CN114338527A - IPv6 active identifier processing method and system - Google Patents
IPv6 active identifier processing method and system Download PDFInfo
- Publication number
- CN114338527A CN114338527A CN202111646563.4A CN202111646563A CN114338527A CN 114338527 A CN114338527 A CN 114338527A CN 202111646563 A CN202111646563 A CN 202111646563A CN 114338527 A CN114338527 A CN 114338527A
- Authority
- CN
- China
- Prior art keywords
- ipv6
- internet
- things
- identifier
- terminal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Abstract
The application relates to an IPv6 active identifier processing method and system. The method comprises the following steps: the core network allocates IPv6 address prefixes to the terminals of the Internet of things in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; and the terminal of the Internet of things generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms. The IPv6 active identifier processing method and the system enable an industrial enterprise to obtain multi-dimensional information of equipment, are beneficial to management and tracing of terminal equipment, adopt a unique and real IP address, and are easy to realize connection and control of an industrial platform to the equipment side.
Description
Technical Field
The application relates to the field of industrial Internet and terminals, in particular to an IPv6 active identifier processing method and system.
Background
The industrial internet identification analysis system is used as a neural hub of the industrial internet, can distribute unique identification for physical resources such as products and equipment and virtual resources such as processes and algorithms, can realize quick query of relevant information such as addresses of network nodes or products and services by analyzing the unique 'identity card', further realize cross-platform, cross-industry and cross-field data information interconnection and intercommunication and resource sharing, and provide powerful support for accurate butt joint of a global supply chain system and an enterprise production system, product full life cycle management and intelligent service.
According to the fact whether the identification carrier in the identification analysis system can actively communicate with the identification analysis server or not, the identification carrier can be divided into an active identification carrier and a passive identification carrier. The passive identification carriers such as bar codes, RFID, NFC and the like only bear industrial internet identification codes, an identification analysis request needs to be sent to an identification analysis server through an identification reader-writer, and the remote network connection capability is lacked. With the rapid development of semiconductor technology and data processing technology, the identification carrier is being developed towards active identification carriers such as UICC, chip and module. The active identification carrier not only carries identification codes of the industrial Internet of things, but also carries related certificates, keys and algorithms, can be combined with the public network capacity of an operator, and supports the functions of actively initiating remote deletion, encrypted transmission, access authentication and the like of identification analysis requests, identifications and related information. The active identification carrier gets rid of the limitations of the passive identification carrier on network connection, anti-counterfeiting and identity authentication, and is more automatic and intelligent.
The above information disclosed in this background section is only for enhancement of understanding of the background of the application and therefore it may contain information that does not constitute prior art that is already known to a person of ordinary skill in the art.
Disclosure of Invention
In view of this, the present application provides an IPv6 active identifier processing method and system, which enable an industrial enterprise to obtain multidimensional information of devices, facilitate management and tracing of terminal devices, and easily implement connection and control of an industrial platform to a device side by using a unique and real IP address.
Other features and advantages of the present application will be apparent from the following detailed description, or may be learned by practice of the application.
According to an aspect of the present application, an IPv6 active identifier processing method is provided, the method including: the core network allocates IPv6 address prefixes to the terminals of the Internet of things in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; and the terminal of the Internet of things generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms.
In an exemplary embodiment of the present application, further comprising: an operator analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network; and the operator analysis platform analyzes the IPv6 message to acquire the basic communication information of the terminal of the Internet of things.
In an exemplary embodiment of the present application, further comprising: the industrial identification analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network; and the industrial identification analysis platform analyzes the IPv6 message to acquire the basic equipment information of the terminal of the Internet of things.
In an exemplary embodiment of the present application, further comprising: the industrial platform obtains the communication basic information of the Internet of things terminal through an operator analysis platform; the industrial platform acquires basic equipment information of the Internet of things terminal through an industrial identification analysis platform; and the industrial platform manages the terminal of the Internet of things according to the basic communication information and the basic equipment information.
According to an aspect of the present application, an IPv6 active identifier processing method is provided, which may be used for an internet of things terminal, and includes: generating a first identifier based on the mobile subscriber identity; generating a second identifier based on the PUF information; splicing the first identifier and the second identifier to generate a third identifier; translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier.
In an exemplary embodiment of the present application, further comprising: acquiring an IPv6 address prefix by a core network; and generating an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier for other platforms to analyze.
In an exemplary embodiment of the present application, generating the first identifier based on the mobile subscriber identity code comprises: extracting the first three bits and the last two bits of the mobile user identification code; converting the extracted mobile user identification code into 16-system form data; the last six bits of the 16-ary form data are intercepted as the first identifier.
In an exemplary embodiment of the present application, generating the second identifier based on the PUF information includes: performing MD5 information abstract algorithm calculation on the PUF information; extracting 16 bytes of data according to the calculation result; the second identifier is generated by truncating the last 10 bits of data starting at the 15 th bit of the 16 bytes of data.
In an exemplary embodiment of the present application, translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier includes: converting the third identifier into a lower case identifier, and reserving a leading 0 bit to generate the IPv6 active identifier.
According to an aspect of the present application, an IPv6 active identifier processing system is provided, the system including: the core network is used for allocating IPv6 address prefixes to the terminals of the Internet of things in advance according to an IPv6 address planning principle; the internet of things terminal is used for generating an IPv6 active identifier according to a built-in communication module; generating an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier; the Internet of things base network is used for forwarding the IPv6 message to an operator analysis platform and an industrial identifier analysis platform; the operator analysis platform is used for analyzing the IPv6 message to acquire the basic communication information of the terminal of the Internet of things; the industrial identification analysis platform is used for analyzing the IPv6 message to acquire basic equipment information of the terminal of the Internet of things; and the industrial platform is used for managing the terminal of the Internet of things according to the basic communication information and the basic equipment information.
According to an aspect of the present application, an electronic device is provided, the electronic device including: one or more processors; storage means for storing one or more programs; when executed by one or more processors, cause the one or more processors to implement a method as above.
According to an aspect of the application, a computer-readable medium is proposed, on which a computer program is stored, which program, when being executed by a processor, carries out the method as above.
According to the IPv6 active identifier processing method and system, an IPv6 address prefix is distributed to the terminal of the Internet of things through a core network in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; the internet of things terminal generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms, so that an industrial enterprise can obtain multi-dimensional information of equipment, management and traceability of terminal equipment are facilitated, a unique and real IP address is adopted, and connection and control of the industrial platform to the equipment side are easy to realize.
It is to be understood that both the foregoing general description and the following detailed description are exemplary and explanatory only and are not restrictive of the application.
Drawings
The above and other objects, features and advantages of the present application will become more apparent by describing in detail exemplary embodiments thereof with reference to the attached drawings. The drawings described below are only some embodiments of the present application, and other drawings may be derived from those drawings by those skilled in the art without inventive effort.
FIG. 1 is a schematic diagram illustrating an IPv6 active identifier handling system in accordance with an exemplary embodiment.
Fig. 2 is a flow diagram illustrating an IPv6 proactive identifier processing method in accordance with an exemplary embodiment.
Fig. 3 is a diagram illustrating an IPv6 proactive identifier processing method according to another exemplary embodiment.
Fig. 4 is a flowchart illustrating an IPv6 proactive identifier processing method according to another exemplary embodiment.
FIG. 5 is a block diagram illustrating an IPv6 active identifier processing system in accordance with an exemplary embodiment.
FIG. 6 is a block diagram illustrating an electronic device in accordance with an example embodiment.
FIG. 7 is a block diagram illustrating a computer-readable medium in accordance with an example embodiment.
Detailed Description
Example embodiments will now be described more fully with reference to the accompanying drawings. Example embodiments may, however, be embodied in many different forms and should not be construed as limited to the embodiments set forth herein; rather, these embodiments are provided so that this disclosure will be thorough and complete, and will fully convey the concept of example embodiments to those skilled in the art. The same reference numerals denote the same or similar parts in the drawings, and thus, a repetitive description thereof will be omitted.
Furthermore, the described features, structures, or characteristics may be combined in any suitable manner in one or more embodiments. In the following description, numerous specific details are provided to give a thorough understanding of embodiments of the application. One skilled in the relevant art will recognize, however, that the subject matter of the present application can be practiced without one or more of the specific details, or with other methods, components, devices, steps, and so forth. In other instances, well-known methods and systems, implementations, or operations have not been shown or described in detail to avoid obscuring aspects of the application.
The block diagrams shown in the figures are functional entities only and do not necessarily correspond to physically separate entities. I.e. these functional entities may be implemented in the form of software, or in one or more hardware modules or integrated circuits, or in different networks and/or processor means and/or microcontroller means.
The flow charts shown in the drawings are merely illustrative and do not necessarily include all of the contents and operations/steps, nor do they necessarily have to be performed in the order described. For example, some operations/steps may be decomposed, and some operations/steps may be combined or partially combined, so that the actual execution sequence may be changed according to the actual situation.
It will be understood that, although the terms first, second, third, etc. may be used herein to describe various components, these components should not be limited by these terms. These terms are used to distinguish one element from another. Thus, a first component discussed below may be termed a second component without departing from the teachings of the present concepts. As used herein, the term "and/or" includes any and all combinations of one or more of the associated listed items.
It will be appreciated by those skilled in the art that the drawings are merely schematic representations of exemplary embodiments, and that the blocks or processes shown in the drawings are not necessarily required to practice the present application and are, therefore, not intended to limit the scope of the present application.
The inventor of the application finds that in order to realize large-scale use of the industrial internet identification and secure access of the industrial internet application, the access capability of the industrial internet identification parsing system can be packaged into a card application of the UICC. The embedded UICC can meet more diversified working scenes, has the characteristics of higher physical reliability, low power consumption, small size and the like, and is more suitable for being used in an industrial environment. In addition, the remote card writing application capability of the embedded UICC is suitable for both the industrial Internet and the consumption Internet, and provides a foundation for the integration of the industrial business process and the operator card process.
The identification resolution system is an important component of an industrial internet network system, is an extension of a domain name system to the industrial field, and is connected with the internet at one end and production and manufacturing at the other end. The difference between the recognition and understanding of the identifier analysis in the scenarios of the operator network and the industrial internet may lead to the differentiation of technology selection, standard routes, etc., and affect the interconnection and intercommunication of data. The fusion development of multiple systems is promoted, and the expandability of a network architecture is improved.
In the prior art, CN200910250002.5 is a method for generating and authenticating an IPv6 address based on physical characteristics of a chip, and the technology proposed in this patent generates an IPv6 address of a terminal based on physical characteristics of a chip, thereby preventing a counterfeit device from accessing a network at a chip level and enhancing the security of the network. The decentralized infrastructure is adopted to improve the efficiency of equipment access authentication and solve the difficulty of centralized management and maintenance. However, the IPv6 address allocation method in this patent is only used to solve the terminal access security problem in each network, and does not involve specific information analysis and management of the terminal device.
201910077755.4 is a sensing node IPv6 address allocation method based on trusted identity in the prior art, and the patent provides a sensing node IPv6 address allocation method based on trusted identity, and the sensing node identity information based on OID technology and the signed temporary identity address are combined and operated to generate an interface ID of an IPv6 address. The communication party of the sensing node obtains the identity identification information from the interface ID in the IPv6 address of the sensing node, verifies the signature and verifies the authenticity of the identity identification information. The identifier generation method in the patent generates an IPv6 address according to the physical characteristics of the terminal or the temporary identity identifier, and can verify the identity of the access terminal, but the IPv6 identifier can only be verified in an operator domain and cannot realize industrial identifier intercommunication in an industrial Internet scene.
The IPv6 active identifier processing method is an IPv6 active identifier generation and analysis method and device based on the SIM card patch module, connection to an identifier analysis platform can be actively initiated based on the SIM patch module, identification reading and writing equipment is not needed, and the problem that an existing passive identification carrier lacks remote network connection capacity is solved. The integration of industrial related data and operator network data is realized by using the active identification carrier, the credible verification of multi-data intercommunication can be realized, the safety capability of identification is enhanced, the problem of industrial identifier and operator data splitting is effectively solved, and the traceability of IPv6 addresses is improved.
The content of the present application is explained in detail below with the aid of specific examples.
FIG. 1 is a system block diagram illustrating an IPv6 active identifier processing system in accordance with an exemplary embodiment.
As shown in fig. 1, the system architecture 10 may include internet of things terminals 101, 102, 103, an internet of things base network 104, an operator resolution platform 105, an industrial identity resolution platform 106, and an industrial platform 107. The internet of things infrastructure network 104 is used to provide a medium for communication links between the internet of things terminals 101, 102, 103 and the operator resolution platform 105 and the industrial identity resolution platform 106. The internet of things infrastructure network 104 may include a radio access network and a core network, and various connection types corresponding thereto, such as wired, wireless communication links, or fiber optic cables.
The internet of things terminals 101, 102, 103 interact with the operator analysis platform 105 and the industrial identifier analysis platform 106 through the internet of things base network 104 to receive or send message data and the like. Various monitoring applications, such as an intelligent home application, an intelligent monitoring application, a search application, an instant messaging tool, a mailbox client, social platform software, and the like, may be installed on the internet of things terminals 101, 102, and 103.
The internet of things terminals 101, 102, 103 may be various electronic devices with data transmission functions, including but not limited to smart devices, smart home products, smart meters, smart phones, tablet computers, laptop portable computers, desktop computers, and the like.
The internet of things base network 102 can allocate IPv6 address prefixes to the internet of things terminals 101, 102, 103 according to the IPv6 address planning principle in advance, for example;
the terminals 101, 102 and 103 of the internet of things can generate an IPv6 active identifier according to a built-in communication module; the terminals 101, 102 and 103 of the internet of things can also generate an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier, for example;
the internet of things base network 104 may, for example, forward the IPv6 message to the operator resolution platform 105 and the industrial identifier resolution platform 106;
the operator analysis platform 105 may obtain, for example, an IPv6 message from the internet of things terminals 101, 102, 103 through the internet of things base network 104; the operator analysis platform 105 may interpret the IPv6 message, for example, to obtain basic communication information of the terminals 101, 102, 103 of the internet of things.
The industrial identifier parsing platform 106 may obtain, for example, an IPv6 message from the internet of things terminals 101, 102, 103 through the internet of things base network 104; the industrial identifier parsing platform 106 may interpret the IPv6 message, for example, to obtain basic device information of the terminals 101, 102, and 103 of the internet of things.
The industrial platform 107 can acquire the communication basic information of the internet of things terminals 101, 102 and 103, for example, by the operator analysis platform 105; the industrial platform 107 can acquire basic device information of the internet of things terminals 101, 102 and 103, for example, by the industrial identity resolution platform 106; the industrial platform 107 can manage the internet of things terminals 101, 102, 103 according to the communication basic information and the device basic information.
The operator resolution platform 105, the industrial identifier resolution platform 106, and the industrial platform 107 may be servers of one entity, or may be composed of a plurality of servers, for example, it should be noted that the IPv6 active identifier processing method provided in this embodiment of the present application may be executed by the internet of things terminals 101, 102, and 103, the internet of things base network 104, the operator resolution platform 105, the industrial identifier resolution platform 106, and the industrial platform 107 together.
Fig. 2 is a flow diagram illustrating an IPv6 proactive identifier processing method in accordance with an exemplary embodiment. The IPv6 active identifier processing method 20 includes at least steps S202 to S212.
As shown in fig. 2, in S202, the internet of things base network allocates an IPv6 address prefix to the internet of things terminal in advance according to the IPv6 address planning principle.
In S204, the terminal of the internet of things generates an IPv6 active identifier according to a built-in communication module. An IPv6 interface identifier generation method is built in the communication module, and the binding relationship between the SIM card and the module is recorded by a background; the internet of things terminal is provided with the module, acquires a fixed IPv6 prefix from the core network after being electrified, and generates an IPv6 address identifier according to a preset rule.
More specifically, the first identifier may be generated based on a mobile subscriber identity; generating a second identifier based on the PUF information; splicing the first identifier and the second identifier to generate a third identifier; translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier.
In S206, the terminal of the internet of things generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier.
The IPv6 message format is shown in the following table:
| IPv6 address prefix | IPv6 active identifier |
In S208, the operator analysis platform analyzes the IPv6 message to obtain basic communication information of the internet of things terminal; more specifically, an operator analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network; and the operator analysis platform analyzes the IPv6 message to acquire the basic communication information of the terminal of the Internet of things. The platform can inquire information such as terminal account opening, online and the like according to the IPv6 message;
in S210, the industrial identifier parsing platform parses the IPv6 message to obtain basic device information of the internet of things terminal; more specifically, the industrial identification analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network; and the industrial identification analysis platform analyzes the IPv6 message to acquire the basic equipment information of the terminal of the Internet of things. The fusion of industrial data and operator data can be established according to the IPv6 address;
in S212, the industrial platform manages the internet of things terminal according to the communication basic information and the device basic information. More specifically, the industrial platform obtains the basic communication information of the internet of things terminal through an operator analysis platform; the industrial platform acquires basic equipment information of the Internet of things terminal through an industrial identification analysis platform; and the industrial platform manages the terminal of the Internet of things according to the basic communication information and the basic equipment information.
The IPv6 message format may be associated with operator information, and may include, but is not limited to, operator related data, such as an internet of things SIM card number, account opening information, address planning information, data traffic, and the like, through analysis on an operator analysis platform. Meanwhile, the IPv6 address is associated with the equipment industry ID, and corresponding equipment data, such as information of suppliers, equipment types and the like, can be analyzed through the industry identification analysis node. Through the combination of the IPv6 identifier and the industrial identifier, the fusion of related enterprise queryable operator related data and enterprise equipment data can be realized, and specific data can be shown in FIG. 3.
According to the IPv6 active identifier processing method, an IPv6 address prefix is distributed to the terminal of the Internet of things through a core network in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; the internet of things terminal generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms, so that an industrial enterprise can obtain multi-dimensional information of equipment, management and traceability of terminal equipment are facilitated, a unique and real IP address is adopted, and connection and control of the industrial platform to the equipment side are easy to realize.
The IPv6 active identifier processing method is an IPv6 active identifier generation and analysis method based on the SIM card patch module, the SIM card patch module is used for achieving the binding relationship between IMSI and an address through hardware, and the method effectively achieves a terminal identification method combining operator Internet of things card information, a network layer IP address and an industrial identifier. The authenticity of the network layer address is ensured, the sensing authentication of the terminal IP address to the equipment identity in the network layer is realized, and the accurate positioning, detection and attack and rapid processing capabilities of the IPv6 address are enhanced.
According to the IPv6 active identifier processing method, joint analysis of an operator domain and an industrial identifier can be achieved, various data information can be interconnected and intercommunicated by defining the Internet of things identifier, and barrier-free cross-platform, cross-industry and cross-field safe and efficient information management and interaction are achieved.
It should be clearly understood that this application describes how to make and use particular examples, but the principles of this application are not limited to any details of these examples. Rather, these principles can be applied to many other embodiments based on the teachings of the present disclosure.
Fig. 4 is a flowchart illustrating an IPv6 proactive identifier processing method according to another exemplary embodiment. The flow 40 shown in fig. 4 is a detailed description of the processing procedure of the terminal of the internet of things. The IPv6 active identifier generation process relates to steps of terminal IMSI value and PUF value extraction, encryption transformation and the like, and finally an interface identifier can be formed for network communication, and the specific process comprises the following steps: as shown in fig. 4.
In S402, a first identifier is generated based on the mobile subscriber identity. Extracting the first three bits and the last two bits of the mobile user identification code; converting the extracted mobile user identification code into 16-system form data; the last six bits of the 16-ary form data are intercepted as the first identifier.
In S404, a second identifier is generated based on the PUF information. Performing MD5 information digest algorithm calculation on the PUF information of 32 bits to obtain a hash value of 16 bytes (32 characters); extracting 16 bytes of data according to the calculation result; the second identifier is generated by truncating the last 10 bits of data starting at the 15 th bit of the 16 bytes of data.
In S406, the first identifier and the second identifier are concatenated to generate a third identifier.
In S408, the third identifier is translated into a form of an IPv6 address to generate an IPv6 active identifier. Converting the third identifier into a lower case identifier, and reserving a leading 0 bit to generate the IPv6 active identifier.
In S410, an IPv6 address prefix is obtained by the internet of things infrastructure network.
In S412, an IPv6 message is generated according to the IPv6 address prefix and the IPv6 active identifier for other platforms to analyze.
The IPv6 active identifier processing method is based on IPv6 active identification generation of the SIM card patch module, uses SIM card information in the patch module and PUF information of a terminal to generate an IPv6 address, stores an industrial identification ID in the module, and realizes generation and binding of the IPv6 address. The network side is communicated with the operator identification analysis platform and the industrial identification analysis platform through an Internet of things basic network, and terminal equipment information is analyzed according to operator network information and industrial identification respectively. The enterprise identification analysis application realizes safe, efficient and multidimensional data interaction across platforms and fields by exchanging information with an industrial platform.
Those skilled in the art will appreciate that all or part of the steps implementing the above embodiments are implemented as computer programs executed by a CPU. When executed by the CPU, performs the functions defined by the methods provided herein. The program may be stored in a computer readable storage medium, which may be a read-only memory, a magnetic or optical disk, or the like.
Furthermore, it should be noted that the above-mentioned figures are only schematic illustrations of the processes involved in the method according to exemplary embodiments of the present application, and are not intended to be limiting. It will be readily understood that the processes shown in the above figures are not intended to indicate or limit the chronological order of the processes. In addition, it is also readily understood that these processes may be performed synchronously or asynchronously, e.g., in multiple modules.
According to the IPv6 active identifier processing method, in an industrial Internet scene, the IPv6 address and the Internet of things card number are used as industrial Internet identification carriers, an operator can manage and control the terminal information of the Internet of things, and the fusion of industrial enterprise data and the operator data can be realized. Meanwhile, the operator can also use address management and identification analysis as value-added services of the Internet of things clients for sale, so that the differentiated competitive advantage of enterprises can be enhanced, and the quantity and income of the Internet of things clients can be improved.
According to the IPv6 active identifier processing method, under the industrial Internet scene, the network address planning and management of a specific enterprise can be realized, and the equipment of a certain enterprise can be in the same address field. The scheme can also enable an industrial enterprise to obtain multi-dimensional information of the equipment, is beneficial to the management and traceability of the terminal equipment, adopts the unique and real IP address, and is easy to realize the connection and control of the industrial platform side-to-side equipment side.
FIG. 5 is a block diagram illustrating an IPv6 active identifier processing system in accordance with an exemplary embodiment. As shown in fig. 5, the IPv6 active identifier processing system 50 includes: the system comprises an internet of things terminal 502, an internet of things basic network 504, an operator analysis platform 506, an industrial identifier analysis platform 508 and an industrial platform 510.
The internet of things terminal 502 is used for generating an IPv6 active identifier according to a built-in communication module; generating an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier; the internet of things terminal 502 may include a main control module, a power module, a peripheral interface module, a sensing module, and a communication module, where the puf includes a patch-type SIM card and stores an industrial identification ID, and generation and binding of an IPv6 address may be implemented.
The internet of things basic network 504 is used for allocating an IPv6 address prefix to the internet of things terminal in advance according to an IPv6 address planning principle; the IPv6 message is also forwarded to an operator analysis platform and an industrial identification analysis platform; the internet of things infrastructure network 504 may include a radio access network and a core network, and provides a whole internet of things service transmission channel.
The operator analysis platform 506 is configured to analyze the IPv6 message to obtain basic communication information of the internet of things terminal; the operator analysis platform 506 may also verify the IPv6 address according to the data packet reported by the internet of things terminal, and may obtain the relevant internet of things terminal information corresponding to the SIM card.
The industrial identifier analysis platform 508 is configured to analyze the IPv6 message to obtain basic device information of the internet of things terminal; the industrial identifier parsing platform 508 may also provide an identifier parsing service for industrial enterprises, and may parse corresponding device information according to an industrial identifier.
The industrial platform 510 is configured to manage the internet of things terminal according to the communication basic information and the device basic information. The industrial platform 510 may include various enterprise identity resolution applications, and the industrial platform may interact with the operator resolution platform and the industrial identity resolution node to obtain corresponding data.
According to the IPv6 active identifier processing device, an IPv6 address prefix is distributed to the terminal of the Internet of things through a core network in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; the internet of things terminal generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms, so that an industrial enterprise can obtain multi-dimensional information of equipment, management and traceability of terminal equipment are facilitated, a unique and real IP address is adopted, and connection and control of the industrial platform to the equipment side are easy to realize.
FIG. 6 is a block diagram illustrating an electronic device in accordance with an example embodiment.
An electronic device 600 according to this embodiment of the present application is described below with reference to fig. 6. The electronic device 600 shown in fig. 6 is only an example, and should not bring any limitation to the functions and the scope of use of the embodiments of the present application.
As shown in fig. 6, the electronic device 600 is embodied in the form of a general purpose computing device. The components of the electronic device 600 may include, but are not limited to: at least one processing unit 610, at least one storage unit 620, a bus 630 that connects the various system components (including the storage unit 620 and the processing unit 610), a display unit 640, and the like.
Wherein the storage unit stores program code executable by the processing unit 610 to cause the processing unit 610 to perform steps according to various exemplary embodiments of the present application described in the present specification. For example, the processing unit 610 may perform the steps shown in fig. 2 and 4.
The storage unit 620 may include readable media in the form of volatile memory units, such as a random access memory unit (RAM)6201 and/or a cache memory unit 6202, and may further include a read-only memory unit (ROM) 6203.
The memory unit 620 may also include a program/utility 6204 having a set (at least one) of program modules 6205, such program modules 6205 including, but not limited to: an operating system, one or more application programs, other program modules, and program data, each of which, or some combination thereof, may comprise an implementation of a network environment.
The electronic device 600 may also communicate with one or more external devices 600' (e.g., keyboard, pointing device, bluetooth device, etc.), such that a user can communicate with devices with which the electronic device 600 interacts, and/or any device (e.g., router, modem, etc.) with which the electronic device 600 can communicate with one or more other computing devices. Such communication may occur via an input/output (I/O) interface 650. Also, the electronic device 600 may communicate with one or more networks (e.g., a Local Area Network (LAN), a Wide Area Network (WAN), and/or a public network such as the Internet) via the network adapter 660. The network adapter 660 may communicate with other modules of the electronic device 600 via the bus 630. It should be appreciated that although not shown in the figures, other hardware and/or software modules may be used in conjunction with the electronic device 600, including but not limited to: microcode, device drivers, redundant processing units, external disk drive arrays, RAID systems, tape drives, and data backup storage systems, among others.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, as shown in fig. 7, the technical solution according to the embodiment of the present application may be embodied in the form of a software product, which may be stored in a non-volatile storage medium (which may be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to enable a computing device (which may be a personal computer, a server, or a network device, etc.) to execute the above method according to the embodiment of the present application.
The software product may employ any combination of one or more readable media. The readable medium may be a readable signal medium or a readable storage medium. A readable storage medium may be, for example, but not limited to, an electronic, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus, or device, or any combination of the foregoing. More specific examples (a non-exhaustive list) of the readable storage medium include: an electrical connection having one or more wires, a portable disk, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), an optical fiber, a portable compact disc read-only memory (CD-ROM), an optical storage device, a magnetic storage device, or any suitable combination of the foregoing.
The computer readable storage medium may include a propagated data signal with readable program code embodied therein, for example, in baseband or as part of a carrier wave. Such a propagated data signal may take many forms, including, but not limited to, electro-magnetic, optical, or any suitable combination thereof. A readable storage medium may also be any readable medium that is not a readable storage medium and that can communicate, propagate, or transport a program for use by or in connection with an instruction execution system, apparatus, or device. Program code embodied on a readable storage medium may be transmitted using any appropriate medium, including but not limited to wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.
Program code for carrying out operations of the present application may be written in any combination of one or more programming languages, including an object oriented programming language such as Java, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The program code may execute entirely on the user's computing device, partly on the user's device, as a stand-alone software package, partly on the user's computing device and partly on a remote computing device, or entirely on the remote computing device or server. In the case of a remote computing device, the remote computing device may be connected to the user computing device through any kind of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or may be connected to an external computing device (e.g., through the internet using an internet service provider).
The computer readable medium carries one or more programs which, when executed by a device, cause the computer readable medium to perform the functions of: the core network allocates IPv6 address prefixes to the terminals of the Internet of things in advance according to an IPv6 address planning principle; the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module; and the terminal of the Internet of things generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms. The computer readable medium may also implement the following functions: generating a first identifier based on the mobile subscriber identity; generating a second identifier based on the PUF information; splicing the first identifier and the second identifier to generate a third identifier; translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier.
Those skilled in the art will appreciate that the modules described above may be distributed in the apparatus according to the description of the embodiments, or may be modified accordingly in one or more apparatuses unique from the embodiments. The modules of the above embodiments may be combined into one module, or further split into multiple sub-modules.
Through the above description of the embodiments, those skilled in the art will readily understand that the exemplary embodiments described herein may be implemented by software, or by software in combination with necessary hardware. Therefore, the technical solution according to the embodiment of the present application can be embodied in the form of a software product, which can be stored in a non-volatile storage medium (which can be a CD-ROM, a usb disk, a removable hard disk, etc.) or on a network, and includes several instructions to enable a computing device (which can be a personal computer, a server, a mobile terminal, or a network device, etc.) to execute the method according to the embodiment of the present application.
Exemplary embodiments of the present application are specifically illustrated and described above. It is to be understood that the application is not limited to the details of construction, arrangement, or method of implementation described herein; on the contrary, the intention is to cover various modifications and equivalent arrangements included within the spirit and scope of the appended claims.
Claims (10)
1. An IPv6 active identifier processing method is characterized by comprising the following steps:
the internet of things base network allocates IPv6 address prefixes to the internet of things terminals in advance according to an IPv6 address planning principle;
the terminal of the Internet of things generates an IPv6 active identifier according to a built-in communication module;
and the terminal of the Internet of things generates an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier so as to be analyzed by other platforms.
2. The method of claim 1, further comprising:
an operator analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network;
and the operator analysis platform analyzes the IPv6 message to acquire the basic communication information of the terminal of the Internet of things.
3. The method of claim 1, further comprising:
the industrial identification analysis platform acquires an IPv6 message from the Internet of things terminal through an Internet of things basic network;
and the industrial identification analysis platform analyzes the IPv6 message to acquire the basic equipment information of the terminal of the Internet of things.
4. The method of claim 2 or 3, further comprising:
the industrial platform obtains the communication basic information of the Internet of things terminal through an operator analysis platform;
the industrial platform acquires basic equipment information of the Internet of things terminal through an industrial identification analysis platform;
and the industrial platform manages the terminal of the Internet of things according to the basic communication information and the basic equipment information.
5. An IPv6 active identifier processing method can be used for an Internet of things terminal, and is characterized by comprising the following steps:
generating a first identifier based on the mobile subscriber identity;
generating a second identifier based on the PUF information;
splicing the first identifier and the second identifier to generate a third identifier;
translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier.
6. The method of claim 5, further comprising:
acquiring an IPv6 address prefix by an Internet of things basic network;
and generating an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier for other platforms to analyze.
7. The method of claim 5, wherein generating the first identifier based on the mobile subscriber identity code comprises:
extracting the first three bits and the last two bits of the mobile user identification code;
converting the extracted mobile user identification code into 16-system form data;
the last six bits of the 16-ary form data are intercepted as the first identifier.
8. The method of claim 5, wherein generating the second identifier based on the PUF information comprises:
performing MD5 information abstract algorithm calculation on the PUF information;
extracting 16 bytes of data according to the calculation result;
the second identifier is generated by truncating the last 10 bits of data starting at the 15 th bit of the 16 bytes of data.
9. The method of claim 5, wherein translating the third identifier into a form of an IPv6 address to generate an IPv6 active identifier comprises:
converting the third identifier into a lower case identifier, and reserving a leading 0 bit to generate the IPv6 active identifier.
10. An IPv6 active identifier processing system, comprising:
the internet of things terminal is used for generating an IPv6 active identifier according to a built-in communication module; generating an IPv6 message according to the IPv6 address prefix and the IPv6 active identifier;
the internet of things base network is used for allocating IPv6 address prefixes to the internet of things terminals in advance according to an IPv6 address planning principle; the IPv6 message is also forwarded to an operator analysis platform and an industrial identification analysis platform;
the operator analysis platform is used for analyzing the IPv6 message to acquire the basic communication information of the terminal of the Internet of things;
the industrial identification analysis platform is used for analyzing the IPv6 message to acquire basic equipment information of the terminal of the Internet of things;
and the industrial platform is used for managing the terminal of the Internet of things according to the basic communication information and the basic equipment information.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111646563.4A CN114338527B (en) | 2021-12-30 | 2021-12-30 | IPv6 active identifier processing method and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202111646563.4A CN114338527B (en) | 2021-12-30 | 2021-12-30 | IPv6 active identifier processing method and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114338527A true CN114338527A (en) | 2022-04-12 |
| CN114338527B CN114338527B (en) | 2023-09-08 |
Family
ID=81017934
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202111646563.4A Active CN114338527B (en) | 2021-12-30 | 2021-12-30 | IPv6 active identifier processing method and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114338527B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117118765A (en) * | 2023-10-25 | 2023-11-24 | 易讯科技股份有限公司 | IPV6 identity security authentication method and system |
Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR101081433B1 (en) * | 2010-06-25 | 2011-11-09 | 충남대학교산학협력단 | An ip traceback method with enhanced integrity for ipv6-based network and the recording medium thereof |
| CN102790813A (en) * | 2012-08-06 | 2012-11-21 | 中国联合网络通信集团有限公司 | Communication method as well as system and terminal equipment based on IPv6 (internet protocol version 6) network |
| CN106161662A (en) * | 2015-03-24 | 2016-11-23 | 中兴通讯股份有限公司 | A kind of method and apparatus generating internet protocol address prefix |
| CN109921898A (en) * | 2019-03-28 | 2019-06-21 | 新华三技术有限公司 | IPv6 stateless address generation method and device |
| CN111010271A (en) * | 2019-12-17 | 2020-04-14 | 湖南安方信息技术有限公司 | General identification representation method for identification password update revocation |
| CN113055176A (en) * | 2019-12-26 | 2021-06-29 | 中国电信股份有限公司 | Terminal authentication method and system, terminal device, P2P verification platform and medium |
| US20210306296A1 (en) * | 2020-03-27 | 2021-09-30 | The Nielsen Company (Us), Llc | Methods and apparatus to facilitate device identification |
| CN113487337A (en) * | 2021-07-13 | 2021-10-08 | 中国联合网络通信集团有限公司 | Product information storage method, tracing method and block chain platform |
| US20210365445A1 (en) * | 2020-05-25 | 2021-11-25 | Fortior Solutions, Llc | Technologies for collecting, managing, and providing contact tracing information for infectious disease response and mitigation |
| CN113743833A (en) * | 2021-11-05 | 2021-12-03 | 中国信息通信研究院 | Production control method and system based on identification analysis |
| CN113852921A (en) * | 2021-09-24 | 2021-12-28 | 中国联合网络通信集团有限公司 | Data transmission method, identification analysis platform, electronic device and storage medium |
-
2021
- 2021-12-30 CN CN202111646563.4A patent/CN114338527B/en active Active
Patent Citations (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| KR101081433B1 (en) * | 2010-06-25 | 2011-11-09 | 충남대학교산학협력단 | An ip traceback method with enhanced integrity for ipv6-based network and the recording medium thereof |
| CN102790813A (en) * | 2012-08-06 | 2012-11-21 | 中国联合网络通信集团有限公司 | Communication method as well as system and terminal equipment based on IPv6 (internet protocol version 6) network |
| CN106161662A (en) * | 2015-03-24 | 2016-11-23 | 中兴通讯股份有限公司 | A kind of method and apparatus generating internet protocol address prefix |
| CN109921898A (en) * | 2019-03-28 | 2019-06-21 | 新华三技术有限公司 | IPv6 stateless address generation method and device |
| CN111010271A (en) * | 2019-12-17 | 2020-04-14 | 湖南安方信息技术有限公司 | General identification representation method for identification password update revocation |
| CN113055176A (en) * | 2019-12-26 | 2021-06-29 | 中国电信股份有限公司 | Terminal authentication method and system, terminal device, P2P verification platform and medium |
| US20210306296A1 (en) * | 2020-03-27 | 2021-09-30 | The Nielsen Company (Us), Llc | Methods and apparatus to facilitate device identification |
| US20210365445A1 (en) * | 2020-05-25 | 2021-11-25 | Fortior Solutions, Llc | Technologies for collecting, managing, and providing contact tracing information for infectious disease response and mitigation |
| CN113487337A (en) * | 2021-07-13 | 2021-10-08 | 中国联合网络通信集团有限公司 | Product information storage method, tracing method and block chain platform |
| CN113852921A (en) * | 2021-09-24 | 2021-12-28 | 中国联合网络通信集团有限公司 | Data transmission method, identification analysis platform, electronic device and storage medium |
| CN113743833A (en) * | 2021-11-05 | 2021-12-03 | 中国信息通信研究院 | Production control method and system based on identification analysis |
Non-Patent Citations (2)
| Title |
|---|
| 中国联合网络通信集团有限公司等: "工业互联网标识解析-主动标识载体技术白皮书", Retrieved from the Internet <URL:https://www.milt.gov.cn/cms_files/filema> * |
| 马宝罗;池程;田娟;贾雪琴;: "基于UICC的工业互联网标识多维数据融合研究", 信息通信技术与政策, no. 08 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117118765A (en) * | 2023-10-25 | 2023-11-24 | 易讯科技股份有限公司 | IPV6 identity security authentication method and system |
| CN117118765B (en) * | 2023-10-25 | 2023-12-22 | 易讯科技股份有限公司 | IPV6 identity security authentication method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114338527B (en) | 2023-09-08 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN110958111B (en) | Block chain-based identity authentication mechanism of electric power mobile terminal | |
| US9781109B2 (en) | Method, terminal device, and network device for improving information security | |
| CN104144419A (en) | Identity authentication method, device and system | |
| CN113157648A (en) | Block chain based distributed data storage method, device, node and system | |
| CN111047321A (en) | Service processing method and device, electronic equipment and storage medium | |
| CN109347839B (en) | Centralized password management method and device, electronic equipment and computer storage medium | |
| CN113094334B (en) | Digital service method, device, equipment and storage medium based on distributed storage | |
| CN111488372A (en) | Data processing method, device and storage medium | |
| CN107196840B (en) | Data processing method, device and equipment | |
| CN113225407A (en) | Equipment identification information management method and device, electronic equipment and storage medium | |
| Pandey | Implementation of DNA cryptography in cloud computing and using Huffman algorithm, socket programming and new approach to secure cloud data | |
| CN110855688B (en) | Block chain information processing method and related equipment | |
| CN113569263A (en) | Secure processing method and device for cross-private-domain data and electronic equipment | |
| CN112328486A (en) | Interface automation test method and device, computer equipment and storage medium | |
| CN113129008B (en) | Data processing method, device, computer readable medium and electronic equipment | |
| CN114338527B (en) | IPv6 active identifier processing method and system | |
| CN105227380A (en) | The method of user data process, Apparatus and system | |
| CN114239072A (en) | Block chain node management method and block chain network | |
| CN109828832B (en) | Block chain-based data circulation method, device, equipment and medium | |
| CN113011960A (en) | Block chain-based data access method, device, medium and electronic equipment | |
| CN108696509B (en) | Access processing method and device for terminal | |
| CN113395281B (en) | Verification method and device capable of verifying statement and electronic equipment | |
| CN114840739A (en) | Information retrieval method, information retrieval device, electronic equipment and storage medium | |
| CN114567678A (en) | Resource calling method and device of cloud security service and electronic equipment | |
| Wei et al. | An authentication and key agreement mechanism for OPC Unified Architecture in industrial Internet of Things |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |