client unit establishes connection with the intelligent lock server, sends the key request to the intelligent lock server through the connection and receives the encrypted seed key;
and the intelligent lock server disconnects the connection after receiving the encrypted seed key.
15. The method of claim 13, further comprising:
the mobile terminal sends an unlocking password request to the intelligent lock server;
and the intelligent lock server generates the dynamic password by using a preset password algorithm based on the seed key and sends the dynamic password to the mobile terminal.
16. The method of claim 15, wherein,
the mobile terminal sends registration information to the intelligent lock server for registration before sending the unlocking password sending request; wherein the registration information includes: cell-phone number, intelligent lock sign.
17. The method of claim 15, the smart lock server transmitting the dynamic password to the mobile terminal comprising:
the intelligent lock server sends the dynamic password to the mobile terminal through a secure channel, wherein the secure channel comprises: OTA data short message channel, encryption network channel.
18. The method of claim 17, the verifying the dynamic password based on the seed key comprising:
after receiving the dynamic password sent by the application client unit, the card application unit generates a verification password based on the seed key and by using the password algorithm;
the card application unit verifies the dynamic password by using the verification password, and sends a verification result to the application client unit.
19. A computer readable storage medium having stored thereon computer instructions for execution by a processor to perform the method of any one of claims 10 to 18.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910519031.0A CN112184952A (en) | 2019-06-17 | 2019-06-17 | Intelligent lock control system, method and storage medium |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201910519031.0A CN112184952A (en) | 2019-06-17 | 2019-06-17 | Intelligent lock control system, method and storage medium |
Publications (1)
Publication Number | Publication Date |
---|---|
CN112184952A true CN112184952A (en) | 2021-01-05 |
Family
ID=73914226
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201910519031.0A Pending CN112184952A (en) | 2019-06-17 | 2019-06-17 | Intelligent lock control system, method and storage medium |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN112184952A (en) |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113538740A (en) * | 2021-06-10 | 2021-10-22 | 深圳市宏智智能装备有限公司 | Off-line control method of intelligent lock and intelligent lock thereof |
CN113726508A (en) * | 2021-08-30 | 2021-11-30 | 北京博瑞翔伦科技发展有限公司 | TOTP algorithm and system for unmanned bin offline intelligent lock |
CN114255530A (en) * | 2021-12-06 | 2022-03-29 | 深圳供电局有限公司 | Communication safety guarantee method and system for intelligent lock of power supply equipment |
CN115497199A (en) * | 2022-08-23 | 2022-12-20 | 海南电网有限责任公司三亚供电局 | Safety control method for NFC passive lockset of transformer substation |
Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105827576A (en) * | 2015-01-05 | 2016-08-03 | 珠海汇金科技股份有限公司 | Unlocking method and system based on dynamic cipher lock |
CN106952378A (en) * | 2017-04-11 | 2017-07-14 | 徐士兰 | Method for unlocking and device, electronic lock |
CN107221061A (en) * | 2017-06-16 | 2017-09-29 | 北京摇光智能科技有限公司 | A kind of cipher management method of smart lock |
CN107989514A (en) * | 2018-01-02 | 2018-05-04 | 宁波耀龙软件科技有限公司 | There is the safety box of dynamic password |
US20180130273A1 (en) * | 2016-11-04 | 2018-05-10 | Gilbert Eid | Methods and systems for operating door locks using mobile devices |
CN108711209A (en) * | 2018-07-19 | 2018-10-26 | 江苏恒宝智能系统技术有限公司 | dynamic password generation and verification method and system |
CN109461236A (en) * | 2018-10-26 | 2019-03-12 | 海南电网有限责任公司三亚供电局 | A kind of intelligent lock security control method and system |
-
2019
- 2019-06-17 CN CN201910519031.0A patent/CN112184952A/en active Pending
Patent Citations (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN105827576A (en) * | 2015-01-05 | 2016-08-03 | 珠海汇金科技股份有限公司 | Unlocking method and system based on dynamic cipher lock |
US20180130273A1 (en) * | 2016-11-04 | 2018-05-10 | Gilbert Eid | Methods and systems for operating door locks using mobile devices |
CN106952378A (en) * | 2017-04-11 | 2017-07-14 | 徐士兰 | Method for unlocking and device, electronic lock |
CN107221061A (en) * | 2017-06-16 | 2017-09-29 | 北京摇光智能科技有限公司 | A kind of cipher management method of smart lock |
CN107989514A (en) * | 2018-01-02 | 2018-05-04 | 宁波耀龙软件科技有限公司 | There is the safety box of dynamic password |
CN108711209A (en) * | 2018-07-19 | 2018-10-26 | 江苏恒宝智能系统技术有限公司 | dynamic password generation and verification method and system |
CN109461236A (en) * | 2018-10-26 | 2019-03-12 | 海南电网有限责任公司三亚供电局 | A kind of intelligent lock security control method and system |
Cited By (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN113538740A (en) * | 2021-06-10 | 2021-10-22 | 深圳市宏智智能装备有限公司 | Off-line control method of intelligent lock and intelligent lock thereof |
CN113538740B (en) * | 2021-06-10 | 2023-05-05 | 深圳市宏智智能装备有限公司 | Offline control method of intelligent lock system and intelligent lock thereof |
CN113726508A (en) * | 2021-08-30 | 2021-11-30 | 北京博瑞翔伦科技发展有限公司 | TOTP algorithm and system for unmanned bin offline intelligent lock |
CN113726508B (en) * | 2021-08-30 | 2024-04-02 | 北京博瑞翔伦科技发展有限公司 | TOTP algorithm and system for unmanned bin offline intelligent lock |
CN114255530A (en) * | 2021-12-06 | 2022-03-29 | 深圳供电局有限公司 | Communication safety guarantee method and system for intelligent lock of power supply equipment |
CN114255530B (en) * | 2021-12-06 | 2024-01-16 | 深圳供电局有限公司 | Communication security guarantee method and system for intelligent lockset of power supply equipment |
CN115497199A (en) * | 2022-08-23 | 2022-12-20 | 海南电网有限责任公司三亚供电局 | Safety control method for NFC passive lockset of transformer substation |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN107113315B (en) | Identity authentication method, terminal and server | |
CN110334498B (en) | Method for unlocking one device by using the other device | |
CN105245341B (en) | Remote identity authentication method and system and long-range account-opening method and system | |
CN112184952A (en) | Intelligent lock control system, method and storage medium | |
US11544365B2 (en) | Authentication system using a visual representation of an authentication challenge | |
CN105337740B (en) | A kind of auth method, client, trunking and server | |
US20180219688A1 (en) | Information Transmission Method and Mobile Device | |
CN105847247A (en) | Authentication system and working method thereof | |
CN108667791B (en) | Identity authentication method | |
EP3724798B1 (en) | Method for authenticating a user based on an image relation rule and corresponding first user device, server and system | |
CN109920100B (en) | Unlocking method and system of intelligent lock | |
CN111512608A (en) | Trusted execution environment based authentication protocol | |
CN111130798B (en) | Request authentication method and related equipment | |
CN106022081B (en) | A kind of card reading method of identity card card-reading terminal, identity card card-reading terminal and system | |
CN107733652B (en) | Unlocking method and system for shared vehicle and vehicle lock | |
US9443069B1 (en) | Verification platform having interface adapted for communication with verification agent | |
US20200127824A1 (en) | Updating biometric template protection keys | |
US20090044007A1 (en) | Secure Communication Between a Data Processing Device and a Security Module | |
JP2018026733A (en) | Information processing device, information processing system, program, and information processing method | |
KR20170124953A (en) | Method and system for automating user authentication with decrypting encrypted OTP using fingerprint in mobile phone | |
CN108650219B (en) | User identity identification method, related device, equipment and system | |
KR20210006329A (en) | Remote biometric identification | |
KR20190032035A (en) | System for authenticating vehicle start using qr code and otp information and method thereof | |
CN107911211B (en) | Two-dimensional code authentication system based on quantum communication network | |
CN115801287A (en) | Signature authentication method and device |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210105 |