CN113541950A - Lock management control method, system and equipment based on digital certificate - Google Patents

Lock management control method, system and equipment based on digital certificate Download PDF

Info

Publication number
CN113541950A
CN113541950A CN202011516136.XA CN202011516136A CN113541950A CN 113541950 A CN113541950 A CN 113541950A CN 202011516136 A CN202011516136 A CN 202011516136A CN 113541950 A CN113541950 A CN 113541950A
Authority
CN
China
Prior art keywords
unlocking
lock
work order
certificate
authorization
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202011516136.XA
Other languages
Chinese (zh)
Inventor
李仲斌
徐键
谢尧
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Southern Power Grid Digital Grid Research Institute Co Ltd
Original Assignee
Southern Power Grid Digital Grid Research Institute Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Southern Power Grid Digital Grid Research Institute Co Ltd filed Critical Southern Power Grid Digital Grid Research Institute Co Ltd
Priority to CN202011516136.XA priority Critical patent/CN113541950A/en
Publication of CN113541950A publication Critical patent/CN113541950A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • H04L9/3066Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy involving algebraic varieties, e.g. elliptic or hyper-elliptic curves
    • EFIXED CONSTRUCTIONS
    • E05LOCKS; KEYS; WINDOW OR DOOR FITTINGS; SAFES
    • E05BLOCKS; ACCESSORIES THEREFOR; HANDCUFFS
    • E05B47/00Operating or controlling locks or other fastening devices by electric or magnetic means
    • E05B47/0001Operating or controlling locks or other fastening devices by electric or magnetic means with electric actuators; Constructional features thereof
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0861Generation of secret information including derivation or calculation of cryptographic keys or passwords
    • H04L9/0869Generation of secret information including derivation or calculation of cryptographic keys or passwords involving random numbers or seeds
    • EFIXED CONSTRUCTIONS
    • E05LOCKS; KEYS; WINDOW OR DOOR FITTINGS; SAFES
    • E05BLOCKS; ACCESSORIES THEREFOR; HANDCUFFS
    • E05B47/00Operating or controlling locks or other fastening devices by electric or magnetic means
    • E05B2047/0048Circuits, feeding, monitoring
    • E05B2047/0057Feeding
    • E05B2047/0063Energy transfer from key to lock, e.g. for emergency opening

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Computer Security & Cryptography (AREA)
  • Mathematical Physics (AREA)
  • Physics & Mathematics (AREA)
  • Pure & Applied Mathematics (AREA)
  • Mathematical Optimization (AREA)
  • Computing Systems (AREA)
  • Mathematical Analysis (AREA)
  • General Physics & Mathematics (AREA)
  • Algebra (AREA)
  • Lock And Its Accessories (AREA)

Abstract

The invention relates to a lock management control method, a system and equipment based on a digital certificate.A platform acquires the information of a lock, writes the digital certificate generated by initializing the platform into the lock according to the information of the lock, receives an application work order of unlocking equipment, generates an authorization certificate according to the application work order and sends the authorization certificate to the unlocking equipment; the unlocking equipment sends an unlocking work order to the lockset; the lock receives the unlocking work order of the unlocking equipment, obtains an authorization certificate according to the unlocking work order, verifies the authorization certificate, and when the unlocking certificate passes the verification, the lock is unlocked and generates a log which is uploaded to the platform through the unlocking equipment. The management control of high efficiency low cost to electric power tool to lock has been realized, and the electric power cabinet that exists among the prior art is of a great variety, and the cubical switchboard key diverse of different voltage classes, the managerial efficiency is not high, the relatively poor technical problem of security.

Description

Lock management control method, system and equipment based on digital certificate
Technical Field
The invention relates to the field of lock management control, in particular to a digital certificate-based lock management control method, system and equipment.
Background
With the progress of society and the development of economic construction, the living standard of people is continuously improved, the demand of electric energy is gradually increased, and further the construction of the work of the power grid in China is promoted. In order to ensure the safe and normal operation of the power grid, the management of the power facilities needs to be increased. At present, the outdoor ring main unit, the switching station, the branch box and the like are wide in distribution range and large in quantity, and in the using process, in consideration of safe operation and asset protection of equipment, an operation management department often locks related parts such as the ring main unit, the cable branch box and the like by using a common mechanical padlock so as to achieve the purposes of preventing misoperation and preventing burglary.
At present, in consideration of safe operation and equipment safety and theft prevention, the network company governs a large number of outdoor equipment such as ring main units, cable distribution boxes and the like, the box doors of the equipment are locked by using different types of civil padlocks all the time, still a mechanical lockset is adopted, the traditional management level of one door and one key is kept, the electric equipment is huge, and a large number of padlocks are caused, and the padlocks always have the corresponding keys, so that a distribution operation and maintenance team has a large number of keys, each time a team staff visits, overhauls and reverses a lock to operate or copy an electric meter, the team staff must firstly search the corresponding key from a large series of keys to unlock the door, time and labor are wasted, if the site has mistaken keys, the keys have to be returned to search again, the work efficiency is greatly influenced, and the workload for managing the keys is large, it is prone to errors.
Aiming at the defects existing in the traditional method, the method of universal keys is introduced in many areas to solve the problem, namely, a plurality of locks can be unlocked by one key, so that the number of keys is greatly reduced, the management is more convenient, only a small number of keys need to be carried on site, and the working efficiency is greatly improved. However, the method has the potential safety hazard of mistakenly entering other dangerous areas, and if the key is used by an external construction team, effective supervision cannot be carried out.
In summary, the prior art has the technical problems that the electric cabinets are various in variety, the switch cabinet keys with different voltage levels are different, the management efficiency is not high, and the safety is poor.
Disclosure of Invention
The invention provides a lockset management control method, a lockset management control system and lockset management control equipment based on a digital certificate, and solves the technical problems of various electric cabinets, different switch cabinet keys with different voltage levels, low management efficiency and poor safety in the prior art.
The invention provides a lockset management control method based on a digital certificate, which comprises the following steps:
the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the unlocking equipment sends an unlocking work order to the lockset;
the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
Preferably, when the unlocking device is a mobile terminal, the step of sending the unlocking work order to the lock by the unlocking device is as follows:
the mobile terminal supplies power to the lockset through the data line;
the lockset receives the electric energy starting of the mobile terminal;
and the mobile terminal sends an unlocking work order to the lockset.
Preferably, when the unlocking certificate passes verification, the unlocking certificate is further included after the lock is unlocked;
when the unlocking certificate is not verified, the lockset is not unlocked and logs are generated and uploaded to the platform through the unlocking equipment.
Preferably, when the unlocking device is an intelligent key, the step of sending the unlocking work order to the lock by the unlocking device is as follows:
the intelligent key is inserted into the lockset and inputs a password, the key head of the intelligent key contacts the lockset and supplies power to the lockset,
the lock receives the electric energy starting of the mobile intelligent key;
and the intelligent key sends an unlocking work order to the lockset.
Preferably, the method comprises the steps of receiving an application work order of an operator, generating an authorization certificate according to the application work order, and sending the authorization certificate to unlocking equipment of the operator:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
Preferably, the platform initializing and generating the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
A lockset management control system based on digital certificates is characterized in that the system comprises the following modules:
a platform encryption module: the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
unlocking equipment authorization module: receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the application module of unblanking: the unlocking equipment sends an unlocking work order to the lockset;
the tool to lock unlocking module: the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
Preferably, the platform initializing and generating the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
Further, receiving an application work order of an operator, generating an authorization certificate according to the application work order, and sending the authorization certificate to unlocking equipment of the operator specifically comprises the following steps:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
A lock management control device based on digital certificates comprises a processor and a memory;
the memory is used for storing program codes and transmitting the program codes to the processor;
the processor is used for executing the digital certificate-based lock management control method according to the instructions in the program codes.
According to the technical scheme, the embodiment of the invention has the following advantages:
the embodiment of the invention relates to a lockset management control method based on a digital certificate; the method comprises the steps that a platform obtains information of a lockset, writes a digital certificate generated by platform initialization into the lockset according to the information of the lockset, receives an application work order of unlocking equipment, generates an authorization certificate according to the application work order and sends the authorization certificate to the unlocking equipment; the unlocking equipment sends an unlocking work order to the lockset; the lock receives the unlocking work order of the unlocking equipment, obtains an authorization certificate according to the unlocking work order, verifies the authorization certificate, and when the unlocking certificate passes the verification, the lock is unlocked and generates a log which is uploaded to the platform through the unlocking equipment. The management control of high efficiency low cost to electric power tool to lock has been realized, and the electric power cabinet that exists among the prior art is of a great variety, and the cubical switchboard key diverse of different voltage classes, the managerial efficiency is not high, the relatively poor technical problem of security.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly described below, and it is obvious that the drawings in the following description are only some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without inventive exercise.
Fig. 1 is a method flowchart of a digital certificate-based lock management control method, system and device according to an embodiment of the present invention.
Fig. 2 is a system framework diagram of a method, a system, and an apparatus for controlling lock management based on a digital certificate according to an embodiment of the present invention.
Fig. 3 is an apparatus framework diagram of a method, a system, and an apparatus for controlling lock management based on a digital certificate according to an embodiment of the present invention.
Detailed Description
The embodiment of the invention provides a lockset management control method, a lockset management control system and lockset management control equipment based on a digital certificate, which are used for solving the defect that the crowding degree in a carriage is detected by an effective means in the prior art.
In order to make the objects, features and advantages of the present invention more obvious and understandable, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is obvious that the embodiments described below are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Among the prior art, electric power cabinet is of a great variety, and the cubical switchboard key diverse of different voltage classes, the managerial efficiency is not high, and the security is relatively poor. The keys are various in types and have different qualities. Except for operators, other department personnel, outsourcing staff, temporary labor staff, cleaning staff and the like can borrow keys to carry out related activities, and even if a manual registration mode is adopted, the loss and damage of the keys are inevitable due to the high complexity of the operators. The workers of many construction units copy keys privately for construction convenience, so that potential safety hazards are easily caused, serious phenomena such as equipment theft occur, and the behaviors are difficult to be found effectively. When maintaining equipment, often need carry out the switching to a plurality of equipment simultaneously and maintain, lead to the power personnel inconvenient to carry when going out the worker, use not while hand. In addition, the related equipment adopts a mechanical lockset, the switch is very inconvenient after the equipment is exposed outdoors for a long time and corroded and rusted, and the lock hole is also very easy to be damaged artificially, so that various accidents are easily caused, and the working efficiency of a power grid is greatly reduced.
Example 1
Referring to fig. 1, fig. 1 is a flowchart of a method, a system and a device for managing and controlling a lock based on a digital certificate according to an embodiment of the present invention.
The embodiment of the invention provides a lockset management control method based on a digital certificate, which comprises the following steps:
the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the unlocking equipment sends an unlocking work order to the lockset;
the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
When the unlocking equipment is a mobile terminal, the unlocking equipment sends an unlocking work order to the lockset, and the unlocking work order is as follows:
the mobile terminal supplies power to the lockset through the data line;
the lockset receives the electric energy starting of the mobile terminal;
and the mobile terminal sends an unlocking work order to the lockset.
When the unlocking certificate passes verification, the unlocking method also comprises the following steps after the lock is unlocked;
when the unlocking certificate is not verified, the lockset is not unlocked and logs are generated and uploaded to the platform through the unlocking equipment.
When the unlocking device is a smart key, the unlocking device sends an unlocking work order to the lock, and the unlocking work order is specifically as follows:
the intelligent key is inserted into the lockset and inputs a password, the key head of the intelligent key contacts the lockset and supplies power to the lockset,
the lock receives the electric energy starting of the mobile intelligent key;
and the intelligent key sends an unlocking work order to the lockset.
Wherein, receive the application work order of operation person, according to the application work order generates the authorization voucher and will the authorization voucher specifically does on sending the equipment of unblanking of operation person:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
The platform initializing and generating the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
The effectual electric power cabinet that exists among the prior art of having solved is of a great variety, and the cubical switchboard key diverse of different voltage classes, and the managerial efficiency is not high, the relatively poor technical problem of security.
Meanwhile, the problems of various key types and uneven quality are solved. Besides the operating personnel, other department personnel, outsourcing staff, temporary labor staff, cleaning staff and the like can borrow keys to carry out related activities, and even if a manual registration mode is adopted, the problems of key loss and damage are inevitably caused due to the high complexity of the working personnel. A
The problem that workers of a plurality of construction units copy keys privately for construction convenience is further solved, so that potential safety hazards are easily caused, serious phenomena such as equipment theft occur, and the behaviors are difficult to effectively discover. When maintaining equipment, often need carry out the switching to a plurality of equipment simultaneously and maintain, lead to the power personnel inconvenient of carrying when going out the worker, use not problem of handing.
In addition, the problems that the related equipment adopts a mechanical lockset, the switch is very inconvenient after the equipment is exposed outdoors for a long time and corroded and rusted, and a lock hole is also very easy to be damaged artificially, so that various accidents are easily caused, and the working efficiency of a power grid is greatly reduced are solved.
Meanwhile, the problem that whether the key is unlocked or not and when the key is unlocked after the key is led out cannot be traced is solved. Some locks are easy to copy, and there are many keys, so that it is not easy to trace.
The electronic lock solves the problem that at present, electronic lock manufacturers provide electronic lock schemes, but some electronic locks do not adopt encryption algorithms or use national secret algorithms and national secret chips according to national standards, and hidden danger exists in algorithm safety; some electronic locks need batteries, the batteries are frequently replaced when needed, the maintenance is troublesome, potential hazards are brought to the safe operation of equipment, and misoperation accidents and equipment theft accidents happen occasionally. The system not only can not effectively supervise and control, but also can influence the safety of power grid facilities.
Example 2
As shown in fig. 2, a digital certificate based lock management control system is characterized in that the system includes the following modules:
the platform encryption module 201: the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
unlocking equipment authorization module: receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the unlocking application module 202: the unlocking equipment sends an unlocking work order to the lockset;
the lock unlocking module 203: the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
Preferably, the platform initializing and generating the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
Further, receiving an application work order of an operator, generating an authorization certificate according to the application work order, and sending the authorization certificate to unlocking equipment of the operator specifically comprises the following steps:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
Example 3
As shown in fig. 3, a digital certificate based lock management control device includes a processor 300 and a memory 301;
the memory 301 is used for storing program codes and transmitting the program codes to the processor 300;
the processor 300 is configured to execute a digital certificate based lock management control method according to instructions in the program code.
Illustratively, the computer program 302 may be partitioned into one or more modules/units that are stored in the memory 301 and executed by the processor 300 to accomplish the present application. The one or more modules/units may be a series of computer program instruction segments capable of performing specific functions, which are used to describe the execution process of the computer program 302 in the terminal device 30.
The terminal device 30 may be a desktop computer, a notebook, a palm computer, a cloud server, or other computing devices. The terminal device may include, but is not limited to, a processor 300, a memory 301. Those skilled in the art will appreciate that terminal device 30 is merely an example and does not constitute a limitation of terminal device 30 and may include more or fewer components than shown, or some components in combination, or different components, for example, the terminal device may also include input output devices, network access devices, buses, etc.
The Processor 300 may be a Central Processing Unit (CPU), other general purpose Processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), an off-the-shelf ProgrammaBle Gate Array (FPGA) or other ProgrammaBle logic device, discrete Gate or transistor logic, discrete hardware components, etc. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like.
The storage 301 may be an internal storage unit of the terminal device 30, such as a hard disk or a memory of the terminal device 30. The memory 301 may also be an external storage device of the terminal device 30, such as a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card), and the like, which are provided on the terminal device 30. Further, the memory 301 may also include both an internal storage unit and an external storage device of the terminal device 30. The memory 301 is used for storing the computer program and other programs and data required by the terminal device. The memory 301 may also be used to temporarily store data that has been output or is to be output.
According to the embodiment of the invention, the internal picture of the bus shot by the camera is obtained in real time, and the internal picture of the bus is input into a trained convolutional neural network model to obtain a head density map and a predicted value of the number of people; and labeling the faces of the pictures in the bus based on the head density map and the number predicted value to obtain the number of the faces, and calculating the crowdedness in the bus according to the number of the faces. The method combines the convolutional neural network model with the detection of the crowding degree of the bus, takes pictures inside the bus through a camera of the bus, and deploys a deep convolutional neural network model algorithm to accurately detect the crowding degree of the bus compartment in real time. The embodiment of the invention solves the defect that the prior art lacks an effective means to detect the crowding degree in the carriage, and provides real-time crowding degree information of the bus for public transport enterprises and the public; the bus scheduling method provides data support for public travel selection, bus transport capacity arrangement, line network planning and dynamic scheduling of the bus enterprises, and improves the satisfaction degree and riding experience of bus passengers.
It is clear to those skilled in the art that, for convenience and brevity of description, the specific working processes of the above-described systems, apparatuses and units may refer to the corresponding processes in the foregoing method embodiments, and are not described herein again.
In the several embodiments provided in the present application, it should be understood that the disclosed system, apparatus and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the units is only one logical division, and other divisions may be realized in practice, for example, a plurality of units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, devices or units, and may be in an electrical, mechanical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of network units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a removable hard disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a magnetic disk or an optical disk, and other various media capable of storing program codes.
The above-mentioned embodiments are only used for illustrating the technical solutions of the present invention, and not for limiting the same; although the present invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some technical features may be equivalently replaced; and such modifications or substitutions do not depart from the spirit and scope of the corresponding technical solutions of the embodiments of the present invention.

Claims (10)

1. A lock management control method based on digital certificates is characterized by comprising the following steps:
the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the unlocking equipment sends an unlocking work order to the lockset;
the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
2. The method for managing and controlling the lock based on the digital certificate as claimed in claim 1, wherein when the unlocking device is a mobile terminal, the step of sending the unlocking work order to the lock by the unlocking device is specifically that:
the mobile terminal supplies power to the lockset through the data line;
the lockset receives the electric energy starting of the mobile terminal;
and the mobile terminal sends an unlocking work order to the lockset.
3. The digital certificate-based lock management control method according to claim 1, wherein when the unlocking certificate is verified, the lock is opened and then the lock is unlocked;
when the unlocking certificate is not verified, the lockset is not unlocked and logs are generated and uploaded to the platform through the unlocking equipment.
4. The method as claimed in claim 1, wherein when the unlocking device is a smart key, the step of sending the unlocking order to the lock by the unlocking device is specifically:
the intelligent key is inserted into the lockset and inputs a password, the key head of the intelligent key contacts the lockset and supplies power to the lockset,
the lock receives the electric energy starting of the mobile intelligent key;
and the intelligent key sends an unlocking work order to the lockset.
5. The lock management control method based on the digital certificate as claimed in claim 4, wherein the steps of receiving an application work order of an operator, generating an authorization certificate according to the application work order, and sending the authorization certificate to an unlocking device of the operator are specifically as follows:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
6. The method as claimed in claim 1, wherein the initializing the platform to generate the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
7. A lockset management control system based on digital certificates is characterized in that the system comprises the following modules:
a platform encryption module: the platform acquires the information of the lock,
writing the digital certificate generated by platform initialization into the lock according to the information of the lock,
unlocking equipment authorization module: receiving an application work order of unlocking equipment, generating an authorization certificate according to the application work order and sending the authorization certificate to the unlocking equipment;
the application module of unblanking: the unlocking equipment sends an unlocking work order to the lockset;
the tool to lock unlocking module: the lock receives the unlocking work order of the unlocking equipment, obtains the authorization certificate according to the analysis of the unlocking work order, verifies the authorization certificate,
when the unlocking certificate passes the verification, the lock is unlocked and a log is generated and uploaded to the platform through the unlocking device.
8. The system according to claim 7, wherein the platform initializing and generating the digital certificate specifically includes:
by initializing the platform, a pair of keys based on the cryptographic algorithm SM2 is generated, the pair of keys comprises a public key and a private key, the private key is stored locally in the platform server in an encryption manner, and the public key is a digital certificate of the self-signature generation platform.
9. The system of claim 7, wherein the receiving of the application work order from the operator, the generating of the authorization credential according to the application work order, and the sending of the authorization credential to the unlocking device of the operator are specifically:
the platform obtains the work order of the operator,
according to the application work order of the operator, carrying out authorization examination and approval on the operator to generate lock authorization information,
and the lock authorization information is digitally signed by a private key to generate an authorization certificate and the authorization certificate is sent to unlocking equipment of the operator.
10. The lockset management control equipment based on the digital certificate is characterized by comprising a processor and a memory;
the memory is used for storing program codes and transmitting the program codes to the processor;
the processor is used for executing the digital certificate based lock management control method according to any one of claims 1 to 6 according to instructions in the program code.
CN202011516136.XA 2020-12-21 2020-12-21 Lock management control method, system and equipment based on digital certificate Pending CN113541950A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202011516136.XA CN113541950A (en) 2020-12-21 2020-12-21 Lock management control method, system and equipment based on digital certificate

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202011516136.XA CN113541950A (en) 2020-12-21 2020-12-21 Lock management control method, system and equipment based on digital certificate

Publications (1)

Publication Number Publication Date
CN113541950A true CN113541950A (en) 2021-10-22

Family

ID=78124215

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202011516136.XA Pending CN113541950A (en) 2020-12-21 2020-12-21 Lock management control method, system and equipment based on digital certificate

Country Status (1)

Country Link
CN (1) CN113541950A (en)

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114038093A (en) * 2021-11-04 2022-02-11 广东纬德信息科技股份有限公司 Intelligent lock management system and method for power distribution network
CN114373252A (en) * 2021-12-13 2022-04-19 陕西疆晨信息科技有限公司 Authorization management method, authorization management device, mobile terminal and storage medium
CN114445944A (en) * 2021-12-31 2022-05-06 深圳市莱帝亚软件有限公司 Digital certificate access control opening method, corresponding device and system, and storage device
CN114550352A (en) * 2022-02-23 2022-05-27 广东电网有限责任公司 Lock management system, method and device of power equipment and storage medium
CN115273284A (en) * 2022-07-27 2022-11-01 中国电信股份有限公司 Permission adaptation method and device, storage medium and electronic equipment
CN115457685A (en) * 2022-08-30 2022-12-09 中国电信股份有限公司 Optical delivery box control method, optical delivery box remote monitoring system and optical delivery box monitoring device

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114038093A (en) * 2021-11-04 2022-02-11 广东纬德信息科技股份有限公司 Intelligent lock management system and method for power distribution network
CN114373252A (en) * 2021-12-13 2022-04-19 陕西疆晨信息科技有限公司 Authorization management method, authorization management device, mobile terminal and storage medium
CN114445944A (en) * 2021-12-31 2022-05-06 深圳市莱帝亚软件有限公司 Digital certificate access control opening method, corresponding device and system, and storage device
CN114550352A (en) * 2022-02-23 2022-05-27 广东电网有限责任公司 Lock management system, method and device of power equipment and storage medium
CN114550352B (en) * 2022-02-23 2024-04-19 广东电网有限责任公司 Lock management system, method, device and storage medium for power equipment
CN115273284A (en) * 2022-07-27 2022-11-01 中国电信股份有限公司 Permission adaptation method and device, storage medium and electronic equipment
CN115457685A (en) * 2022-08-30 2022-12-09 中国电信股份有限公司 Optical delivery box control method, optical delivery box remote monitoring system and optical delivery box monitoring device

Similar Documents

Publication Publication Date Title
CN113541950A (en) Lock management control method, system and equipment based on digital certificate
CN109326034B (en) Intelligent lock work ticket management system for electric cabinet
CN103390255B (en) A kind of building site digital management system and its application process
CN104318650A (en) Dynamic coded lock management and control system
CN105554092A (en) Police cloud public security management system
CN105005862A (en) Internet dynamic password unlocking management system
CN104282062A (en) Locking and unlocking method based on safe and intelligent lock system
CN109447287B (en) Multi-energy operation and maintenance system establishing method and terminal equipment
CN114550353B (en) Intelligent lockset control system of transformer substation
CN107146296A (en) A kind of transformer cruising inspection system and inspection method based on Internet of Things
CN109919451A (en) Based on true power network topology analysis and security knowledge base digital electric network system and method
CN110988421B (en) Intelligent safety protection device and system applied to electric energy metering mechanism
CN103366431A (en) Management system and method for lockset of distribution network equipment
CN114266081A (en) Operation and maintenance computer safety protection system and method of power monitoring system
CN106919109A (en) A kind of intelligent electric power lock based on internet
CN202831876U (en) Code hopping lock control system
CN101118639A (en) Safety electric national census system
CN104282059A (en) Bluetooth-based safety intelligent lock system with video monitoring function and unlocking and locking methods
CN114550352B (en) Lock management system, method, device and storage medium for power equipment
Sadvandi et al. Safety and security interdependencies in complex systems and sos: Challenges and perspectives
CN117292054A (en) Three-dimensional digital-based intelligent operation and maintenance method and system for power grid
CN104299299B (en) The unblanking and close locking method of safety intelligent lock system based on infrared/NFC
CN104574573A (en) Safe handling method for intelligent lock and intelligent lock
CN114936224A (en) Rail inspection data service system based on Hadoop
CN107135211A (en) A kind of Compositive Information Security Audit System and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination